Privacy Policy

Last updated: September 22, 2025

1. Who we are
   The website https://kaueramone.dev  is operated by Kaue Da Costa Pacheco aka Kaue Ramone. Business contact details: Kaue Da Costa Pacheco, Tax ID: 322124441, business address: Rua Doutor Luis Olaio, 17, 1ESQ, phone: +351 966 629 147, email: kaueramone@live.com. For data protection enquiries please contact: kaueramone@live.com.

2. Scope and purpose of this Privacy Policy
   This Policy explains which personal data we collect, why we collect it, how we use it, with whom we share it, how long we keep it, your rights under the GDPR (Regulation (EU) 2016/679), and how to contact us or the relevant supervisory authority.

3. Personal data we collect and legal bases for processing
   a) Contact/enquiry forms (e.g., “Talk to me”)

   • Data: name, email, phone, company, message.
   • Purpose: respond to enquiries, prepare quotes and pre-contractual communications.
   • Legal basis: performance of pre-contractual measures (Art. 6(1)(b)) and/or consent (Art. 6(1)(a)) where required.
     
     

b) Contracting and billing

• Data: name, company, billing address, Tax ID/VAT, contact details, project details, payment information (processed by third-party payment providers).
• Purpose: prepare proposals, execute contracts, billing, tax compliance, support.
• Legal basis: performance of a contract (Art. 6(1)(b)) and legal obligations (Art. 6(1)(c)).
  
  

c) Cookies, analytics and technical logs

• Data: IP address, device identifiers, browser, pages visited, referrer, timestamps, cookie identifiers, approximate location.
• Purpose: site operation (essential cookies), analytics, performance, security and fraud prevention.
• Legal basis: consent for non-essential cookies (Art. 6(1)(a)). Essential cookies are processed where necessary for website operation.
  
  

d) Marketing and newsletters

• Data: email address, name (if provided).
• Purpose: sending newsletters or marketing communications only with your explicit consent.
• Legal basis: consent (Art. 6(1)(a)). You may withdraw consent at any time.
  
  

e) Support records and project communications

• Data: messages, attachments, logs associated with projects.
• Purpose: providing support and maintaining project history.
• Legal basis: performance of contract and legitimate interests (Art. 6(1)(f)).
  
  

4. Recipients and processors (third parties)
   We use third-party service providers under data processing agreements. Examples (replace with your actual providers):

   • Hosting: AWS EU region and DigitalOcean (data centers in EU).
   • Analytics: Google Analytics / Plausible / other (specify).
   • Payments: Stripe or other payment processors (if applicable).
   • Email delivery: Mail service provider (e.g., Mailgun, SendGrid) for newsletters.
   • Freelancers or partner agencies may access project data under confidentiality and data processing agreements.
     
     

5. International transfers of personal data
   If personal data is transferred outside the EEA (for example, collaborators in Brazil or the US), we ensure an adequate level of protection by:

   • Relying on an adequacy decision where applicable; or
   • Using Standard Contractual Clauses (SCCs); and
   • Implementing technical safeguards such as encryption and access controls. Where necessary, we perform Transfer Impact Assessments.
     
     

6. Data retention periods
   Typical retention periods (adjust as needed):

   • Unconverted sales leads: 12 months after last contact.
   • Contracts and invoicing documents: 10 years to comply with tax and accounting law.
   • Support records and project logs: up to 5 years after project end.
   • Cookies: retention varies by cookie—see the Cookie Policy/consent tool for details.
     
     

7. Your rights under the GDPR
   You have the right to:

   • Request access to your personal data;
   • Request rectification of inaccurate data;
   • Request erasure (“right to be forgotten”) where legal grounds apply;
   • Request restriction of processing;
   • Object to processing based on legitimate interests or direct marketing;
   • Request data portability for data you provided in a structured, commonly used, machine-readable format;
   • Withdraw consent at any time where processing is based on consent.
     
     

To exercise any right, contact kaueramone@live.com. We will respond within one month, extendable by two months for complex requests. You also have the right to lodge a complaint with a supervisory authority (in Portugal: Comissão Nacional de Protecção de Dados — CNPD — or the supervisory authority of your EU Member State).

8. Security measures
   We implement technical and organisational measures to protect personal data, including:

   • HTTPS across the Site;
   • Encrypted backups;
   • Access control and least privilege for team members;
   • MFA for admin accounts;
   • Logging and monitoring of access.
     
     

9. Minors
   Our services are not directed at children under 16. If we become aware that data of a minor under the applicable age has been collected without parental consent, we will delete it.
   
   

10. Changes to this Privacy Policy
    We may update this Policy from time to time. The “Last updated” date indicates the effective version. Significant changes will be communicated via the Site or email for registered clients.
    
    

11. Contact details
    Data protection contact: kaueramone@live.com
    General enquiries: kaueramone@live.com
    Phone: +351 966 629 147

_____________________

TERMS & CONDITIONS OF SERVICE

1. Parties and scope
   These Terms set out the terms on which Kaue Ramone (the “Provider”) provides digital services to the client (“Client”). Services include, but are not limited to:

   • WordPress and low-code development;
   • Online stores / e-commerce solutions;
   • Technical and strategic consultancy;
   • International project management (including coordination with teams in Brazil);
   • Maintenance, support and optimization;
   • Web systems and integrations;
   • Visual identity and branding work.
     
     

2. Proposals, acceptance and contract formation

   • The Provider issues a proposal (scope, deliverables, timeline, fees).
   • The contract is formed upon Client’s written acceptance, digital signature, or payment of a deposit as specified in the proposal.
     
     

3. Obligations of the parties

   • Provider: perform services with reasonable skill and care, comply with applicable law (including basic GDPR compliance), protect Client’s confidential information, and deliver within agreed timelines.
   • Client: provide timely information, access, approvals, third-party credentials, and materials necessary for the Provider to perform. The Client guarantees it has the rights to supply any content.
     
     

4. Project timelines and changes

   • Timelines are as set out in the proposal. Delays caused by the Client (late approvals, missing assets) extend deadlines accordingly.
   • Change requests that alter scope, timeline or cost require a written change order and may incur additional fees.
     
     

5. Fees and payment terms

   • Example payment schedule (adjustable per proposal): 40% deposit on acceptance; 40% on beta/homologation; 20% on final delivery.
   • Invoices unpaid after 15 days may incur interest and the Provider may suspend services.
   • All fees exclude taxes unless stated otherwise.
     
     

6. Intellectual property rights

   • Upon full payment, the Provider assigns to the Client all deliverable-specific intellectual property rights, except for third-party components (open-source libraries, themes, plugins) that remain subject to their respective licenses.
   • Provider reserves the right to display the work in its portfolio unless a signed NDA states otherwise.
     
     

7. Warranties and limitation of liability

   • The Provider warrants that services will be delivered with reasonable skill and care.
   • For 30 days after delivery, the Provider will fix defects that constitute a breach of the warranty at no extra cost.
   • The Provider’s aggregate liability is limited to the total amount paid by the Client for the services in the 12 months preceding the claim.
   • The Provider is not liable for indirect/delayed loss, loss of profits, or third-party service interruptions (hosting, payment processors, etc.), except to the extent unavoidable by law.
     
     

8. Confidentiality and data protection

   • Both parties shall keep confidential information secret and use it only for performing the contract.
   • Where the Provider processes personal data on behalf of the Client, the parties shall enter into a Data Processing Agreement and comply with applicable data protection laws (including GDPR).
     
     

9. Termination and suspension

   • Either party may terminate for material breach not remedied within 15 days of written notice.
   • The Client may terminate with 30 days’ notice, paying for work completed up to termination and any applicable wind‑down costs.
   • Provider may suspend services for non-payment after notice.
     
     

10. Force majeure

Neither party is liable for failure or delay caused by events beyond their reasonable control (e.g., network outages, pandemics, natural disasters). Time for performance will be extended by the period of delay.

   11. Governing law and jurisdiction

• These Terms are governed by Portuguese law.
• Disputes will be subject to the courts of the District of Lisbon, except where mandatory law provides otherwise.
  
  
  

12. Amendments to the Terms

• Provider may update these Terms; existing clients will be notified at least 30 days before changes take effect.
  
  

13. Contact information
    Legal contact: kaueramone@live.com
    Phone: +351 966 629 147