Back to Home
PRIVACY

Privacy Policy

Last updated: March 2026

Data Controller

Proof of Ventures (trading as GRITA Karaoke), located at Calle de Aribau, 87, 08036 Barcelona, Spain, is the data controller for personal data collected through this website. Contact us at info@gritakaraoke.com for any privacy-related inquiries.

What Data We Collect

Through our website (gritakaraoke.com):

  • Technical data: IP address, browser type, device information (collected automatically via server logs)
  • No personal data is collected directly through this website
Through our booking system (booking.gritakaraoke.com):
  • Name, email address, phone number
  • Booking details (date, time, room, number of guests)
  • Payment information (processed by our payment provider — we do not store card details)

Legal Basis for Processing

We process your data based on:

  • Contract performance: To fulfill your room booking and provide our services
  • Legitimate interest: To improve our website and services
  • Consent: For marketing communications (if you opt in)

Third-Party Services

We use the following third-party services that may process your data:

  • Google Maps — Embedded map on our contact page. Only loaded with your consent. Google's privacy policy applies.
  • Payment providers — Bookings are processed via our booking system using secure payment processors. Card data is handled directly by the payment provider and never stored on our servers.
  • Instagram — We link to our Instagram profile. Instagram's privacy policy applies when you visit their platform.

Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Restrict processing of your data
  • Data portability — receive your data in a structured format
  • Object to processing based on legitimate interest
  • Withdraw consent at any time
To exercise any of these rights, contact us at info@gritakaraoke.com. We will respond within 30 days.

Data Retention

We retain booking data for the duration required by Spanish tax and commercial law (typically 5 years). Technical logs are retained for 90 days.

Data Security

We implement appropriate technical and organizational measures to protect your data, including encrypted connections (HTTPS), access controls, and regular security reviews.

Supervisory Authority

If you believe your data protection rights have been violated, you may file a complaint with the Spanish Data Protection Agency (AEPD) at www.aepd.es.

Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated revision date.