Privacy Policy

Last updated: 13/05/2026

This Privacy Policy regulates the processing of personal data carried out by Mi Libro De Mensajes in relation to users who interact with our website and services, including personalized chat book services and Interactive Guest Books for Events (Weddings, Communions, and celebrations).

We are committed to processing data transparently, securely, and in compliance with Regulation (EU) 2016/679 (GDPR), Organic Law 3/2018 (LOPDGDD), Law 34/2002 (LSSI-CE), and other applicable regulations.

1. Identity of the Data Controller

    • Corporate Name: Nathan Stephane, ROZE
    • Tax ID (NIF): Y6633116E
    • Trade name: Mi Libro De Mensajes
    • Address: Calle Pedro Duque, Edificio 9B, Acceso Oeste, 46022, Valencia (Spain)

2. Data We Process

The Controller may process the following categories of data:

2.1. Data provided directly by the user and participants

    • First name, last name, and email address.
    • Postal address for book delivery.
    • Conversations, texts, images, videos, audios, and any content voluntarily provided to create the book.
  • Third-party data at events: Images, voices, and messages from guests who scan the QR codes provided at weddings and communions.

2.2. Payment data

We do not store full card details or payment methods.
Payments are processed through Stripe, which acts as a data processor and complies with PCI-DSS regulations.

2.3. Technical, browsing, and analytical data

    • IP address, device identifiers, operating system, and browser.
    • Usage and activity data on the website.
  • Cookies and similar technologies (see Section 8).

2.4. User Responsibility for Third-Party Data (Events, Images, Videos, and Audios)

The user is solely responsible for obtaining the legally necessary consents for the incorporation and processing of personal data of third parties (including images, voices, names, etc.) in the content provided to us.

    • Responsibility in Weddings and Communions: In the Interactive Guest Book service, the User (contracting client) guarantees that they have informed attendees that content uploaded via the QR code will be processed for the creation of the book.
    • Consent of Adults: The user represents and warrants that they have obtained the prior and explicit consent of all persons appearing in the uploaded content.
  • Minors: In the case of data concerning minors (especially in Communions), the user represents and warrants that they have obtained the express consent of their legal guardians.

The user agrees not to send content that is illegal, violent, or violates the rights of third parties. Mi Libro de Mensajes reserves the right to reject such content and is exempt from any liability arising from the user’s failure to comply with this obligation.

2.5. User Consent for the Processing of Their Own Data

The user expressly authorizes Mi Libro de Mensajes to process the personal data provided for the sole purpose of designing, layouting, producing, and delivering the requested personalized book.

2.6. Variations in the Final Product

The user acknowledges and accepts that there may be slight visual variations between the digital preview and the final printed physical book due to the professional printing process.

3. Purposes and Legal Bases for Processing

3.1. Purposes of processing

    1. Provision of service: creation, layout, and personalization of the book (including interactive services).
    1. Order management: payments, invoicing, shipping, and after-sales service.
    1. Customer support and order-related communications.
    1. Compliance with legal obligations: tax and invoicing.
  1. Fraud prevention and service security.

3.2. Legal bases

    • Performance of a contract (Art. 6.1.b GDPR).
    • Consent (Art. 6.1.a GDPR) for the processing of multimedia content.
    • Legal obligation (Art. 6.1.c GDPR).
  • Legitimate interest (Art. 6.1.f GDPR) for security and service improvement.

4. Security Measures

    • Data encryption in transit (HTTPS/TLS) and encryption of stored content.
    • Implementation of perimeter security through Cloudflare for attack mitigation.
  • Servers located in the European Union in secure data centers.

5. Retention Periods

    • Standard Chat Books: Messages and images are kept during the process and automatically deleted one (1) week after receipt of the order to manage potential issues.
    • Event Packs (Weddings/Communions): To ensure the functioning of the QR codes, video and audio files will be kept for the contracted period (10, 20, or 30 years depending on the chosen pack), unless the user requests their deletion earlier.
    • Videos and Audios (Non-QR): Deleted upon confirmation of purchase or deletion of the book.
  • Tax data: Will be kept for 6 years by law.

6. Limitation of Liability

Mi Libro De Mensajes is not responsible for:

    • Damages resulting from failures in hosting providers, telecommunications networks, or third-party services outside our entity.
    • Data loss due to critical external technical disasters (users are recommended to keep an original copy of their files).
  • Misuse of printed QR codes if the physical book is lost or shared publicly by the user.

7. User Rights

The user may exercise their rights of access, rectification, erasure («right to be forgotten»), restriction, objection, and portability by sending a request to: [email protected].

Likewise, they have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD).

8. Contact

For any queries related to data protection:

📧 [email protected]