top of page

PRIVACY NOTICE

(GDPR & Mexican LFPDPPP Compliant)

Last Updated: 24 February 2026

 

1. Identity of the Data Controller

This website is owned and operated by:

Jesus Antonio Romero Hernández

Jesus Antonio Romero Hernandez is the sole Data Controller responsible for the processing of personal data collected through this website

 

2. Personal Data We Collect

We may collect and process the following categories of personal data:

Identification Data

Name, surname, username, date of birth, gender, photographs.

Contact Data

Email address, telephone number, business address, place of work.

Financial and Payment Data

Billing address, bank account details, payment card details, transaction identifiers.

Important: Payment card information is processed through secure third-party payment processors. We do not store full credit card numbers on our servers.

Transaction Data

Details of payments made, invoices, purchase history, and services acquired.

Technical Data

IP address, browser type, operating system, login data, device identifiers, time zone, and usage information.

Usage Data

Information about how you use our website and services.

Marketing Preferences

Communication preferences and consent records.

 

 

3. Sensitive Data

We do not intentionally collect sensitive personal data (including data relating to health, religion, ethnicity, political opinions, union membership, or sexual orientation).

Under Mexican law (LFPDPPP), if sensitive data is ever required, explicit written consent will be obtained.

4. Purposes of Processing

Your personal data may be processed for the following purposes:

Primary Purposes (Necessary)

  • To provide products and services

  • To process payments

  • To issue invoices and tax documentation

  • To provide customer support

  • To comply with legal and regulatory obligations

  • To prevent fraud and unauthorized transactions

  • To enforce contractual rights

Secondary Purposes

  • Marketing communications (only with consent)

  • Service improvement and analytics

  • Security monitoring

You may request that your data not be used for secondary purposes by contacting us:
+528126291436

 

5. Legal Basis for Processing (GDPR)

We process personal data under one or more of the following legal bases:

  • Performance of a contract

  • Compliance with legal obligations

  • Legitimate interests

  • Consent

6. Data Transfers

Your personal data may be transferred to:

  • Payment processors

  • Hosting providers

  • Analytics providers

  • Government authorities when legally required

International transfers (including to the United States or EU) may occur. Where required under GDPR, appropriate safeguards such as Standard Contractual Clauses will be implemented.

Under LFPDPPP, transfers will comply with Articles 36 and 37 of the law.

7. Data Retention

Personal data will be retained only as long as necessary to:

  • Fulfill contractual obligations

  • Comply with tax and accounting regulations

  • Resolve disputes

  • Enforce legal agreements

Financial and tax-related data may be retained for the period required under Mexican tax law.

8. Your Rights

Under GDPR (EU Residents)

You have the right to:

  • Access your personal data

  • Rectify inaccurate data

  • Request erasure (“right to be forgotten”)

  • Restrict processing

  • Object to processing

  • Data portability

  • Withdraw consent

You may also lodge a complaint with a European Data Protection Authority.

Under Mexican Law (LFPDPPP)

You have ARCO rights:

  • Access

  • Rectification

  • Cancellation

  • Opposition

To exercise ARCO rights, call: +528126291436

Your request must include:

  • Full name

  • Clear description of the data concerned

  • Official identification (to verify identity)

Response time will comply with Article 32 of the LFPDPPP.

 

9. Payment Processing and Security

Payments are processed via secure third-party payment gateways compliant with PCI-DSS standards.

We implement:

  • SSL encryption

  • Access control measures

  • Secure hosting environments

  • Restricted access to financial data

However:

No electronic transmission or storage system can be guaranteed to be 100% secure.

 

10. Cookies and Tracking Technologies

We use:

  • Session cookies

  • Persistent cookies

  • Google Analytics

You may disable cookies in your browser settings.

For Google’s privacy practices:
https://policies.google.com/privacy

 

11. Third-Party Links

This website may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites.

 

12. Limitation of Liability

To the maximum extent permitted by applicable law:

  • We are not liable for unauthorized access resulting from cyberattacks beyond reasonable security measures.

  • We are not responsible for acts or omissions of third-party service providers (including payment processors) operating under their own privacy policies.

  • We shall not be liable for indirect, incidental, consequential, or punitive damages arising from data processing activities conducted in compliance with this Privacy Notice.

  • Users are responsible for maintaining the confidentiality of their login credentials.

Nothing in this section limits liability where such limitation is prohibited by applicable law.

13. Changes to This Privacy Notice

We reserve the right to update this Privacy Notice at any time. Updates will be published on this page with a revised “Last Updated” date.

bottom of page