Privacy Notice
How we handle data.
LQX7 designs and engineers integrated living systems. This site exists to introduce our practice. We’ve built it to be transparent, lightweight, and respectful of your data.
01Data Controller
LQX7Serge Kushnarov, Founder & CEO
Plaça Miguel Asins Arbó, 16
46013 Valencia, Spain
hello@lqx7.com · +34 698 906 213
02Summary
We don’t use cookies. We don’t profile you. We don’t share data with advertisers. The only personal data we receive is what you choose to send via the inquiry form.
03What We Collect
| Data | Purpose | Legal basis |
|---|---|---|
| Anonymous analytics: page URL, browser, OS, device, country, referrer, timestamp | Understand which content resonates and where visitors come from | Legitimate interest (GDPR Art. 6(1)(f)) — anonymous, not personal data per AEPD guidance |
| Inquiry form: name, email, organisation, message | Reply to your project request | Pre-contractual measures and your consent (GDPR Art. 6(1)(a) + 6(1)(b)) |
| Server access logs: IP, user-agent, timestamp | Security, abuse prevention | Legitimate interest (GDPR Art. 6(1)(f)) |
Analytics are collected by Umami, a self-hosted, open-source analytics tool running on our own server (stats.lqx7.com). Umami uses no cookies and no client-side identifiers; visitor counting is done on the server using a daily-rotated hash that includes no personal data.
04Cookies and Local Storage
This site sets no cookies. The only browser storage we use is
a single localStorage key (lqx7-privacy-notice-seen) to
remember whether you have already dismissed the privacy notice on this device. It
contains no personal data and can be deleted at any time from your browser
settings.
05Third-Party Services
| Service | Region | What it sees |
|---|---|---|
| bunny.net Fonts (CDN for typefaces) | EU (Czech Republic) | Browser request for font files; IP logged only as needed for CDN delivery |
| Hostinger (VPS & email hosting) | EU (Lithuania) | Hosts the website server and the hello@lqx7.com mailbox |
| Let’s Encrypt (TLS certificate authority) | USA / global | Issues the HTTPS certificate; sees no visitor data |
We do not use Google Analytics, Google Fonts (CDN), Meta Pixel, ad-tech retargeting, or any cross-site tracking. Inquiry-form messages reach the controller’s personal mailbox via SMTP — they are not shared with third parties.
06Retention
- Analytics events: 365 days, then deleted automatically.
- Inquiry messages: kept for the duration of the business relationship and up to 3 years afterwards (statute of limitations under Spanish civil law), unless a longer period is legally required.
- Server access logs: 30 days, then rotated.
07Your Rights
Under the GDPR and Spain’s LOPDGDD, you have the right to:
- Access the personal data we hold about you
- Rectify inaccurate or incomplete data
- Erase your data («right to be forgotten»)
- Restrict or object to processing
- Data portability — receive your data in a structured, machine-readable format
- Withdraw consent at any time, where consent is the legal basis
- Lodge a complaint with the Spanish Data Protection Agency (AEPD) or your local supervisory authority
To exercise any of these rights, write to hello@lqx7.com. We respond within 30 days.
08Data Transfers
All processing takes place within the European Union. We do not transfer personal data to third countries. The TLS certificate is issued by Let’s Encrypt (a US non-profit), but no personal data is shared with them — the certificate authority sees only the public domain name.
09Changes
We may update this notice as our practice or the law evolves. The current version is always at this URL. Material changes are communicated via a banner on the homepage for at least 30 days.
10Contact & Complaints
Questions, concerns, or rights requests: hello@lqx7.com.
You may also contact the Spanish Data Protection Agency (www.aepd.es) — Calle de Jorge Juan, 6, 28001 Madrid.