PrivacyPolicy
Last updated: February 2026
1. Data Controller
The personal data you provide through the Dcycle platform and website is controlled by The Wake Up Movement S.L. (trading as Dcycle), a company incorporated under Spanish law, with registered address in Madrid, Spain (hereinafter “Dcycle”, “we”, “us”, or “our”).
For any privacy-related enquiries, please contact us at: privacy@dcycle.io
2. Data We Collect
We collect personal data in the following ways:
Information you provide directly:
- Name, email address, job title, and company name when you register, book a demo, or contact us.
- Usage data, settings preferences, and content you create or upload within the Dcycle platform.
- Communications you send to our support or sales team.
Information collected automatically:
- Log data (IP address, browser type, pages visited, time and date of visits).
- Cookies and similar tracking technologies (see our Cookie Policy).
- Analytics data through Google Analytics 4 to understand how our website is used.
Information from third parties:
- Data from integration partners you authorise (e.g., Datadis, SIFCO, ERP systems) when you connect them to the platform.
3. Purposes and Legal Basis for Processing
| Purpose | Legal Basis |
|---|---|
| Providing and operating the Dcycle platform | Performance of a contract (Art. 6(1)(b) GDPR) |
| Responding to demo requests and sales enquiries | Legitimate interests (Art. 6(1)(f) GDPR) |
| Sending product updates and marketing communications | Consent (Art. 6(1)(a) GDPR) or Legitimate interests |
| Security monitoring and fraud prevention | Legitimate interests (Art. 6(1)(f) GDPR) |
| Compliance with legal obligations | Legal obligation (Art. 6(1)(c) GDPR) |
| Improving our services through analytics | Legitimate interests (Art. 6(1)(f) GDPR) |
4. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes set out in this policy:
- Account data: retained for the duration of the contractual relationship and up to 5 years after termination for legal and accounting purposes.
- Marketing data: retained until you withdraw consent or opt out.
- Log and analytics data: retained for up to 13 months.
- Support communications: retained for 3 years from the date of the interaction.
5. Data Sharing
We do not sell your personal data. We may share it with:
- Service providers acting as data processors on our behalf (hosting, analytics, CRM, email delivery), who are contractually bound to protect your data.
- Integration partners that you have explicitly authorised.
- Legal authorities when required by applicable law or court order.
- Successor entities in the event of a merger, acquisition, or sale of assets.
All third-party processors are bound by appropriate data processing agreements compliant with GDPR.
6. International Transfers
Your data is stored and processed within the European Economic Area (EEA). Where data is transferred outside the EEA, we ensure adequate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission.
7. Your Rights
Under the GDPR, you have the following rights regarding your personal data:
- Right of access: request a copy of the data we hold about you.
- Right to rectification: request correction of inaccurate or incomplete data.
- Right to erasure: request deletion of your data (“right to be forgotten”) where applicable.
- Right to restriction: request that we limit the processing of your data.
- Right to data portability: receive your data in a structured, machine-readable format.
- Right to object: object to processing based on legitimate interests or for direct marketing.
- Right to withdraw consent: withdraw consent at any time, without affecting the lawfulness of prior processing.
To exercise any of these rights, please contact us at privacy@dcycle.io. We will respond within 30 days.
You also have the right to lodge a complaint with the Spanish Data Protection Authority (Agencia Española de Protección de Datos – AEPD) at www.aepd.es.
8. Security
Dcycle is ISO 27001 certified and TÜV Rheinland certified. We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or destruction, including encryption in transit and at rest, access controls, and regular security audits.
9. Cookies
We use cookies and similar technologies on our website. For detailed information, please read our Cookie Policy.
10. Children’s Data
The Dcycle platform is intended for business use only. We do not knowingly collect personal data from individuals under the age of 16. If you believe we have inadvertently collected such data, please contact us immediately.
11. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date at the top of the page and, where appropriate, notify you by email or via the platform. Continued use of our services after changes constitutes acceptance of the updated policy.
12. Contact
For any questions about this Privacy Policy or our data practices:
The Wake Up Movement S.L. (Dcycle) Email: privacy@dcycle.io Website: www.dcycle.io
