Privacy Policy
Last updated: December 2026

1. Data Controller

Omyguide Email: info@omyguide.guide Web: https://omyguide.guide We are committed to protecting your privacy and complying with: • Regulation (EU) 2016/679 (GDPR) • Spanish Organic Law 3/2018 on Data Protection (LOPD-GDD) • Spanish Law 34/2002 on Information Society Services (LSSI-CE) Supervisory Authority: Spanish Data Protection Agency (AEPD) www.aepd.es

2. Data We Collect

We collect the following personal data: • Name and email address (to create your account) • Password (encrypted) • Country of residence (optional) • Custom avatar (optional) • Purchase history and acquired guides • Reading progress in guides • Personal notes you create in guides • Preferred language • Access data (date, time, IP) for security • Payment information (processed by Stripe, not stored by us)

3. Legal Basis for Processing

We process your data based on: • Contract performance: necessary to provide our services • Consent: for optional features like avatar and country • Legitimate interest: to prevent fraud and improve services • Legal obligation: retention of tax and purchase data

4. Use of Your Data

We use your data to: • Manage your account and provide access to purchased guides • Process payments and maintain purchase history • Save your reading progress and personal notes • Send purchase confirmations and essential communications • Detect and prevent fraud, unauthorized use, or security breaches • Comply with legal and tax obligations • Improve our services We do NOT use your data for marketing without your explicit consent.

5. Sharing Data with Third Parties

We do NOT sell or rent your personal data. We share data only with: • Stripe: to process payments securely • Hosting services: to host the application • Google Maps: when you click on map links (subject to Google's policy) All third parties are contractually obligated to protect your data.

6. International Transfers

Your data may be transferred outside the European Economic Area (EEA) to servers in the U.S. (Stripe). We ensure these transfers comply with GDPR through standard contractual clauses.

7. Data Retention

We retain your data while: • Your account is active • Necessary to provide services • Required by law (tax data: 7 years) When you delete your account, we will delete your personal data within 30 days, except data we must retain by legal obligation.

8. Your Rights (GDPR/LOPD-GDD)

Under GDPR and LOPD-GDD, you have the right to: • Access: Obtain confirmation of whether we process your data and access it • Rectification: Correct inaccurate or incomplete data • Erasure: Request deletion of your data ("right to be forgotten") • Restriction: Restrict processing in certain circumstances • Portability: Receive your data in a structured format • Object: Object to the processing of your data • Automated decisions: Not be subject to decisions based solely on automated processing To exercise these rights, send a request to: info@omyguide.guide indicating "Exercise of GDPR rights" and attaching a copy of your ID document. If you believe your rights have been violated, you may file a complaint with the Spanish Data Protection Agency (AEPD): www.aepd.es

9. Security

We implement technical and organizational security measures: • Password encryption with bcrypt • HTTPS connections • Protection against unauthorized access • Monitoring of suspicious access attempts • Regular backups However, no system is 100% secure.

10. Cookies and Tracking Technologies

We use strictly necessary cookies for: • Maintaining your active session • Remembering your preferred language • Saving your reading progress locally • Affiliate referral cookie (omyguide_ref): stores the referral code for 30 days when you access through an affiliate link, to correctly attribute sales commissions We do NOT use advertising or third-party tracking cookies.

11. Minors

Our service is not directed at minors under 16 years old. We do not knowingly collect data from minors. If we discover we have collected data from a minor, we will delete it immediately.

12. Changes to this Policy

We may update this policy occasionally. We will notify you of significant changes by email or through a notice in the application.

13. Contact - Data Protection Officer

For any privacy inquiries or to exercise your rights: Email: info@omyguide.guide Subject: "GDPR - [Your inquiry]" We will respond within 30 days.