Privacy Policy
Privacy Policy
Last updated: April 9, 2026
1. Data Controller
The data controller responsible for your personal data is TroqueLab, contactable at info@troquelab.com or +34 646 022 368.
2. Data We Collect
We collect the following personal data when you use our website:
- Contact form submissions: Name, email address, phone number, company name, and message content
- Callback requests: Name, phone number, and preferred contact time
- Cookie consent records: IP address, consent preferences, and timestamp
- Server logs: IP address, browser type, pages visited, and access times
3. Purpose and Legal Basis
| Purpose | Legal Basis | Retention |
|---|---|---|
| Responding to inquiries | Legitimate interest | 2 years |
| Callback requests | Consent | 30 days |
| Cookie consent logging | Legal obligation (GDPR) | 3 years |
| Website analytics | Consent | 26 months |
| Server security | Legitimate interest | 90 days |
4. Data Sharing
We do not sell your personal data. We may share data with:
- Email service provider (Resend): To send email notifications
- Hosting provider (Hetzner): Server infrastructure in the EU
- Analytics (Google Analytics): Only with your consent, anonymized data
- CDN (Cloudflare): For website performance and security
All processors are bound by data processing agreements and GDPR-compliant.
5. International Transfers
Your data is primarily stored within the European Economic Area (EEA). Where transfers outside the EEA occur (e.g., Cloudflare), they are protected by Standard Contractual Clauses or adequacy decisions.
6. Your Rights
Under GDPR, you have the right to:
- Access: Request a copy of your personal data
- Rectification: Correct inaccurate data
- Erasure: Request deletion of your data
- Restriction: Limit how we process your data
- Portability: Receive your data in a portable format
- Objection: Object to processing based on legitimate interest
- Withdraw consent: At any time, without affecting prior processing
To exercise any of these rights, contact us at info@troquelab.com.
7. Data Security
We implement appropriate technical and organizational measures to protect your data, including encrypted connections (TLS/SSL), access controls, and regular security assessments.
8. Supervisory Authority
If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Spanish Data Protection Authority (AEPD) at www.aepd.es.
9. Changes to This Policy
We may update this policy periodically. The date of the latest revision is always indicated at the top of this page. We encourage you to review this policy regularly.