Privacy Policy (GDPR) — TD Sat & Sound SL
Last updated: [12 January 2026]
1) Who is responsible for your data?
Data Controller: TD Sat & Sound SL
Registered address: [Full address, Marbella, Málaga, Spain]
Tax ID CIF: B93169654
Email: [email protected]
Phone: +34 951 203 541
If you have any questions about this Privacy Policy or how we use your data, you can contact us using the details above.
2) What personal data we collect
Depending on how you interact with us, we may collect:
• Identity & contact data: name, email, phone number, address, company name (if relevant).
• Project data: information you provide about your home/business, requirements, site visit notes, photos you send us, quotations, and installation details.
• Contract & billing data: invoicing details, payment status, VAT data (when applicable).
• Technical data: IP address, browser/device data, and site usage data (via cookies/analytics, if enabled).
• Communications: messages you send via forms, email, WhatsApp, or phone.
We do not intentionally collect “special category” data (e.g., health, religion, political views). Please don’t send it to us.
3) Why we use your data and our legal basis
We process personal data only when we have a valid legal basis under the GDPR:
1. To respond to enquiries and provide quotes
◦ Purpose: replying to messages, booking site visits, preparing proposals.
◦ Legal basis: legitimate interest (responding to your request) and/or pre-contractual measures (GDPR Art. 6(1)(b)).
2. To deliver services and manage customer relationships
◦ Purpose: installation, programming, support, warranty handling, service scheduling.
◦ Legal basis: contract performance (Art. 6(1)(b)).
3. Invoicing, accounting and legal compliance
◦ Purpose: invoices, tax obligations, record keeping.
◦ Legal basis: legal obligation (Art. 6(1)(c)).
4. To improve our website and user experience (analytics) (only if enabled and consented where required)
◦ Purpose: understand site usage and improve content/performance.
◦ Legal basis: consent (Art. 6(1)(a)) where required for non-essential cookies.
5. Marketing communications (e.g., project updates, new services)
◦ Purpose: sending marketing emails or similar communications.
◦ Legal basis: consent (Art. 6(1)(a)) or legitimate interest for existing customers were permitted by law (you can opt out anytime).
You can withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.
4) Who we share your data with
We only share personal data when necessary to run our business and deliver services, for example with:
• IT and hosting providers (website hosting, email services, cloud storage).
• CRM / quoting / invoicing tools (if used).
• Accountants and professional advisers (tax, legal, audit).
• Suppliers and subcontractors involved in delivery/installation/support (only what’s needed).
• Couriers and logistics providers for shipments.
• Payment providers/banks when processing payments.
All service providers are required to process data securely and only under our instructions (data processing agreements where applicable).
5) International data transfers
If any of our providers store or process data outside the European Economic Area (EEA), we will ensure appropriate safeguards are in place (such as the EU Standard Contractual Clauses and/or an adequacy decision, where applicable).
6) How long we keep your data (retention)
We keep personal data only as long as needed:
• Enquiries / quotes (no contract): typically, up to 12–24 months after last contact (unless you ask us to delete it earlier where allowed).
• Customers / contracts / service history: for the duration of the relationship and as needed for warranty/support, typically up to 5–10 years depending on the nature of the work and legal requirements.
• Invoices and accounting records: kept for the period required by Spanish tax/accounting laws (commonly at least 4–6 years, sometimes longer depending on obligations).
• Marketing: until you opt out or withdraw consent.
7) Your rights (GDPR)
You have the right to:
• Access your personal data.
• Rectify inaccurate or incomplete data.
• Erase your data (where applicable).
• Restrict processing in certain situations.
• Object to processing based on legitimate interest, including direct marketing.
• Data portability (when processing is based on consent or contract and carried out by automated means).
• Withdraw consent at any time (where consent is the legal basis).
To exercise your rights, contact us at [email protected] We may request proof of identity to protect your data.
You also have the right to lodge a complaint with the Spanish supervisory authority:
Agencia Española de Protección de Datos (AEPD).
8) Security
We apply appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.
No system is 100% secure, but we work to maintain suitable safeguards.
9) Cookies
We may use cookies and similar technologies to operate the website and (if enabled) to analyze traffic and improve performance.
Where required, non-essential cookies will only be used with your consent.
For details, see our Cookie Policy: [link to /cookie-policy].
10) Links to third-party sites
Our website may contain links to third-party websites. We are not responsible for their privacy practices. Please review their policies.
11) Changes to this Privacy Policy
We may update this policy from time to time. The latest version will always be published on this page with the updated date shown at the top.