Milgran (“Milgran”, “we”) respects your privacy and is committed to protecting the personal data of clients, partners, architects, stone fabricators and visitors to this website. This Policy transparently explains which data we collect, how and why we process it, with whom we share it, and what your rights as a data subject are.

By using our website and/or submitting your data through our forms, you acknowledge this Policy. We recommend reading it in full.

1. Who is the controller of your data

The controller responsible for processing your personal data is Milgran, headquartered in Barra de São Francisco, Espírito Santo, Brazil. For any matter related to this Policy or your data, contact us through the channels listed in the “Data officer and contact” section.

2. Definitions

3. Data we collect

3.1. Data you provide

When you fill in a contact or request form (samples, textures, technical reports, support), we may collect:

3.2. Data collected automatically

As you browse, we may collect technical information such as IP address, browser identifier (user agent), pages visited, date and time of access, and cookie data, as described in the “Cookies and tracking” section.

3.3. Third-party data

If you contact us through channels such as WhatsApp or email, we will process the data you provide in those interactions.

4. Why we use your data (purposes and legal bases)

We process your personal data only for specific purposes and based on a legal basis set out in the LGPD:

5. Who we share your data with

Milgran does not sell your personal data. Sharing only occurs where necessary for the purposes above, with:

All processors are engaged under confidentiality and security obligations, processing data exclusively according to our instructions.

6. Cookies and tracking technologies

We may use cookies and similar technologies to operate the website, remember preferences and generate usage statistics. You can manage or block cookies in your browser settings; disabling some cookies may affect website features.

7. International data transfer

Some of our providers may store or process data on servers located outside Brazil. In such cases, we adopt safeguards to ensure that the transfer complies with the LGPD and that your data maintains an adequate level of protection.

8. Storage and security

We adopt technical and organizational measures to protect your data against unauthorized access, loss, alteration or improper disclosure — such as access control, secure connections and confidentiality agreements with our processors. No system is 100% infallible; in the event of a relevant security incident, we will act in accordance with the LGPD and notify the ANPD and data subjects where applicable.

9. How long we keep your data

We keep your personal data only for as long as necessary to fulfill the purposes for which it was collected, or for the period required by legal, contractual and rights-defense obligations. Once the purpose is fulfilled, data is securely deleted or anonymized.

10. Your rights as a data subject

Under Article 18 of the LGPD, you may, at any time, request:

11. How to exercise your rights

To exercise any of the rights above, contact us through the channels listed in the “Data officer and contact” section. We may request additional information to confirm your identity before fulfilling the request, as a security measure.

12. Children's and adolescents' data

Our website and services are aimed at professionals and an adult audience. We do not knowingly collect data from minors. If we identify such collection without proper legal grounds, the data will be deleted.

13. Changes to this Policy

This Policy may be updated at any time to reflect legal, technical or process changes. The date of the last update is always shown at the top. We recommend reviewing it periodically.