Privacy and Cookies Policy

Privacy and Cookies Policy

Privacy and Cookies Policy

Last updated: 12/20/2025


  1. General information

This Privacy and Cookies Policy regulates the processing of personal data carried out through the website valyriox.com (hereinafter, the “Website”), owned by Valyriox S.L., with registered office in Barcelona (Spain).

By using the Website or contracting our services, the user declares that they have read and understood this policy.


  1. What data do we process?

Depending on the relationship with the user and the use of the Website, Valyriox S.L. may process the following categories of data:

Identification and contact data: name, surname, email, telephone, company (if applicable).

Data provided in requests and forms: information that the user includes in contact/request forms and subsequent communications.

Data necessary for contracting and providing the service: customer data, communications, incidents, and support.

Data for electronic signature: data necessary to process authorizations and documents related to the service through electronic signature.

Billing data: name/business name, NIF/CIF, tax address, and data necessary to issue invoices.

Payment-related data (Stripe): payment confirmation, status, transaction identifiers, and anti-fraud data.
Valyriox S.L. does not store complete card details; the processing of card data is carried out directly by the payment provider (Stripe), in accordance with its own policies.

Minimum technical data: essential data for the security and functioning of the Website (for example, technical registers and technical cookies).

Origin of data:

Data provided by the user (forms, emails, contracting).

Data generated during the provision of the service (case management, reports, incidents).


  1. For what purposes do we process your personal data?

Valyriox S.L. processes personal data for the following purposes:


3.1. Service provision and request management

Description: management of requests for information and contact, processing of budgets, client registration, and execution of the contracted service.
Legal basis: execution of a contract or application of pre-contractual measures.


3.2. Reports and periodic information linked to the contracted service

Description: sending operational communications related to the service, including weekly reports with the content found, actions taken (for example, removals/managements), and evolution of the case.
Legal basis: contractual execution (these are necessary communications to provide the service and add value to it).


3.3. Electronic signature of necessary documentation

Description: management of authorizations, consents, mandates, or other documents linked to the provision of the service through electronic signature tools.
Legal basis: contractual execution and/or compliance with legal obligations when applicable.


3.4. Administrative, accounting, and billing management

Description: billing, accounting, collection management, internal administrative management, and handling of requirements.
Legal basis: compliance with legal obligations and contractual execution.


3.5. Security, fraud prevention, and correct functioning of the Website

Description: guaranteeing the security of the Website and services, prevention of fraud, control of abuse, and management of technical incidents.
Legal basis: legitimate interest of the data controller.


Currently we do NOT perform:

Navegation analytics or measurement (for example, GA4).

Behavioral advertising, remarketing, or advertising profiling through cookies.

In the event that these are activated in the future, this policy will be updated and, when legally required, the corresponding consent will be requested.


  1. What is the legitimacy for the processing of your data?

The legal bases that legitimize the processing are:

Execution of a contract or application of pre-contractual measures.

Compliance with applicable legal obligations.

Legitimate interest (security, fraud prevention, and functionality).

User consent, only when legally required for a specific purpose.


  1. How long do we keep your data?

Personal data will be kept:

For the duration of the contractual relationship and the time necessary to provide the service.

Once completed, it will be kept duly blocked for the legally established periods to handle possible liabilities (for example, tax/accounting obligations or claims).

When the processing is based on consent (if applicable in the future), until it is withdrawn.


  1. Do we share your data with thirds parties?

Your data may be communicated only when necessary to:


6.1. Data processors (providers)

Zoho (for example: Zoho CRM, Zoho Forms, Zoho Sign, Zoho Flow) for sales management, forms, electronic signature, and operational automations of the service.

Stripe as a payment provider to process charges and prevent fraud.

Providers of hosting, storage, infrastructure, and technical support necessary for the functioning of the Website and the provision of the service.


6.2. Recipients by legal obligation

Public administrations, competent authorities, or courts, when there is a legal obligation or requirement.

In all cases, Valyriox S.L. limits access to strictly necessary data and applies the required contractual guarantees.


  1. International transfers

Some technological providers may be located or provide support from outside the European Economic Area (EEA). In those cases, Valyriox S.L. will apply the appropriate guarantees required by the GDPR, such as Standard Contractual Clauses or other mechanisms that ensure an equivalent level of protection.


  1. What are your rights?

The user can exercise the following rights at any time:

Access

Rectification

Erasure

Objection

Limitation of processing

Data portability

Withdrawal of consent (when applicable)


To exercise them, the user can write to: privacidad@valyriox.com
Indicating the right they wish to exercise and the necessary information to manage the request.

Likewise, the user has the right to file a complaint with the Spanish Data Protection Agency (AEPD) if they consider that their right to data protection has been violated.


  1. Security measures

Valyriox S.L. adopts reasonable technical and organizational measures to protect personal data and prevent its alteration, loss, unauthorized processing, or access, taking into account the state of the art, the nature of the data, and the associated risks.


  1. Changes to this policy

Valyriox S.L. may modify this policy to adapt it to legal, technical, or operational changes. The “Last updated” date indicates the current version published on the Website.



COOKIES POLICY


  1. What is a cookie?

A cookie is a small text file that a website installs on the user's device when browsing. Some cookies are necessary for the correct functioning of the Website, security, and the provision of certain services.


  1. What types of cookies exist?

Cookies can be classified according to:

Who manages them: first-party or third-party.

Duration: session or persistent.

Purpose: technical (necessary), personalization, analytical, or advertising.


  1. What cookies do we use?

At valyriox.com we only use technical and necessary cookies, essential for:

the functioning of the Website, security, form usage, electronic signatures, and payment processing.


Currently we do not use analytical or advertising cookies.

Technical and necessary cookies (third parties)


Below are cookies that may be installed when using Website functionalities:

__stripe_mid – Technical/security – Stripe – Domain: .stripe.com – Approx. duration: 1 year

__stripe_sid – Technical (session) – Stripe – Domain: .stripe.com – Approx. duration: 30 minutes

_zcsr_tmp – Technical/security – Zoho – Domain: .zoho.com – Duration: session

_zlcmid – Technical/functionality – Zoho – Domain: .zoho.com – Approx. duration: 1 year

Note: the list may vary depending on the specific Zoho modules loaded on each page (forms, signing, etc.) and the browser configuration. Valyriox S.L. does not use these cookies for advertising purposes.


  1. Is it necessary to accept cookies?

Since the Website uses only technical and necessary cookies, prior consent from the user is not required for their installation, and an acceptance banner is not necessary, without prejudice to the duty to inform.


  1. How to delete or configure cookies

The user can configure their browser to block or delete installed cookies. How to do this will depend on the browser used:

Google Chrome

Microsoft Edge

Mozilla Firefox

Apple Safari

Opera