Privacy Policy

The CYF has a strong commitment to the privacy of the information of the users of our systems. The objective of this text is to inform you about our practices regarding the collection of information when you use our systems, it is how CYF treats and uses your personal information and that of its own clients.

Please read this entire Privacy Policy before using or accessing our systems.

Why do we collect some personal information to make the user registration?

The information we collect is minimal and we do it for security, only with the aim of identifying who accesses the system and from where they do it, in addition to offering the possibility of using personalized services (or customizations) and sending you alert information. of the system when required. For this reason, a user registration system was developed, where a few personal information that will identify you in our systems are requested.

Understand that we must be very sure of who you are before allowing access, as there are different user profiles and according to your profile, you will have access to view the information that corresponds to you and that you have permission to do so or access different areas or exclusive functions for certain user profiles.

The information collected is related to your name, a unique identification number, as well as a login and password that will serve to identify you and allow you access to our systems. Such registration will still serve as a communication channel, allowing us to send you communications about system news and corresponding alerts.

You may, whenever you wish and at any time, change your registration in our database as well as your access password.

The CYF does not require personal information from its customers, just a name for their own identification when using the system. It is still possible to mask users’ names using pseudonyms instead of their real names, if deemed convenient or necessary, with the exception of their contact details, which are necessary to send alerts if they choose to receive them via email or another channel. specific.

Data processing agents

Controller:

Natural or legal person, of public or private law, who are responsible for decisions regarding the processing of personal data (article 5, VI, of the LGPD).

Operator:

Natural or legal person, governed by public or private law, who processes personal data on behalf of the controller (art. 5, item VII of the LGPD).

When you use the Quality system, we act as the operator of your personal data.

When you use our website, we act as the controller of your personal data.

Data subject rights

The holder is the natural person to whom the personal data that are processed refer. You as the holder of personal data may at any time request:

  • Confirmation that your personal data is being processed;
  • Access your data;
  • Correction of incomplete, incorrect or outdated data;
  • Anonymization, blocking or deletion of unnecessary data;
  • Data portability to another service or product provider;
  • Deletion of personal data;
  • Information about data sharing;
  • Information on the consequences of non-consent;
  • Revocation of Consent.

The exercise of rights may be requested by the data subject through the form: https://cyf.com/privacy-center/

Personal data and sensitive personal data

Personal Data:

It is any data that identifies or can identify you, including location data, electronic identifiers or any other data that, when combined with other information, can identify someone.

Examples: name, ID card, Identification Number, gender, phone number, cell phone number, home address, email, location data etc.

Sensitive Personal Data:

It is data about racial or ethnic origin, religious conviction, political opinion, union membership, health or sex life data, genetic or
biometric data when linked to you, is sensitive.

When using our systems, we only process the personal data of registered users (name, email, professional title and CPF). However, in some cases, there may be sensitive personal data in the audio recordings, depending on the client.

When using the website, browsing data is collected through cookies, for example: to identify how many times you return to our address.

What are cookies?

Cookies are small text files deposited by a website on the visitor’s computer or device (cell phone, tablet, etc.) to memorize and remember some information about the navigation performed, in addition to distinguishing who is accessing and ensuring security.

When using the website, navigation data is collected through cookies, for example: to identify how many times you return to our address or to prevent a warning from being shown repeatedly when you are already aware of it and no longer wish to view it.

If you do not want cookies to be used when browsing this website, you can refuse, disable or delete cookies in your browser settings. We emphasize that, after disabling or deleting some cookies, some website functionalities may be compromised.

Commitment to the confidentiality of the data provided

Keeping your personal information private is of vital importance to us and, therefore, the information you provide by registering or using our systems will be considered confidential and restricted to the relationship between you and the services we provide. Under no circumstances will your information be used beyond what is indicated in this privacy policy. CYF does not share or sell your information.

Personal information is of restricted use of our systems and necessary for your own use as a user, collected through secure database software. Only officials authorized by the CYF, directly related to the administration and updating of our systems have access to your personal data and, even so, such access is limited by necessity. For example, if you contact us to report a problem, the official responsible for the administration and/or support of the system is authorized to access only the personal information necessary to attend to the object of your concern.

Everyone involved with the administration of this site is required to abide by this privacy policy. Any CYF official who violates this policy is subject to disciplinary action, up to and including dismissal or cancellation of the service provision contract.

No personal information that you come to provide us will be disclosed, transmitted, sold, rented or distributed to third parties, except in the case of legal, judicial or audit determinations.

We reserve the right, however, to disclose general statistical data, but not personalized, of indices and benchmarks. We emphasize that under no circumstances will data be disclosed that allows the identification of registered users or the companies to which they belong.

We also point out that we do not collect any type of information from the user’s personal computer that he himself has not typed or sent to the system. Attached files, such as voice recordings, are stored on the server made available by the client and not on our servers unless expressly requested by the client.

International transfer and storage

There is an international transfer of data when using CYF systems, from the user’s country of origin to the country where the servers are located, where the data is securely stored. Our storage servers are physically located in Canada, the United States, and Germany. Clients may choose, if necessary, where their data will be stored.

Uploading Multimedia Content

CYF’s monitoring and quality control system allows users to attach multimedia content files to facilitate access through our playback tool.
To attach these files, uploads are performed through Quality on the primary server located in Canada and then sent to their final storage on the destination server chosen by the client.

Processing and Security of Multimedia Content:

  • Data processing: Data is processed exclusively for playback within the system by the user, in compliance with LGPD principles such as purpose, necessity, and proportionality.
  • Information security: Data is stored in a secure environment with restricted access to authorized users and measures in place to protect the information from unauthorized access, misuse, or loss.
  • Retention and Disposal: Data is retained until the contracted storage limit or 30 days, whichever occurs first, unless the client has contracted additional storage or an extended period. After the contracted period ends, the data is deleted.

Using LLM and Artificial Intelligence

CYF’s monitoring and quality control system has a separately contracted module that uses a transcription engine tool and artificial intelligence (AI) technology to generate automatic summaries of audio transcriptions of conversations between agents and customers.

It aims to generate accurate and concise summaries of customer service contacts, optimizing the time dedicated to quality analysis and freeing evaluators for more strategic tasks. AI can identify patterns and insights in conversations, providing valuable information for optimizing customer service and improving agent performance.

In certain cases, we use our own LLM, processed on our servers. In these cases, the data remains within CYF and is not sent to an external provider.

AI Data Processing and Security:

  • Processing of transcription data: Audio recordings are processed locally exclusively for the generation of transcriptions, in accordance with LGPD principles, such as purpose, necessity and proportionality. Audios are not shared with the AI.
  • Information security: Audio data is stored in a secure environment, with access restricted to authorized users and security measures to protect information against unauthorized access, misuse or loss.
  • Sharing: Only audio transcriptions are handled by OpenAI, which uses robust security measures to protect shared information, which is not used for language model training, in accordance with its privacy policy. For more information access.
  • Transparency: Customers are informed about the use of AI to generate summaries of customer service contacts through the system’s Terms of Use and this privacy notice.
  • Retention and Disposal: Transcript summaries are kept until the storage limit or to be agreed with the client.

CYF is committed to using AI technology ethically and responsibly, ensuring the privacy and security of customer data.

Data security

We use the most varied and complete security procedures to guarantee not only the privacy of our customers’ data, but also its integrity and security. Password access, IP blocking (whitelist), protection against brute force attacks, SSL certificate with encryption, constant monitoring, backups and other security methods that we use to guarantee your safety and that of your customers.

The CYF reserves the right to make changes to the policy, as it also undertakes to share and make it available for easy consultation with its users, clients and stakeholders.

This policy was initially adopted on January 1, 2019.

Updated november 29, 2024.