CredoRento logo
EN | ES

Privacy Policy

Last updated: 5 April 2026

1. Data Controller

The data controller responsible for processing your personal data is:

CredoRento
CIF: C81878342
Address: Av. de Valdelaparra, 27, 28108 Alcobendas, Madrid, Spain
Email: info@credorento.com
Phone: +34 917 295 625

2. Personal Data We Collect

We collect personal data that you provide directly to us through the contact form on this website, or through direct communication by email or telephone. The categories of data we may collect include:

  • Identification data: name and surname
  • Contact data: email address
  • Communication content: the content of messages you send us
  • Financial data provided voluntarily during a consulting engagement: income information, expense records, and related household financial data
  • Technical data collected automatically: IP address, browser type, pages visited, and session duration (via cookies, subject to your consent)

We do not collect special categories of personal data (such as health data, racial or ethnic origin, or political opinions) through this website.

3. Legal Basis for Processing

We process your personal data on the following legal bases, as established by Regulation (EU) 2016/679 (GDPR) and Organic Law 3/2018 of 5 December on the Protection of Personal Data and the Guarantee of Digital Rights (LOPDGDD):

  • Consent (Article 6(1)(a) GDPR): When you submit the contact form, you provide explicit consent for us to process your data to respond to your enquiry. You may withdraw this consent at any time.
  • Legitimate interest (Article 6(1)(f) GDPR): For the processing of technical data necessary to maintain the security and proper functioning of this website.
  • Performance of a contract (Article 6(1)(b) GDPR): When you engage our consulting services, processing of your data is necessary to fulfil the service agreement.

4. Purposes of Processing

We use your personal data for the following purposes:

  • To respond to enquiries submitted through the contact form or by direct communication
  • To provide household financial consulting services when engaged to do so
  • To maintain and improve the security and functionality of this website
  • To comply with legal obligations applicable to our business activity
  • To send service-related communications when you are an active consulting client

We do not use your personal data for automated decision-making or profiling that produces legal effects or similarly significant effects.

5. Data Retention

We retain your personal data only for as long as necessary for the purposes for which it was collected, and in accordance with applicable legal obligations:

  • Contact form enquiries: data is retained for up to 12 months from the date of the last communication, unless a consulting relationship is established
  • Consulting client data: retained for the duration of the service relationship and for a further period of up to 5 years to comply with applicable commercial and tax law obligations
  • Technical and cookie data: retained in accordance with the periods specified in our Cookie Policy

Once retention periods expire, data is securely deleted or anonymised.

6. Data Sharing and Third Parties

We do not sell, rent, or trade your personal data to third parties. We may share your data with the following categories of recipients only where strictly necessary:

  • Technology service providers: Hosting and website infrastructure providers who process data on our behalf under data processing agreements compliant with GDPR
  • Legal and regulatory authorities: Where required by applicable law, court order, or regulatory obligation

Any third-party processors are bound by contractual obligations to process your data only on our instructions and in compliance with applicable data protection law.

7. International Data Transfers

Where personal data is transferred outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place, including the use of Standard Contractual Clauses approved by the European Commission, or that the transfer is to a country recognised as providing an adequate level of data protection. We will inform you of any such transfers upon request.

8. Your Rights

Under the GDPR and LOPDGDD, you have the following rights in relation to your personal data:

  • Right of access (Article 15 GDPR): To obtain confirmation of whether we process your data and to receive a copy of it
  • Right to rectification (Article 16 GDPR): To have inaccurate or incomplete data corrected
  • Right to erasure (Article 17 GDPR): To request deletion of your data where no legitimate grounds for retention exist
  • Right to restriction of processing (Article 18 GDPR): To request that we limit how we use your data in certain circumstances
  • Right to data portability (Article 20 GDPR): To receive your data in a structured, machine-readable format
  • Right to object (Article 21 GDPR): To object to processing based on legitimate interests
  • Right to withdraw consent: Where processing is based on consent, to withdraw it at any time without affecting the lawfulness of prior processing

To exercise any of these rights, contact us at info@credorento.com. We will respond within one month of receiving your request. You also have the right to lodge a complaint with the Spanish Data Protection Authority (Agencia Española de Protección de Datos, AEPD) at www.aepd.es.

9. Security Measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, alteration, or disclosure. These measures include encrypted data transmission (HTTPS), access controls, and regular security reviews. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational circumstances. The date of the most recent revision appears at the top of this page. We encourage you to review this policy periodically. Continued use of this website following any update constitutes acceptance of the revised policy.

For any questions about this Privacy Policy, contact us at info@credorento.com.