The data is yours.Always was.
Stakio is built so your brand keeps full control of its retail media data. A summary of the practices behind that promise.
Security
TLS 1.3 in transit between the browser and Stakio infrastructure. Data at rest protected with industry-standard encryption (AES-256).
Each agency and brand operates in its own logical scope. Cross-tenant data access is not possible — enforced automatically on every operation.
Short session expiration, granular role-based permissions (admin, manager, viewer, portal). Audit log for critical events.
Hosted on certified cloud providers with daily automated backups, continuous monitoring and real-time critical alerts.
Acknowledgement SLA: 24 business hours. Customer-affecting incidents are communicated directly with scope, impact and actions taken.
Privacy policy
Last updated: May 21, 2026.
Only what's necessary to operate the platform: email, name, organization and campaign data you voluntarily connect via OAuth or upload (Mercado Ads, Amazon Ads, Magalu, VTEX, iFood). We don't collect browsing data outside the app.
To deliver the product: dashboards, analytics, optimization recommendations, alerts. Campaign data belongs to your brand — not shared, sold or used to train third-party models.
Essential cookies for session and preferences. No third-party advertising trackers. Anonymized internal analytics to understand platform usage.
Access, correction, export and deletion of your data at any time. Requests via security@stakio.cloud handled within 30 days.
Terms of service
Summary of the terms. Full version available on request.
Stakio is provided for retail media analysis. You can use it for your own brands and clients — you can't resell access, reverse-engineer or use for illegal purposes.
Campaign data you connect is yours. Stakio has a limited license to process this data exclusively for product delivery. You can revoke access and export everything at any time.
We aim for high availability but don't guarantee 100% uptime. In case of prolonged outage, we communicate status and provide proportional credit where applicable.
You can close your account at any time. Data remains available for export for 30 days after termination and then is permanently deleted.
LGPD — Brazilian Data Protection Law
Stakio is a Brazilian company and operates in compliance with LGPD (Federal Law 13.709/2018).
We process data under LGPD legal bases: contract execution (product operation), legitimate interest (security, fraud prevention) and consent (where applicable).
DPO: Diego Bonna. Contact: db@stakio.cloud.
Part of the cloud infrastructure runs outside Brazil. Transfers follow ANPD requirements with contractual clauses and appropriate safeguards.
Requests for access, correction, anonymization, portability or deletion of personal data: security@stakio.cloud. Legal response window: 15 days.
In case of an incident affecting personal data, we notify ANPD and affected subjects as required by Article 48 of LGPD.
Questions, reports or deletion requests: security@stakio.cloud — we respond within 24 business hours.