Search

Privacy Policy

Last Updated: March 10, 2026

The portal Total Finanças US, available at https://us.totalfinancas.com/, establishes this Privacy Policy to reaffirm its commitment to security, transparency, and respect in the processing of user data. This document explains how data is processed in accordance with the Brazilian General Data Protection Law — Law No. 13,709/2018 (LGPD) — as well as global Google Publisher Policy guidelines and applicable privacy best practices.

1. Transparency: Who Is Responsible for This Portal?

1.1. Identification of the Data Controller

This financial news and education portal is owned and operated by SPUN MIDIA LTDA, registered under CNPJ No. 43.629.487/0001-89, with administrative headquarters in Rio Grande do Sul, Brazil. For legal purposes, SPUN MIDIA LTDA acts as the “Data Controller” responsible for the personal data collected through this portal.

1.2. Communication Channel — Data Protection Officer (DPO)

In compliance with Article 41 of the LGPD, we have appointed a Data Protection Officer (DPO) to serve as the communication channel between the portal, users, and the Brazilian National Data Protection Authority (ANPD). Requests related to privacy and data protection may be sent to: [email protected].

2. Target Audience and Age Restriction

2.1. Scope

This Privacy Policy applies to all individuals who access any website, portal, or digital platform owned by SPUN MIDIA LTDA or by companies belonging to its holding structure or economic group, including https://us.totalfinancas.com/.

2.2. Adults Only

The financial education and news content provided by this portal is intended exclusively for individuals who are at least 18 years old.

2.3. Protection of Minors

We do not intentionally collect or request personal data from children or adolescents. If we identify that data from a minor has been collected, all associated information will be deleted from our databases without prior notice, in order to protect the best interests of the minor, in accordance with Article 14 of the LGPD.

3. Categories of Data and Purposes of Processing

We process only the data strictly necessary for the operation, security, analytics, communication, and monetization of the portal, as described below.

3.1. Personal Data Provided by the User

Data collected:

  • Full name;
  • Email address.

Purpose:

Registration in our mailing list for newsletters, market alerts, educational materials, promotional communications, and general email marketing.

Legal basis:

Free and informed consent, pursuant to Article 7, I of the LGPD.

3.2. Data Collected Automatically

Data collected:

  • IP address;
  • Browser used;
  • Operating system;
  • Pages accessed;
  • Time spent on the website;
  • Interactions with the website;
  • Cookie information and online identifiers.

Purpose:

Identification of accesses for cybersecurity purposes, fraud prevention, protection against malicious activity, and compliance with legal obligations related to the retention of access logs.

Legal basis:

Legal obligation under Article 15 of the Brazilian Internet Civil Rights Framework and fraud prevention under Article 11, II, “g” of the LGPD.

3.3. Browsing and Profiling Data — Cookies

Data collected:

  • Page viewing history;
  • Interaction with advertising banners;
  • Time spent on the website.

Purpose:

Audience measurement, statistical analysis, content improvement, and personalized advertising based on user interests.

Legal basis:

Legitimate interest, pursuant to Article 7, IX of the LGPD.

4. Advertising, Google Ads, and Third Parties

To keep our content free and accessible, we use third-party advertising technologies.

4.1. Third-Party Providers

Google, as an advertising provider, may use cookies to display ads on this portal based on users’ previous visits to this and other websites.

4.2. Advertising Cookies

These cookies allow Google and its partners to display relevant ads based on users’ interests, browsing behavior, and online activity.

4.3. User Control

Users may disable personalized advertising by accessing Google Ads Settings. Users may also manage or block cookies directly through their browser settings.

5. Sharing of Data with Third Parties and Collaborators

5.1. Employees and Collaborators

Access to user information is restricted to employees, collaborators, and authorized representatives of the Data Controller who have a legitimate need to access such information in order to perform technical, operational, administrative, or support-related duties.

All collaborators are subject to confidentiality obligations and internal data protection standards.

5.2. Limitation of Use

We require all service providers and partners to use shared data exclusively for the purposes described in this Privacy Policy. The use of such information for their own purposes or the sale of user data to third parties is prohibited.

5.3. Legal or Judicial Requests

We reserve the right to share data with police, judicial, regulatory, or administrative authorities whenever required by law, regulation, legal process, or specific court order.

6. Data Retention and Life Cycle

We respect the principle of necessity and retain personal data only for as long as necessary to fulfill the purposes described in this Policy.

6.1. Personal Data

Name and email address remain in our active database for as long as the user maintains interest in receiving our content. Deletion may occur after an opt-out or deletion request, which will be processed as soon as reasonably possible.

6.2. Connection Logs

Connection logs are stored for at least six (6) months, as required by the Brazilian Internet Civil Rights Framework.

6.3. Tracking Data

Cookies may have variable expiration periods and may remain active for up to 24 months, depending on their type and purpose.

6.4. Exceptional Retention

We may retain certain information beyond the periods mentioned above when necessary to comply with legal obligations, court orders, administrative proceedings, regulatory requirements, or to defend our rights in legal or administrative disputes.

7. International Data Transfers and Security

7.1. Global Infrastructure

Because we use cloud services, analytics tools, advertising providers, and international technology platforms such as Google, users’ personal data may be processed outside Brazil.

We seek to ensure that such providers follow recognized standards of security, privacy, confidentiality, and data protection.

7.2. Security Protocols

We implement technical and organizational measures designed to protect user data, including the use of HTTPS protocol through SSL/TLS encryption, helping ensure that communications between the user’s device and our servers remain private and secure.

8. Disclaimer and Affiliate Links

8.1. External Navigation

This portal provides educational and informational content. When users click links to banks, financial institutions, advertisers, partners, or third-party platforms, they may be redirected to external websites.

8.2. Limitation of Liability

We do not control the privacy practices, security standards, data processing activities, or content of third-party websites. Once users leave our domain, the processing of their data becomes the responsibility of the destination website.

We recommend that users carefully review the Privacy Policies and Terms of Use of any external websites they visit.

9. Rights of Data Subjects

In accordance with Article 18 of the LGPD, users, or their legal representatives, may exercise the following rights:

  • Confirmation and access: request confirmation of whether we process their personal data and obtain access to such data;
  • Correction: request the correction of incomplete, inaccurate, or outdated information;
  • Deletion: request the deletion of data processed based on consent;
  • Revocation: withdraw consent for email marketing and promotional communications at any time.

To exercise any of these rights, users must contact our official DPO channel at: [email protected].

To unsubscribe from marketing emails, users may also use the opt-out or unsubscribe link available in the emails received.

10. Updates to This Privacy Policy

This Privacy Policy may be updated periodically to reflect changes in our data processing practices, legal requirements, advertising technologies, or operational improvements.

Whenever relevant changes are made, the updated version will be published on this page with the corresponding “Last Updated” date.

11. Contact

For questions, requests, complaints, or privacy-related communications, please contact:

SPUN MIDIA LTDA
CNPJ: 43.629.487/0001-89
Administrative headquarters: Rio Grande do Sul, Brazil
Privacy contact / DPO: [email protected]