Privacy Policy

1. Data Controller

In accordance with the General Data Protection Regulation (GDPR) and Spanish Organic Law 3/2018 on Personal Data Protection (LOPDGDD), we inform you that personal data collected through this website will be processed by:

• Owner: Pablo Belmonte Hernández
• Address: Calle Arganda 30, 28005 Madrid
• Email: info@brillemos.org

2. Data We Collect

We collect the following types of personal data:

• <strong>Identification data:</strong> name, email, password (encrypted)
• <strong>Usage data:</strong> sessions conducted, configuration preferences
• <strong>Session content:</strong> conversations with the AI (encrypted and private)
• <strong>Payment data:</strong> managed by Stripe. We do not store card data.

3. Purpose of Processing

Your personal data will be processed for the following purposes:

• Provision of the AI-powered relationship improvement service
• Management of your user account
• Billing and collection for contracted services
• Service-related communications
• Compliance with legal obligations

4. Legal Basis for Processing

The processing of your data is based on:

• <strong>Contract performance:</strong> provision of the contracted service
• <strong>Consent:</strong> for sending commercial communications
• <strong>Legitimate interest:</strong> for improving our services
• <strong>Legal obligation:</strong> compliance with tax and accounting regulations

5. Data Retention

Personal data will be retained as long as the contractual relationship is maintained. After termination, they will be kept for the legally established periods (5 years for tax data). AI conversations are stored encrypted while your account is active. When you delete your account, they are permanently erased.

6. Data Recipients

Your data may be shared with:

• <strong>Service providers:</strong> hosting (DigitalOcean, EU), payment processing (Stripe), AI services (Google Gemini)
• <strong>Public authorities:</strong> when required by law
• All our providers comply with adequate data protection guarantees (GDPR or Standard Contractual Clauses)

7. Your Rights

You have the right to:

• <strong>Access:</strong> know what data we hold about you
• <strong>Rectification:</strong> correct inaccurate data
• <strong>Erasure:</strong> request deletion of your data
• <strong>Objection:</strong> object to the processing of your data
• <strong>Restriction:</strong> request restriction of processing
• <strong>Portability:</strong> receive your data in a structured format

To exercise these rights, you can contact us at info@brillemos.org.

8. Data Security

We implement appropriate technical and organizational measures to ensure the security of your data, including:

• SSL/TLS encryption in all communications
• Secure password hashing
• Restricted access to personal data
• Servers located in the European Union

9. Complaints

If you believe that the processing of your data does not comply with the regulations, you can file a complaint with the Spanish Data Protection Agency (www.aepd.es).

10. Changes

We reserve the right to modify this privacy policy to adapt it to legislative changes. We will notify you of any significant changes through the platform or by email.