Privacy Policy

1. Who is the Data Controller?

The entity responsible for processing your personal data is MAPPREXPLORE, S.L. (hereinafter, “MAPPR”), with N.I.F. B56479728 and its registered office at Plaça Vicens Martorell 2, PB L 2, 08001, Barcelona, Spain.

Please note that the ownership of the website https://mappr.com/ (hereinafter, “Website”), belongs to MAPPR.

This Privacy Policy regulates access to and use of the Website made available by MAPPR to internet users (hereinafter, the “User” or “Users”) interested in the content (hereinafter, the “Content”) and services (hereinafter, the “Services”) offered by MAPPR on the Website.

Access to and use of the services offered through this site is restricted to individuals of legal age. In exceptional cases where the processing of personal data of children under the age of 14 is necessary, such processing shall be subject to the express prior consent of their legal guardians. If you are underage and do not fully understand this notice, we recommend that you seek assistance from your legal guardians.

The User may contact MAPPR at the following email address: rgpd@mappr.com

2. Recommendations

Please read and follow the recommendations below carefully:

• Keep your computer equipped with properly updated antivirus software against malicious software and spyware applications that may compromise your Internet browsing and the information stored on your computer.
• Read and review this Privacy Policy and all legal texts made available by MAPPR on the Website.

3. Information collected by MAPPR through the Website

To ensure the proper functioning of the Website, MAPPR may access the following types of data provided, where appropriate, by the User:

1. Identification and contact details: name, surname, address, postcode, telephone, email and country.
2. Financial data: cardholder data, bank details and bank cards.
3. Identification data: full name, national ID card (DNI/NIE/passport).
4. Contact data: email address, phone number, postal address.
5. Browsing data: IP address, device type, operating system, browser, language, pages visited, browsing time, and cookies or similar technologies (as per MAPPR’s Cookie Policy). [INSERT HYPERLINK TO COOKIE POLICY]
6. Interaction data: information provided through contact forms, queries, complaints or communications with MAPPR.
7. Administrative and billing data: where applicable, banking or billing details required for managing services, payments, or refunds.
8. Other data: additional information provided by the User via forms, surveys, or communications with MAPPR.

4. Information about the data MAPPR collects through the Website

The Website uses cookies so that, depending on the configuration of the cookies, Mappr may process your personal data.

Generally, the information we collect includes the IP address of the device being used, the browser being used, the access time and date and your operating system.

You can find more information about this in our Cookie Policy here. [include link to cookie policy].

5. What are the purposes of the processing of your personal data?**

Your personal data collected by MAPPR may be used for the following purposes:

1. To register you as a user of the website/platform.
2. In case you request information through the forms or contact customer service, to provide you with the best service.
3. To address information requests, complaints, claims, and technical support.
4. Compliance with legal obligations.
5. Depending on your cookie settings, to conduct statistical analyses and create profiles based on your browsing habits
6. To send you newsletters, updates, and new content related to the platform, in accordance with your preferences and consent.

6. What is the legal basis for processing your data?

The legal basis for processing Users’ personal data through the Website may vary depending on the purpose of the processing:

1. In the case that you register as a user of the website, your data will be processed based on the execution of the contract and/or pre-contractual measures.
2. In the case that you request information through the contact form or get in touch with our customer service; we will rely on the execution of the contract and/or pre-contractual measures.
3. To address your requests for information, complaints, claims, or technical support, we will rely on the execution of pre-contractual measures.
4. For the fulfilment of the various obligations in fiscal and accounting matters.
5. If applicable, consent for conducting statistical analyses and creating profiles based on your browsing habits. Consent must be free, unequivocal, specific, and informed.

By accepting this Privacy Policy and checking the corresponding boxes, the User agrees to the processing of their personal data.

MAPPR takes the privacy and protection of Users’ personal data very seriously. For this reason, data are stored securely and processed with the utmost care, in compliance with Regulation (EU) 2016/679 of 27 April 2016 (the General Data Protection Regulation – “GDPR”).

This Privacy Policy governs access to and use of the service that MAPPR makes available to the User interested in the services and content hosted on the Website.

Regarding this point, Users may withdraw their consent at any time by sending an email to rgpd@mappr.com, without affecting the lawfulness of processing based on consent before its withdrawal.

7. Truthfulness of the data provided by Users

The User guarantees the accuracy of the personal data provided and undertakes to notify MAPPR of any changes to said data.

In all cases, the User shall be solely responsible for the accuracy of the data provided, and MAPPR reserves the right to exclude any User who has provided false data from access to services, without prejudice to any legal actions that may apply.

Users are advised to protect their data diligently, using appropriate security tools. MAPPR shall not be held liable for any theft, unlawful modification, or loss of data.

Any modification or update of the data must be communicated to MAPPR through the means of contact set out in this Privacy Policy.

8. Data retention

Protecting the privacy and personal data of Users is a top priority for MAPPR. Accordingly, MAPPR makes every effort to ensure that User data are not misused. Only authorised personnel have access to User data.

User personal data will be retained as long as the User’s account with MAPPR remains active for the purposes for which the data were collected, unless the User withdraws consent, requests deletion of their account, or the erasure of certain personal data from the Website.

Subsequently, and where necessary, MAPPR will keep the information duly blocked for the legally prescribed periods.

Personal Data obtained through your express consent for the sending of commercial communications and/or newsletters will be kept until you revoke your consent and request to unsubscribe from the service.

We may retain some personal data to comply with our legal or regulatory obligations, as well as to manage our rights (e.g., to enforce our claims before the Courts) or for statistical or historical purposes.

MAPPR undertakes to comply with its duty of confidentiality regarding personal data, in accordance with applicable legislation.

9. User rights

Users have the right to:

1. Access their personal data;
2. Request the rectification of inaccurate data;
3. Request the deletion of their data;
4. Request the restriction of the processing of their data;
5. Object to the processing of their data;
6. Request data portability;
7. Not be subject to a decision based solely on automated processing.
8. Right to withdraw consent

Users may exercise these rights by contacting: rgpd@mappr.com, indicating the reason for their request.

Alternatively, Users may send their request by post to: Plaça Vicens Martorell 2, PB L 2, 08001, Barcelona, Spain.

The communication addressed to MAPPR must include:

• The User’s full name;
• A specific description of the request.

Without prejudice to any other administrative remedy or judicial action, the User shall have the right to lodge a complaint with a Spanish Supervisory Authority. The supervisory authority shall inform the complainant about the course and outcome of the complaint.

10. Data security

MAPPR takes privacy and personal data protection very seriously. It has adopted all reasonable technical and organisational measures to prevent misuse of User data and to ensure that only authorised personnel have access to such data.

MAPPR implements adequate security measures in accordance with applicable data protection law and has deployed all technical means at its disposal to prevent loss, misuse, alteration, unauthorised access, or theft of the data provided by the User through the Website, without prejudice to informing you that security measures on the Internet are not impregnable.

MAPPR also undertakes to maintain confidentiality regarding personal data in accordance with applicable legislation.

MAPPR shall not be liable for damages that may arise from the User’s failure to comply with their obligations.

11. Transfers and/or assignments to third parties

Your Personal Data may be processed by third-party service providers where necessary to fulfil the purposes outlined in this Privacy Policy, such as the provision of hosting services. Likewise, your data may be disclosed to competent authorities, courts, tribunals, or other authorised third parties where required to comply with applicable laws and regulations.

The categories of third parties with whom we may share your personal data include:

• IT Service Providers: We may share your data with third parties who help us with hosting services, database maintenance, software applications, and other related services.
• CRM and Marketing Providers: Your data may be shared with third parties who assist us in customer relationship management (CRM), marketing, and digital campaigns.
• Web Analytics and Digital Media Agencies: Third parties who assist in analyzing the effectiveness of our digital content and advertising efforts may have access to your data.
• Legal Compliance: Your data may be disclosed to third parties when required for legal compliance, such as to meet obligations under applicable laws, regulations, or legal processes.

List of Third-Party Providers (if applicable):

• Hosting Provider: Cloudflare Inc, United States of America
• Hosting Provider: Supabase Pte. Ltd., Singapore
• CRM Platform: Hubspot Inc, United States of America
• Web Analytics: Posthog Inc, United States of America
• Error Tracking: Sentry, United States of America
• Customer Queries: Linear Obrit Inc, United States of America
• Payments: Stripe Payments Europe Limited, Ireland
• User Support: FrontApp,Inc, United States of America

User data shall only be used by MAPPR for purposes strictly necessary to properly fulfil the legitimate and declared purposes of the personal data processing as outlined in Section 5 of this Privacy Policy.

12 Modifications to the privacy policy

MAPPR reserves the right to review this Privacy Policy at any time. For this reason, we recommend that Users regularly review this Privacy Policy to stay informed of the latest version.

Nevertheless, any changes made to this Privacy Policy will be communicated to the User.

13. Links to Third-Party Websites

The Website may include links to third-party websites, platforms, or organisations. MAPPR is not responsible for how those third parties handle the privacy or processing of personal data.

Therefore, we recommend that Users carefully review the privacy policies and terms of use of any external websites accessed via links from the Website, as their conditions may differ from those set by MAPPR

The inclusion of such links does not imply approval, oversight, or responsibility by MAPPR for the content, services, or privacy policies of the linked pages.

14. Questions

If you have any questions about our Privacy Policy, please contact us by sending an email to: info@mappr.com

Likewise, if you believe your rights have not been adequately safeguarded, you may lodge a complaint with the Spanish Data Protection Agency (AEPD). Contact details:

• Phone: 900 293 183 o 900 293 621 (Education and Minors’ Data Protection)
• Address: St. Jorge Juan 6, zip: 28001 Madrid (Spain)
• Electronic Office: https://sedeaepd.gob.es/sede-electronica-web/
• Online Form: https://www.aepd.es/en

15. Acceptance

The User confirms that they have been informed of the terms governing the processing of their personal data and, by accepting this Privacy Policy, expressly consents to the processing of such data by MAPPR in accordance with the purposes and conditions described herein.

2025 “MAPPREXPLORE, S.L.” Reproduction in whole or in part is prohibited. All rights reserved.