Privacy Policy – Nytra
Last updated: August/2025
L DE O BASSILI SOLUÇÕES EM INTERNET LTDA, registered under CNPJ nº 18.119.606/0001-06, headquartered at Rua Dona Mariana, 36/102, Botafogo, Rio de Janeiro/RJ, hereinafter referred to as “Nytra”, is responsible for this Privacy Policy, which aims to clearly and transparently explain how we process personal data in compliance with the Brazilian General Data Protection Law (Law nº 13.709/2018 – LGPD).
1. Roles and Definitions
Client/Contracting Party: clinic, course, institution, or company that contracts Nytra. Acts as the Data Controller.
End User: natural person who interacts with Nytra’s AI agent on behalf of the Client (e.g., patient, student, customer, consumer). They are the data subject.
Nytra: acts as the Data Processor, processing data under the Client’s instructions.
Personal data: any information that identifies or can identify a natural person.
Sensitive data: information about health, racial or ethnic origin, religious beliefs, political opinions, biometrics, among others.
Data Protection Officer (DPO): person designated by Nytra for communication with data subjects and the ANPD.
2. What data we collect
Depending on the use of the services, we may process:
Data provided by the end user: name, phone number, email, data inserted in conversations.
Automatically collected data: WhatsApp/Instagram number, date and time of interactions, technical logs.
Data provided by the Client: information entered into flows and integrations (e.g., CRM, dental system, spreadsheets).
3. Purpose of data use
Nytra processes personal data only according to the Client’s instructions, for purposes such as:
Lead qualification and follow-up
Scheduling, rescheduling, and reminders
Automated follow-up of inactive contacts
Organization and management in CRM
Generation of reports and performance indicators
Compliance with legal and regulatory obligations
4. Data sharing
Personal data may be shared with:
The Client (Controller): who accesses and manages the collected information
Third-party technology providers: such as WhatsApp/Instagram (Meta), cloud servers (AWS, Google Cloud), and integrations authorized by the Client
Public authorities: whenever required by law or court order
5. Security
Nytra adopts reasonable technical and administrative measures to protect personal data, including:
Encryption at rest and in transit
Access control and authentication
Monitoring and log auditing
Internal staff training on information security
6. Data subject rights
The end user, as the data subject, may request from the Client (Controller):
Confirmation of data processing
Access to data
Correction of information
Deletion, blocking, or anonymization of data
Portability
Withdrawal of consent
Information on data sharing
Nytra will provide technical support to Clients to fulfill these requests.
7. International data transfer
Some data may be processed outside Brazil (e.g., WhatsApp, AWS, Google Cloud). In such cases, Nytra adopts mechanisms consistent with the LGPD to ensure adequate protection.
8. Use of Artificial Intelligence
Nytra’s AI agents are used to optimize customer service, but:
Do not make autonomous decisions with legal or relevant effects without human supervision
Always allow the Client to take over the interaction manually
Follow parameters defined by the Controller
9. Amendments to this Policy
Nytra may amend this Privacy Policy at any time. The most current version will always be available on www.nytra.com.br.
10. Data Protection Officer (DPO) Contact
Data Protection Officer (DPO):
Luiz Felipe Cora
Email: [email protected]
Privacy Policy – Nytra
Last updated: August/2025
L DE O BASSILI SOLUÇÕES EM INTERNET LTDA, registered under CNPJ nº 18.119.606/0001-06, headquartered at Rua Dona Mariana, 36/102, Botafogo, Rio de Janeiro/RJ, hereinafter referred to as “Nytra”, is responsible for this Privacy Policy, which aims to clearly and transparently explain how we process personal data in compliance with the Brazilian General Data Protection Law (Law nº 13.709/2018 – LGPD).
1. Roles and Definitions
Client/Contracting Party: clinic, course, institution, or company that contracts Nytra. Acts as the Data Controller.
End User: natural person who interacts with Nytra’s AI agent on behalf of the Client (e.g., patient, student, customer, consumer). They are the data subject.
Nytra: acts as the Data Processor, processing data under the Client’s instructions.
Personal data: any information that identifies or can identify a natural person.
Sensitive data: information about health, racial or ethnic origin, religious beliefs, political opinions, biometrics, among others.
Data Protection Officer (DPO): person designated by Nytra for communication with data subjects and the ANPD.
2. What data we collect
Depending on the use of the services, we may process:
Data provided by the end user: name, phone number, email, data inserted in conversations.
Automatically collected data: WhatsApp/Instagram number, date and time of interactions, technical logs.
Data provided by the Client: information entered into flows and integrations (e.g., CRM, dental system, spreadsheets).
3. Purpose of data use
Nytra processes personal data only according to the Client’s instructions, for purposes such as:
Lead qualification and follow-up
Scheduling, rescheduling, and reminders
Automated follow-up of inactive contacts
Organization and management in CRM
Generation of reports and performance indicators
Compliance with legal and regulatory obligations
4. Data sharing
Personal data may be shared with:
The Client (Controller): who accesses and manages the collected information
Third-party technology providers: such as WhatsApp/Instagram (Meta), cloud servers (AWS, Google Cloud), and integrations authorized by the Client
Public authorities: whenever required by law or court order
5. Security
Nytra adopts reasonable technical and administrative measures to protect personal data, including:
Encryption at rest and in transit
Access control and authentication
Monitoring and log auditing
Internal staff training on information security
6. Data subject rights
The end user, as the data subject, may request from the Client (Controller):
Confirmation of data processing
Access to data
Correction of information
Deletion, blocking, or anonymization of data
Portability
Withdrawal of consent
Information on data sharing
Nytra will provide technical support to Clients to fulfill these requests.
7. International data transfer
Some data may be processed outside Brazil (e.g., WhatsApp, AWS, Google Cloud). In such cases, Nytra adopts mechanisms consistent with the LGPD to ensure adequate protection.
8. Use of Artificial Intelligence
Nytra’s AI agents are used to optimize customer service, but:
Do not make autonomous decisions with legal or relevant effects without human supervision
Always allow the Client to take over the interaction manually
Follow parameters defined by the Controller
9. Amendments to this Policy
Nytra may amend this Privacy Policy at any time. The most current version will always be available on www.nytra.com.br.
10. Data Protection Officer (DPO) Contact
Data Protection Officer (DPO):
Luiz Felipe Cora
Email: [email protected]