Privacy policy

Last updated: 2026-06-11 — GDPR (EU) 2016/679, UK GDPR & DPA 2018, CCPA/CPRA aware

1. Data controller

• Identity: José Manuel Volante González
• Tax ID (NIF): 49108819R
• Postal address: C/ Zafra 5, 21310 La Zarza (Huelva), España
• Email: [email protected] Email to exercise privacy rights: [email protected]

2. Purposes of processing

We process personal data for the following purposes:

1. Technical operation of the site: serving pages, measuring aggregate usage through anonymous analytics, and keeping the service available.
2. Handling enquiries: replying to messages received at the contact email.
3. Legal compliance: responding to requests from competent authorities where required.

No automated decision-making producing legal effects or significantly affecting you takes place (Article 22 GDPR). No commercial profiling is performed. The site has no user accounts, no registration, no subscriptions and no paid features.

3. Lawful bases

• Technical operation of the site: legitimate interest of the controller (Article 6.1.f GDPR) — providing a functional, secure web service.
• Handling enquiries: your consent, given by sending the message (Article 6.1.a GDPR).
• Legal compliance: legal obligation (Article 6.1.c GDPR).

4. Categories of data processed

• Technical data collected automatically: IP address (anonymised by Cloudflare), User-Agent, page visited, date and time. Cloudflare Web Analytics operates without cookies (cookieless).
• Identifying data if you contact us by email: name, email address, message content. This is the only data you provide voluntarily.
• No special-category data (health, beliefs, sensitive data) is requested or processed.

5. Retention

• Cloudflare technical logs: 7 days (Cloudflare Pages default configuration).
• Web Analytics data: anonymous aggregates, 6-month retention.
• Email correspondence: up to 2 years after the last interaction, or as long as legally required.

6. Recipients

Data may be disclosed to:

• Cloudflare, Inc. (hosting + analytics + CDN provider, USA, under approved standard contractual clauses).

• Public authorities where a legal obligation exists.

No identifiable personal data is transferred outside the European Economic Area except under the safeguards of Chapter V GDPR (Cloudflare's standard contractual clauses). For UK visitors, transfers rely on UK adequacy regulations or the UK International Data Transfer Agreement / Addendum.

7. Your rights

You have the right to:

• Access: know what data of yours we process.
• Rectification: correct inaccurate data.
• Erasure ("right to be forgotten"): request deletion of your data.
• Restriction: request that we limit processing in specific circumstances.
• Portability: receive your data in a structured format.
• Objection: object to processing based on legitimate interest.
• Withdraw consent at any time, without retroactive effect.

California residents additionally have the rights to know, delete, correct, opt out of sale or sharing (we do neither), and limit use of sensitive personal information (we collect none) under the CCPA/CPRA.

To exercise any of these rights: email [email protected] with "Privacy request" in the subject line and proof of identity.

8. Complaints to supervisory authorities

If you consider the processing of your data unlawful, you may lodge a complaint with the Spanish Data Protection Agency (AEPD, https://www.aepd.es/), with your local EU data protection authority, or — for UK residents — with the Information Commissioner's Office (https://ico.org.uk).

9. Source of the data

The personal data processed comes directly from you: technical data collected automatically when you visit the site, or information you voluntarily send by email.

10. Automated decisions

No automated decisions producing legal effects or significantly affecting you are made within the meaning of Article 22 GDPR.

11. Registration

The controller keeps the Record of Processing Activities required by Article 30 GDPR, available to the supervisory authority on request.

12. Changes

This privacy policy may be updated to reflect regulatory or operational changes. The current version is always the one published at this URL with the last-updated date shown at the top.

Contact

For any question about the processing of your data: [email protected].