Back to home

Privacy Policy

Last updated: December 2025

At Santivilla we are committed to protecting your privacy. This policy explains how we collect, use and protect your personal information in accordance with the European Union General Data Protection Regulation (GDPR).

1. Data Controller

The controller of your personal data is Santivilla. You can contact us at: contacto@santivilla.com

2. Data We Collect

We collect the following types of personal data:

  • Username (voluntarily provided when making a donation)
  • Payment information processed through Stripe (we do not store card data)
  • Browsing and website usage data (through cookies with your consent)
  • IP addresses (temporarily recorded in our server logs)

3. Legal Basis and Purpose of Processing

We process your personal data under the following legal bases:

Contract performance:

To process your donations and maintain the solidarity ranking.

Consent:

For the use of analytical cookies (Google Analytics) and website tracking.

Legitimate interest:

To maintain site security and prevent fraud.

4. How We Use Your Data

We use your personal data to:

  • Process and record your donations
  • Display your name on the public ranking (if you provide one)
  • Improve user experience on our website
  • Comply with legal obligations and prevent fraud

5. Cookies and Tracking Technologies

We use cookies to improve your experience. We only load analytics cookies (Google Analytics) with your explicit consent. You can withdraw your consent at any time.

6. Sharing Data with Third Parties

We share limited data with the following services:

  • Stripe: To process payments (they comply with PCI-DSS and PSD2)
  • Supabase: To store donation information (they comply with GDPR)
  • Google Analytics: Only with your consent, for website analytics
  • Vercel: For website hosting

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes described in this policy or as required by law.

8. Your Rights (GDPR)

You have the following rights regarding your personal data:

  • Right of access: You can request a copy of your personal data
  • Right to rectification: You can correct inaccurate data
  • Right to erasure: You can request deletion of your data
  • Right to data portability: You can request a copy of your data in structured format
  • Right to object: You can object to the processing of your data
  • Right to withdraw consent: You can withdraw your consent for cookies at any time

To exercise these rights, contact us at: contacto@santivilla.com

9. Data Security

We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, loss or destruction.

10. International Transfers

Some of our service providers (such as Stripe, Google Analytics) may transfer data outside the EEA. We only use providers that offer adequate data protection guarantees.

11. Minors

Our service is aimed at people over 18 years of age. We do not intentionally collect data from minors without parental consent.

12. Changes to this Policy

We may update this policy occasionally. We will notify you of any significant changes by posting a notice on our website.

13. Contact

If you have questions about this privacy policy or how we handle your data, contact us at:

contacto@santivilla.com

Back to home