Privacy policy

Coven ("we," "us," or "our") is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how we collect, use, disclose, and protect your information when you interact with our services, websites, and applications.

This Privacy Policy applies to all personal data processed by Coven, including data collected through our websites, applications, products, and services.

Coven, located at Av. Jardin 257, Col. Ampliación del Gas, Azcapotzalco, CDMX, 02970, México◊, is the Data Controller responsible for processing your personal information. For any questions or concerns regarding this policy or our data practices, please contact us at hello@coven.consulting.

Information We Collect

We may collect and process the following categories of personal data:

  • Contact Information: Name, email address, phone number, physical address.
  • Professional Information: Job title, company, professional history.
  • Technical Data: IP address, login information, browser type and version, operating system, device identifiers, and other technology-related information used to access our services.
  • Usage Data: Details about your interactions with our websites, products, and services, including performance metrics and usage patterns.
  • Location Data: Geolocation information derived from your IP address or other means.
  • Financial Information: Bank account details, credit card information, and other data necessary to process payments.
  • Any Other Information You Provide: Communications, survey responses, feedback, and any other data you choose to share with us.

How We Use Your Information

We use personal data for the following purposes:

  • Service Delivery: To execute contracts and provide the requested services, including account management, transaction processing, and customer support.
  • Communication: To respond to inquiries, provide information about our services, send newsletters, updates, and promotional materials that may interest you.
  • Service Improvement: To analyze and enhance our products, services, websites, and applications, as well as to conduct internal research and develop new products.
  • Security: To protect the integrity and security of our systems, prevent fraud, monitor suspicious activities, and ensure compliance with our terms and conditions.
  • Legal Compliance: To comply with applicable legal and regulatory obligations, respond to requests from competent authorities, and defend our legal rights.

Legal Bases for Processing

We process personal data based on the following legal grounds:

  • Performance of a Contract: When processing is necessary to perform a contract to which you are a party or to take steps at your request before entering into a contract.
  • Consent: When you have given your consent for specific purposes. You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
  • Legitimate Interests: When processing is necessary for our legitimate interests or those of a third party, provided that your interests or fundamental rights and freedoms do not override those interests.
  • Legal Obligation: When processing is necessary to comply with a legal obligation to which we are subject.

Sharing Your Information

We may share personal data with:

  • Coven Affiliates: For internal administrative purposes and to provide consistent services across our organization.
  • Service Providers and Business Partners: Acting on our behalf and under our instructions, such as IT service providers, payment processors, marketing agencies, data analytics firms, and other professional services. We ensure that these third parties implement appropriate security measures to protect your personal data and comply with applicable data protection laws.
  • Legal and Regulatory Authorities: When required by law, legal process, or to protect our legal rights, we may disclose personal data to courts, government authorities, and regulatory agencies.

International Data Transfers

Given the global nature of our operations, personal data may be transferred to and processed in countries outside your country of residence, including countries that may not offer the same level of data protection as your jurisdiction. In such cases, we implement appropriate safeguards, such as standard contractual clauses approved by relevant authorities, to protect the privacy and fundamental rights of individuals.

Data Security

We implement appropriate technical and organizational measures to protect personal data against loss, misuse, unauthorized access, disclosure, alteration, and destruction. These measures include, but are not limited to:

  • Data Encryption: To protect data in transit and at rest.
  • Access Controls: To ensure that only authorized personnel have access to personal data.
  • Security Assessments: Regular audits and testing of our security systems and processes.
  • Internal Policies and Procedures: To guide our employees in protecting personal data and ensuring compliance with applicable data protection laws.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal, accounting, or reporting obligations. Specific retention periods are determined based on the nature of the data, the purposes of processing, and applicable legal requirements. Once personal data is no longer needed for the purposes for which it was collected, we will securely delete or anonymize it.

Your Rights

You have the following rights regarding your personal data:

  • Right of Access: To obtain confirmation of whether we are processing your personal data and, if so, access to that data and a copy of it.
  • Right to Rectification: To request the correction of inaccurate or incomplete personal data.
  • Right to Erasure: To request the deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.
  • Right to Restriction of Processing: To request the restriction of processing your personal data in specific situations.
  • Right to Data Portability: To receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another data controller.
  • Right to Object: To object to the processing of your personal data based on legitimate interests or for direct marketing purposes.

To exercise these rights, please contact us at [Contact Email]. We will respond to your requests in accordance with applicable data protection laws.

Third-Party Links

Our websites, applications, or services may contain links to third-party websites, products, or services. We are not responsible for the privacy practices of these third parties. We encourage you to read the privacy policies of any third-party websites or services you visit.

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will post any updates on our website and, if the changes are significant, we will provide a more prominent notice.

Main pages
HomeAboutServices
Other
ContactPrivacy Policy
Let's talk
hello@coven.consulting
+52 1 55 1052 4934
México, Spain, USA
Let's talk
© 2025 Coven Consulting