GDPR Compliance Statement

In accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – “GDPR”), this section explains how personal data of users located in the European Union is processed.

1. Data Controller

The Data Controller responsible for the processing of personal data is:

Tavaria SL
(Owner and operator of the brand Dad Prep HQ)
Country: Spain
Email: info@dadprephq.com

2. Personal Data Collected

We may collect and process the following personal data:

  • Name and email address

  • Billing information (processed by third-party payment providers)

  • Technical and usage data (IP address, device type, browser, pages visited)

We do not collect sensitive personal data.

3. Purpose of Data Processing

Personal data is processed for the following purposes:

  • Providing access to digital products

  • Processing payments and transactions

  • Customer support and communication

  • Website analytics and performance optimization

  • Legal and accounting obligations

4. Legal Basis for Processing

Under GDPR, personal data is processed based on one or more of the following legal grounds:

  • Consent (Article 6.1.a)

  • Performance of a contract (Article 6.1.b)

  • Legal obligation (Article 6.1.c)

  • Legitimate interest (Article 6.1.f), such as fraud prevention and service improvement

5. Data Retention

Personal data is retained only for the time necessary to fulfill the purposes for which it was collected and to comply with legal obligations.

6. Data Sharing

Personal data may be shared only with trusted third-party service providers, including:

  • Payment processors

  • Email delivery services

  • Analytics and advertising platforms

These providers process data in compliance with GDPR and applicable regulations.

7. Data Subject Rights

Under GDPR, you have the right to:

  • Access your personal data

  • Request correction or deletion

  • Restrict or object to processing

  • Request data portability

  • Withdraw consent at any time

Requests can be submitted to: info@dadprephq.com

8. International Data Transfers

Some data may be transferred outside the European Union, including to the United States.
In such cases, appropriate safeguards are applied in accordance with GDPR requirements.

9. Security Measures

We implement appropriate technical and organizational measures to protect personal data from unauthorized access, loss, or misuse.

10. Changes to This GDPR Statement

This GDPR Compliance Statement may be updated from time to time.
Any changes will be published on this page.