Legal document · LGPD
Privacy policy
How we collect, use and protect your personal data on the Neg platform.
Last updated: 28 April 2026
01 ·
Who we are
Neg is the controller of the personal data collected on the platform, acting in line with Brazil's General Data Protection Law (LGPD, Law 13.709/2018). If you have any questions about how your data is handled, please contact our DPO at privacidade@neg.app.
02 ·
What data we collect
We collect the data you provide us when you sign up and use the platform:
- Identification: name, profile photo, ID document;
- Contact: email, phone, address;
- Payment: card details (stored by Stripe, never by Neg);
- Usage: booking history, messages, reviews;
- Geolocation: only for professional ↔ client matching.
03 ·
How we use your data
We use your personal data for the following purposes:
- To run the platform (matching, scheduling, payment);
- To process payments and payouts via Stripe;
- To detect fraud, abusive behaviour and breaches of terms;
- To send transactional communications and booking updates;
- To send marketing related to the platform, always with an opt-out option;
- To meet legal and regulatory obligations.
04 ·
Who we share with
We share strictly necessary data with:
- Stripe (payment processing);
- Google Maps / Mapbox (geocoding and distance calculation);
- Resend (sending transactional emails);
- Cloud hosting providers (AWS, Vercel);
- Registered professionals, who receive only your name and neighbourhood until they accept and the full address only after they accept the service.
We never sell personal data to third parties for advertising purposes.
05 ·
Your rights (LGPD)
At any time, you can:
- Access and correct your data from the account panel;
- Request account deletion and data portability;
- Withdraw consent for marketing communications;
- Request a full report on how your data is processed, free of charge, once every 6 months.
To exercise any of these rights, send an email to privacidade@neg.app. We respond within 15 working days.
06 ·
How long we keep it
We keep your data for as long as needed to fulfil the purposes described. After an account is deleted, booking data is anonymised within 30 days. Financial data is kept for 5 years to meet tax obligations (Brazilian Tax Code).
07 ·
Security
We adopt technical and organisational measures to protect your data:
- Encryption in transit (TLS 1.3) and at rest;
- Role-based access controls;
- Auditing of access to sensitive data;
- Incident response within 48h in line with art. 48 of the LGPD.
08 ·
Changes to this policy
We may update this Privacy Policy. Material changes will be notified by email. The latest version is always available at /privacidade.