ValenciaLink

Privacy Policy & Cookie Policy

Last updated: February 10, 2026

This Privacy Policy explains how ValenciaLink ("we", "us", "our") collects, uses, stores and protects personal data when you use our website valencialink.com, our mobile applications and related services (the "Service"). This policy also covers our use of cookies and similar technologies.

We are committed to protecting your privacy in compliance with the General Data Protection Regulation (GDPR) — Regulation (EU) 2016/679, the Spanish Organic Law 3/2018 on Personal Data Protection and Guarantee of Digital Rights (LOPDGDD), and other applicable data protection legislation.

1. Data Controller

The data controller is ValenciaLink, based in Valencia, Spain. For data protection inquiries, please contact us via the Contacts page.

2. What Personal Data We Collect

We may collect and process the following categories of personal data:

  • Identity data: name, surname, username.
  • Contact data: email address, telephone number, WhatsApp number.
  • Inquiry data: messages, form submissions, role preferences, business briefs.
  • Technical data: IP address, browser type and version, device type, operating system, time zone setting, screen resolution.
  • Usage data: pages viewed, time spent, click paths, referral source, search queries within the Service.
  • Cookie and tracking data: cookie identifiers, pixel tags, local storage entries (see Section 10 below).
  • Location data: approximate geolocation derived from IP address or, with your consent, precise location from your device.
  • Account data: login credentials, preferences, saved places.

We do not intentionally collect special categories of personal data (health, ethnicity, political opinions, etc.).

3. How We Collect Data

  • Directly from you: when you fill in forms, create an account, send messages or submit content.
  • Automatically: through cookies, server logs and analytics tools when you browse the Service.
  • From third parties: analytics providers (e.g. Google Analytics), social media platforms (when you interact with our pages), advertising partners.

4. Legal Bases for Processing (GDPR Art. 6)

We process your data based on one or more of the following legal bases:

  • Consent (Art. 6(1)(a)): for non-essential cookies, marketing communications and precise geolocation.
  • Contractual necessity (Art. 6(1)(b)): to respond to your inquiries, provide requested services and manage your account.
  • Legitimate interest (Art. 6(1)(f)): to improve the Service, ensure security, perform analytics and prevent fraud. We balance these interests against your rights and freedoms.
  • Legal obligation (Art. 6(1)(c)): where required by Spanish or EU law (e.g. tax, accounting, regulatory compliance).

5. Purposes of Processing

  • Responding to contact form submissions, partnership and advertising inquiries.
  • Processing job and creator applications.
  • Providing and personalising the Service (curated recommendations, saved preferences).
  • Sending transactional emails (form confirmations, account notifications).
  • Sending marketing communications (only with your explicit consent; you can opt out at any time).
  • Analysing usage patterns to improve content, design and functionality.
  • Ensuring the security and integrity of the Service.
  • Complying with legal and regulatory obligations.

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected:

  • Form submissions: up to 24 months from submission, unless an ongoing business relationship exists.
  • Account data: for the duration of the account and up to 12 months after deletion request.
  • Analytics data: typically anonymised or aggregated within 26 months.
  • Legal and financial records: as required by law (up to 6 years under Spanish commercial law).

7. Data Sharing and Third-Party Processors

We may share your data with the following categories of recipients, all under appropriate data processing agreements (DPA):

  • Hosting providers: for server infrastructure and content delivery.
  • Analytics providers: Google Analytics (with IP anonymisation enabled).
  • Email service providers: for transactional and marketing emails.
  • Payment processors: Stripe and/or Paddle for secure payment handling (we do not store full card details).
  • Social media platforms: when you interact with embedded social features.
  • Legal and regulatory authorities: when required by law.

We do not sell your personal data to third parties.

8. International Data Transfers

Some of our service providers may process data outside the European Economic Area (EEA). In such cases, we ensure adequate protection through:

  • Standard Contractual Clauses (SCCs) approved by the European Commission.
  • Adequacy decisions by the European Commission.
  • Other lawful transfer mechanisms recognised under GDPR.

9. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of access (Art. 15): obtain confirmation of whether we process your data and receive a copy.
  • Right to rectification (Art. 16): correct inaccurate or incomplete data.
  • Right to erasure (Art. 17): request deletion of your data ("right to be forgotten"), subject to legal retention requirements.
  • Right to restriction (Art. 18): restrict processing in certain circumstances.
  • Right to data portability (Art. 20): receive your data in a structured, machine-readable format.
  • Right to object (Art. 21): object to processing based on legitimate interests or for direct marketing.
  • Right to withdraw consent (Art. 7(3)): withdraw consent at any time without affecting the lawfulness of prior processing.
  • Right to lodge a complaint: file a complaint with the Spanish Data Protection Agency (AEPD) at www.aepd.es or with your local supervisory authority.

To exercise any of these rights, contact us via the Contacts page. We will respond within 30 days.

10. Cookie Policy

10.1 What Are Cookies?

Cookies are small text files placed on your device when you visit a website. They help websites function, improve efficiency and provide information to site owners.

10.2 Types of Cookies We Use

Strictly Necessary Cookies

These cookies are essential for the Service to function. They enable core features such as page navigation, secure areas and language preferences. The Service cannot function properly without them. No consent is required.

  • Session identifiers
  • Locale / language preference
  • Security tokens (CSRF protection)
  • Cookie consent preference storage

Analytics Cookies

These cookies help us understand how visitors interact with the Service by collecting information about pages visited, time spent, error encounters and traffic sources. Data is typically anonymised or aggregated. These cookies are only set with your consent.

  • Google Analytics (_ga, _gid, _gat) — with IP anonymisation
  • Internal page-view counters

Functional Cookies

These cookies enable enhanced functionality and personalisation, such as remembering your preferences (map view, filters, recently viewed places). They are set with your consent.

  • Map preference storage (satellite/standard view)
  • Recently viewed venues
  • Theme/display preferences

Marketing Cookies

We may use marketing cookies in the future to track visitors across websites and display relevant advertisements. These will only be activated with your explicit consent. Currently, we do not use marketing cookies.

10.3 Managing Cookies

You can control cookies through:

  • Browser settings: most browsers allow you to view, manage and delete cookies. Note that disabling cookies may affect functionality.
  • Consent banner: where available, use our cookie consent interface to manage preferences.
  • Google Analytics opt-out: install the Google Analytics Opt-out Browser Add-on.

10.4 Cookie Retention

  • Session cookies: deleted when you close your browser.
  • Persistent cookies: retained for up to 24 months, depending on the cookie.

11. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • HTTPS encryption for all data in transit.
  • Access controls and authentication for internal systems.
  • Regular security assessments and vulnerability monitoring.
  • Data minimisation — we collect only what is necessary.
  • Staff training on data protection practices.

While we strive to protect your data, no method of transmission or storage is 100 % secure. We cannot guarantee absolute security.

12. Children's Privacy

The Service is not directed to children under 16 years of age. We do not knowingly collect personal data from children under 16. If you believe we have inadvertently collected such data, contact us and we will delete it promptly.

13. Changes to This Policy

We may update this Privacy Policy and Cookie Policy from time to time. The updated version will be posted on this page with the revised "Last updated" date. We encourage you to review this page periodically. Material changes may be communicated via email or a prominent notice on the Service.

14. Contact

For any questions, concerns or requests regarding this Privacy Policy, Cookie Policy or your personal data, please contact us via the Contacts page.

You also have the right to lodge a complaint with the Spanish Data Protection Agency (Agencia Española de Protección de Datos — AEPD) at www.aepd.es.