Privacy Policy (GDPR)
This policy explains how BrightCap Research collects, uses, and protects personal data.
Data controller
Prat Consulting is the data controller for personal data collected through the website BrightCap Research.
Personal data collected
The following data may be collected:
- Identification data: name, surname, email address
- Authentication data (via Clerk)
- Payment data (processed exclusively by Stripe; no payment data is stored by Prat Consulting)
- Technical data: IP address, logs, security-related information
Purpose of processing
Personal data is collected for the purposes of:
- User account creation and authentication
- Access control to restricted content
- Payment processing
- Compliance with legal and security obligations
Third-party services
The website relies on the following service providers:
- Clerk: authentication and user management
- Stripe: payment processing
- Convex: access rights and business data storage
- Vercel: hosting
Cookies & analytics
Only strictly necessary technical cookies are used for authentication and security purposes. No non-essential or advertising cookies are used.
Only anonymous analytics may be used to monitor website usage. No profiling or tracking for marketing purposes is performed.
Data retention
Personal data is retained only for as long as necessary to fulfill its intended purpose and comply with legal obligations.
User rights
In accordance with applicable data protection regulations, users have the right to:
- Access their personal data
- Request correction or deletion
- Object to processing
- Request data portability
Requests may be addressed to: [Email de contact GDPR]
Applicable law
This Privacy Policy is governed by European Union law.