Privacy Policy
Last updated: March 6, 2026
1. Data controller
| Company name | Velosipio SL |
| Tax ID (CIF) | B16432023 |
| Phone | 613 61 84 75 |
| support@qmanda.ai |
2. Personal data we collect
Depending on how the user interacts with our website, we may collect the following personal data:
Through the contact form: name, email address, phone number, and the content of the message.
Through the booking system: name, email address, phone number, date and time of the booking, and any additional information required to manage the appointment.
Through online payments: name, billing address, and payment details. Financial data (card number, expiry date, CVV) is processed directly by the relevant payment gateway and is never stored on our servers.
Through WhatsApp: name, phone number, and the content of conversations held through this channel. The processing of this data is also subject to WhatsApp’s privacy policy (Meta Platforms).
Browsing data: IP address, browser type, operating system, pages visited, and duration of the visit, collected through cookies and similar technologies (see our Cookie Policy).
3. Purposes of processing
We process personal data for the following purposes:
- To handle and respond to enquiries made through the contact form, WhatsApp, or telephone.
- To manage bookings and appointments requested by users.
- To process payments related to contracted services.
- To comply with applicable legal and tax obligations.
- To improve the browsing experience and the functioning of the website.
- To send marketing communications, only when the user has given their explicit consent.
4. Legal basis for processing
The processing of data is based on the following legal grounds under Article 6 of the GDPR:
- Consent of the data subject (Art. 6.1.a GDPR): when submitting a contact form, starting a WhatsApp conversation, or accepting the use of cookies.
- Performance of a contract (Art. 6.1.b GDPR): to manage bookings and process payments related to the provision of services.
- Legal obligation (Art. 6.1.c GDPR): to comply with applicable tax and commercial regulations.
- Legitimate interest (Art. 6.1.f GDPR): to improve our services and the security of the website.
5. Data retention period
Personal data will be retained for as long as necessary to fulfill the purpose for which it was collected:
- Contact enquiries: until the enquiry has been resolved and, thereafter, for the statutory limitation period applicable to potential legal liabilities.
- Bookings and payments: for the duration of the contractual relationship and, thereafter, for the legal retention periods required by tax regulations (5 years) and commercial regulations (6 years).
- Browsing data: as established in the Cookie Policy.
6. Data recipients
Personal data may be disclosed to the following recipients:
- Payment gateways: to process financial transactions.
- Technology service providers: hosting companies, website maintenance providers, and booking management tools, acting as data processors in accordance with Article 28 of the GDPR.
- WhatsApp (Meta Platforms): in the case of communications made through this channel.
- Public authorities: where there is a legal obligation to do so.
No international data transfers are carried out outside the European Economic Area, except those resulting from the use of third-party services (such as WhatsApp/Meta), which provide appropriate safeguards in accordance with applicable regulations.
7. User rights
In accordance with the GDPR and the Spanish Organic Law on Data Protection and Digital Rights (LOPDGDD), users may exercise the following rights:
- Access: to know what personal data we process.
- Rectification: to request the correction of inaccurate or incomplete data.
- Erasure: to request the deletion of data when it is no longer necessary.
- Objection: to object to the processing of data in certain circumstances.
- Restriction of processing: to request the restriction of processing in the cases provided by law.
- Portability: to receive the data in a structured, commonly used format.
- Withdrawal of consent: to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise these rights, send an email to support@qmanda.ai stating your full name, the right you wish to exercise, and a copy of your ID card or other identification document.
If you believe that your rights have not been properly addressed, you may lodge a complaint with the Spanish Data Protection Agency (AEPD) at www.aepd.es.
8. Data security
Velosipio SL applies appropriate technical and organizational measures to protect personal data against unauthorized access, loss, alteration, or destruction, in accordance with Article 32 of the GDPR. These measures include encrypting communications through the HTTPS protocol and controlling access to information systems.
9. Changes to this policy
We reserve the right to amend this Privacy Policy in order to adapt it to legislative or case law developments, as well as to changes in our practices. Any changes will be published on this page together with the date of the latest update.
Cookie Policy
Last updated: March 6, 2026
1. What are cookies?
Cookies are small text files that websites store on the user’s device (computer, tablet, or mobile phone) when they visit them. They are used to remember information about the visit, such as user preferences, and to make browsing easier on future visits.
2. Controller responsible for the use of cookies
| Company name | Velosipio SL |
| Tax ID (CIF) | B16432023 |
| support@qmanda.ai |
3. Types of cookies we use
3.1. Technical cookies (necessary)
These are essential for the proper functioning of the website. They allow navigation and the use of basic features such as access to secure areas or the booking system.
| Cookie | Purpose | Duration |
|---|---|---|
| session_id | Keep the user’s session active | Session |
| cookie_consent | Remember the user’s cookie preferences | 12 months |
| csrf_token | Protection against request forgery attacks | Session |
3.2. Analytics cookies
These allow us to measure and analyze website traffic in order to improve how the site works. They collect information anonymously or in aggregate form.
| Cookie | Purpose | Duration |
|---|---|---|
| _ga | Google Analytics: distinguish unique users | 24 months |
| ga* | Google Analytics: maintain session state | 24 months |
| _gid | Google Analytics: distinguish users | 24 hours |
3.3. Functional cookies
These allow us to remember user preferences in order to provide a personalized experience (language, region, etc.).
| Cookie | Purpose | Duration |
|---|---|---|
| lang | Remember the language selected by the user | 12 months |
3.4. Third-party cookies
Our website may include third-party services that install their own cookies:
- Google Analytics (Google LLC): statistical analysis of website traffic. Google Privacy Policy.
- WhatsApp (Meta Platforms): if the user interacts with the WhatsApp button integrated into the website. Meta Privacy Policy.
- Payment gateway: may install cookies necessary for the secure payment process, depending on the provider used.
4. Legal basis for the use of cookies
- Technical (necessary) cookies: do not require consent, as they are essential for the operation of the website (Art. 22.2 LSSI).
- Analytics, functional, and third-party cookies: require the user’s prior informed consent, obtained through the cookie banner shown on the first visit (Art. 22.2 LSSI and Art. 6.1.a GDPR).
5. Cookie management and settings
Users can manage their cookie preferences in the following ways:
Through our cookie settings panel: when accessing the website, a banner is displayed allowing users to accept, reject, or configure cookies in a granular way. Users may modify their preferences at any time by clicking the “Cookie Settings” link available in the footer.
Through the browser: each browser allows cookies to be blocked or deleted through its settings. Below are links to instructions for the most common browsers:
Please note that disabling certain cookies may affect the proper functioning of the website and limit access to some features, such as the booking system or the payment process.
6. International transfers
Some third-party cookies, such as those from Google Analytics, may involve transfers of data to servers located outside the European Economic Area. In such cases, these transfers are carried out with appropriate safeguards, such as the standard contractual clauses approved by the European Commission or the relevant adequacy decisions.
7. Updates to this policy
This Cookie Policy may be updated periodically to reflect changes in the cookies used or in the applicable regulations. We recommend reviewing this page regularly. Any changes will be published together with the last updated date shown at the beginning of this document.
8. Contact
If you have any questions about the use of cookies on our website, you can contact us at support@qmanda.ai or call us at 613 61 84 75.