danielcopywriting (Av. de Marti Pujol, 301, 08912 Badalona, Barcelona, Spain) is the data controller for personal data collected through danielcopywriting.com. This policy describes how we collect, use and protect your data under Regulation (EU) 2016/679 (GDPR) and Spanish Organic Law 3/2018 (LOPDGDD).
Data we collect
When you contact us or place an order we collect your name, email address, phone number and country. Payment processing is handled by Stripe; we do not store card data. Project briefs and source documents are treated as confidential and deleted 90 days after project completion unless otherwise agreed. Anonymised analytics may be collected if you accept analytics cookies.
Legal bases
We process data under contract performance (Art. 6(1)(b) GDPR) when delivering ordered services; legitimate interests (Art. 6(1)(f) GDPR) when responding to enquiries; legal obligation (Art. 6(1)(c) GDPR) for accounting records; and consent (Art. 6(1)(a) GDPR) for optional analytics, which you may withdraw at any time.
Data retention
Order records are kept for 7 years to meet Spanish accounting obligations. Enquiry data from non-clients is deleted after 3 years of inactivity. Project materials are deleted 90 days after delivery unless retention is agreed in writing.
Data sharing
We share data only with Stripe (payment processing), collaborators working under confidentiality agreements, and EU-based hosting infrastructure. We do not sell data or share it with advertisers.
Your rights
Under GDPR you have the right to access, rectify, erase, restrict or port your data, and to object to processing. Write to hola@danielcopywriting.com. We respond within one month. You may also complain to the AEPD at aepd.es.