Privacy Policy

Your data deserves clarity, security, and respect.

This Privacy Policy explains how Saint Jude collects, uses, stores, shares, and protects personal data across our website, blog, campaigns, pilot programs, partner program, and platform.

Last updated:

Privacy is part of trust

Saint Jude Project Intelligence was created to transform project data into useful information for PMOs and business leaders. We process personal data and business information responsibly, transparently, and only for legitimate and disclosed purposes.

This policy was prepared in accordance with the Brazilian General Data Protection Law — LGPD (Lei nº 13.709/2018) — and the activities currently carried out by Saint Jude.

01

Who is responsible for the data

The Saint Jude platform is operated by Erik Scaranello Ltda., registered with the CNPJ under nº 18.252.603/0001-46, hereinafter referred to as “Saint Jude”, “we”, “us”, or “our”.

Erik Scaranello Ltda. — Saint Jude
Praça Zacarias, 58, 8º andar — Curitiba/PR — Brasil
Email.: contact@saintjude.co

In certain situations, particularly when operating the platform for business customers, the customer may act as the data controller and Saint Jude as the data processor, processing data in accordance with the customer's instructions and the agreements entered into with the customer.

02

Where this policy applies

This policy applies to data processed through:

  • Saint Jude’s corporate website and blog;
  • contact, demonstration, and pilot application forms;
  • campaigns on LinkedIn and other promotional platforms;
  • the partner and channel program;
  • registration, access, and use of the Saint Jude platform;
  • authorized integrations with project management tools;
  • commercial, corporate, technical, and support communications.

03

Data we may collect

Data provided directly

We may collect information such as:

  • first name, last name, professional email address, and telephone number;
  • job title, area of work, company, and industry;
  • company size and approximate number of projects or teams;
  • management tools used by the organization;
  • interest in a pilot, demonstration, subscription, or partnership;
  • information voluntarily submitted through messages and forms;
  • data required to create and manage an account.

Data collected automatically

When you access our websites or services, we may collect:

  • IP address and device or browser identifiers;
  • device type, browser, and operating system;
  • pages accessed and the date, time, and duration of the visit;
  • traffic source and campaign parameters, such as UTMs;
  • clicks, scrolling, interactions, and browsing events;
  • cookies and similar technologies, according to your preferences.

Business data processed by the platform

When an organization uses Saint Jude and authorizes an integration, we may process data related to projects, programs, portfolios, tasks, sprints, teams, allocations, estimates, hours, costs, schedules, risks, dependencies, deliverables, and indicators.

Depending on the configuration of the integrated tool, these records may contain names, corporate email addresses, job titles, user identifiers, or other information associated with the professionals involved.

04

How we use data

We may use data to:

  • respond to requests, questions, and enquiries;
  • evaluate companies interested in Saint Jude pilot programs;
  • schedule meetings, presentations, and demonstrations;
  • evaluate and manage relationships with partners and channels;
  • create, authenticate, and manage user accounts;
  • provide, operate, maintain, and improve the platform;
  • perform project analyses authorized by the customer;
  • provide technical support and customer service;
  • measure the effectiveness of campaigns and content;
  • personalize the experience and improve our services;
  • prevent fraud, abuse, unauthorized access, and incidents;
  • fulfil contracts and legal obligations and exercise legal rights;
  • send communications consistent with the existing relationship and the data subject’s preferences.

06

Pilots and partners

Pilots and demonstrations

Data submitted through campaigns or pilot forms may be used to assess the company’s suitability, understand its project management environment, make contact, schedule meetings, and organize the execution of the pilot. Submitting the form does not guarantee approval or availability of the pilot.

Partner and channel program

Data from parties interested in the partner program may be used to analyze the organization’s profile, present the partnership model, hold business meetings, onboard the partner, and follow up on opportunities related to the program.

Learn more about the program at saintjude.co/en/partner.

07

Integration data

Saint Jude may connect, with the customer’s authorization, to tools such as Jira, ClickUp, and other available integrations. Access is limited to the permissions granted and the information required to provide the contracted services.

The customer is responsible for having the appropriate authorization and legal basis to provide Saint Jude with data from its organization and users. We process this data in accordance with the agreement, the customer’s documented instructions, and the applicable security measures.

Credentials, tokens, and integration keys must be protected and used exclusively to establish and maintain authorized connections.

08

Artificial intelligence

Some Saint Jude features use artificial intelligence, statistical models, or automated rules to organize information, identify patterns, compare indicators, anticipate risks, and generate project management recommendations.

The analyses provided are intended to support decision-making and should be interpreted by professionals while considering the organization’s context. Saint Jude must not be used as the sole basis for decisions that have legal, disciplinary, or other significant effects on an individual.

Where applicable, the data subject may request information and a review of decisions made exclusively on the basis of automated processing, in accordance with the applicable legislation.

09

Commercial and corporate communications

We may send communications related to submitted requests, pilots, demonstrations, partnerships, the product, security, support, content, and Saint Jude updates, according to the existing relationship and applicable legal basis.

Promotional communications may be unsubscribed from at any time through the unsubscribe link included in the message or by contacting us at contact@saintjude.co. Messages strictly necessary for the provision of the service may continue to be sent.

10

Who we may share data with

We may share data, only when necessary, with:

  • hosting, infrastructure, and cloud storage providers;
  • email, CRM, customer service, authentication, and monitoring services;
  • analytics, advertising, and measurement platforms, such as Google and LinkedIn;
  • service providers acting on behalf of Saint Jude under confidentiality obligations;
  • legal, accounting, financial, and security advisers;
  • public authorities, when required by law or pursuant to a valid request;
  • parties involved in an investment, restructuring, merger, or acquisition, subject to appropriate safeguards.

Saint Jude does not sell personal data.

11

International data transfers

Some suppliers and technology partners may store or process data in other countries. When an international transfer occurs, we will adopt mechanisms and safeguards compatible with the LGPD and applicable regulations, including contractual and security measures.

12

Cookies, analytics, and advertising

We use cookies and similar technologies to keep our websites functioning, remember preferences, understand browsing behavior, measure content and campaigns, and, when authorized, support advertising and remarketing.

Cookies may be classified as:

  • necessary: essential for basic functionality and security;
  • functional: remember choices and preferences;
  • analytics: help measure traffic and performance;
  • advertising: help measure and personalize campaigns.

We may use tools including Google Analytics, Google Tag Manager, and LinkedIn Insight Tag. Non-essential cookies must respect the preferences selected through the website’s consent mechanism. Cookies can also be managed through your browser settings.

13

Data retention

Data will be retained for the period necessary to fulfil the stated purposes, provide the services, maintain legitimate records, comply with legal obligations, and exercise legal rights.

Data relating to leads that do not result in a contractual relationship may be retained for up to 24 months after the last interaction, unless an earlier deletion request is submitted or there is a duly justified legitimate need for retention. Contractual, tax, security, and audit data may be retained for the applicable statutory periods.

At the end of the applicable period, data may be deleted, anonymized, or securely retained where permitted by law.

14

Information security

We adopt technical and administrative measures designed to protect data and information against unauthorized access, loss, alteration, disclosure, destruction, or improper processing. These measures may include access controls, authentication, security logs, encryption where applicable, backups, vulnerability management, and privilege restrictions.

No environment is completely immune to risk. If a relevant incident occurs, we will adopt the containment, investigation, remediation, and notification measures required by law and the competent authorities.

15

Your rights

Under the LGPD, you may request, where applicable:

  • confirmation that processing exists;
  • access to your personal data;
  • correction of incomplete, inaccurate, or outdated data;
  • anonymization, blocking, or deletion of unnecessary or excessive data;
  • data portability, subject to legal and regulatory requirements;
  • information about data sharing;
  • deletion of data processed on the basis of consent, where applicable;
  • information about the possibility of withholding consent and the consequences of doing so;
  • withdrawal of consent;
  • objection to unlawful processing;
  • review of decisions made exclusively through automated processing, where applicable.

Requests may be sent to contact@saintjude.co. We may request additional information to confirm the identity of the requester and prevent unauthorized access to third-party data.

When Saint Jude acts as the data processor for a business customer, the request may be forwarded to the respective customer acting as the data controller.

16

Children and adolescents

Saint Jude’s services are intended for businesses and professionals and are not intentionally directed at children or adolescents. If the improper processing of data relating to this audience is identified, we will take the necessary steps to delete, block, or regularize the data.

17

Changes and contact

This policy may be updated to reflect changes to Saint Jude, our practices, services, suppliers, or the applicable legislation. The most recent version will be published on this page together with its respective update date.

Questions, requests, or complaints related to privacy and data protection may be sent to:

Saint Jude — Privacy
contact@saintjude.co
saintjude.co/en.

How we use data submitted through campaigns

When you submit your data through a LinkedIn form related to Saint Jude, we may use it to assess your company’s interest in a free pilot, contact you, schedule a presentation, and provide information about the platform. When there is an interest in a partnership, the data may also be used to assess and present the partner and channel program.