Legal
Privacy policy.
Last updated: 12 May 2026.
1. Data controller
- Controller: Omar Suaaidi
- Contact: [email protected]
2. Personal data we collect
We collect the personal data you provide through the contact form:
- Name.
- Work email.
- Phone.
- Company.
- Company website.
- Role / position.
- Selected areas of interest.
- Other interest (when you indicate a topic outside the predefined options).
- Your message.
We also collect basic technical data on site use (Cloudflare hosting), such as IP address, browser, language, and country, for technical and security purposes.
3. Purpose of processing
The data you provide through the form is used exclusively to:
- Respond to your inquiry and maintain commercial correspondence with you.
- Assess whether there is a fit between your company and SUAM's services.
- Coordinate a possible first conversation if you request it.
Technical hosting data is used for the technical operation and security of the site.
4. Legal basis
Processing is based on your explicit consent when filling in the form and accepting this privacy policy, as well as on the legitimate interest in maintaining an orderly commercial relationship and responding to those who contact us.
5. Retention period
Data is kept while there is an active contact relationship or a legitimate interest in maintaining correspondence. If you request removal, the data is deleted within a reasonable period unless there is a legal obligation to retain it.
6. Data sharing with third parties
Your data is stored in external provider tools that act as data processors under contractual agreement (DPA):
- Cloudflare (hosting, CDN, security). More information: https://www.cloudflare.com/privacypolicy/
- Google (storage of form submissions in a Google Sheets spreadsheet under the controller's account). More information: https://policies.google.com/privacy
- Calendly (when you book a call through the calendar link). More information: https://calendly.com/privacy
We do not sell, rent, or transfer your personal data to third parties for commercial purposes.
7. International transfers
Some of the listed providers may process data outside the European Economic Area. In those cases, the providers rely on valid international transfer mechanisms recognized by European regulations (standard contractual clauses, certifications, etc.).
8. User rights
You have the right to:
- Access: know what data of yours we process.
- Rectification: correct inaccurate data.
- Erasure: request that we delete your data.
- Objection: object to the processing.
- Restriction: restrict processing in certain cases.
- Portability: receive your data in a structured format.
You can exercise these rights by sending an email to [email protected] with your request and, if necessary, a document proving your identity.
If you consider that your request has not been adequately handled, you can file a complaint with the Spanish Data Protection Agency (AEPD) through its website https://www.aepd.es.