Privacy policy

Data controller: Stan Laurentiu / Atelier Stan Official contact email: press@atelier-stan.com

1. General principles

Atelier Stan guarantees the protection of personal data in accordance with Regulation (EU) 2016/679 (GDPR), Organic Law 3/2018 (LOPDGDD) and other applicable regulations on privacy, transparency and digital rights.

Data processing is governed by the principles of lawfulness, fairness, transparency, data minimization, integrity, accuracy and confidentiality.

Atelier Stan promotes digital sustainability and the active protection of information throughout its entire lifecycle.

2. Data collected

This website and press kit do not generally collect personal data.

If the contact form or email is used, the data provided (name, email and message) will be processed solely to respond to the professional inquiry or request.

No automated forms or user tracking mechanisms are used.

3. Purpose of processing

Data will be used exclusively to:

• Respond to press, communication or collaboration requests.
• Maintain professional and institutional courtesy correspondence.
• Ensure the traceability of communications and prevent technical or identity abuse.

No automated profiling or decisions based solely on algorithms are carried out.

4. Legal basis for processing

Processing is based on:

• The consent of the data subject (Art. 6.1.a GDPR).
• The performance of pre-contractual or contractual measures (Art. 6.1.b GDPR).
• The legitimate interest of the controller to ensure the security of the site and professional correspondence (Art. 6.1.f GDPR).

5. Disclosure and access to data

Personal data will not be disclosed to third parties, except where required by law or due to technical necessity arising from the service (for example, hosting or secure email providers).

In the case of technological sub-processors, Atelier Stan will ensure compliance with Article 28 of the GDPR, requiring equivalent levels of security, confidentiality and protection.

6. International transfers

If data were to be processed or stored outside the European Economic Area (EEA), standard contractual clauses and appropriate safeguards in accordance with Articles 45 and 46 of the GDPR will apply.

7. User rights

Data subjects may exercise their rights of access, rectification, erasure, restriction, objection and portability by contacting: press@atelier-stan.com

They may also file a complaint with the Spanish Data Protection Agency (AEPD) or the competent supervisory authority.

Atelier Stan will respond to requests within a maximum period of one month from receipt.

8. Retention and secure destruction

Personal data and electronic evidence will be retained:

• For the time necessary to address the request or maintain the professional relationship.
• Subsequently, for a maximum of 5 years for archiving, compliance and defense against potential claims.

After this period, data will be securely and verifiably deleted or anonymized, applying certified destruction standards and cybersecurity best practices.

Atelier Stan maintains encrypted backups for a maximum period of 12 months, solely to ensure operational continuity.

9. Information security

Appropriate technical and organizational measures are implemented in proportion to the risk, including:

• encryption and authentication of communications;
• access logging and internal traceability;
• permission control and privacy by design;
• periodic vulnerability reviews.

Access to data is limited to personnel and collaborators with operational need and confidentiality obligations.

10. Artificial intelligence and automated processes

Atelier Stan may use technological or assisted AI tools in its professional activity, always under significant human oversight.

In no case will personal data be used to train AI models or integrated into third-party datasets.

Transparency, traceability and human control are guaranteed over any automated process that could influence the communication or processing of data.

11. Ethics channel and compliance

Atelier Stan maintains a confidential ethics channel for good faith reporting of incidents or personal data breaches.

Notifications may be made by digitally signed or authenticated email.

12. Electronic communications

Communications with Atelier Stan shall be deemed valid if made from or to the official email address indicated.

Electronic notifications shall be deemed received at the time of their certified delivery or electronic signature, in accordance with Regulation (EU) 910/2014 (eIDAS).

13. Sustainability and digital best practices

The processing of personal and technical data is carried out under criteria of energy efficiency, digital sustainability and environmental impact reduction.

Atelier Stan uses servers and services aligned with European standards of responsible consumption and privacy by design.

14. Preservation of digital evidence

Atelier Stan may retain verifiable electronic evidence (hashes, records, logs or delivery certificates) as a guarantee of authenticity, integrity and traceability of its professional communications and processed data.

This evidence is securely stored for the legally required period and destroyed in accordance with certified protocols.

15. Policy modifications

Atelier Stan may update this Privacy Policy at any time to adapt it to regulatory or technical changes.

The version published on the official website shall be the only valid and current version for legal purposes.

16. Language and precedence

In the event of a discrepancy between language versions, the Spanish version shall prevail as the sole reference.

Translations are offered for informational purposes only.

Let's talk