"It's in Agidesk."

Agidesk / Agidesk Technology Solutions

I. Introduction

This Privacy Policy, herein referred to as "Policy", aims to explain what personal data Agidesk may collect from its customers, as well as specify the purposes of this collection, when and with whom they may be shared and how the company deals with the information collected, created, entered, sent, published, transmitted, stored or displayed by your customers, operators and contacts/end users.

In the event of changes to this Policy, we will use reasonable efforts to notify our customers. This notification can be made by email, or through our website, or directly through the Agidesk application. However, we strongly suggest that all our customers periodically access this Policy available on our website.

Periodic or continued use of our Services or Sites signifies your agreement to be subject to changes in this Policy.

If you do not agree, you may discontinue using the Service and Agidesk Sites.

This Policy explains the what, how and why of the personal information we collect when you visit our Sites or use our Services.

Personal information collected and used by Agidesk is limited to the purpose for which subscribers interact with any member of Agidesk and other purposes explicitly described in this Policy.

II. Coverage

This Policy applies to all Agidesk employees, regardless of their position, to members, to any suppliers or service providers and to Agidesk resellers.

This privacy policy covers data processing carried out pursuant to license agreements for use and technical support for our solutions and for the use of our websites.

III. Glossary of terms that will be used

In order to better understand the terms that will be used in this Policy, we have listed below some of the main terms used and their meaning when applied in this document that are in line with those used in the personal data protection legislation:

Personal data: information related to the identified or identifiable natural person;

Sensitive personal data: personal data on racial or ethnic origin, religious conviction, political opinion, affiliation to a union or organization of a religious, philosophical or political nature, data relating to health or sexual life, genetic or biometric data, when linked to a natural person;

Holder: natural person to whom the personal data that are the object of processing refer;

Controller: natural or legal person, under public or private law, who is responsible for decisions regarding the processing of personal data;

Operator: natural or legal person, under public or private law, who processes personal data on behalf of the controller;

Data Supervisor – DPO: person appointed by the controller to act as a communication channel between the controller, the data subjects and the National Data Protection Authority;

Treatment agents: the controller and the operator;

Treatment: any operation performed with personal data, such as those relating to the collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, elimination, evaluation or control of information, modification, communication , transfer, diffusion or extraction;

Anonymization: use of reasonable technical means available at the time of processing, whereby data loses the possibility of association, directly or indirectly, with an individual;

Minimization: limitation of the processing to the minimum necessary for the accomplishment of its purposes, with the scope of pertinent data, proportional and not excessive in relation to the purposes of the data processing;

Consent: free, informed and unequivocal expression by which the holder agrees with the processing of his/her personal data for a specific purpose;

Sharing: communication, dissemination, international transfer, interconnection of personal data or shared treatment of personal data banks by public bodies and entities in compliance with their legal powers, or between these and private entities, reciprocally, with specific authorization, for one or more treatment modalities allowed by these public entities, or between private entities;

National authority (ANPD in Brazil): bodies responsible for overseeing, implementing and supervising compliance with data protection legislation in their countries, in accordance with their local competences.

IV. Principles

This privacy policy will follow the principles established in the LGPD for the proper treatment and protection of personal data:

Purpose: The purposes of the processing of personal data must be clear, legitimate and, therefore, specific, non-directed processing being prohibited;

Adequacy: The treatment must be adequate to the needs informed to the holders;

Need: Linked to the principles of purpose and adequacy, this principle guides us so that only personal data strictly necessary to achieve the intended purpose are processed;

Free access: Those who process personal data must always promote easy access to these to their holders, including speed and transparency in the availability of information;

Data quality: It is an obligation of those who carry out the processing to ensure that personal data are relevant, accurate, clear and therefore up-to-date;

Transparency: Safeguarding commercial and industrial secrets, the holder must have access to clear, precise information that respects free access to their personal data;

Security: Technical and organizational measures must be used not only preventively, but at all times in the processing chain of personal data, thus avoiding unauthorized treatment, regardless of the reason;

Prevention: The processing of personal data must always observe the prior adoption of measures that seek to prevent the occurrence of leaks and other occurrences that may harm the owner or third party;

Non-discrimination: The treatment can never be used for the purpose of promoting unlawful discriminatory or even abusive acts;

Accountability and accountability: The party processing personal data must be able to demonstrate the adoption of effective measures and evidence of compliance and compliance with data protection rules.

V. Personal information that you give us or that we collect

Agidesk, according to the mapping of personal data carried out, handles in its environments, as controller and/or data operator, the following types of personal data:

As a data controller

• Customer Contact Data – We store the name, telephone and e-mail of individuals who are our contacts, with our customers, to allow us to maintain contact with them, in order to carry out commercial, technical support and marketing transactions.

• Customer employee data – Name, telephone and e-mail informed when opening calls, to enable technical support assistance.

• Supplier Data – We handle data from suppliers who are individuals, or from contact persons with our corporate suppliers, such as: name, telephone, e-mail and bank details, for the purposes of commercial negotiations and making payments.

• Lead Data – We receive and store data from leads (possible customers), such as name, email, phone, title and name of the company they represent. We transcribe this information into our CRM system. Our purpose is commercial prospecting for new customers.

• Job Applicant Data – We receive and store data contained in the résumés of job applicants at Agidesk, through our talent bank, for evaluation and interviewing purposes.

As a data operator

• Agidesk Platform User Registration – Name, CPF, email, address, telephone, hierarchy and password, which are used to operationalize the use of the Agidesk Platform.

• Some Agidesk Contracting companies may collect from their customers, who will be registered on the Agidesk platform, the Date of Birth and Gender (gender), whose purpose will be determined by the Agidesk Contractor. These data may be removed from the registration, if their collection is not the purpose of the provision of services made by the Contractor of the platform with its customers.

• Backup of customer database – All personal data mentioned above, for security reasons, in order to guarantee data availability.

• Tickets – In addition to the above data, due to the functionality existing in the Agidesk Platform that allows documents and/or images to be attached to tickets, it is possible for unstructured personal data to occur, contained in such documents, such as PDF, DOC files, spreadsheets, emails, images and others, the content of which we cannot predict. The purpose is the operationalization of the tool itself, and will depend on the use applied by each Contractor. Agidesk cannot predict or prevent the collection of this data.

• Agents/operators, supervisors and administrators users – Name, email, address, telephone, hierarchy, password and department, to enable the maintenance of the Agidesk Platform settings by the employee(s) indicated by the client.

Single Sign-On

You can access Agidesk using login services such as Facebook Connect, Google Connect or an Open ID provider. These services will authenticate your identity and give you the option to share certain personal information with us, such as your name and email address to pre-populate our registration form. Services like these may give you the option of posting information about your Agidesk activities on your profile page to share with people in your network.

Choices

• If you do not wish to receive advertising communications from Agidesk, please contact us at dpo@atendimento.agidesk.com or follow the unsubscribe instructions included in each advertising email.

Personal information of minors

• Agidesk does not knowingly collect personal information from children under 13 years of age. If you are under 13 years of age, please do not submit personal information. We encourage parents and legal guardians to monitor children's internet usage and help comply with our Policy by instructing their children never to provide personal information without their permission. If you have reason to believe that children under the age of 13 are submitting personal information to us through our Services, please contact us and we will use commercially reasonable efforts to delete this information. Subscribers are responsible for establishing policies and complying with applicable laws for the collection of personal information related to the use of our Services.

SAW. legal bases

Agidesk undertakes to only carry out the processing of personal data based on any of the legal bases provided for in the legislation for the protection of personal data.

Currently, we have the following legal bases for the storage and use of personal data:

• Legislation or regulatory standards (Art.7, II and VI);

• Execution of contracts or preliminary procedures (Art. 7, V);

• Legitimate interest (Art. 7, IX).

VII. Use and Sharing of Personal Data

The sharing of personal data must be carried out with caution and observing the necessary technical and procedural measures to ensure adequate security in such operations.

Agidesk shares personal data regarding its customers and suppliers with the following companies:

Dondoni Accounting: Data from individual suppliers, forwarded for accounting and compliance with tax and accessory obligations.

Omiexperience SA: Company that provides financial ERP Software and CRM System. We share information from Agidesk Contractors or suppliers such as name, e-mail and telephone number, position and company they work for, in order to carry out the financial control of Accounts Payable and Receivable. In the CRM module, we register lead data, such as name, email, telephone, position, and company they work for, in order to carry out commercial prospecting of our products and services.

Banks: Data required to make payments to individual suppliers.

Amazon Web Services, Inc: Company that provides the entire service infrastructure of the Agidesk Platform, where the platform's client and hosting databases are stored.

Google Workspace: E-mail solutions provider, conference call, and business communication applications. We share contact information such as name, email, telephone, title and company, by registering contacts in our email accounts. We also carry out recorded training meetings and workshops, for the purpose of passing on knowledge during the Software implementation process, these recordings are communicated to the participants and will be shared with those present at the events.

JivoChat: Platform providing Chat, WhatsApp, Telephony and Social Networks. The data that can be stored in this solution are: name, e-mail, telephone and company name, whose purpose is commercial service or technical support for the Agidesk platform.

AdOpt: Company that provides Cookie Manager for the website, we do not store sensitive data, we only collect consent to the use of Cookies.

Other Shares

We may share information, including personal information, with our third-party service providers (such as credit card providers, hosting providers, Service Data subprocessors and technology partners) to provide the necessary hardware, software, networks, storage and other services that we use to operate our Services and maintain a high quality user experience. We do not allow our service providers to use the personal information shared by us for their own advertising purposes or for any other purpose unrelated to the services they provide to us.

Therefore, in order to properly provide our Services, in addition to the companies mentioned above, Agidesk may share the collected personal information (such as: name, email, telephone, company, position...) with other suppliers, always that is essential to perform or improve the provision of its services, and when this occurs, it will maintain the same level of security and compliance already adopted with other suppliers.

VIII. Rights of the Personal Data Subject

Every owner of personal data processed by Agidesk has the following rights, provided for by law and fully respected by our company, as data controller. In cases where we are only Data Operators, the holder must direct his request directly to the Contractor of the Platform, who will provide assistance to the Holder whose data is Controlling through the use of the Agidesk Platform:

• Have confirmed the existence of processing of data owned by them;

• Access to your personal data;

• Correction of incomplete, inaccurate or outdated data;

• Minimization of data, blocking or deleting unnecessary or non-lawful data. Due to the nature of our provision of services, we do not work with Data Anonymization, as the data collected is essential for the provision of the contracted service, without which it will not be possible to carry out the aforementioned provision of services. What we strive to do is Data Minimization, that is, we always collect only what is necessary to perform the services or improve their provision.

• Data portability;

• Revocation of consent, upon express request and consequent deletion of the data processed through the consent of the holder;

• Obtain information about data sharing;

• Complain about your data against the controller, before the national data protection authority;

IX. Personal Data Protection

Agidesk always seeks to adopt adequate technical and administrative measures to preserve the security of data, in order to prevent its loss, alteration, unauthorized access, disclosure or misuse, considering the current conditions of the technology and the risks to which the data data is exposed.

Our suppliers undergo a prior qualitative analysis process and we demand from them the same degree of compliance with the data protection legislation adopted by our company.

However, no transmission over the Internet, e-mail or any other electronic means is completely protected or error-free. Therefore, please choose carefully what information you submit to us through these means.

X. Contact us

If it is necessary to make any contact with Agidesk, related to your personal data, in compliance with the legislation, we maintain a specific professional for this purpose, responsible for maintaining our Privacy Program, who will be able to answer your questions, in time skillful.

This is our Data Protection Officer:

Veridiana Gentleman

E-mail: dpo@atendimento.agidesk.com

Telephone: +55 (51) 98905 8080

Personal information collected, stored, used and/or processed by Agidesk, as described in this Policy, is collected, stored, used and/or processed in accordance with Law No. 12,965/2014 of Brazil. By using our services, you explicitly consent to our collection, use, storage and processing of your personal information as described in this document.

XI. Policy Update

This privacy policy will be periodically revised and updated, or whenever necessary, in order to comply with personal data protection legislation, regulatory standards or technical or administrative changes that justify its maintenance.

Agidesk / Agidesk Technology Solutions

I. Introduction

This Privacy Policy, herein referred to as "Policy", aims to explain what personal data Agidesk may collect from its customers, as well as specify the purposes of this collection, when and with whom they may be shared and how the company deals with the information collected, created, entered, sent, published, transmitted, stored or displayed by your customers, operators and contacts/end users.

In the event of changes to this Policy, we will use reasonable efforts to notify our customers. This notification can be made by email, or through our website, or directly through the Agidesk application. However, we strongly suggest that all our customers periodically access this Policy available on our website.

Periodic or continued use of our Services or Sites signifies your agreement to be subject to changes in this Policy.

If you do not agree, you may discontinue using the Service and Agidesk Sites.

This Policy explains the what, how and why of the personal information we collect when you visit our Sites or use our Services.

Personal information collected and used by Agidesk is limited to the purpose for which subscribers interact with any member of Agidesk and other purposes explicitly described in this Policy.

II. Coverage

This Policy applies to all Agidesk employees, regardless of their position, to members, to any suppliers or service providers and to Agidesk resellers.

This privacy policy covers data processing carried out pursuant to license agreements for use and technical support for our solutions and for the use of our websites.

III. Glossary of terms that will be used

In order to better understand the terms that will be used in this Policy, we have listed below some of the main terms used and their meaning when applied in this document that are in line with those used in the personal data protection legislation:

Personal data: information related to the identified or identifiable natural person;

Sensitive personal data: personal data on racial or ethnic origin, religious conviction, political opinion, affiliation to a union or organization of a religious, philosophical or political nature, data relating to health or sexual life, genetic or biometric data, when linked to a natural person;

Holder: natural person to whom the personal data that are the object of processing refer;

Controller: natural or legal person, under public or private law, who is responsible for decisions regarding the processing of personal data;

Operator: natural or legal person, under public or private law, who processes personal data on behalf of the controller;

Data Supervisor – DPO: person appointed by the controller to act as a communication channel between the controller, the data subjects and the National Data Protection Authority;

Treatment agents: the controller and the operator;

Treatment: any operation performed with personal data, such as those relating to the collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, elimination, evaluation or control of information, modification, communication , transfer, diffusion or extraction;

Anonymization: use of reasonable technical means available at the time of processing, whereby data loses the possibility of association, directly or indirectly, with an individual;

Minimization: limitation of the processing to the minimum necessary for the accomplishment of its purposes, with the scope of pertinent data, proportional and not excessive in relation to the purposes of the data processing;

Consent: free, informed and unequivocal expression by which the holder agrees with the processing of his/her personal data for a specific purpose;

Sharing: communication, dissemination, international transfer, interconnection of personal data or shared treatment of personal data banks by public bodies and entities in compliance with their legal powers, or between these and private entities, reciprocally, with specific authorization, for one or more treatment modalities allowed by these public entities, or between private entities;

National authority (ANPD in Brazil): bodies responsible for overseeing, implementing and supervising compliance with data protection legislation in their countries, in accordance with their local competences.

IV. Principles

This privacy policy will follow the principles established in the LGPD for the proper treatment and protection of personal data:

Purpose: The purposes of the processing of personal data must be clear, legitimate and, therefore, specific, non-directed processing being prohibited;

Adequacy: The treatment must be adequate to the needs informed to the holders;

Need: Linked to the principles of purpose and adequacy, this principle guides us so that only personal data strictly necessary to achieve the intended purpose are processed;

Free access: Those who process personal data must always promote easy access to these to their holders, including speed and transparency in the availability of information;

Data quality: It is an obligation of those who carry out the processing to ensure that personal data are relevant, accurate, clear and therefore up-to-date;

Transparency: Safeguarding commercial and industrial secrets, the holder must have access to clear, precise information that respects free access to their personal data;

Security: Technical and organizational measures must be used not only preventively, but at all times in the processing chain of personal data, thus avoiding unauthorized treatment, regardless of the reason;

Prevention: The processing of personal data must always observe the prior adoption of measures that seek to prevent the occurrence of leaks and other occurrences that may harm the owner or third party;

Non-discrimination: The treatment can never be used for the purpose of promoting unlawful discriminatory or even abusive acts;

Accountability and accountability: The party processing personal data must be able to demonstrate the adoption of effective measures and evidence of compliance and compliance with data protection rules.

V. Personal information that you give us or that we collect

Agidesk, according to the mapping of personal data carried out, handles in its environments, as controller and/or data operator, the following types of personal data:

As a data controller

• Customer Contact Data – We store the name, telephone and e-mail of individuals who are our contacts, with our customers, to allow us to maintain contact with them, in order to carry out commercial, technical support and marketing transactions.

• Customer employee data – Name, telephone and e-mail informed when opening calls, to enable technical support assistance.

• Supplier Data – We handle data from suppliers who are individuals, or from contact persons with our corporate suppliers, such as: name, telephone, e-mail and bank details, for the purposes of commercial negotiations and making payments.

• Lead Data – We receive and store data from leads (possible customers), such as name, email, phone, title and name of the company they represent. We transcribe this information into our CRM system. Our purpose is commercial prospecting for new customers.

• Job Applicant Data – We receive and store data contained in the résumés of job applicants at Agidesk, through our talent bank, for evaluation and interviewing purposes.

As a data operator

• Agidesk Platform User Registration – Name, CPF, email, address, telephone, hierarchy and password, which are used to operationalize the use of the Agidesk Platform.

• Some Agidesk Contracting companies may collect from their customers, who will be registered on the Agidesk platform, the Date of Birth and Gender (gender), whose purpose will be determined by the Agidesk Contractor. These data may be removed from the registration, if their collection is not the purpose of the provision of services made by the Contractor of the platform with its customers.

• Backup of customer database – All personal data mentioned above, for security reasons, in order to guarantee data availability.

• Tickets – In addition to the above data, due to the functionality existing in the Agidesk Platform that allows documents and/or images to be attached to tickets, it is possible for unstructured personal data to occur, contained in such documents, such as PDF, DOC files, spreadsheets, emails, images and others, the content of which we cannot predict. The purpose is the operationalization of the tool itself, and will depend on the use applied by each Contractor. Agidesk cannot predict or prevent the collection of this data.

• Agents/operators, supervisors and administrators users – Name, email, address, telephone, hierarchy, password and department, to enable the maintenance of the Agidesk Platform settings by the employee(s) indicated by the client.

Single Sign-On

You can access Agidesk using login services such as Facebook Connect, Google Connect or an Open ID provider. These services will authenticate your identity and give you the option to share certain personal information with us, such as your name and email address to pre-populate our registration form. Services like these may give you the option of posting information about your Agidesk activities on your profile page to share with people in your network.

Choices

• If you do not wish to receive advertising communications from Agidesk, please contact us at dpo@atendimento.agidesk.com or follow the unsubscribe instructions included in each advertising email.

Personal information of minors

• Agidesk does not knowingly collect personal information from children under 13 years of age. If you are under 13 years of age, please do not submit personal information. We encourage parents and legal guardians to monitor children's internet usage and help comply with our Policy by instructing their children never to provide personal information without their permission. If you have reason to believe that children under the age of 13 are submitting personal information to us through our Services, please contact us and we will use commercially reasonable efforts to delete this information. Subscribers are responsible for establishing policies and complying with applicable laws for the collection of personal information related to the use of our Services.

SAW. legal bases

Agidesk undertakes to only carry out the processing of personal data based on any of the legal bases provided for in the legislation for the protection of personal data.

Currently, we have the following legal bases for the storage and use of personal data:

• Legislation or regulatory standards (Art.7, II and VI);

• Execution of contracts or preliminary procedures (Art. 7, V);

• Legitimate interest (Art. 7, IX).

VII. Use and Sharing of Personal Data

The sharing of personal data must be carried out with caution and observing the necessary technical and procedural measures to ensure adequate security in such operations.

Agidesk shares personal data regarding its customers and suppliers with the following companies:

Dondoni Accounting: Data from individual suppliers, forwarded for accounting and compliance with tax and accessory obligations.

Omiexperience SA: Company that provides financial ERP Software and CRM System. We share information from Agidesk Contractors or suppliers such as name, e-mail and telephone number, position and company they work for, in order to carry out the financial control of Accounts Payable and Receivable. In the CRM module, we register lead data, such as name, email, telephone, position, and company they work for, in order to carry out commercial prospecting of our products and services.

Banks: Data required to make payments to individual suppliers.

Amazon Web Services, Inc: Company that provides the entire service infrastructure of the Agidesk Platform, where the platform's client and hosting databases are stored.

Google Workspace: E-mail solutions provider, conference call, and business communication applications. We share contact information such as name, email, telephone, title and company, by registering contacts in our email accounts. We also carry out recorded training meetings and workshops, for the purpose of passing on knowledge during the Software implementation process, these recordings are communicated to the participants and will be shared with those present at the events.

JivoChat: Platform providing Chat, WhatsApp, Telephony and Social Networks. The data that can be stored in this solution are: name, e-mail, telephone and company name, whose purpose is commercial service or technical support for the Agidesk platform.

AdOpt: Company that provides Cookie Manager for the website, we do not store sensitive data, we only collect consent to the use of Cookies.

Other Shares

We may share information, including personal information, with our third-party service providers (such as credit card providers, hosting providers, Service Data subprocessors and technology partners) to provide the necessary hardware, software, networks, storage and other services that we use to operate our Services and maintain a high quality user experience. We do not allow our service providers to use the personal information shared by us for their own advertising purposes or for any other purpose unrelated to the services they provide to us.

Therefore, in order to properly provide our Services, in addition to the companies mentioned above, Agidesk may share the collected personal information (such as: name, email, telephone, company, position...) with other suppliers, always that is essential to perform or improve the provision of its services, and when this occurs, it will maintain the same level of security and compliance already adopted with other suppliers.

VIII. Rights of the Personal Data Subject

Every owner of personal data processed by Agidesk has the following rights, provided for by law and fully respected by our company, as data controller. In cases where we are only Data Operators, the holder must direct his request directly to the Contractor of the Platform, who will provide assistance to the Holder whose data is Controlling through the use of the Agidesk Platform:

• Have confirmed the existence of processing of data owned by them;

• Access to your personal data;

• Correction of incomplete, inaccurate or outdated data;

• Minimization of data, blocking or deleting unnecessary or non-lawful data. Due to the nature of our provision of services, we do not work with Data Anonymization, as the data collected is essential for the provision of the contracted service, without which it will not be possible to carry out the aforementioned provision of services. What we strive to do is Data Minimization, that is, we always collect only what is necessary to perform the services or improve their provision.

• Data portability;

• Revocation of consent, upon express request and consequent deletion of the data processed through the consent of the holder;

• Obtain information about data sharing;

• Complain about your data against the controller, before the national data protection authority;

IX. Personal Data Protection

Agidesk always seeks to adopt adequate technical and administrative measures to preserve the security of data, in order to prevent its loss, alteration, unauthorized access, disclosure or misuse, considering the current conditions of the technology and the risks to which the data data is exposed.

Our suppliers undergo a prior qualitative analysis process and we demand from them the same degree of compliance with the data protection legislation adopted by our company.

However, no transmission over the Internet, e-mail or any other electronic means is completely protected or error-free. Therefore, please choose carefully what information you submit to us through these means.

X. Contact us

If it is necessary to make any contact with Agidesk, related to your personal data, in compliance with the legislation, we maintain a specific professional for this purpose, responsible for maintaining our Privacy Program, who will be able to answer your questions, in time skillful.

This is our Data Protection Officer:

Veridiana Gentleman

E-mail: dpo@atendimento.agidesk.com

Telephone: +55 (51) 98905 8080

Personal information collected, stored, used and/or processed by Agidesk, as described in this Policy, is collected, stored, used and/or processed in accordance with Law No. 12,965/2014 of Brazil. By using our services, you explicitly consent to our collection, use, storage and processing of your personal information as described in this document.

XI. Policy Update

This privacy policy will be periodically revised and updated, or whenever necessary, in order to comply with personal data protection legislation, regulatory standards or technical or administrative changes that justify its maintenance.

ATTENTION: Please read carefully the terms and conditions of use of this agreement, as by signing up to the Agidesk Software use license you agree and accept the terms of this agreement.

This Agreement is between you and the entity Alegre Soluções em Desenvolvimento LTDA , registered with the CNPJ under number: 24.453.3363.0001 /40 , which owns and operates the Cloud Software called AGIDESK that you are contracting. "You" means the entity that you represent by accepting the terms of this Agreement or, if this does not apply, you individually. If you are accepting on behalf of your employer or another entity, you represent and warrant that: (i) you have full legal authority to bind your employer or such entity to these Terms; (ii) you have read and understood the Agreement; and (iii) you agree to its Terms on behalf of the party you represent. If you do not have the legal authority to bind your employer or the applicable entity, do not click the "I Agree" (or similar button or checkbox) that is presented to you, or make any payment on behalf of your employer, or sign or accept the commercial proposal presented.

PLEASE NOTE THAT IF YOU SUBSCRIBE TO A CLOUD PRODUCT USING AN EMAIL ADDRESS OF YOUR EMPLOYER OR OTHER ENTITY, THEN (A) YOU WILL BE CONSIDERED AS A REPRESENTATIVE OF SUCH PARTY, (B) YOUR CLICK TO ACCEPT, OR EMAIL TO ACCEPT , WILL BIND YOUR EMPLOYER OR THAT ENTITY TO THIS AGREEMENT AND ITS TERMS AND (C) THE WORD "YOU" IN THESE TERMS WILL BIND YOUR EMPLOYER OR THAT ENTITY.

This Agreement is effective from the date you click "I Agree" (or similar button or checkbox) or use or access a Cloud Product, whichever comes first (the "Effective Date"). This Agreement does not need to be signed to be binding. You indicate your agreement to this Agreement and its Terms by clicking "I Agree" (or similar button or checkbox), or at the time you sign up for a cloud product, create a cloud product account, or do a request and accepted in a commercial proposal. For Free Products, you also indicate your agreement to these Terms by accessing or using the applicable No-Charge Product.

And, when collectively, designated only as "PARTIES", they have mutually agreed upon the following:

By using the AGIDESK Software, the CONTRACTING PARTY agrees to be bound by the Terms and Conditions of Use, reproduced below. For the purposes of this Agreement, the following terms have the definition and scope referred to herein:

- Purpose of using the AGIDESK Software : B2B and/or B2B2C Customer Service Management Software.

- Type of Service : SaaS – software as a service – subscription software service.

- Access Address : https://agidesk.com

- Software Localization : The software is hosted on a cloud computing server (cloud), in a high availability provider. Each customer will receive 100GB of space for storage. Additional spaces will cost BRL 199.90/month for each 100GB.

- Access to the software : The software is accessed by the CONTRACTING PARTY through the Internet using the Google Chrome browser.

- Onboarding : Initial client process that includes the technical setup of the account, training and monitoring of users in the first 30 days after contracting.

- Payment for the service : The CONTRACTING PARTY pays an amount, by way of licensing, for the use of the software (according to the contracted plan) and another, related to the contracted implementation ( standard or bespoke).

- Types of deployment : The standard deployment is the one with a scope limited to a certain number of hours or number of items that will be covered during the deployment process. The custom-made deployment, on the other hand, is a customized deployment model for the customer's needs, covering negotiations by area to be deployed and will be charged per hour of service. In both cases, the details of the type of implementation must be made in the commercial proposal, which is an integral and inseparable part of this contract.

- Contracted AGIDESK Plan : The contracted plan will be provided in the commercial proposal presented, which, after being signed, constitutes an integral part of this contract.

The plan can be contracted directly through the account created through the Agidesk website, in this situation the customer can choose the plan and the number of licenses contracted through the menu "my account/payments".

All Agidesk plans are Monthly or Annual in prepaid mode. Except for Free Products, all Cloud Products are offered by monthly subscription or by annual subscription. Training and deployments will also be offered, the price and payment terms of which must be included in the commercial proposal.

Renewals: Unless otherwise specified in your Order, unless either party cancels your subscription prior to the expiration of the current Subscription Term, your subscription will automatically renew for another Subscription Term of a period equal to your Subscription Term initial.

You will provide any non-renewal notice through the terms we designate, which may include account settings on Cloud Products or contacting our support team.

Canceling your subscription means you will not be billed for the next billing cycle, but you will not receive refunds or credits for amounts that have already been billed.

All renewals are subject to the applicable cloud product that continues to be offered and will be billed at the current rates shown on our website.

Adding Users: You can add users, increase storage limits or increase usage of Cloud products by placing a new order or modifying an existing order. Unless otherwise specified in the applicable Order, we will charge you for any increased usage in our then-current rates, proportionate to the remainder of the then-current Subscription Term.

Payment: You will pay all fees under each Order, for the due dates and in the currency specified in the Order.

If a purchase order number is required for an invoice to be paid, you must provide this order number to Alegre by sending the order number to the email address provided in the business proposal.

For Additional Services provided at any location other than Agidesk's headquarters, unless otherwise specified in your Order, you will reimburse us for our pre-approved travel, accommodation and meal expenses, which we may charge as incurred. You agree that we may bill your credit card or other form of payment for renewals, additional users, overages to set limits or scopes of use, expenses and unpaid fees, as applicable.

Delivery: We will deliver login instructions for Cloud products to your account or by other reasonable means at the latest when we receive payment of the applicable fees. You are responsible for accessing your account to determine that we have received payment and that your Order has been processed. All deliveries under these Terms will be electronic.

- Confidentiality of the Contracting Party's information : The CONTRACTOR undertakes to maintain the confidentiality of the information exchanged and generated by the CONTRACTING PARTY during the use of the software described in this CONTRACT, not directly or indirectly disclosing or transmitting the information exchanged to third parties, pursuant to clause H .

A) Terms of Service:

1. The CONTRACTOR reserves the right to update and change the terms of service provision periodically and without prior notice, such change being communicated to the CONTRACTING PARTY via email and taking effect from the first day of the month following the respective communication . If you do not agree with the change, the CONTRACTING PARTY will have the right to cease, either at the time of receiving the communication or by the end of the month of notification of the change, the use of the AGIDESK Software, without any penalty or indemnity, and without the obligation to pay the other monthly amounts that would be due until the end of the term of the contract. If such amounts have been previously paid by the CONTRACTING PARTY, the CONTRACTOR shall refund such amounts to the CONTRACTING PARTY.
2. The use of the service by the CONTRACTING PARTY after the entry into force of the changes to the terms and conditions of the provision of services will be considered as express acceptance of such changes.
3. Violation of any of the conditions established in the terms of the provision of service gives the CONTRACTOR the right to close the infringing CONTRACTING PARTY's account.
4. The CONTRACTOR reserves the right to develop and launch new features that are not included in the current plan contracted by the CONTRACTING PARTY, which in turn will be able to access these improvements through an upgrade to other plans.
5. The CONTRACTING PARTY accepts and agrees that the CONTRACTED PARTY cannot be held responsible for the contents inserted by it into the service. The CONTRACTING PARTY expressly accepts that it assumes the risk of inappropriate use of the service.
6. The CONTRACTOR does not transact or sell data between customers. The stored data can be used at the discretion of information validation in the CONTRACTING PARTY's database.
7. The CONTRACTOR undertakes to keep the software available, except with planned and notified, in advance, for maintenance.
8. The CONTRACTING PARTY may consult the updated version of the terms of service provision at any time by accessing the website https://www.agidesk.com/terms .

B) Software Usage Terms:

1. The CONTRACTING PARTY is solely responsible for the decision to increase or reduce the number of users of its account.
2. The CONTRACTING PARTY expressly understands and accepts that the CONTRACTED PARTY cannot be held liable, even in negligence, for any type of damage resulting from the misuse of the software by the CONTRACTING PARTY or by a third party accessing user data through the software. .
3. The CONTRACTOR may suspend the service or part of it, whenever it detects the need to change or correct the software, notifying the fact to the CONTRACTING PARTY by any reasonably understandable means, respecting the provisions of item 7 of clause A - Terms of Provision of Services. The CONTRACTING PARTY expressly accepts that the CONTRACTOR automatically provides it with changes and corrections as part of the service. .
4. In the event that the service is permanently discontinued, the CONTRACTOR shall inform the CONTRACTING PARTY of this fact at least 60 (sixty) days in advance. During the notice period, it is incumbent upon the CONTRACTING PARTY to remove all information existing in the application. After closing the account, the CONTRACTOR will proceed with the deletion of all existing data in the application. Upon discontinuation of services, the CONTRACTING PARTY will not pay any other additional monthly amounts that have been agreed between the PARTIES and, if it has previously paid such amounts, the CONTRACTOR shall refund them to the CONTRACTING PARTY. .

C) Account Terms of Use:

1. To subscribe to the service, the CONTRACTING PARTY must indicate its complete identification (corporate name, domicile or registered office, CNPJ/CPF), a valid email address and any other additional information, necessary for the provision of the service, that is requested by the CONTRACTOR.
2. Training (onboarding) at the time of hiring is mandatory to ensure that users are enabled in the functional use of the software.
3. In cases of replacements and/or additions of new users, it is important that everyone is enabled to use the software. In this case, the hiring of training in the form of a service is optional, or the CONTRACTING PARTY may opt for training in "recorded video" format.
4. The user is solely and exclusively responsible for maintaining the security of his personal, individual and private account and password. The CONTRACTOR shall not be held liable for any loss or damage resulting from non-compliance by the user or failure to comply with this security obligation.
5. By disclosing information generated in the software, the CONTRACTING PARTY declares to be the owner of these contents, exempting the CONTRACTOR from any and all liabilities of any nature. The AGIDESK Software is the means for viewing and distributing this data.
6. The CONTRACTING PARTY may not use the service for any illegal, illicit, fraudulent or unauthorized purposes, being fully responsible for any content promoted.
7. The CONTRACTING PARTY is responsible for establishing the internal rules for the security and protection of its data in relation to its users.

D) Payment Terms, Software Usage Release, Refund, Upgrade and Downgrade:

1. Software prices are published on the CONTRACTOR's website.
2. Payment for the service will be made through payment of a bank slip or credit card, made with the elements provided by the CONTRACTOR.
3. The service is charged in advance (prepaid), depending on the contracted frequency and is non-refundable. Reimbursement may occur to the CONTRACTING PARTY only in the following cases:

(i) If the contract is terminated by the CONTRACTING PARTY in view of the CONTRACTOR's breach of any of the conditions established for the provision of the service;
(ii) If the CONTRACTING PARTY does not agree with the amendment to the terms of the provision of services by the CONTRACTOR (see clause A, item 1).


4. The release to use the software is carried out for a 14-day trial period, immediately after the creation of the account through the CONTRACTOR's website. During the testing period, the CONTRACTOR is not responsible for the delivery of data that have been entered on the platform. The definitive release, for the contracted period established in the commercial proposal, will be made after identification and/or proof of the first payment.
   The creation of an account in the Software, the acceptance of the commercial proposal by e-mail, or the payment of the first monthly or annual fee, constitutes the definitive acceptance of this Agreement and its Terms, and the action that constitutes the first is valid.
5. If the CONTRACTING PARTY intends to add users to its account, it must contact its Commercial Manager to request a commercial proposal. In case the CONTRACTING PARTY creates new agents, it accepts from now on the additional monthly or annual charge, referring to the number of agents inserted in the platform. In the first 12 months of contracting, it will not be possible to reduce the contracted license package.
6. If the CONTRACTING PARTY intends to upgrade an application, it will be charged the difference in the list price of the respective packages, and the pro-rata calculation will apply when contracted within the current cycle.

E) Renewal, Cancellation, Default, Suspension and Interest/Fine:

1. The contract, either in the monthly or annual plan modality, will have a minimum term of 12 months, and the renewal will be performed automatically, at each end of the contracted plan period, in the same modality of the initial contract. If the CONTRACTING PARTY wishes to change the plan at the end of the contract, it must manifest itself 60 days in advance.
2. After the first 12 months of the contract, the Monthly plan will be renewed automatically, every 12 months and, if the CONTRACTING PARTY wishes to cancel the contract, it must manifest itself 60 days in advance.
3. The contract will be readjusted annually by the IPCA index, or, failing that, by an equivalent index or one that may replace it.
4. If the CONTRACTING PARTY wishes to cancel the contract (in the first 12 months):

a) Monthly Plan: in case of cancellation of the monthly plan, a fine of 30% will be charged on the residual value of the contract , calculated between the cancellation date and the end date of the contracted term. The CONTRACTING PARTY must request the cancellation of the account 60 days in advance, and pay all outstanding amounts, in addition to the cancellation penalty.
b) Annual Plan: for annual plans, a 12-month advance payment is required, and the withdrawal period will be 30 days after the acceptance of the proposal, a situation that will affect the return of 70% of the amount paid on the licenses. If the customer chooses to cancel after this period, there will be no refund of amounts paid. In both cases, there will be no refund of amounts paid for consulting, implementation and training services.
c) The CONTRACTING PARTY must request the cancellation with its Commercial Manager;
d) The CONTRACTING PARTY will have a period of 15 days to back up (or request that it be done) the backup of its data and, after this period, its account and respective data will be deleted.
e) In the first 12 months of contracting, it will not be possible to reduce the contracted license package. In case of downgrade in the first 12 months of contracting, the CONTRACTING PARTY will need to pay a fine as described in item \"A\" of this item.


5. The cancellation of the account does not exempt the CONTRACTING PARTY from payments of overdue charges that have not been paid, until the date of cancellation.
6. A CONTRACTING PARTY who is in default, 10 days late, will have access blocked, as well as the service interrupted.
7. A CONTRACTING PARTY who is in default, with a delay of more than 30 days from the due date, will have access canceled, its account and respective data deleted, and the outstanding titles will be protested at the Protest Office, until the outstanding amounts are paid.
8. The CONTRACTOR reserves the right to charge a fine and interest for delay when it deems it necessary, where 5% fine and 2% interest per day of delay will be applied.
9. The CONTRACTOR will not make refunds in the event of cancellations of plans with advance payment, except in the cases provided for in clause E, item 4, item 'b'.
10. The service cannot be suspended or paused by the CONTRACTING PARTY. If the CONTRACTING PARTY chooses to suspend the service, it must request the cancellation and bear the costs involved and subsequently request a new contract with the updated values.
11. The non-use of the AGIDESK Software for a period by the CONTRACTING PARTY will not serve as an argument for non-payment during this period.

F) Software Intellectual Property Rights:

1. All rights to the service are reserved to the CONTRACTOR. The CONTRACTING PARTY accepts that the service contains protected and confidential information that is protected by applicable law.
2. The CONTRACTING PARTY may not duplicate, copy, reproduce, redistribute, reuse any part of the software or materials provided by the CONTRACTOR, or visual design elements or concepts without the express written authorization of the CONTRACTOR, under penalty of incurring civil and criminal liability.
3. The CONTRACTOR does not claim intellectual property rights on the data that the CONTRACTING PARTY inserts into the service.
4. The CONTRACTOR undertakes to maintain confidentiality and not disclose, by any means, the data entered by the CONTRACTING PARTY, in the use of the software, to which it may have access.
5. The CONTRACTING PARTY may not:
   
   I. Make the AGIDESK Software available to any third party not authorized or otherwise described in this agreement;
   II. Use the AGIDESK Software to provide services to third parties in a way that is not expressly permitted by the contract, with the exception of customers who are part of the AGIDESK channel program;
   III. Interfering or intentionally harming the integrity of the AGIDESK Software or the data contained therein;
   IV. Attempting to gain unauthorized access to the AGIDESK Software or its related systems or networks;
   V. Use the AGIDESK Software to cause damage, such as overload, or create various agents for the purpose of harming third party operations;
   SAW. Delete or modify any software markings, or any notice, copyright of the CONTRACTOR.
   

G) Confidentiality Terms:

1. CONFIDENTIAL INFORMATION, and hereinafter referred to, is considered to be any and all information that is disclosed by one of the parties to the other, whether verbally, in writing, by electronic means or by any other form of tangible transmission, and which by determination of one or both the parties, due to their essential characteristics or due to factual circumstances, cannot be made public, and must be protected by confidentiality and secrecy, as provided in this instrument.
2. The CONTRACTOR undertakes to:
   
   (a) Ensure the maintenance of secrecy and confidentiality of all CONFIDENTIAL INFORMATION that may become aware of or access, or that may be entrusted to it for any reason, including during the term of contracting the services offered;
   (b) To cause its partners, directors, employees, agents, consultants, contractors, representatives or any other person under their responsibility (direct or indirect), or any other persons from related companies, to keep all INFORMATION confidential and confidential. CONFIDENTIAL to which they have access;
   (c) Not to disclose to third parties, reveal, market, reproduce or otherwise dispose of the CONFIDENTIAL INFORMATION received from the other party about itself (the other party), about third parties, including on the activities carried out in the properties, unless prior authorization and by writing from the other party;
   (d) Not to make or allow copies to be made of CONFIDENTIAL INFORMATION unless authorized in advance and in writing by the other party;
   (e) Not to use CONFIDENTIAL INFORMATION for interests outside the achievement of the eventually adjusted goals;
   (f) Take all reasonable security precautions to protect the integrity and confidentiality of CONFIDENTIAL INFORMATION;
   (g) Not to disclose to third parties the existence of this Confidentiality Agreement or its object without the prior written consent of the other party.
   
   
3. The CONTRACTOR will be jointly and severally liable for damages, eventually caused, by acts of its employees, agents, contractors or third parties under its responsibility to the CONTRACTING PARTY or third parties.
4. In case of need for use or disclosure to third parties of CONFIDENTIAL INFORMATION, the CONTRACTOR shall, during the term of this agreement, obtain, for such purpose, prior written authorization from the other party.
5. In case of need for use or disclosure of CONFIDENTIAL INFORMATION due to the law or court order and/or the Public Administration, the party that is thus obliged to use or disclose the CONFIDENTIAL INFORMATION shall notify the other party, immediately and in writing, the mandatory disclosure, even before such disclosure, so that the other party can take the necessary measures to ensure the confidentiality of the information, using for this the measures, whether judicial or not, applicable to the case, in order to obtain success in safeguarding the secrecy and confidentiality rights established herein.
6. The PARTIES agree that the confidentiality disciplined in this agreement imposes obligations to do and not to do, and the specific performance of these obligations is applicable to prevent or remedy the breach of this agreement, and the party that has its CONFIDENTIAL INFORMATION disclosed may proceed in accordance with articles 632 and following of the Brazilian Code of Civil Procedure, without prejudice to other measures provided for by law.
7. The following are excluded from the definition of CONFIDENTIAL INFORMATION:
   
   I. That have been published or have become in the public domain, provided that such fact has not occurred through acts or omissions of the parties;
   II. That has been provided or brought to the attention of the parties by third parties, who do not act directly or indirectly on behalf of the parties, information that is legally disclosed and without restriction as to its use or disclosure;
   III. That they are already in their possession, as can be demonstrated by the existing files, provided that this information is not the object of another confidentiality agreement or confidentiality obligation between the parties;
   IV. That have their disclosure approved in advance and in writing by the party that disclosed it, pursuant to the fourth clause mentioned above, provided that the limits and conditions set forth in the permission to disclose the information are respected; or
   V. Which have to be disclosed by virtue of law, court order and/or the Public Administration, respecting the strict limits of the request or determination and observing the terms set forth in the fourth clause above.
   
   
8. The confidentiality obligations, as set forth above, become effective from the acceptance of the Agreement and will last until the end of the period of 180 (one hundred and eighty) days after the effective date or cancellation of the agreement, with the agreement of the parties that said confidentiality obligations are now set to be in force regardless of the duration of the objectives eventually established and until the term set forth in this clause is fully exhausted.

H) Technical Support provided by the CONTRACTOR:

1. Office hours: Technical Support: 9 am to 12 pm and 1 pm to 5 pm - on weekdays.
2. The primary service channel (Technical Support) is provided via the customer portal which can be accessed through the address: https://atendimento.agidesk.com (it may be necessary to make a brief registration to access the customer portal). The customer may choose to request service through email at contato@atendimento.agidesk.com, to the CONTRACTING PARTY and the holders of active accounts. In complex cases, the service can be directed to telephone (51) 98905 8080 to facilitate understanding.
3. Technical calls are answered in chronological order.
4. Technical Support's first response time is up to 24 hours (on business days).
5. The negotiations between the CONTRACTING PARTY and the CONTRACTOR via Customer Success take place primarily by email, telephone or online conference, respectively, in this order, always with an appointment, and the attendant does not have the obligation to provide immediate assistance to the CONTRACTING PARTY.
6. More complex problems: the CONTRACTOR's Technical Support team makes a diagnosis and provides the CONTRACTING PARTY with a deadline for resolution.
7. Technical Support professionals are not allowed to answer calls through "Skype", "WhatsApp" and other "instant message" programs.
8. For better control of technical calls, it is always recommended to use the Customer Portal or the customer service@atendimento.agidesk.com channel.
9. The provision of services does not include the face-to-face visit of the CONTRACTOR's professionals at the CONTRACTING PARTY's site for technical, commercial and/or training purposes, unless expressly agreed in the commercial proposal, which may incur additional costs to cover travel expenses, food and lodging.

I) General Conditions:

1. The service is provided through the Internet, whereby the CONTRACTOR is not responsible for the CONTRACTING PARTY's connectivity failure and inherent impossibility of its use.
2. The CONTRACTOR does not guarantee that the service will meet the specific needs of the CONTRACTOR. The CONTRACTOR makes onboarding available to resolve any doubts regarding the use of the AGIDESK Software.
3. For any and all questions of whatever nature arising from the application, interpretation or execution of this contract, the jurisdiction of the district of Porto Alegre/RS will be competent, expressly waiving any other.

J) Contractual Jurisdiction:

• To resolve any issues arising from the application of the clauses of this instrument, the legal provisions of the Federative Republic of Brazil will be applied exclusively, with the contracting parties electing the Central Forum of the District of Porto Alegre, RS, place of conclusion of the contract , to the exclusion of any other, however privileged they may be.

K) Agreement to Accept the Agreement:

• The signatory of this contract declares, under the penalties of the law, that it is an attorney-in-fact or legal representative, duly constituted in the form of the CONTRACTING PARTY's Bylaws or Articles of Incorporation, with powers to assume the obligations contracted herein.
  
  And that, in agreement with the terms and conditions expressed in this document, you agree and sign this MEMBERSHIP AGREEMENT.