Magecore

Legal

Privacy Policy

This Privacy Policy describes how Magecore processes personal data collected through magecore.com.br, in accordance with Brazil's General Data Protection Law (LGPD — Law No. 13,709/2018).

Last updated: July 4, 2026

Legal name
MMS Tecnologia Ltda.
CNPJ
52.596.708/0001-50
Address
São Paulo, Brazil

1. Who we are (controller)

MMS Tecnologia Ltda., the company behind the Magecore brand, is the controller of personal data processed through this website magecore.com.br.

2. What data we collect

We collect personal data you voluntarily provide and data generated automatically during browsing.

  • Diagnostic request form: name, job title, company, e-commerce platform, revenue band, main challenge description, email, and phone (optional).
  • Browsing data: IP address, browser type, pages visited, referral source, UTM campaign parameters, and search terms derived from the referrer when available.
  • Cookies and identifiers: essential, analytics, and preference cookies, as described in section 6 and managed by the CookieFacil banner.

3. How we use your data

We use personal data for the purposes below, always linked to the operation of this website and B2B commercial relationships.

  • Schedule and conduct the free Diagnostic you requested.
  • Contact you regarding your submitted request.
  • Prevent fraud and abuse on the form (including reCAPTCHA when enabled).
  • Measure site performance, conversions, and browsing experience.
  • Diagnose technical errors and improve stability and performance.
  • Comply with applicable legal and regulatory obligations.

4. Legal basis

Magecore processes personal data under the legal bases provided by the LGPD:

  • Consent: when you check the agreement box on the Diagnostic form and, when applicable, when you accept non-essential cookies in the CookieFacil banner.
  • Legitimate interest: for B2B commercial relationships, site security, fraud prevention, and aggregated analytics, respecting your rights and expectations.
  • Pre-contractual procedures: to handle your diagnostic request before formalizing a contract.
  • Compliance with legal or regulatory obligations, when required.

5. Sharing with third parties

We share data only with providers necessary to operate the website and handle your request. We do not sell personal data.

Some providers may be located outside Brazil (international transfer), especially in the United States. In those cases, we adopt contractual and technical measures compatible with the LGPD.

  • Formspree (Formspree Inc., USA): receives and forwards Diagnostic form submissions to the Magecore team.
  • Google (Google LLC, USA): Google Tag Manager, Google Analytics 4, and reCAPTCHA v3, when configured.
  • Vercel (Vercel Inc., USA): hosting, analytics, and site performance metrics.
  • Sentry (Functional Software Inc., USA): error and performance monitoring, with PII sending disabled by default.
  • CookieFacil (Brazil): cookie consent management.

6. Cookies and similar technologies

We use cookies and similar technologies to operate the site, remember preferences, and, with your consent, measure audience.

On your first visit, the CookieFacil banner lets you accept, reject, or customize cookie categories. You can change your preferences at any time through the banner.

  • Essential: required for basic operation and site security.
  • Analytics: measure visits, page views, traffic sources, and conversion events (e.g., form submission) via Google Tag Manager / GA4 and Vercel Analytics.
  • Functional: reCAPTCHA v3, when enabled, for spam protection.
  • Marketing: only if configured via Google Tag Manager and accepted in the CookieFacil banner.

7. Retention

We retain data for as long as necessary to fulfill the purposes described in this policy or as required by law.

Diagnostic form lead data is kept for up to 2 years after the last relevant contact, unless you request earlier deletion or a longer legal retention period applies.

Analytics and monitoring logs are retained according to each provider's policies and Magecore's technical settings, for periods compatible with security and service improvement purposes.

8. Your rights

Under the LGPD, you, as the data subject, may exercise the following rights, subject to legal limitations:

  • Confirmation of processing and access to your data.
  • Correction of incomplete, inaccurate, or outdated data.
  • Anonymization, blocking, or deletion of unnecessary or unlawfully processed data.
  • Data portability to another provider, when applicable.
  • Deletion of data processed based on consent.
  • Information about sharing and the possibility of withholding consent.
  • Withdrawal of consent at any time.
  • Objection to processing based on legitimate interest, when applicable.

9. How to exercise your rights

To exercise your rights or ask questions about this policy, contact our Data Protection Officer (DPO) at privacidade@magecore.com.br.

We will respond to requests within the applicable legal timeframe and may request additional information to confirm your identity.

10. Security

We adopt technical and organizational measures to protect personal data, including encrypted communication (HTTPS), access controls, anti-spam validation on the form, and error monitoring.

No system is completely immune to incidents. In the event of a data breach that may pose relevant risk or harm to data subjects, we will take measures provided by the LGPD, including notification to the National Data Protection Authority (ANPD) and to data subjects, when applicable.

11. Changes to this policy

We may update this Privacy Policy periodically. The date of the last revision will be shown at the top of this page.

Relevant changes may be communicated through a notice on the website. We recommend reviewing this page regularly.

12. Contact

Data Protection Officer (DPO): privacidade@magecore.com.br

To schedule a diagnostic or submit a new commercial request, use the Diagnostic form at https://magecore.com.br/en/diagnostic.