1. Data controller
The controller is CJ Development (Spain). Privacy contact: correo de contacto.
Privacy
Last updated: June 6, 2026. This policy explains what data NodalDesk processes, on what legal basis, who it's shared with, and what rights you have (GDPR).
The controller is CJ Development (Spain). Privacy contact: correo de contacto.
We don't sell your data. It's shared only with the providers that deliver the service, as processors: Stripe (payment processing) and OVH (infrastructure hosting, operated by CJ Development). Also when required by a legal obligation.
Some provider (e.g. Stripe) may process data outside the European Economic Area. In that case the safeguards provided by the GDPR apply (standard contractual clauses or other adequate mechanisms).
We keep your data while you have an active account and, after closing it, for as long as needed to meet legal obligations (e.g. tax) and handle liabilities. After that it is deleted or anonymized.
NodalDesk uses one essential technical cookie to keep your session signed in securely. We don't use advertising, marketing or third-party tracking cookies, so no cookie consent banner is required.
We apply reasonable technical and organizational measures (hashed passwords, per-device credentials, granular permissions, TLS transport) to protect your data. No system is infallible, but we treat security as part of the product.
The service is not directed to minors. If you believe a minor has given us data, contact us and we'll delete it.
You can exercise access, rectification, erasure, restriction, objection and portability by writing from the email associated with your account to correo de contacto. You may also lodge a complaint with the Spanish Data Protection Agency (aepd.es) or your local authority.
We may update this policy. We'll publish the current version with its date and, if the change is significant, communicate it by reasonable means.