Privacy Policy

Last updated: May 26, 2026

1. Data controller

Digilive Inteligência Artificial e Consultoria LTDA CNPJ (Brazilian tax ID): [PLACEHOLDER] Address: [PLACEHOLDER] Privacy contact: privacy@pixwatt.com

2. Data Protection Officer (DPO)

Name: [PLACEHOLDER] Email: dpo@pixwatt.com

3. Data we collect

• Email (required to join the waitlist) • IP address (captured automatically for security) • User-agent (browser, OS) • Country of origin (estimated from IP) • Calculator usage data (GPU, current spend, etc.) if you choose to share • Business flag (boolean)

4. Purpose of processing

• Notify you about Pixwatt's launch and updates • Compute aggregate market metrics • Prevent abuse (rate limiting, anti-spam) • Meet legal obligations

5. Legal basis

• Consent (GDPR Art. 6(1)(a), LGPD Art. 7º, I) • Legitimate interest for security (GDPR Art. 6(1)(f), LGPD Art. 7º, IX)

6. Retention

We keep your data while you remain interested in updates or until you request deletion. IP and user-agent are kept for 12 months for security purposes.

7. Your rights (GDPR Art. 15-22, LGPD Art. 18, CCPA for California residents)

You have the right to: • Confirm whether we process your data • Access your data • Correct inaccurate or outdated data • Anonymize, block, or delete unnecessary data • Port your data to another provider • Delete data processed with your consent (right to erasure, GDPR Art. 17) • Get information about data sharing • Withdraw consent at any time California residents: under CCPA you also have the right to know what personal information we collect and to opt out of any sale of personal information (we do not sell personal information). To exercise any of these rights, email privacy@pixwatt.com or use the form at /en/delete-data.

8. Data sharing

We do not sell your data. We share only with: • Supabase Inc. (data processor, hosted on AWS) • Cloudflare Inc. (protection and CDN) Both under contracts ensuring GDPR-equivalent protection.

9. Cookies

We use only: • Essential cookies (session, theme, language) • Aggregated analytics (no personal identification) No third-party tracking cookies.

10. Security

• Data in transit: TLS 1.3 • Data at rest: AES-256 encryption • Role-based internal access control

11. International transfers

Some data is stored on servers outside Brazil (US, EU) under appropriate safeguards (Standard Contractual Clauses).

12. Changes to this policy

Material changes are communicated by email with at least 30 days' notice.

13. Jurisdiction

For users in Brazil, disputes are settled in the courts of São Paulo, SP, Brazil. For EU users, GDPR-prescribed forums apply.