Privacy Policy
Last updated: 01-June-2026
This policy explains how VERSABILIS INTERNATIONAL LLC (“we”, “us”, “our”) handles personal data through our website https://versabilisdigital.com, and lists the sub-processors we rely on to deliver our services. We apply the EU General Data Protection Regulation (GDPR), together with the Spanish Organic Law on Data Protection (LOPDGDD), as our baseline standard for everyone. Where other data-protection laws apply to you because of where you live, we honor the rights they grant you under those laws.
1. Who we are (Controller)
For data collected through this website, the controller is:
VERSABILIS INTERNATIONAL LLC, 500 4th St Nw, ST 102 #1105, ABQ, NM 87102, US.
Contact: privacy@versabilisdigital.com
(Note on roles: this policy concerns data we collect as controller through our website. When we deliver services to a business client, that client is the controller of its own customer and lead data and we act as its processor under a separate Data Processing Agreement — see Section 7.)
2. What we collect and why
Contact form. When you contact us through the website, we collect the data you submit (e.g. name, email, message).
- Purpose: to respond to your enquiry and follow up about our services.
- Legal basis: your request / pre-contractual steps at your request (Art. 6(1)(b) GDPR), and our legitimate interest in responding (Art. 6(1)(f)).
Analytics and cookies. We use analytics (e.g. Google Analytics) to understand how visitors use the site.
- Purpose: measure and improve the website.
- Legal basis: your consent (Art. 6(1)(a) GDPR and § cookies/LOPDGDD), collected through our cookie banner. You can withdraw consent at any time via the cookie settings.
- Note: analytics cookies load only after you accept them. Analytics providers may process data outside the EEA (see Section 6).
Server logs. Like most websites, our hosting automatically records technical data (IP address, browser, time of access) to keep the site secure and working, on the basis of our legitimate interest (Art. 6(1)(f)).
3. How long we keep it
We keep contact-form data only as long as needed to handle your enquiry and any resulting relationship, then delete it, unless we must retain it by law. Analytics data is kept for the provider’s standard retention period. Server logs are kept for a short technical period.
4. Who we share it with
We don’t sell your data. We share it only with the service providers needed to run the website and our services (our “sub-processors”, listed in Section 7), and with authorities where legally required.
5. Your rights
Depending on where you live and which data-protection law applies to you, you may have the right to access, rectify, erase, restrict, or object to the processing of your data, and to request portability. To exercise any of these, write to [privacy@agency-domain]. If you’re in the European Economic Area or the United Kingdom, you also have the right to lodge a complaint with your local data-protection supervisory authority (in Spain, the Agencia Española de Protección de Datos — www.aepd.es). If you’re in another country, you may have similar rights and a competent authority under your local law.
6. International transfers
Some of our providers process data outside the EEA. Where they do, the transfer is covered by an appropriate GDPR Chapter V mechanism — the EU Standard Contractual Clauses, or the EU-US Data Privacy Framework for providers certified under it. The mechanism for each provider is shown in Section 7.
7. Sub-processors
We use the following providers to deliver our website and services. Each is bound by a data processing agreement and applies its own GDPR transfer mechanism where relevant:
| Provider | Purpose | Location | Transfer mechanism |
|---|---|---|---|
| Google Workspace / Analytics | Storage, productivity, website analytics | US (US entity) | SCCs |
| Vercel | Hosting / landing pages | US | SCCs |
| Netlify | Hosting | US | SCCs |
| IONOS | Hosting | EEA + US | SCCs |
| Zapier | Automation / integrations | US | SCCs |
| Albato | Automation / integrations | EEA + US | SCCs |
| SuiteDash | Client portal / CRM / project management | US | EU-US Data Privacy Framework (certified) |
| Involve.me | Forms / data capture | Germany (EU) | N/A (EU) |
| Inprivy | Secure encrypted file transfer | EU (Germany) | N/A (EU) |
| SendPulse | CRM / email & messaging automation | US | SCCs |
| Supabase | Database / backend | EU (Frankfurt) | N/A (EU) |
| wbiztool | WhatsApp messaging | India | SCCs (+ transfer impact assessment) |
We may use additional providers for specific client engagements; the list applicable to a given engagement is the one referenced in the relevant Data Processing Agreement. We keep this list up to date and will reflect additions or changes here.
8. Changes
We may update this policy to reflect changes in our practices or the law. The “last updated” date above shows the current version.
9. Contact
Questions about this policy or your data: privacy@versabilisdigital.com