LGPD · Data Protection

Privacy Policy

How CCX Company collects, uses, stores, and protects personal data — in compliance with LGPD (Brazilian General Data Protection Law), the Brazilian Internet Bill of Rights, and international data governance best practices.

CCX Company · CNPJ 24.329.191/0001-06
Data Controller: CCX Company
Updated on April 2, 2026

1. Who We Are

CCX Company ("CCX", "we", "our"), registered under CNPJ no. 24.329.191/0001-06, with headquarters in São Paulo/SP, is a consulting firm specializing in technology, digital commerce, integrations, data, artificial intelligence and SaaS products. We value privacy and are committed to protecting the personal data we process.

This Privacy Policy describes which personal data we collect, how we use it, with whom we share it, and what rights data subjects have, in compliance with the Brazilian General Data Protection Law (Law no. 13.709/2018 — LGPD), the Internet Civil Framework (Law no. 12.965/2014) and other applicable regulations.

2. Scope

This Policy applies to:

  • Visitors to the website ccxcompany.co and subdomains;
  • Prospects and commercial leads who interact via forms, WhatsApp, LinkedIn or events;
  • Customers and customer representatives in contracted projects;
  • Users of CCX proprietary products — CCX Message, NexLog OS and NexLog OS Academy;
  • Candidates for job openings or internship programs;
  • Suppliers, freelancers and commercial partners;
  • Participants in events, webinars, podcasts and educational content.

3. Data Controller & Data Protection Officer (DPO)

3.1. CCX Company is the data controller of personal data processed through this Website and in its direct commercial operations, in accordance with art. 5, VI of the LGPD.

3.2. In certain customer projects, CCX may act as a data processor on behalf of the Customer (controller). The responsibilities of this role are regulated in a specific DPA (Data Processing Agreement).

3.3. CCX's Data Protection Officer (DPO) can be reached at [email protected].

4. Legal Bases

The processing of personal data is founded on the legal bases provided for in art. 7 of the LGPD:

  • Contract execution or pre-contractual diligence (art. 7, V): to fulfill quote requests, prepare proposals, formalize and execute service provision contracts;
  • Consent (art. 7, I): sending marketing communications, newsletters, event invitations, satisfaction surveys;
  • Legitimate interest (art. 7, IX): service improvement, website personalization, analytics, responsible B2B prospecting, fraud prevention and asset protection;
  • Compliance with legal obligation (art. 7, II): tax, accounting, labor and regulatory obligations;
  • Regular exercise of rights (art. 7, VI): defense in legal, administrative or arbitration proceedings.

Principles we follow

Minimization (we collect only what is necessary), purpose (we only process for what we inform), transparency (you know what we do), security (protection proportional to risk), quality (accurate and up-to-date data) and accountability (accountability).

Document updated on April 2, 2026.

CCX Company — All rights reserved.

Questions about your data?

Contact CCX's Data Protection Officer (DPO). We respond within 15 business days as required by LGPD. You may also file a complaint with ANPD.

General email

[email protected]

DPO (Data Protection Officer)

[email protected]

Contact the DPOOpen a ticket