Privacy policy
This Privacy Policy sets out, in detail, how Ventigram collects, uses, stores, and protects personal data processed in connection with website use and request channels for creators and brands. This version is production-ready and includes sample corporate details pending final legal validation.
1. Data controller
The controller responsible for personal data processing carried out through this website is Ventigram Commerce Labs S.L., sample corporate data, with registered office at Calle Ejemplo 123, 28000 Madrid, Spain, and contact email support@ventigram.com.
2. Categories of data processed
- Identification data: name, surname, and profile references.
- Contact data: email address, telephone number, and communication preferences.
- Professional and commercial data: creator category, estimated audience, product category, brand profile, estimated monthly volume, and website URL.
- Technical data: IP address, browser metadata, access logs, and website interaction events.
3. Purposes and legal bases of processing
Ventigram may process personal data in order to manage contact requests and onboarding applications from creators or brands, provide information about the platform and onboarding process, manage operational communications, and reinforce service security.
The legal bases supporting such processing are user consent, pre-contractual measures requested by the data subject, compliance with legal obligations, and legitimate interest in operating and protecting the service.
4. Data retention periods
Personal data shall be retained for the period required to fulfill each purpose and, thereafter, for the retention periods required by applicable law.
- Contact requests: up to 24 months from the last relevant interaction.
- Pre-contractual information: throughout the application assessment process and reasonable follow-up periods.
- Contractual and commercial records (where applicable): during the contractual relationship and applicable statutory limitation periods.
- Technical logs: during security and audit periods established in internal policies.
5. Recipients and data processors
Ventigram may disclose data to providers acting as data processors under contract, including hosting services, analytics tools, form and email systems, CRM platforms, or legal and accounting advisory services.
Data may also be disclosed where required by law or upon request from a competent authority.
6. International data transfers
Where certain providers are located outside the European Economic Area, Ventigram shall implement appropriate safeguards under applicable law, including standard contractual clauses, adequacy decisions, or other valid transfer mechanisms.
7. Data subject rights
Data subjects may exercise their rights of access, rectification, erasure, objection, restriction of processing, and portability, and may withdraw consent at any time without retroactive effect on previously lawful processing.
To exercise such rights, data subjects may send a request to support@ventigram.com, including sufficient information to verify identity and specify the scope of the request.
If a data subject considers that their rights have not been properly addressed, they may lodge a complaint with the competent supervisory authority.
8. Security measures
Ventigram applies proportionate technical and organizational measures to ensure confidentiality, integrity, and availability of personal data, including access controls, role-based permissions, encrypted communications, and periodic security reviews.
9. Data relating to minors
Ventigram services are not directed to minors below the legal age required to provide valid consent. If data concerning minors is detected without proper authorization, appropriate measures will be adopted for its prompt deletion.
10. Policy amendments
Ventigram may update this Privacy Policy to reflect legal, technical, or operational changes. The current version shall always be available on this page together with its update date.