Skip to main content

Documentation Index

Fetch the complete documentation index at: https://support.wepayments.com.br/llms.txt

Use this file to discover all available pages before exploring further.

Overview

WEpayments is committed to protecting the privacy and security of personal and financial data. Our practices comply with the Lei Geral de Proteção de Dados (LGPD) — Law 13,709/2018, Brazil’s General Data Protection Law, and applicable Central Bank regulations on data security.

Data We Collect

WEpayments collects the following categories of data:
CategoryExamples
Identification dataName, CPF/CNPJ, date of birth
Contact dataEmail address, phone number, address
Financial dataBank account details, transaction history, balances
Behavioral dataPlatform usage, login activity, device information
Biometric dataLiveness checks and facial recognition (for KYC)
WEpayments processes personal data based on the following legal grounds (LGPD Art. 7):
  • Contractual necessity – to provide the services contracted
  • Legal obligation – to comply with BCB, COAF, and LGPD requirements
  • Legitimate interest – for fraud prevention, security, and risk management
  • Consent – for optional communications and marketing (which can be withdrawn at any time)

Data Retention

Data typeRetention period
Transaction records10 years (Central Bank requirement)
KYC/KYB documents10 years after account closure
Access logs5 years
Marketing consentUntil withdrawal

Your Rights Under LGPD

As a data subject, you have the right to:
  • Access your personal data held by WEpayments
  • Correct inaccurate or incomplete data
  • Delete data processed based on consent (subject to legal retention obligations)
  • Portability – request a structured export of your data
  • Revoke consent for non-mandatory processing
  • Lodge a complaint with the ANPD (Autoridade Nacional de Proteção de Dados)

Data Security

WEpayments implements the following technical and organizational measures:
  • Encryption at rest and in transit (AES-256, TLS 1.2+)
  • Access controls based on the principle of least privilege
  • Regular security audits and penetration testing
  • Incident response plan with BCB notification within 72 hours for material breaches

Data Sharing

WEpayments may share data with:
  • Banking partners and payment networks (required to process transactions)
  • Regulatory authorities (BCB, COAF, Receita Federal) when legally required
  • Service providers acting as data processors under a Data Processing Agreement (DPA)
WEpayments does not sell personal data to third parties.

International Data Transfers

When data is transferred outside Brazil, WEpayments ensures adequate protection through:
  • Standard Contractual Clauses (SCCs)
  • Transfers to countries with equivalent data protection laws recognized by ANPD

Privacy Policy

For the full Privacy Policy, see Privacy Policy. For questions about these policies, contact privacidade@wepayments.com.br.