Skip to main content
Back to home

Privacy Policy

Last updated: 2026-03-30

Introduction

Tablix Tecnologia ("Tablix", "we") operates the service available at tablix.me. This Privacy Policy explains how we collect, use, and protect your information when you use our service.

By using Tablix, you agree to the practices described in this policy. If you do not agree, please do not use the service.

Data we collect

We collect only the data strictly necessary for the service to function:

  • Anonymous identifier (fingerprint) — used to control Free plan usage limits. Stored as an httpOnly cookie.
  • IP address hash — used together with the fingerprint for identification. We never store the full IP address.
  • Usage counters — number of unifications performed in the month, stored in Redis with automatic expiration.
  • Language preference — stored locally in your browser (localStorage).

Spreadsheet processing

Your files are processed entirely in your browser (client-side) on the Free plan. This means your data is never sent to our servers during processing.

On the Pro plan, larger files may be processed on the server. In this case, data is processed in memory and discarded immediately after generating the output file. We do not store, copy, or retain your files.

We never access, read, or analyze the contents of your spreadsheets for any purpose other than the processing you requested.

Cookies and local storage

We use the following cookies and local storage data:

  • tablix_fp — httpOnly cookie that stores your anonymous identifier. Expires in 1 year.
  • theme — Theme preference (light/dark). Stored via localStorage.
  • locale — Language preference. Stored via localStorage.

We do not use tracking, marketing, or advertising cookies.

Storage and retention

Usage counters are stored in Redis (Upstash) and expire automatically at the end of each billing period.

The fingerprint cookie expires in 1 year or when you clear your browser data.

We do not maintain a database with personal information. There is no "account" on the Free plan — only the anonymous identifier.

Security

We employ the following measures to protect your data:

  • Content Security Policy (CSP) — restricts which resources can be loaded.
  • Rate limiting — protects against abuse and brute force attacks.
  • Security headers — HSTS, X-Frame-Options, X-Content-Type-Options, and others.
  • File validation — MIME type, extension, and magic number verification before processing.
  • httpOnly cookies — not accessible via JavaScript, protecting against XSS attacks.

Your rights (LGPD)

In accordance with the Brazilian General Data Protection Law (Law 13,709/2018), you have the right to:

  • Access your data — You can check your usage status directly in the Tablix interface.
  • Request deletion — By clearing your browser cookies, the fingerprint is removed. Redis counters expire automatically.
  • Request information — Contact us to learn what data is associated with your identifier.

Legal basis: we use legitimate interest (Art. 7, IX of the LGPD) as the basis for processing data necessary for the service to function.

To exercise any of these rights, contact us at: contact@tablix.me

Third-party services

We use the following third-party services:

  • Vercel — Hosting and CDN. Subject to Vercel's privacy policy.
  • Upstash Redis — Usage counter storage. Data encrypted in transit and at rest.
  • Vercel Analytics — Anonymous performance metrics. Does not collect personally identifiable data.

Changes to this policy

We may update this Privacy Policy periodically. Significant changes will be communicated through a notice on the service.

Continued use of Tablix after changes constitutes acceptance of the updated policy.

Contact

For questions, requests, or complaints related to privacy:

Controller: Tablix Tecnologia

Email: contact@tablix.me

Address: São Paulo - SP, Brazil