BS2 BANK PRIVACY POLICY
Last Updated: February 17th, 2025
In order to maintain transparency and our commitment to protecting our users’ data, we share information on how we handle privacy.
It is important to note that by accessing our website or applications, you are accepting and agreeing to this Privacy Policy, which defines our relationship with you, the user, and ensures the best possible financial experience. If, for any reason, you do not agree with all the conditions of this document, unfortunately, it will not be possible to use our website or applications.
We ask that you take a moment to read it carefully.
The website www.bancobs2.com.br and the applications Copyright Banco BS2 S.A. are part of a hub of banking/financial services offered by BANCO BS2 S.A., a closed corporation, duly registered with the CNPJ/MF under nº 71.027.866/0001-34, headquartered at Avenida Raja Gabaglia, nº 1.143, 16th floor, Luxemburgo neighborhood, City of Belo Horizonte, State of Minas Gerais, ZIP code 30380-403, and its affiliated/associated companies, which are:
BS2 ASSET MANAGEMENT – ADMINISTRADORA DE RECURSOS LTDA., a limited liability company, registered with the CNPJ/MF under nº 05.677.501/0001-20, headquartered at Alameda Vicente Pinzon, nº 51, 11th floor, Suite 1101, Vila Olímpia, City of São Paulo, State of São Paulo, ZIP code 04547-130;
BS TECNOLOGIA LTDA., a limited liability company, registered with the CNPJ/MF under nº 02.232.237/0001-23, headquartered at Avenida Raja Gabaglia nº 1.143, 12th floor, Luxemburgo neighborhood, City of Belo Horizonte, State of Minas Gerais, ZIP code 30380-403; and
BS2 SEGUROS S.A., a closed corporation, registered with the CNPJ/MF under nº 07.163.211/0001-94, headquartered at Avenida Raja Gabaglia nº 1.143, 16th floor, room 1604, Luxemburgo neighborhood, City of Belo Horizonte, State of Minas Gerais, ZIP code 30380-403,
collectively referred to as (“BS2 Companies”).
The BS2 Companies (referred to in this Privacy Policy as “we” or “our”) are committed to taking the necessary measures that are their responsibility to protect the privacy of their users.
This document covers the treatment that the BS2 Companies’ website and applications give to users’ personal data, whether collected directly on these platforms or through other means, such as forms filled out in physical media or through our Service Channels.
We would like to share that we may make changes to our Privacy Policy from time to time, always with the aim of better serving users. If this occurs, there will be notification by email, from the address provided in the registration, as well as publication of the new policy on this page.
We do not collect or request information from individuals under 18 years of age who are not duly represented (in the case of those under 16 years of age) or assisted (in the case of those over 16 years of age) by a guardian. If we learn that we have collected information from a person under 18 years of age without the proper representation or assistance of a guardian, we will remove this information as soon as possible. If you identify that a minor under 18 years of age may have provided us with information in disagreement with the above guidelines, please contact us through our Service Channels.
We only collect the personal data necessary to offer and manage our services and products and, primarily, to meet the regulatory obligations imposed on us by the Central Bank of Brazil – BACEN.
Therefore, it is very important that you, the user, provide correct data and update it whenever necessary, so that there are no problems accessing our platforms.
The collection of geolocation data will occur on the website, through the region of the access IP address, and in the applications, if such an option is active and authorized by the user.
We may conduct searches in public and private databases to verify the accuracy of the information provided to us. This search is necessary for user security, as if incorrect or false data is identified, we may temporarily or permanently suspend access to our products and services.
Additionally, we will record and share this information for fraud prevention purposes, in accordance with BACEN regulations.
These measures are to protect the user against fraudsters using their data. If you are indeed the owner of the information, you can regularize the situation at any time through our Service Channels.
The data, including personal data, will be processed internally in our operations, such as account management, customer service, communication between BS2 Companies and you, understanding user needs, improving the content and services of the website and applications, identifying possible fraud, and taking measures to enforce our Privacy Policy.
We may contact you if there is a need to obtain more information or in case of indications of violation of this Privacy Policy, or due to any contracts entered into with us, including for collection purposes.
We may also use your personal data to inform you about new features of the website or applications, services provided by us or our partners, sending newsletters, surveys, direct mail, correspondence, and promotions, as well as to conduct data analysis for the development of new products or services, and to fulfill contractual obligations with our partners.
Finally, we use the data for statistical analysis of the use of the website and applications and to verify users’ browsing habits on the website.
Below, we indicate, by way of example, the main categories of personal data that we collect and process:
The personal data mentioned above may belong to current, potential (prospects/leads), or former clients; partners, legal representatives, dependents, spouses, guarantors, or beneficiaries of clients, third parties who have conducted any transaction with us or with any of our clients and partner companies, representatives, attorneys, guardians, curators, employees, or partners of any client or company with which BS2 Companies have a relationship.
We may share data and information with regulatory bodies, administrative/judicial authorities, and partner companies, which have their own rules and policies on how they handle them.
When necessary, we may share your information with the third parties listed below, by way of example and not exhaustively:
The sharing of data and information with any third parties will require compliance with current privacy legislation and the application of robust information security and data protection controls.
If you were introduced to us by a partner company to use our financial services through Powered by applications or other means, and want to know more about how they handle your data, we recommend that you contact the partner company directly.
If third parties process the personal data shared by the BS2 Companies for purposes other than those described above, they assume the position of Controllers and become responsible for the protection and security of personal data to the extent of the new processing activities, including for the exercise of your rights as the data subject.
You may request access, correction, confirmation of the existence of processing, limitation, revocation of consent, or deletion of your data through our Service Channels.
If you decide to revoke consent for the processing activities based on it, products and services may become unavailable to you.
If you intend to terminate the relationship with BS2 Companies and delete your data, please be aware that we have a regulatory obligation to store and keep available to BACEN, for a minimum period of 10 years from the end of the relationship, the information collected in the procedures intended to know the customers. Thus, it may occur that your data needs to be retained, under the terms of Article 16 of the General Data Protection Law – LGPD.
After the retention period and the legal necessity, personal data will be deleted using secure disposal methods or anonymized for statistical purposes.
If you wish to contact our Data Protection Officer, Tatiana Alves de Castro, directly to exercise your rights under the LGPD, just send an email to the address dpo@bancobs2.com.br.
We may use cookies and other tracking technologies to provide you with better navigation, refine our content, enhance your experience, and enable marketing activities.
We remind you that you can, at any time, activate mechanisms in your browser to inform you when cookies are activated or even prevent them from being activated.
You can also choose not to allow certain types of cookies in the “Privacy Preferences Center” on our website by clicking on “Cookie Settings” and disabling the cookies, except for those that are strictly necessary.
However, disabling some types of cookies may affect your experience on the site, as navigation may become limited and some functionalities may be compromised.
BS2 Companies adopt the best practices in information security and cybersecurity, including, but not limited to, the standards established by the Center for Internet Security (CIS), National Institute of Standards and Technology (NIST), Sarbanes-Oxley Act (SOx), and Securities and Exchange Commission (SEC).
We recognize the importance of security in our operations and are committed to maintaining the highest standards of data protection for our users.
The collection and storage of data and information follow strict confidentiality and security standards, which are periodically reassessed.
Internally, data is accessed only by duly authorized professionals, respecting the principles of proportionality, necessity, and relevance to the objectives of our business, in addition to the commitment to confidentiality and preservation of your privacy.
In parallel, it is very important that you protect your registered devices and your access passwords to the website and applications.
It is the user’s responsibility to keep, safeguard, and use the registered login and passwords, which are personal and non-transferable. Never share your access data with other people.
Access data can only be used by the registered user, and sharing login and/or password with any third parties is expressly prohibited.
BS2 Companies guarantee security in accessing the website and applications, in transactions, and in exchanging information with duly logged-in users, but we are not responsible for security failures occurring on your devices such as computer, mobile phone, or tablet.
BS2 Companies are not responsible for damages or problems arising from delays, interruptions, or blockages in data transmissions occurring on the internet.
Committed to protecting data and information, we seek to identify incidents and security breaches. To this end, we conduct monitoring to prevent incidents, providing controls through processes and technology to reduce vulnerabilities.
Anyone can report any situation that represents a security deviation or breach through abuse@bancobs2.com.br .
When browsing the website or using our applications, you may be directed, via link, to third-party portals or platforms that may collect your information and have their own Privacy Policy.
It is your responsibility to read the Privacy Policy of such portals or platforms outside our environment, and it is your responsibility to accept or reject it. We are not responsible for the Privacy Policies of third parties, including partner companies, nor for the content of any websites, content, or services other than our own.
This Privacy Policy is governed by the legislation of the Federative Republic of Brazil.
Its text should be interpreted in the Portuguese language, with the user’s domicile being chosen as the forum to resolve any controversy involving this document, except for specific reservations of personal, territorial, or functional competence by applicable legislation.
If you have any questions or complaints related to this Privacy Policy, we will be happy to assist you through our Service Channels, which are available on our website and in our applications.
