Privacy Policy β KANARIX
Last updated: June 23, 2026
1. Data Controller
MARCIN STANCZYK, SOCIEDAD LIMITADA, with Tax ID (NIF) B72662281 and registered office at Avenida Pintor Felo MonzΓ³n, 26 - Ptl 2 4 D, 35019 Las Palmas de Gran Canaria, Las Palmas, Spain (hereinafter, "KANARIX"), is the controller of the personal data collected through kanarix.es and the KANARIX Direct Booking System system. For any query regarding data protection, you may contact us at info@kanarix.es or by phone at +34 624 108 781.
2. Owner Data We Collect
When you sign up for the KANARIX Direct Booking System system, we collect the data needed to manage your subscription: first and last name, business name, email address, phone number, vacation rental registration number (VTAR/VTVUT), and payment data (handled by Stripe; we do not store card data). Through the contact form we collect: name, email, phone, and your message.
3. Guest Data from Your Property
In the KANARIX Direct Booking System system, you (the owner) act as the controller of your guests' personal data (name, email, phone, dates of stay). KANARIX acts as the processor, processing such data solely to provide the online booking management service in accordance with Art. 28 of the GDPR. A data processing agreement exists between both parties, incorporated into the service contract.
4. Purpose of Processing
Your personal data is processed for the following purposes: managing and maintaining your subscription to the KANARIX Direct Booking System system, technical support and service communications, sending invoices and payment notifications, improving the service through anonymized analytics, and complying with legal obligations.
5. Legal Basis for Processing
Processing is based on: the performance of the SaaS subscription contract, your express consent when completing the contact form, our legitimate interests in improving the service, and compliance with applicable legal obligations (tax regulations, LSSI-CE).
6. Cookies
By default, this website uses essential technical cookies and cookieless analytics (Umami). Only with your explicit consent do we load third-party analytics and marketing cookies (Google Analytics/Ads, Meta Pixel, Microsoft Clarity). For detailed information, please see our Cookie Policy.
7. Data Recipients
Your data may be shared with the following service providers, all with GDPR safeguards: Cloudflare Inc. (infrastructure and CDN, USA, DPF-certified), Stripe Inc. (payment processing, USA, DPF-certified), Resend Inc. (transactional email delivery), Umami Cloud (cookieless web analytics), and Crisp IM SAS (support chat, EU). Only when you accept the analytics and marketing cookies, also: Google LLC (Google Analytics 4 and Google Ads, USA, DPF-certified), Meta Platforms Ireland Ltd. (Meta Pixel and Conversions API, EU/USA with standard contractual clauses), and Microsoft Corporation (Clarity, USA, DPF-certified). We do not sell your personal data.
8. User Rights
Under the GDPR you have the right to: access your data, rectify inaccurate data, request erasure, object to processing, restrict processing, data portability, and withdraw your consent at any time. You can exercise these rights by sending an email to info@kanarix.es indicating "GDPR Rights" in the subject line. You also have the right to lodge a complaint with the Spanish Data Protection Agency (www.aepd.es).
9. Data Retention
Active customer data is retained for the duration of the subscription contract and, once cancelled, for the applicable legal periods (4 years for tax data under the LGT). Contact data without a contract is deleted after 2 years. Guest data on the platform is retained according to the owner's settings.
10. Modifications
KANARIX may update this Privacy Policy to adapt it to legislative or service changes. We will notify you of substantial changes by email or via a notice in the admin dashboard. The current version will always be available at kanarix.es/privacidad.