Spanly

Privacy Policy

How we collect, use, and protect your data across Spanly and related services.

Last updated: November 2025
Table of Contents

Status and Honesty

We currently operate as a natural person under the name Spanly (Ahmadreza Ghazanfari). There is no company register (Firmenbuch) entry and no VAT ID yet. This policy follows EU and Austrian law including the GDPR and Section 165 TKG 2021.

Controller

Controller: Ahmadreza Ghazanfari — Spanly

Address: Am langen Felde 35/5/21, 1220 Vienna

Email: contact@spanly.io

Phone: +43 677 63820566

Data Protection Officer: Ahmadreza Ghazanfari

Scope

We at Spanly (“we”, “our”, “us”) value your privacy. This Privacy Policy informs you how we collect, process and use personal data when you visit our website at spanly.io or use our services, in compliance with the European Union’s General Data Protection Regulation (GDPR) and Austria’s Data Protection Act 2018 (DSG 2018).

Categories of personal data

  • Contact details (e.g., name, company, e-mail, phone) when you fill out forms.
  • Account data (e.g., name, email address, password hash) - if applicable later.
  • Browsing data (IP address, device information, cookies) when you visit our website.
  • Usage and device data when you engage with our platform.
  • Cookies: strictly necessary cookies for security; non-essential cookies only after consent.
  • Payments and billing: we do not receive/store card information directly.

Purposes and legal bases

For each purpose we identify our Article 6 GDPR legal basis:

  • To communicate with you and respond to inquiries (Art. 6(1)(b) GDPR).
  • To provide and improve our services (Art. 6(1)(f) GDPR).
  • To comply with legal obligations (Art. 6(1)(c) GDPR).

Recipients and processors

We use service providers that process data for us under Article 28 GDPR and are bound by data processing agreements and confidentiality. We may share data with trusted third-party service providers (e.g., hosting, analytics). We do not sell personal data.

Storage periods

We retain your personal data only as long as necessary for the purposes described or as required by law. After that, we securely delete or anonymise it.

Your rights

You have the rights of access, rectification, erasure, restriction, objection, and data portability under Articles 15 to 21 GDPR. Where processing relies on consent you may withdraw that consent at any time.

How to exercise: Email contact@spanly.io. We will verify your identity and respond within 30 days.

Cookies and consent

Our website uses cookies and tracking technologies. You will be informed about cookies and asked for your consent (where required) in accordance with the EU ePrivacy Directive and Austrian law.

Security

We implement appropriate technical and organisational measures to protect your personal data against loss, alteration, unauthorised access or disclosure.

Changes to this Policy

We may update this Privacy Policy from time to time. The current version will be published on our website with a date of last update.