Proviq

Privacy Policy

Last updated: 13 de abril de 2026

1. Data Controller

Proviq is the controller of personal data collected through this platform. For any privacy-related questions, please contact us at:

Email: info@proviq.es

2. Data We Collect

We collect the following personal data:

  • Name or company name (tax ID, address)
  • Email address
  • Phone number
  • Billing and payment data (managed by Stripe)
  • IP address and navigation data (for security purposes)
  • Order history and in-platform communications

3. Purposes and Legal Basis

Account management and platform access

Legal basis: contract performance (Art. 6.1.b GDPR)

Order processing and billing

Legal basis: contract performance (Art. 6.1.b GDPR)

Security and fraud prevention

Legal basis: legitimate interest (Art. 6.1.f GDPR)

Service communications

Legal basis: contract performance / legitimate interest

4. Third Parties

We share data with the following providers to deliver the service:

Stripe

Payment processing. Card data never passes through our servers.

stripe.com/privacy

Google reCAPTCHA

Bot protection on login and registration forms. Google acts as a data processor.

policies.google.com/privacy

Google OAuth

Allows signing in with your Google account if you choose to do so.

OpenAI

OCR processing of delivery notes and invoices. Documents are processed on demand and not used to train models.

openai.com/policies/privacy-policy

Hostinger

Server hosting and transactional email delivery (account verification, notifications).

5. Data Retention

We retain your data for as long as your account is active. After cancellation, data is deleted within 90 days, unless legal obligations require longer retention (e.g., billing data: 5 years under Spanish tax law).

6. Your Rights

Under the GDPR, you have the right to:

  • Access: know what data we hold about you
  • Rectification: correct inaccurate data
  • Erasure: request deletion of your data
  • Portability: receive your data in a structured format
  • Objection and restriction: limit certain processing activities

To exercise any right, write to us at info@proviq.es. You may also lodge a complaint with the Spanish Data Protection Agency (AEPD).

7. Cookies and Similar Technologies

We use the following cookies:

access_tokenSession cookie (HttpOnly). Required for authenticated access. Duration: 15 minutes.
refresh_tokenSession renewal cookie (HttpOnly). Duration: 7 days.
_grecaptchaGoogle reCAPTCHA cookie for bot protection. Managed by Google.

We do not use advertising or third-party tracking cookies.

8. Security

We apply technical and organisational measures to protect your data: encryption in transit (HTTPS/TLS), short-lived token-based authentication, secure password storage with bcrypt, and role-based access control.

9. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes by email. The last updated date is always shown at the top of this document.

Back to login