Skip to content
Supernapse mobile study app
Menu
How do we make studying easier? Features FAQ Free E-Book

Privacy Policy

Learn how Supernapse collects, uses, stores, shares, and protects your personal data under Brazil’s LGPD and international standards such as GDPR and CCPA.

Last updated: February 16, 2026

Supernapse (CNPJ No. 50.194.438/0001-26) values the privacy, security, and protection of users’ personal data worldwide. This Privacy Policy explains, in a clear and transparent manner, how personal data is collected, used, stored, shared, and protected within the Supernapse application and website, in compliance with Brazil’s LGPD (Law No. 13,709/2018) and applicable international data protection laws (such as GDPR and CCPA). By using the Supernapse application or website, you declare that you have read, understood, and agree to this Privacy Policy.

Quick summary

  • Controller: Supernapse (CNPJ No. 50.194.438/0001-26).
  • We collect data you provide (name, email, encrypted password, profile picture when provided).
  • If you use third-party login (e.g., Google), we receive the data you authorize (name, email, profile picture).
  • We collect usage and technical data (interactions, device identifiers, approximate IP, OS, app version) for analytics, security, and performance.
  • We may process AI prompts and user inputs with OpenAI to enable in-app AI features (international transfer safeguards apply).
  • We do not sell personal data; sharing happens only when necessary with essential providers or for legal/security reasons.
  • You can delete your account in-app and withdraw marketing consent at any time.

1) Data Controller

Supernapse acts as the Data Controller of the personal data processed within the scope of the application and website and is responsible for decisions regarding the processing of such information, in accordance with applicable data protection laws.

2) Personal Data Collected

Supernapse may collect personal data provided voluntarily by the user during registration, use of the application, or interactions with our services.

Note: Please avoid including sensitive personal data in uploads or inputs unless strictly necessary for your intended use of the service.

2.1 Data provided directly by the user

  • Name
  • Email address
  • Access password (stored in encrypted form)
  • Profile picture (when provided)

2.2 Authentication via third-party providers

If the user chooses to sign in using third-party providers (such as Google or equivalent services), Supernapse may receive, as authorized by the user:

These data are used exclusively for authentication, user identification, and personalization of the experience.

  • Name
  • Email address
  • Profile picture

2.3 Usage, technical, and browsing data

Supernapse automatically collects information related to the use of the application and website, including:

These data may be collected through SDKs, APIs, cookies, marketing identifiers, and analytics tools (including Firebase and advertising platform identifiers) for statistical, analytical, security, and user acquisition measurement purposes.

  • Feature interactions
  • Navigation events
  • Performance data and usage metrics
  • Device identifiers
  • Approximate IP address
  • Operating system
  • Application version

3) Purposes of Data Processing

Collected personal data are used to:

  • Enable the proper functioning of the application and website.
  • Create, authenticate, and manage user accounts.
  • Synchronize progress, content, and settings across devices.
  • Personalize the user experience.
  • Send operational communications, notifications, and service-related messages.
  • Provide technical support and customer service.
  • Comply with legal, regulatory, or contractual obligations.
  • Perform statistical analyses, usage metrics, and continuous product improvements.
  • Measure marketing campaigns, communication performance, and user acquisition.
  • Ensure security, fraud prevention, and platform integrity.

4) Lead Collection & Marketing Communications

Supernapse may collect personal data (such as name and email address) through landing pages, forms, promotional campaigns, or marketing actions, including the offering of free materials such as eBooks, guides, and educational content.

Such data may be used to:

  • Send the requested material to the data subject.
  • Send informational, educational, and promotional communications about Supernapse products, services, updates, and launches.
  • Analyze interest and engagement to improve communication strategies.
  • Allow unsubscription via the link included in messages or by contacting Supernapse as indicated in this Policy.

Note: Marketing communications are based on the user’s free, informed, and unequivocal consent, which may be withdrawn at any time.

6) Data Storage, Security & International Transfers

Personal data is stored in secure and controlled environments, using information security best practices and appropriate technical and administrative measures to protect against unauthorized access, leakage, loss, alteration, or destruction.

The infrastructures used may include:

  • Amazon Web Services.
  • Firebase and Google services.
  • Other providers strictly necessary for the operation of the service.
  • Data may be processed and stored on servers located outside the user’s country of residence (including outside Brazil), subject to safeguards provided under applicable laws, such as standard contractual clauses and appropriate data protection measures.

7) Data Sharing

Supernapse does not sell personal data.

Data sharing occurs only when strictly necessary, in the following cases:

  • With technology and infrastructure providers essential to the operation of the service.
  • To comply with legal or regulatory obligations or court orders.
  • To protect the rights, security, and integrity of Supernapse, its users, or third parties.
  • All third parties involved are subject to confidentiality and data protection obligations.

8) Data Subject Rights

The data subject may, in accordance with applicable law:

  • Request access to their personal data.
  • Request correction of incomplete, inaccurate, or outdated data.
  • Request deletion, anonymization, or blocking of data.
  • Request data portability, when applicable.
  • Withdraw granted consents.
  • Obtain information about data sharing.
  • Delete their account directly through an option available in the application, resulting in the permanent deletion of associated data, subject to any legal data retention obligations.

9) Data Retention

Personal data will be retained only for as long as necessary to fulfill the purposes described in this Policy or as required by law or regulatory obligations.

10) Children’s Privacy

The application is intended for users aged 13 or older.

Supernapse does not knowingly collect personal data from children under this age without appropriate legal consent, as required by applicable law.

11) Changes to This Policy

This Privacy Policy may be updated periodically. The most recent version will always be available within the application and on the website.

Continued use of the services after the publication of changes constitutes acceptance of the new version.

12) Contact

If you have any questions, requests, or complaints related to privacy and personal data protection, please contact us:

  • Email: suporte@supernapse.app

13) AI Use & Prompt Sharing

Supernapse uses artificial intelligence technology provided by OpenAI (including conversational models such as ChatGPT) to process requests made within the application.

To enable these features, text entered by the user, as well as prompts automatically structured by the system based on in-app interactions, may be sent to OpenAI servers for processing and response generation.

These data may include information typed voluntarily by the user in text fields, commands, questions, academic content, or other data necessary to generate the requested response.

Processing may occur on servers located outside Brazil, which may constitute an international data transfer, with appropriate technical and contractual safeguards to ensure an adequate level of protection under applicable law.

Supernapse does not sell or commercialize data sent to OpenAI and acts as a technology intermediary to provide the service. The user acknowledges that content submitted to AI features may be processed by this external provider under its own terms and policies.

14) Responsibility for User-Provided Content

The user acknowledges that they are solely responsible for the information they voluntarily insert into the application’s AI features.

Supernapse does not recommend entering sensitive data, confidential information, trade secrets, third-party data without authorization, or any content whose sharing may create legal or contractual risks.

If the user chooses to insert such information, they declare they are aware that processing may occur by external technology providers and assume full responsibility for any improper disclosure resulting from their own conduct.

Limitation of liability for third-party processing

Although Supernapse adopts appropriate technical and administrative security measures, it cannot be held liable for failures, security incidents, or leaks resulting exclusively from systems, infrastructure, or services operated by third-party providers integrated into the platform, provided there is no proven direct fault by Supernapse.