Version: December 2025

PRIVACY POLICY

1. INTRODUCTION

This Privacy Policy explains how Fishtank Consultancy, S.L. (Spain) and Fishtank Consultancy México, S.A. de C.V. (Mexico) (collectively referred to as “Fishtank”, “we”, “our”, or “us”) collect, use, and protect personal data obtained through the website www.fishtankconsultancy.com.

By using our Site or submitting personal information through online forms, you acknowledge that you have read and understood this Policy.

2. IDENTITY OF THE DATA CONTROLLERS

Depending on your location or interaction:

  • EU/EEA clients or visitors:
    Data Controller – Fishtank Consultancy, S.L.
    Avinguda Diagonal 131, 08018 Barcelona, Spain
    Email: dataprivacy@fishtankconsultancy.com
    Applicable law: EU GDPR + Spanish LOPDGDD

  • LATAM clients or visitors:
    Data Controller – Fishtank Consultancy México, S.A. de C.V.
    Sócrates 141, Piso 2, Colonia Polanco II Sección, Alcaldía Miguel Hidalgo, 11530 Ciudad de México, Mexico
    Email: dataprivacy@fishtankconsultancy.com
    Applicable law: Mexican LFPDPPP

3. DATA WE COLLECT

We may collect the following types of information:

  • Contact details (name, email, company, phone number)

  • Professional or business information (role, organization, service interest)

  • Technical data (browser type, IP address, device)

  • Information you voluntarily provide via contact forms or Zoho Bookings

4. HOW WE COLLECT DATA

Data may be collected through:

  • Website contact and inquiry forms

  • Meeting bookings via Zoho Bookings

  • Customer relationship management via Zoho CRM

  • Cookies and analytics tools (see Cookie Policy)

5. PURPOSE OF PROCESSING

We process your data for:

  • Responding to inquiries or service requests

  • Managing client relationships and communication

  • Marketing and lead management (in Zoho CRM)

  • Maintaining and improving website functionality

  • Legal and compliance obligations

We do not sell, rent, or lease personal data.

6. LEGAL BASIS FOR PROCESSING (EU USERS)

Processing is based on:

  • Your consent when submitting forms or subscribing to communication,

  • Legitimate interest in responding to inquiries and managing business contacts,

  • Compliance with legal obligations applicable to our business.

7. DATA TRANSFERS AND INTERNATIONAL STORAGE

We use Zoho as a service provider for CRM and form submissions. Data may be stored in EU and US data centers.
In cases where data is transferred outside the EU, we rely on Standard Contractual Clauses (SCCs) or equivalent safeguards as provided by Zoho Corporation.

8. DATA RETENTION

Personal data is retained only as long as necessary for the purpose it was collected or as required by law.

9. YOUR RIGHTS

Depending on your jurisdiction, you may have the right to:

  • Access, correct, or delete your personal data,

  • Withdraw consent at any time,

  • Request data portability (EU users),

  • Object to or limit processing,

  • File a complaint with your local Data Protection Authority.

Requests can be sent to: dataprivacy@fishtankconsultancy.com

10. DATA SECURITY

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, alteration, or disclosure.

11. CHILDRENS’S DATA

We do not intentionally collect data from children under 14 years of age. If you believe that a child has provided us with personal data, please contact us immediately at dataprivacy@fishtankconsultancy.com, and we will delete such information promptly.

12. UPDATES TO THIS POLICY

We may update this Policy periodically. The updated version will be posted on our website with a revised “Version” date.

9. CONTACT US

If you have any questions or wish to exercise your data protection rights, please contact:

dataprivacy@fishtankconsultancy.com