Kontakt
CONTACT

Last updated: 31.10.2025

1. Introduction

Kubiack Law („we,“ „our,“ or „us“) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your personal information in compliance with the General Data Protection Regulation (GDPR). It is important that you take the time to read this Privacy Policy to understand how we may use your personal information.

2. Data We Collect

We may collect and process the following categories of personal data:

  • Personal Data (name, email address, phone number, postal address)
  • Company Data (company email address, company phone number, company address)
  • Technical Data (IP address, browser type, operating system)
  • Usage Data (pages visited, time spent on our website, interactions)
  • Communication Data (consulting inquiries, customer support inquiries,
    feedback)


3. How We Collect Data

We collect personal data through:

  • Direct interactions (calls, data you submit to us directly by email, Threema, WhatsApp for Business or regular mail & when you fill out web forms).
  • Automated technologies (cookies, server logs, analytics tools).
  • Third-party sources (service providers, business partners).


4. Legal Basis for Processing

We process personal data based on the following legal grounds:

  • Consent: If you contact us through our website, you explicitly consent to our use of your personal data for the purposes in Sec.5 below.
  • Legal Obligation: When compliance with legal requirements is necessary.


5. Purpose(s) of Data Processing

We use personal data to:

  • Provide and maintain our services to you.
  • Communicate with you regarding your service inquires, about updates, offers, or support.
  • Ensure security and prevent fraudulent activities.
  • Comply with legal obligations on EU or nation state level.


6. Data Sharing and Disclosure

We may share your personal data if necessary with:

  • Our service providers (hosting providers, payment processors, etc.)
  • Regulatory authorities (as required by law or legal process).
  • Third parties in case of a business transfer (merger, acquisition, etc.)


7. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy, unless government authorities require us to safeguard the information for a longer period. Service inquiries and related personal data will be deleted after 24 months.

8. Data Security

We implement appropriate technical and organizational measures to protect personal data from unauthorized access, loss, or misuse. Only staff that is required for operational reasons will have access to personal data in our systems and will have received adequate training in handling personal data.

9. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right to access: Request a copy of your data.
  • Right to rectification: Request corrections to inaccurate data.
  • Right to erasure: Request deletion of your data (subject to legal exceptions).
  • Right to restrict processing: Limit how we process your data.
  • Right to data portability: Request transfer of your data to another entity.
  • Right to object: Object to certain data processing activities.
  • Right to withdraw consent: Withdraw consent at any time.


When exercising your rights under the GDPR we will require you to provide a piece of government issued identification to identify you, protect your data with us and to process your request(s). You may contact the data controller for GDPR related matters at:

By E-Mail: gdpr @ kubiack.com

By Mail: Kubiack Law, Malaga

We will respond to your request(s) at the latest within one (1) month of receipt. In case your request is either very complex or we have received numerous requests from you, or both, the GDPR to extends the time to respond to you by a further two (2) months upon prior notification to you.

Kubiack Law is subject to the authority of the Spanish Data Protection Agency. If at any point you feel that we may have violated your rights under the GDPR you can also file a claim with the Spanish Data Protection Agency (www.aepd.es).

10. International Data Transfers

  • Webhosting: Our current webhosting provider (Dreamhost LLC) is located in the United States of America and
    our use of their services is governed by their Data Processing Addenum.
  • WhatsApp for Business: On our website we offer the possibility to contact us by way of WhatsApp for Business. Our use of
    their services is governed by Data Processing Terms and the Data Transfer Addenum. This list of sub-processors is currently utilized.
  • Threema Messenger: Our use of their services is governed by Data Processing Terms and the list of sub-processors is currently utilized.


11. Updates to this Policy

We may update this privacy policy periodically. Our business needs may change and we reserve the right to commit changes to this Privacy Policy as required. In the event of a change to our Privacy Policy, we will notify you by email. Your continued use of our services following an update notice making you aware of changes to this Privacy Policy means you accept these changes.