FundMed Data Privacy Policy

FundMed respects and values your right to privacy. This Policy was created to demonstrate our commitment to protecting and respecting your personal data, in accordance with the Brazilian General Data Protection Law (LGPD) and other relevant legislation. It aims to clarify how FundMed collects, uses, processes, stores, and protects your personal information.

FundMed’s Code of Ethics and Conduct presents the mission, values, and ethical principles that guide our relationships and under which we commit to safeguarding the data entrusted to us.

The purpose of this Privacy Policy is to inform users—i.e., anyone who registers to use FundMed’s services—how their data and information are processed and for what purposes. By registering to use FundMed’s services, the user acknowledges and consents to the terms outlined in this Policy.

The Data Protection Officer is responsible for ensuring transparency in FundMed’s personal data processing practices and for assisting data subjects in exercising their rights, as well as communicating with the ANPD (National Data Protection Authority) when necessary. At FundMed, this person is Giovanna Carvalho Mazoni, and any questions or requests regarding personal data can be sent to: compliance@fundmed.org.br.

• User: Any natural person who uses the services offered by FundMed, aged 18 or older or legally emancipated, or those who are legally represented or assisted if under age or otherwise legally incapable.
• Personal Data: Any data and information collected by FundMed, publicly or privately, that can identify an individual either on its own or in combination with other data—such as name, address, email, phone number, login details, marketing preferences, social media account info, IP address, ID numbers (passport, social security, etc.), photos, videos, voice recordings, payment card numbers, educational and professional records, and any biometric, health, genetic, racial, religious, political, gender-based, sexual orientation, or age-related information. Business contact information (like work email or phone) is not considered personal data.
• Purpose: The objective FundMed aims to achieve by collecting, processing, and storing personal data.
• Legal Basis: The legal grounds upon which FundMed is authorized to process personal data for the specified purpose.
• Consent: The user’s explicit and unequivocal agreement for FundMed to collect, process, and store their personal data according to the stated purpose.

The FundMed website may contain links to third-party websites, each with their own privacy policies. These links are provided for user convenience. Users accessing third-party sites should review their privacy and data handling policies, as they are not managed by FundMed.

To provide its services, FundMed collects various types of personal data depending on the intended purpose:

• Project Grantees: Educational and personal data for qualification and payment processing.
• Extension Grantees: Institutional and educational documents, personal data for registration and grant tracking.
• Independent Contractors: Data to confirm qualifications and process payments.
• Newsletter Subscribers: Email address to send updates and news.
• Event Participants: Identification data and email for event access and certificate issuance.
• Contest Candidates: Data for registration, ID verification, and qualification analysis.
• Project Coordinators/Researchers: Data to register responsibilities, deadlines, and payments.

FundMed does not share personal data with third parties without the user’s explicit consent, unless required by law.

FundMed may share data with vendors or partners contracted for data processing and storage, strictly within legal limits. These partners are bound by confidentiality, data protection, and usage restriction clauses.

Data may be shared in good faith when:

• Required for contractual execution;
• Needed for legal actions related to suspected illegal activities;
• Required to meet legal or regulatory obligations;
• Required in the case of service transfer to another support foundation or entity.

A cookie is a small text file sent to your browser by websites. FundMed uses cookies to count visitors, improve ad campaign reporting, and avoid showing the same ads repeatedly, aiming for better service delivery.

Third-party websites accessed via FundMed’s links may use cookies, and their policies apply once users leave FundMed’s website.

To publish user comments on FundMed’s news articles, we use a platform with its own privacy policy and registration system. Users must review and agree to that policy before publishing public comments.

Personal data held by FundMed is protected by restricted access, confidentiality, integrity, and various technological and physical safeguards.

However, users acknowledge that no system is completely secure. While FundMed takes security seriously, it cannot fully guarantee that data will not be illegally accessed, altered, disclosed, or destroyed.

FundMed stores personal data physically and/or digitally during the service relationship with the user and may retain it for up to 5 years or indefinitely for purposes such as:

• Accountability to tax, judicial, and supported entities;

• Historical record-keeping of provided services;

• Statistical analysis and data processing;

• Offering future services to the user.

Users may contact FundMed to:

• Delete data: Users may request deletion of personal data. FundMed will comply based on the applicable legal basis.
• Modify or correct data: Users may update or request corrections to their data.
• Restrict data usage: Users may request to limit the use of some or all of their data, such as opting out of email notifications (but cannot restrict data required by legal basis).
• Access data: Users may request a copy of their personal data in print or electronic form.

This Privacy Policy came into effect on August 20, 2020, with approval by the President of FundMed. It will be updated as needed to reflect new services or legal changes.

`