Privacy policy
Last updated: 07/06/2026
At Vitachy we handle your personal data with the same approach as our products: only what's necessary, no excess. This policy explains what data we collect, why and what rights you have, under Regulation (EU) 2016/679 (GDPR) and Spanish Organic Law 3/2018 (LOPDGDD).
Data controller
- Identity: VITACHY SPAIN, S.L. — Spanish NIF B55399679
- Address: C/ Gabriel Miró 1, 4º E, 07011 Palma de Mallorca (Spain)
- Email: [email protected]
What data we process and where it comes from
Only what you voluntarily provide via our contact form: name, email address and the content of your message.
This site has no user registration, does not handle purchases or payments (which happen on Amazon under their own privacy policy) and does not use tracking cookies or advertising profiles.
Purpose and legal basis
| Purpose | Legal basis |
|---|---|
| Reply to your enquiries sent via the contact form | Your consent (Art. 6.1.a GDPR), given by ticking the acceptance box before sending |
We do not use your data for marketing, do not build profiles and do not make automated decisions with legal effects.
How long we keep your data
Your message is received directly in our email inbox; this website does not store it in any database. We keep correspondence as long as needed to handle your enquiry and, at most, for one year from the last communication, unless the enquiry leads to a relationship requiring longer legal retention.
Recipients of your data
We do not share your data with third parties. For the technical operation of the form we use the following data processors:
- Cloudflare, Inc. (site hosting and anti-spam verification via Turnstile).
- Resend (Plus Five Five, Inc.) (delivery of the message to our inbox via EU infrastructure).
These providers may be subject to international data transfers, performed with GDPR safeguards (adequacy decisions, such as the EU-US Data Privacy Framework, or standard contractual clauses).
Your rights
You can exercise the rights of access, rectification, erasure, objection, restriction and portability, and withdraw consent, by writing to [email protected] stating the right you wish to exercise. We will reply within one month.
If you believe your data has not been handled correctly, you can file a complaint with the Spanish Data Protection Agency (www.aepd.es).
Security
We apply appropriate technical and organisational measures to protect your data: encrypted communication (HTTPS) across the whole site, anti-spam verification and restricted access to the contact inbox.