Privacy Policy

Your privacy matters to us

Privacy Policy

Last updated: April 4, 2026

This privacy policy explains how ONLAINEZ ("we", "us", "our") collects, uses, and protects your personal data in compliance with Regulation (EU) 2016/679 (GDPR).

1. Data Controller

The data controller is ONLAINEZ, operated by Adán Lainez.
Contact: privacy@onlainez.net

2. Data We Collect

  • Contact data: name, email, phone number (when you contact us or start a project)
  • Account data: email, password (hashed) — if you create an account
  • Project data: project descriptions, requirements, files you share with us
  • Usage data: IP address, browser, device (for security and analytics)

3. Legal Basis for Processing

PurposeLegal basis
Responding to inquiries, project deliveryContract performance (Art. 6.1.b)
Email notifications, project updatesLegitimate interest (Art. 6.1.f)
Invoice and payment recordsLegal obligation (Art. 6.1.c)
Security (rate limiting, logs)Legitimate interest (Art. 6.1.f)

4. How We Use Your Data

  • To respond to your inquiries and provide our services
  • To manage projects and communicate progress
  • To send project-related notifications
  • To detect and prevent fraud or abuse
  • To comply with legal obligations

We do not sell your personal data. We do not use your data for advertising.

5. Data Sharing

We share data only with:

  • Our hosting provider (data processing agreement in place)
  • Authorities when required by law

6. Cookies

  • Essential cookies (always active): session, CSRF protection, language preference

No third-party tracking cookies (Google Analytics, Facebook Pixel, etc.) are used.

7. Your Rights (GDPR Art. 15-22)

  • Access your personal data (Art. 15)
  • Rectify inaccurate data (Art. 16)
  • Erase your data — "right to be forgotten" (Art. 17)
  • Export your data in machine-readable format (Art. 20)
  • Object to processing based on legitimate interest (Art. 21)
  • Lodge a complaint with your national data protection authority (AEPD in Spain, BfDI in Germany)

To exercise these rights: privacy@onlainez.net

8. Data Retention

  • Contact data: retained while the business relationship is active. Deleted upon request
  • Project data: retained for the duration of the project plus 3 years
  • Invoice records: retained for 7 years (tax obligations)
  • Security logs: automatically purged after 90 days

9. Data Security

We protect your data with: HTTPS encryption (TLS), password hashing (bcrypt), CSRF protection, rate limiting, and role-based access control.

10. International Transfers

Your data is processed within the European Economic Area (EEA).

11. Changes to This Policy

We will notify you of material changes via email. The "last updated" date at the top reflects the most recent revision.

12. Contact

Privacy inquiries: privacy@onlainez.net

← Back
Language
English Español Deutsch
We use cookies to enhance your experience. Essential cookies are always active. Privacy Policy · Terms of Service