Last updated: April 2026 Konfetiflow (“Konfetiflow”, “we”, “us”, or “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, disclose, and otherwise process personal data when you visit our website, contact us, subscribe to our communications, or engage our services. It also explains your rights in relation to your personal data and how applicable data protection laws may apply to you. By using our website www.konfetiflow.com or services, you acknowledge that you have read and understood this Privacy Policy.
Who We Are
Konfetiflow is a digital marketing studio providing services including email marketing, website design, and related digital support for small and growing businesses. For the purposes of applicable data protection legislation, including the General Data Protection Regulation (“GDPR”) where relevant, Konfetiflow acts as the data controller in relation to personal data collected through its website and marketing activities. If you have any questions about this Privacy Policy or about how we process your personal data, you may contact us at:
Dorisel Talavera Ruiz
Email: hello@konfetiflow.com
Location: Madrid, Spain
Scope of This Privacy Policy
This Privacy Policy applies to personal data collected through our website, landing pages, contact forms, newsletter subscriptions, and direct communications with Konfetiflow.
It also applies to personal data processed in connection with enquiries about our services and client relationships.
This Privacy Policy does not apply to third-party platforms, tools, or websites that may be linked to or integrated with our services. Those are governed by their own privacy policies.
Personal Data We Collect
We collect personal data in a way that is proportionate to the nature of our services.
This may include personal data you provide directly, such as your name, email address, business name, and any information you choose to share when contacting us, completing a form, or requesting services.
When you interact with our website, we may also collect certain technical information automatically, including your IP address, browser type, device information, and basic usage data such as pages visited and time spent on the site.
Where you subscribe to our emails, we may process information related to your engagement with our communications, such as whether emails are opened or links are clicked. We do not intentionally collect sensitive personal data.
We do not intentionally collect sensitive personal data.
How We Use Your Personal Data
We use personal data in a way that is necessary and proportionate to operating Konfetiflow and delivering our services.
We may also use personal data to understand how visitors interact with our website, improve our content and offerings, and ensure the performance and security of our systems.
We may also use personal data to understand how visitors interact with our website, improve our content and offerings, and ensure the performance and security of our systems.
Where you have provided your consent, we may send occasional marketing communications, including updates, insights, or information about our services. You may withdraw your consent at any time.
We may also process personal data where necessary to comply with applicable legal and regulatory obligations.
Legal Bases for Processing
Where applicable under GDPR and similar laws, we rely on appropriate legal bases to process your personal data.
These include your consent, where you choose to subscribe to communications; the performance of a contract, where processing is necessary to provide services you have requested; compliance with legal obligations; and our legitimate interests in operating and improving our business, provided that such interests do not override your rights.
Marketing Communications
If you choose to subscribe to Konfetiflow communications, you may receive occasional emails related to our services, updates, or insights.
You can unsubscribe at any time by using the link included in our emails or by contacting us directly.
We do not sell, rent, or share your personal data with third parties for their own marketing purposes.
Cookies and Similar Technologies
Our website may use cookies and similar technologies to ensure proper functionality, understand how visitors interact with the site, and improve overall performance.
Where required, we will request your consent before placing non-essential cookies.
You can manage your cookie preferences through your browser settings or through a cookie banner if implemented on the site.
This website may use tools such as Google Analytics, Framer analytics, or similar technologies.
Disclosure of Personal Data
We may share personal data with trusted third-party service providers who support the operation of our business and enable us to deliver our services effectively.
In particular:
MailerLite is used to manage email communications and newsletter subscriptions. When you submit your email address, your data is stored and processed through MailerLite in accordance with their privacy practices.
Google Analytics (or similar analytics tools) may be used to understand how visitors interact with our website. This may include the collection of information such as IP address, browser type, and usage data such as pages visited and time spent on the site.
These providers process personal data on our behalf and are required to handle it securely and in compliance with applicable data protection laws.
You can review their respective privacy policies here:
We may also disclose personal data where required to comply with legal obligations or to protect our rights.
International Transfers
As we operate online and may work with international tools and clients, your personal data may be processed outside your country of residence.
Where this involves transfers subject to data protection regulations, appropriate safeguards are applied, such as contractual protections or reliance on recognized legal mechanisms.
Data Retention
We retain personal data only for as long as necessary to fulfil the purposes outlined in this Privacy Policy.
For example, enquiry data may be retained for a limited period to allow follow-up, and client-related data may be retained for longer where required for contractual or legal reasons.
When data is no longer needed, it is securely deleted or anonymised.
Data Security
We take reasonable and appropriate measures to protect personal data, including the use of secure platforms, controlled access, and trusted service providers.
While we take steps to protect your data, no system can guarantee complete security.
Your Rights
Depending on your location, you may have rights in relation to your personal data, including the right to access, correct, delete, or restrict the processing of your data, as well as the right to withdraw consent where applicable.
If you wish to exercise your rights, you can contact us at:
hello@konfetiflow.com
You may also have the right to lodge a complaint with a relevant data protection authority.
Children’s Privacy
Konfetiflow services are not directed at children, and we do not knowingly collect personal data from individuals who are considered minors under applicable law.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Updates will be published on this page with a revised effective date.
Contact
If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us at hello@konfetiflow.com