Privacy Policy

Last updated:

1. Who we are (Data Controller)

I am Animo (“we”, “us”). This website is operated from Spain. For any privacy enquiry, email privacy@animoreflectiveintelligence.com.

2. Scope

This Policy covers personal data processed when you visit this website, contact us, or use any forms or pages we publish here. It complements the EU General Data Protection Regulation (GDPR) and Spain’s LOPDGDD.

3. What data we collect

  • Identification & contact data: name, email address, and anything you write to us.
  • Usage data: device/browser info, pages viewed, timestamps, approximate location (city/region), and technical diagnostics (e.g., error logs).
  • Cookies & similar technologies: essential cookies for basic site operation and, only with consent, analytics cookies. See the Cookie section below.

4. Purposes & lawful bases (Art. 6 GDPR)

  • Responding to your enquiries (contact form or email): Legitimate interest (Art. 6(1)(f)) and/or pre-contractual steps (Art. 6(1)(b)).
  • Operating and securing the site (availability, fraud prevention, diagnostics): Legitimate interest (Art. 6(1)(f)).
  • Analytics (improving content and UX): Consent (Art. 6(1)(a)). Not set unless you opt in.
  • Legal compliance (records, responses to authorities): Legal obligation (Art. 6(1)(c)).
  • Optional updates (if you ask to be contacted): Consent (Art. 6(1)(a)).

5. Retention

We keep data only as long as necessary for each purpose, then delete/aggregate it. Typical periods:

  • Enquiry emails: up to 24 months after the last interaction (unless a longer period is needed to resolve an issue or meet legal duties).
  • Security/diagnostics logs: generally 12 months or less, unless required longer for investigation.
  • Analytics events (if consented): retained per the analytics tool’s EU settings (we configure the shortest practical window and never exceed common EU defaults).

6. Sharing & processors

We use vetted service providers (hosting, email, analytics if enabled). They only process data under our instructions and under a contract (Art. 28 GDPR). We do not sell your personal data.

7. International transfers

If a provider is located outside the EEA/UK, we rely on an adequacy decision (e.g., EU-US Data Privacy Framework where applicable) or the European Commission’s Standard Contractual Clauses (SCCs), plus additional safeguards as needed.

8. Your rights

You can exercise these rights under GDPR:

  • Access, rectification, erasure
  • Restriction and objection (including to processing based on legitimate interests)
  • Data portability
  • Withdraw consent at any time (where processing is based on consent)
  • Not be subject to decisions based solely on automated processing with legal/similar significant effects (we do not conduct such profiling here)

To exercise rights, contact privacy@yourdomain.com. You also have the right to lodge a complaint with the Spanish data protection authority, the Agencia Española de Protección de Datos (AEPD).

9. Children

This site is not directed to children. Under Spain’s LOPDGDD, the digital age of consent is 14. If you are under 14, please do not submit personal data without parental/guardian consent.

10. Cookies & consent

We use essential cookies to run this site. Analytics cookies (if any) are disabled by default and only activate after you accept them in the “Cookie Settings” banner. You can change your choice any time via the “Cookie Settings” link in the footer.

11. Security

We apply appropriate technical and organisational measures (access controls, encryption in transit, least-privilege), and we work only with reputable providers.

12. Changes

We may update this Policy to reflect changes to our processing or legal requirements. We will post the new version here with a new “Last updated” date.