PRIVACY POLICY
Update date: Nov 1, 12:00 AM
Who we are
Email for privacy matters: privacy@rendermux.
When a legal entity is incorporated this Policy will be updated to include the company’s registered name, NIF/CIF, and registered address.
This Policy implements Regulation (EU) 2016/679 (GDPR), Spanish Organic Law 3/2018 (LOPDGDD) and Law 34/2002 (LSSI).
What we do
The Site is an informational landing page where visitors can contact us, register their interest in our services, and subscribe to our newsletter/updates. There is no e‑commerce and no user account area.
Data we collect
We only collect the information you provide through forms:
Contact / Register interest: first name, last name, email ("How can we reach you?"), country, company type/category, and your message.
Newsletter / updates: email address and proof of consent (timestamp, source page, and — if enabled — double opt‑in).
We do not request sensitive data (special categories). Please do not include health data, political opinions, or other sensitive information in free‑text fields.
If you contact us by email or social networks, we will also process the data appearing there (email address, name/alias, message content) to answer you.
Children’s Privacy
This Site is not directed to minors. We do not knowingly collect data from children under 14 in Spain (or under the higher local age of digital consent where applicable). If we learn that we have received data from a child below that age, we will delete it.
Purposes & legal bases (GDPR)
We process your data for the following purposes and on these legal bases:
Responding to your enquiries / contact requests — Legitimate interest (Art. 6(1)(f) GDPR) to operate, promote and grow our business, and pre‑contractual measures on request (Art. 6(1)(b) GDPR) where your request is related to potential collaboration.
Maintaining a B2B lead/CRM list — Legitimate interest (Art. 6(1)(f) GDPR) in following up with companies and professionals interested in our services. You can object at any time.
Sending newsletters, product updates, invitations, events — Consent (Art. 6(1)(a) GDPR) and LSSI (commercial communications). You may withdraw your consent or object at any time using the unsubscribe link or by emailing us.
Security and operation of the Site — Legitimate interest (Art. 6(1)(f) GDPR) in keeping the Site secure.
We do not carry out automated decision‑making that produces legal or similarly significant effects. We may categorise contacts (e.g. by country, language or company type) only to send relevant communications; this does not produce legal effects on you.
Cookies & tracking
At launch, we do not use analytics, advertising pixels, heatmaps or other non‑essential trackers. We may use strictly necessary cookies (if any) for technical/security purposes.
If in the future we add YouTube/Vimeo embeds, analytics (e.g. GA4), or social pixels (Meta, LinkedIn), those technologies will be blocked until you provide consent via a GDPR‑compliant cookie banner. This Policy and our Cookie Policy will then be updated.
Our Site (built/hosted in Framer) can integrate third‑party consent tools (e.g. Cookiebot, Axeptio). Until non‑essential cookies are used, a banner is not required in the EU/EEA.
Where we store data & international transfers
We use EU‑friendly providers, but some of them are located or process data outside the EEA.
When these providers are outside the EEA or use infrastructure outside the EEA, we rely on one or more of the following:
Adequacy decisions of the European Commission, where applicable.
Standard Contractual Clauses (SCCs) approved by the European Commission.
Additional safeguards where necessary.
You can request information about the specific safeguards applied by writing to privacy@rendermux.com.
Processors / data sharing
We share personal data only with service providers that help us run the Site and our communications.
These providers act as data processors and process personal data on our behalf and under our instructions. We enter into or rely on their Data Processing Agreements and applicable SCCs. We do not sell your personal data and we do not share it with third parties for their own marketing.
We may update this list if we add or replace providers that offer equivalent guarantees.
Retention
Enquiries / leads: we keep them for up to 24 months from the last interaction to be able to follow up on your interest in our services, unless you object earlier or we need to keep the information to establish, exercise or defend legal claims.
Newsletter / marketing: we keep your data until you withdraw consent or unsubscribe. We may keep a suppression list (minimal data) to make sure we do not email you again.
Administrative / legal data: we may keep certain records for longer periods if required by applicable law.
Security
We use HTTPS, access controls, and the principle of least privilege. Currently, internal access is limited to one person; as the team grows, access will be role‑based and logged. No system is 100% secure, but we will take reasonable and proportionate measures to protect your data.
Your rights (EU/EEA)
You may exercise the following rights, in the cases and with the scope provided by law: access, rectification, erasure, restriction, portability, and objection. Where the processing is based on consent, you may withdraw your consent at any time.
To exercise them, write to privacy@rendermux.com with the subject “Data protection – exercise of rights” and, where necessary, attach proof of identity. We will answer within the legal period.
You also have the right to file a complaint with the Agencia Española de Protección de Datos (AEPD): https://www.aepd.es
Data Protection Officer (DPO)
At this stage we do not appoint a Data Protection Officer because our activities do not require it under Art. 37 GDPR. You can contact us at the addresses above for any privacy question.
Changes
We may update this Policy from time to time. We will publish the updated version on this page and change the effective date.