PRIVACY POLICY

1. Data controller
Luca Simonetti – RUNBIS (sole trader)
Address: Avenida Diagonal 534, Entresuelo, 08006 Barcelona (Spain)
Contact: privacy@runbis.com
Processing complies with GDPR (EU) 2016/679 and LOPDGDD 3/2018.

2. Purpose of processing
Personal data is processed for:
– request and contact management (forms, calls, inquiries)
– commercial management (lead tracking and service communications)
– service delivery (contract execution, billing, administration)
– analysis and improvement (usage and behavior tracking)
– advertising and remarketing (campaign management, conversion tracking)
– security (fraud prevention, system protection)

3. Legal basis
Processing is based on:
– consent (forms, communications, non-essential cookies)
– contract or pre-contractual measures
– legitimate interest (B2B prospecting, service improvement)
– legal obligations (tax, accounting, administrative compliance)

4. Data processed
Categories include:
– identification data (name, surname)
– contact data (email, phone)
– professional data (company, role)
– commercial data (form inputs)
– economic data (billing information)
– technical data (IP, cookies, device identifiers)

5. Data sources
Data may be obtained from:
– website forms
– direct contact
– publicly available sources (B2B context)

6. Retention
– leads: up to 24 months from last contact
– clients: duration of relationship + up to 6 years (legal obligation)
– marketing data: until consent withdrawal
– technical data: as defined in Cookie Policy

7. Recipients
No data is shared with third parties unless legally required.
Data may be processed by service providers (data processors), such as:
– hosting providers
– CRM systems
– email marketing tools
– analytics platforms (e.g. Google Analytics)
– advertising platforms (e.g. Meta Ads, Google Ads)

8. International transfers
Some providers may operate outside the EEA. Protection is ensured through:
– Data Privacy Framework
– Standard Contractual Clauses (EU Commission)

9. User rights
Users may exercise:
– access, rectification, erasure
– objection, restriction, portability
Additionally:
– withdraw consent at any time
– opt out of communications
– file complaints with a supervisory authority

10. Supervisory authority
Spanish Data Protection Agency (AEPD)
www.aepd.es

11. Security
RUNBIS applies appropriate technical and organizational measures to ensure data security, integrity and confidentiality.

12. Cookies
Cookie usage is governed by the Cookie Policy available on the website.

13. Modifications
RUNBIS may modify this policy at any time. The current version is always published on the website.