top of page

Privacy Policy

1. INTRODUCTION

Golpe Brillante ("we," "us," or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website (www.golpebrillante.com) or use our digital marketing services.

This policy complies with the UK General Data Protection Regulation (UK GDPR), the EU General Data Protection Regulation (EU GDPR), and the Data Protection Act 2018.

Data Controller: Golpe Brillante
Email: info@golpebrillante.com
Location: United Kingdom

If you have any questions about this Privacy Policy or how we handle your data, please contact us using the details above.

2. INFORMATION WE COLLECT

We collect and process the following types of personal data:

2.1 Information You Provide Directly

  • Contact Information: Name, email address, phone number, company name, and job title when you fill out contact forms, request quotes, or book consultations

  • Communication Data: Information contained in emails, phone calls, or other correspondence with us

  • Service Information: Details about the services you request, project requirements, and business objectives

  • Payment Information: Billing address and payment details (payment card information is processed securely by our third-party payment processors and is not stored by us)

  • Marketing Preferences: Your communication and marketing preferences

 

2.2 Information Collected Automatically

  • Technical Data: IP address, browser type and version, device type, operating system, time zone setting, and location data

  • Usage Data: Information about how you use our website, including pages visited, time spent on pages, links clicked, and navigation paths

  • Cookies and Similar Technologies: We use cookies and similar tracking technologies. See our Cookie Policy for more details.

 

2.3 Information from Third Parties

  • Social Media: If you interact with us on Facebook, Instagram, or LinkedIn, we may receive basic profile information

  • Business Information: Publicly available business information for B2B prospecting and market research

3. HOW WE USE YOUR INFORMATION

We process your personal data for the following purposes:

3.1 Service Delivery (Contractual Necessity)

  • To provide digital marketing services, including SEO, social media management, and content marketing

  • To communicate with you about your projects and services

  • To process payments and manage billing

  • To deliver requested information, quotes, and consultations

 

3.2 Business Operations (Legitimate Interests)

  • To improve our website, services, and customer experience

  • To analyse website usage and optimise performance

  • To conduct market research and develop new services

  • To manage our business operations and internal record-keeping

 

3.3 Marketing (Legitimate Interests or Consent)

  • To send you marketing communications about our services (only if you have opted in or have a legitimate interest basis)

  • To provide case studies and portfolio examples (with client consent)

  • To create targeted advertising campaigns

 

3.4 Legal Compliance

  • To comply with legal obligations, including tax and accounting requirements

  • To respond to legal requests and prevent fraud

  • To protect our legal rights and interests

4. LEGAL BASIS FOR PROCESSING

Under UK GDPR and EU GDPR, we process your personal data based on:

  • Consent: When you have given explicit consent (e.g., marketing communications)

  • Contract: When processing is necessary to perform a contract with you

  • Legitimate Interests: When we have a legitimate business interest (e.g., improving services, fraud prevention)

  • Legal Obligation: When we must comply with legal requirements

5. DATA SHARING AND DISCLOSURE

We may share your personal data with:

 

5.1 Service Providers

  • Website Hosting: Wix.com (servers located in Europe and US)

  • Email Services: Google Workspace / Gmail for business communication

  • Payment Processors: Secure third-party payment gateways (Stripe, PayPal, or similar)

  • Analytics: Google Analytics for website usage analysis

  • Marketing Tools: Social media platforms (Meta, LinkedIn) for advertising

  • Cloud Storage: Google Drive for document storage and project management

 

5.2 Legal Requirements
We may disclose your information if required by law, court order, or to protect our legal rights.

 

5.3 Business Transfers
In the event of a merger, acquisition, or sale of business assets, your data may be transferred to the new owner.

We do not sell your personal data to third parties.

6. INTERNATIONAL DATA TRANSFERS

Some of our service providers are based outside the UK and European Economic Area (EEA), including the United States. When we transfer data internationally, we ensure:

  • Adequacy decisions are in place (e.g., UK-US Data Privacy Framework)

  • Standard Contractual Clauses (SCCs) approved by the UK Information Commissioner's Office (ICO) and European Commission

  • Other appropriate safeguards are implemented

7. DATA RETENTION

We retain your personal data only for as long as necessary:

  • Client Data: For the duration of our business relationship plus 7 years for accounting and tax purposes

  • Marketing Data: Until you withdraw consent or request deletion

  • Website Analytics: 26 months (Google Analytics default)

  • Email Communications: As long as necessary for business purposes or legal requirements

8. YOUR DATA PROTECTION RIGHTS

Under UK GDPR and EU GDPR, you have the following rights:

8.1 Right to Access - You can request a copy of the personal data we hold about you.

8.2 Right to Rectification - You can request we correct inaccurate or incomplete data.

8.3 Right to Erasure ("Right to be Forgotten") - You can request deletion of your personal data in certain circumstances.

8.4 Right to Restrict Processing - You can request we limit how we use your data.

8.5 Right to Data Portability - You can request your data in a machine-readable format to transfer to another provider.

 

8.6 Right to Object - You can object to processing based on legitimate interests or for direct marketing purposes.

8.7 Right to Withdraw Consent - Where we rely on consent, you can withdraw it at any time.

8.8 Right to Lodge a Complaint - You have the right to complain to the UK Information Commissioner's Office (ICO) or your local data protection authority.

To exercise any of these rights, contact us at info@golpebrillante.com

bottom of page