dogabot dogabot

Privacy Policy

Last Updated: January 4, 2026

LGPD & GDPR Compliant | International Users

1. Data Controller and Contact Information

Petrin Bertini Engineering (CNPJ: 46.197.106/0001-28) ("we", "us", "our") is the controller of your personal data under the Brazilian General Data Protection Law (LGPD) and, where applicable, the European General Data Protection Regulation (GDPR).

Contact: [email protected]
Company: Petrin Bertini Engineering
CNPJ: 46.197.106/0001-28
Address: Dr. Walter Motta Campos, 261, Londrina/PR, Brazil

2. Scope and Applicability

This Privacy Policy applies to all users of dogabot globally, including users in Brazil, the European Union, and all other jurisdictions. We process personal data in compliance with applicable data protection laws, including LGPD and GDPR.

3. Data We Collect

We collect the following categories of data:

3.1 Account Data

  • Email address
  • Full name
  • Account creation date
  • Subscription status and billing information

3.2 Technical Data

  • IP address and geolocation data
  • Browser type and version
  • Device information and operating system
  • Usage logs and activity data
  • Performance and diagnostic information

3.3 Trading Data

  • Exchange API keys (stored using AES-256 encryption)
  • Trading automation configurations and strategies
  • Historical trading activity data
  • Portfolio information

3.4 Payment Data

  • Payment method information (processed by third-party payment processors)
  • Billing address
  • Transaction history

Important: We use AES-256 encryption for API keys. Once encrypted, we cannot view or retrieve your API secret keys. You are responsible for maintaining backup copies.

4. Legal Basis and Purpose of Processing

We process your personal data based on the following legal grounds:

4.1 Contractual Necessity

To provide the automation service you have subscribed to, including account management and service delivery.

4.2 Legitimate Interests

  • Fraud prevention and security
  • Service improvement and optimization
  • Technical support and troubleshooting
  • Analytics and performance monitoring

4.3 Legal Compliance

To comply with applicable laws, regulations, legal processes, and government requests.

4.4 Consent

Where required by law, we obtain your explicit consent for specific data processing activities.

We do NOT sell your personal data to third parties.

5. Data Sharing and Third-Party Services

We may share your data with the following categories of third parties:

5.1 Service Providers

  • Cloud hosting providers (e.g., AWS, Cloudflare)
  • Payment processors (e.g., Stripe)
  • Authentication services (e.g., Clerk)
  • Analytics and monitoring services

5.2 Cryptocurrency Exchanges

Your encrypted API keys are used to connect to third-party exchanges. We do not share your API secrets with anyone.

5.3 Legal Authorities

We may disclose data when required by law, court order, or government request.

All third-party service providers are contractually obligated to protect your data and use it only for the purposes we specify.

6. International Data Transfers

As an international platform, your data may be transferred to, stored, and processed in countries outside of Brazil and the European Union, including but not limited to the United States.

6.1 Safeguards for International Transfers

We ensure that all international data transfers are protected by:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions from relevant data protection authorities
  • Contractual obligations with service providers to maintain data protection standards
  • Technical and organizational security measures

We work with providers that meet international security standards, including ISO 27001, SOC 2, and other recognized certifications.

7. Data Retention

We retain personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

  • Account Data: Retained while your account is active and for up to 7 years after account closure for legal and accounting purposes
  • Trading Data: Retained for the duration of your subscription and up to 5 years after termination
  • Technical Logs: Retained for up to 12 months for security and troubleshooting
  • Payment Data: Retained in accordance with tax and financial regulations (typically 7 years)

After the retention period expires, we securely delete or anonymize your personal data.

8. Data Security

We implement industry-standard security measures to protect your personal data:

  • AES-256 encryption for sensitive data (API keys)
  • TLS/SSL encryption for data in transit
  • Regular security audits and vulnerability assessments
  • Access controls and authentication mechanisms
  • Monitoring and logging of suspicious activities
  • Regular backups and disaster recovery procedures

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

9. Your Rights Under LGPD and GDPR

Depending on your location, you have the following rights:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restriction: Limit how we process your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to certain types of data processing
  • Right to Withdraw Consent: Withdraw previously given consent at any time
  • Right to Lodge a Complaint: File a complaint with your local data protection authority

To exercise these rights, please contact us at [email protected]. We will respond to your request within 30 days.

10. Data Breach Notification

In compliance with LGPD and GDPR, we will notify affected users and relevant authorities within 72 hours of becoming aware of a data breach that poses a risk to your rights and freedoms. Notifications will include:

  • Nature of the breach
  • Categories and approximate number of users affected
  • Measures taken to address the breach
  • Recommendations for affected users
11. Cookies and Tracking Technologies

We use cookies and similar tracking technologies for:

  • Essential functionality (authentication, session management)
  • Performance monitoring and analytics
  • Security and fraud prevention
  • User experience improvements

You can control cookies through your browser settings. However, disabling certain cookies may limit your ability to use some features of the Platform.

12. Children's Privacy

dogabot is not intended for individuals under 18 years of age. We do not knowingly collect personal data from minors. If we become aware that we have collected data from a minor, we will take steps to delete such information immediately.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or through a prominent notice on the Platform at least 30 days before taking effect. Your continued use of the Platform after changes become effective constitutes acceptance of the updated Privacy Policy.

14. Automated Decision-Making

14.1 No Automated Profiling

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you without your explicit consent, as defined under GDPR and LGPD.

14.2 User-Controlled Automation

The Platform enables you to automate trade execution based on strategies and parameters that YOU choose, configure, and activate. This includes:

  • Creating your own trading strategies and automation rules
  • Copying or adapting strategies shared by other users (with your explicit action)
  • Modifying parameters and settings of any automation
  • Enabling, disabling, or deleting automations at any time

14.3 User Decision and Consent

All trading automations require your explicit action to activate. When you copy an automation from another user or from our marketplace, you:

  • Make a voluntary decision to adopt that strategy
  • Have the opportunity to review and modify all parameters before activation
  • Maintain full control to start, stop, or modify the automation
  • Accept sole responsibility for the trading decisions executed by your chosen strategy

Important: dogabot does not make trading decisions on your behalf. The Platform executes trades according to the strategies YOU select and enable. You remain the decision-maker at all times.

15. Contact and Data Protection Officer

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Email: [email protected]
Company: Petrin Bertini Engineering
CNPJ: 46.197.106/0001-28
Address: Dr. Walter Motta Campos, 261, Londrina/PR, Brazil

For users in the European Union, you also have the right to lodge a complaint with your local data protection supervisory authority.