Privacy Policy

The Copywriting Fairy · C. Ortega y Gasset, 9, 38007 Santa Cruz de Tenerife, Spain

1. Data Controller

The Copywriting Fairy S.L., CIF B-38234567, C. Ortega y Gasset, 9, 38007 Santa Cruz de Tenerife, Spain. hello@thecopywritingfairy.com. +34 647 443 905.

2. Legal Framework

This privacy policy complies with GDPR (Regulation EU 2016/679), the Spanish Organic Law on Personal Data Protection (LOPDGDD, Ley Organica 3/2018), and the guidelines issued by the Spanish Data Protection Agency (AEPD).

3. What Data We Collect

3.1 Contact Information

When you fill out our contact form or request a quote, we collect your name, email address, phone number, and company name. This is used solely to respond to your inquiry and, if you become a client, to manage your project.

3.2 Project Data

During copywriting engagements, you may share brand guidelines, customer research, analytics data, competitor information, and other business-sensitive materials. All project data is covered by our standard NDA and is accessible only to the assigned writer and project manager.

3.3 Payment Data

Payments are processed through Stripe, which is PCI DSS Level 1 compliant. We do not store your credit card details on our servers.

3.4 Analytics

We use Plausible Analytics, which is fully cookieless and GDPR-compliant by design. No personal data is collected for analytics.

4. Legal Basis for Processing

Contact form inquiries: legitimate interest (Art. 6(1)(f) GDPR). Service delivery: contractual necessity (Art. 6(1)(b)). Invoicing: legal obligation under Spanish tax law (Art. 6(1)(c)).

5. Data Retention

Contact inquiries: 12 months. Project files: 60 days after final delivery, then permanently deleted. Client brand voice guides: retained for duration of client relationship (returned or deleted on request). Financial records: 6 years (Spanish Ley General Tributaria).

6. Your Rights

Under GDPR Articles 15-22, you have the right to access, rectify, erase, restrict processing, port your data, and object to processing. Contact hello@thecopywritingfairy.com. Response within 30 days. You may also file a complaint with the AEPD (www.aepd.es).

7. International Transfers

We use Stripe (US, EU SCCs), Google Workspace (EU data region), and Notion (US, EU SCCs). All transfers comply with GDPR Chapter V.

8. Security

HTTPS encryption. Two-factor authentication on all accounts. NDA with all team members. 72-hour breach notification (Art. 33 GDPR).

Last updated: April 2026.

The Copywriting Fairy

Online · Taranto

Typing...