Privacy Policy

PRIVACY POLICY

In accordance with the provisions of the General Data Protection Regulation (EU) and the current Organic Law on Data Protection and Guarantee of Digital Rights, by accepting this Privacy Policy, the USER provides informed, explicit, free, and unequivocal consent for the processing of the personal data provided through the website: saaslab.co (hereinafter, the WEBSITE).

Business Information:

Company Name (the CONTROLLER): GUITERAS CANAL NIL

DNI: 49806521K

Email (CONTACT EMAIL): [email protected]

Registered Address (ADDRESS): CL URUGUAY, 14 02 B 080402 GRANOLLERS

Business Activity: Coaching and Consultancy Services

This Privacy Policy applies only to personal data collected on this Website, and not to any information collected by third parties on other websites, even when linked on the WEBSITE. The Controller commits to maintaining safe commercial relationships by protecting personal data and ensuring each USER’s right to privacy. No impact assessment is required and no Data Protection Officer is necessary.

These policies are reviewed after any significant change and at least once per year.

1. WHAT ARE PERSONAL DATA?

Personal data refers to any information relating to an identified or identifiable natural person.

On this Website, this includes: name and email, and, if a product purchase requires invoicing, full address, name, surname, and DNI/CIF.

Additionally, technical information such as the IP address assigned by your Internet provider may be collected automatically when visiting the Website.

PRINCIPLES APPLIED TO DATA PROCESSING

Following the GDPR and the Organic Law on Data Protection, the following principles apply:

Lawfulness, fairness, and transparency: Your consent will always be required for one or several specific purposes, clearly communicated beforehand.

Data minimization: Only the data strictly necessary for the stated purposes will be requested.

Storage limitation: Data will not be kept longer than necessary. For subscription lists, inactive records will be periodically removed.

Integrity and confidentiality: Your data will be processed securely to prevent unauthorized access or misuse by third parties.

2. PURPOSE, LEGAL BASIS, DATA CATEGORY, CONSENT, MINORS

2.1 PURPOSE

Data provided through contact forms or subscriptions are stored for the exclusive purpose of sending electronic communications, such as:

Newsletters

New blog posts

Commercial offers

Free webinars

Other communications related to the subject matter

Mandatory fields are essential to fulfill these purposes.

The main purposes are:

Presenting the company’s services digitally

Brand building

Fulfilling accounting, legal, tax, and administrative obligations

Analytics and advertising for economic benefit

Providing content through the blog

Selling digital services or products

Only the Controller will have access to your data. Under no circumstances will your data be shared, transferred, or sold to third parties.

Acceptance of this Privacy Policy through the opt-in system and confirmation email constitutes EXPRESS AND UNEQUIVOCAL CONSENT for the processing of personal data as described, including any international data transfers required due to the physical location of service providers. No use beyond the stated purposes will occur.

2.2 MINORS

If you are over 18, you may register on the Website without parental consent.

If you are under 18, parental or guardian consent is mandatory.

If it becomes known that a user under 18 registered without consent, the registration will be denied.

2.3 LEGAL BASIS

Consent: Required to subscribe or use Website services. You may withdraw consent at any time.

Legal obligation: Certain data may be processed for tax, commercial, or accounting compliance.

Legitimate interest: Some data may be processed for advertising or cookie usage when consent is not required.

2.4 DATA CATEGORY

Only identification data are collected. No special category data are processed.

2.5 DATA RETENTION

Data will be kept for the legally established period or until you request deletion.

2.6 ACCURACY OF DATA

The USER is solely responsible for the accuracy and correctness of the data provided. You must ensure that the information submitted is complete, accurate, and up-to-date.

3. COMPLIANCE WITH APPLICABLE REGULATIONS

The Controller complies with the European GDPR, the Organic Law on Data Protection and Digital Rights, and Law 34/2002 on Information Society Services and Electronic Commerce (LSSI-CE).

Data collected through navigation or forms may be stored and processed to manage your request and maintain the relationship established.

The USER consents to receive information—including via email—about products and services of the Controller. If the USER does not authorize this, they may exercise the right to object as described in the “Exercise of Rights” section.

4. SECURITY MEASURES

The Controller has implemented all necessary technical and organizational measures to ensure the security, integrity, and confidentiality of personal data, preventing alteration, loss, or unauthorized access, in accordance with current legislation.

The Website uses an SSL certificate to ensure secure data transmission.

5. EXERCISE OF RIGHTS

Users who have provided data through the Website may exercise their rights of access, rectification, deletion, limitation, and opposition.

The fastest method is by accessing your user account and updating or deleting your data.

Alternatively, you may send a written request with the reference “Data Protection”, including identification and reasons for your request, to the ADDRESS or to the CONTACT EMAIL.

6. EXTERNAL LINKS

The Website may include links to third-party sites not operated by the Controller. We are not responsible for the legality, accuracy, or privacy practices of such sites. Review their privacy policies before submitting personal data.

7. CHANGES TO THE PRIVACY POLICY

The Controller reserves the right to modify this Privacy Policy due to legislative, jurisprudential, or regulatory updates. Any change will be published at least ten days before implementation. Continued use of the Website implies acceptance.

8. DATA CONTROLLER AND DATA PROCESSORS

The data controller is the CONTROLLER identified above.

The following service providers act as data processors:

Hosting Services: HighLevel Inc., Colmantstraße 1553115, Bonn, Germany

Email subscription and newsletter services: HighLevel Inc.

Privacy Policy: https://www.gohighlevel.com/privacy-policy

Data recipients may include:

The Spanish Tax Agency and accounting firms (for legal, fiscal, and administrative obligations)

Financial institutions for payment management

Technology providers essential for Website operation

9. THIRD-PARTY SERVICES USED ON THIS WEBSITE

The Website uses:

Hosting & Domain: HighLevel Inc., DonDominio

Web Platform: HighLevel Inc.

Email & Newsletter Services: HighLevel Inc.

Payment Platforms: Stripe and/or PayPal

Analytics & Tracking: Google Analytics, Google Tag Manager, Google Ads, Facebook Pixel

The Website analyzes user preferences, demographics, and behavior to improve service and display relevant advertising.

The Website may be linked from external pages, but this does not imply a relationship or endorsement.

10. OPT-OUT AND WITHDRAWAL OF CONSENT

You may object to the use of your data for advertising, market research, or surveys at any time, or withdraw consent (without retroactive effect).

To do so, email the CONTACT EMAIL or use the unsubscribe link in any email. System updates may require up to 48 hours to take effect.

You may also modify your preferences directly from your user account.

11. SYSTEMS USED TO CAPTURE PERSONAL DATA

Subscription Forms: Managed by HighLevel Inc. for email marketing and newsletters.

Comment Forms: To publish and moderate comments on blog posts.

Contact Forms: To respond to inquiries, professional requests, and information.

Cookies: Stored during registration or navigation.

Digital Product Sales: Buyer data (name, surname, address, email) required.

Tracking Tools: Facebook and Google Analytics for user behavior patterns and advertising relevance.

Remarketing: Via tools such as Facebook Ads.

No personal information is sold, rented, or shared except with authorized third-party providers necessary to deliver services.

12. SOCIAL MEDIA PLUGINS

The Website may offer links to social networks (e.g., Facebook “Like” button). If you interact with these while logged into a social network, your profile data may be linked to your activity on the Website.

You may review the privacy policies of each network:

Facebook: https://www.facebook.com/help/323540651073243/

LinkedIn: https://www.linkedin.com/legal/privacy-policy

Twitter: https://twitter.com/privacy

Google+: https://policies.google.com/privacy

Pinterest: https://policy.pinterest.com/privacy-policy

Instagram: https://help.instagram.com/155833707900388

13. ACCEPTANCE, CONSENT, AND REVOCATION

The USER declares they have been informed of the terms governing personal data protection, accepting and consenting to their processing as described. Consent may be withdrawn at any time, without retroactive effect.