How IQ Certify collects, uses and protects your personal data.
Last updated: May 21, 2026
This Privacy Policy explains what personal data IQ Certify (operated by ATENCION AL CLIENTE 24 HORAS S.L.) collects when you use the website iq-certify.com and the related services (the “Services”), and how such data is used, shared or processed.
BY USING THE SERVICES, YOU CONFIRM THAT: (I) YOU HAVE READ, UNDERSTOOD AND ACCEPT THIS PRIVACY POLICY; (II) YOU ARE OVER 18 YEARS OF AGE. IF YOU DO NOT AGREE OR CANNOT CONFIRM IT, DO NOT USE THE SERVICES.
We collect data that you provide to us voluntarily and data that we collect automatically.
When you register and/or use the Services, you provide us with information about yourself, including:
a) Data about how you found us: referral URL or source campaign.
b) Device and connection data: language settings, IP address, time zone, device type and model, browser, operating system and version, internet service provider, and approximate geographic location derived from the IP address.
c) Usage data: interactions with the interface, features and content you interact with, frequency and duration of use, completed tests and results, subscription orders, and ads you interact with.
d) Transactional data: when you make payments, you provide the financial data directly to our payment processor. WE DO NOT COLLECT OR STORE THE COMPLETE CARD DATA. We may receive: the tokenized identifier of the payment method, the last 4 digits of the card, the first 6 digits (BIN), the expiration date, the date, time and amount of the transaction, and the type of payment method.
e) Cookies and similar technologies: we use session cookies, persistent cookies and tracking pixels. Please consult our Cookie Policy for more detail.
We process your Personal Data for the following purposes:
To enable the use of the Services and prevent or resolve technical errors. Our infrastructure is hosted on servers managed through Coolify, with Cloudflare as the content delivery network (CDN) and protection layer.
To adapt the content and offers to your preferences.
To secure access to your personal account and send you technical notifications or emails about performance, security, transactions and notices regarding the Terms and Conditions or this Policy.
Through emails. To stop receiving non-transactional emails, use the unsubscribe link in the footer of each email.
To respond to your support requests received by email or through the contact form on the Website.
To better understand our business and maintain, improve and innovate the Services. For this we use third-party services such as:
To inform you of news and offers. You may unsubscribe at any time through the link included in the emails.
We and our advertising partners use your data to show you relevant ads on other platforms and measure their effectiveness. We use:
These cookies and pixels are only activated with your consent. To manage personalized advertising you can use the “Cookie settings” banner of the Website or, for industry-level options, the youronlinechoices.com platform.
Payments are processed through Stripe, Inc. (Stripe Payments Europe, Ltd. for users in the European Union). We do not store or directly collect the complete data of your card.
To detect, prevent and combat fraud. This may include sharing your information with law enforcement authorities when necessary.
When the law requires us to, especially in the face of valid requests from authorities.
For users resident in the EEA, the legal bases for the processing are:
For sending marketing communications and the use of non-essential cookies. You may withdraw consent at any time.
To provide the Services, manage your account, the service communications and process payments.
Balanced against your rights, to: communicate with you about the use of the Services, investigate and improve the Services, prevent fraud and protect our rights.
To respond to legal and regulatory requirements.
We share information with third parties that help us operate, provide, improve and market the Services. Categories of recipients:
When legally required to respond to courts, law enforcement agencies, regulators or other authorities.
In the event of a merger, acquisition, sale of assets or insolvency proceedings, your data may be transferred as part of the business assets.
Send an email to [email protected] indicating the right you wish to exercise. We may request verification of your identity before processing the request. Response timeframes: initial confirmation within 72 hours; substantive response within 30 days (extendable to 45 days with prior notice).
The Services are directed exclusively to persons 18 years of age or older. We do not knowingly collect personal data from minors. If we discover that we have collected data from a minor, we will delete it. If you believe that a minor has provided us with data, contact us at [email protected].
We operate with providers that may process your personal data in countries outside the EEA, including the United States. When we do so, we implement safeguards:
We retain your personal data for as long as reasonably necessary for the purposes described in this Policy:
Inactive accounts are automatically deleted after 365 days without activity. Following a deletion request, data may persist in backups for up to 90 days.
We use cookies and similar technologies for essential site functionality, remembering preferences, usage analytics, personalized advertising and campaign measurement.
The first time you access, we show a consent banner where you can accept, reject or customize the use of non-essential cookies. You can modify your choice at any time through the “Cookie settings” link in the site footer. For more detail, please consult our Cookie Policy.
We implement reasonable technical and organizational measures to protect your data:
Although we employ reasonable efforts, no transmission over the internet or storage method is 100% secure, so we cannot guarantee absolute security.
In the event of a security breach affecting your personal data, we will notify the affected users by email within 72 hours of confirmation of the breach, in accordance with the GDPR. The notification will include a description of the incident, the types of data affected, the potential impact, the measures taken, the recommended actions and the contact information.
If you reside in California, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including: the right to know what personal information we collect, the right to delete, the right to correct, the right to opt out of the sale or sharing, the right to limit the use of sensitive information, and the right to non-discrimination.
We do not “sell” personal information in the traditional sense. To exercise these rights, contact [email protected] with the subject “California Privacy Request”.
If you reside in Virginia, Colorado, Connecticut, Utah or other states with applicable privacy legislation, you have similar rights under their respective state laws. Contact [email protected] to exercise them.
If you reside in the EU, you may lodge a complaint with the supervisory authority of your country. In Spain: Spanish Data Protection Agency (AEPD), https://www.aepd.es
We may modify this Policy from time to time. For material changes, we will notify you by email or through a prominent notice in the Services at least 5 days before they take effect. Continued use after they take effect constitutes acceptance.