Privacy Policy

Last updated: May 10, 2026

Safe Smart Pool, S.L. (CIF B-09941634), with registered office at Calle Siroco 7, 29649 Riviera del Sol, Málaga, Spain ("Safepool", "we", "us", "our"), operates this store and website at safepool.store, including all related information, content, features, tools, products and services (the "Services").

This Privacy Policy describes how we collect, use, and disclose your personal information when you visit, use, or make a purchase or other transaction using the Services or otherwise communicate with us. Safepool is the data controller of your personal information for the purposes of EU Regulation 2016/679 (GDPR) and the Spanish Organic Law 3/2018 on Data Protection and Digital Rights (LOPDGDD).

If there is a conflict between our Terms of Service and this Privacy Policy, this Privacy Policy controls with respect to the collection, processing, and disclosure of your personal information.

Please read this Privacy Policy carefully. By using and accessing any of the Services, you acknowledge that you have read this Privacy Policy and understand the collection, use, and disclosure of your information as described here.

1. Personal information we collect or process

When we use the term "personal information," we are referring to information that identifies or can reasonably be linked to you or another person. Personal information does not include information that is collected anonymously or that has been de-identified.

Depending on how you interact with the Services, where you live, and as permitted or required by applicable law, we may collect or process the following categories:

  • Contact details — name, address, billing address, shipping address, phone number, and email address.
  • Financial information — credit card, debit card and financial account numbers, payment card information, transaction details, form of payment, and payment confirmation. We do not store full payment card numbers; these are handled directly by our PCI-compliant payment processors.
  • Account information — username, password, preferences and settings.
  • Transaction information — items you view, put in your cart, add to your wishlist, or purchase, return, exchange or cancel, and your past transactions.
  • Communications with us — information you include in customer support enquiries.
  • Device information — information about your device, browser, or network connection, your IP address, and other unique identifiers.
  • Usage information — how and when you interact with or navigate the Services.

2. Sources of personal information

We may collect personal information from the following sources:

  • Directly from you when you create an account, visit or use the Services, communicate with us, or otherwise provide us with your personal information.
  • Automatically through the Services from your device when you use our products or services or visit our website, and through cookies and similar technologies (see Section 7).
  • From our service providers when we engage them to enable certain technology and when they collect or process your personal information on our behalf.
  • From our partners or other third parties (e.g. couriers, when delivering your order).

3. How and why we use your personal information

We process your personal information on the following legal bases (GDPR Art. 6):

  • (a) Performance of a contract — to fulfil your order, process payments, arrange shipping, handle returns and warranty claims, and provide customer support.
  • (b) Legal obligation — to comply with tax, accounting, consumer protection and other applicable laws (e.g. issuing invoices, keeping records).
  • (c) Legitimate interests — to secure our services, prevent fraud, improve the Services, and run our business, provided your rights and freedoms do not override these interests.
  • (d) Consent — for marketing communications, non-essential cookies, and any other purpose where we ask for your explicit consent. You can withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

Specific uses include:

  • Provide, tailor, and improve the Services. To remember your preferences, send notifications related to your account, process purchases, returns, exchanges, and create a personalised shopping experience.
  • Marketing and advertising. With your consent, to send marketing emails or display advertisements for our products. You can opt out of marketing emails at any time using the unsubscribe link.
  • Security and fraud prevention. To authenticate your account, detect fraudulent activity and protect public safety.
  • Communicating with you. To provide customer support, respond to enquiries and maintain our business relationship.
  • Legal reasons. To comply with applicable law or respond to valid legal process, including requests from law enforcement or government agencies.

4. How we disclose personal information

We may disclose your personal information to third parties for legitimate purposes subject to this Privacy Policy:

  • With Shopify, our e-commerce platform provider, which hosts the Services and processes data on our behalf.
  • With service providers performing services for us, such as IT, payment processing (e.g. Shopify Payments, PayPal, Klarna), data analytics, customer support, cloud storage, fulfilment, and shipping carriers.
  • With business and marketing partners, only with your consent where required, to provide marketing services and advertise our products.
  • When you direct, request, or otherwise consent to disclosure.
  • With our affiliates or otherwise within our corporate group.
  • In connection with a business transaction such as a merger or bankruptcy, to comply with legal obligations, to enforce our terms or protect our rights and the rights of our users.

We do not sell your personal information, and we do not share it for cross-context behavioural advertising without your consent.

5. Relationship with Shopify

The Services are hosted by Shopify Inc. (Canada) and Shopify International Limited (Ireland). Shopify processes personal information on our behalf and, in certain cases, as an independent controller for its own purposes (e.g. fraud prevention across merchants).

To learn more about how Shopify uses your personal information and any rights you may have, you can visit the Shopify Consumer Privacy Policy at https://www.shopify.com/legal/consumer-privacy or the Shopify Privacy Portal at https://privacy.shopify.com/en.

6. International transfers

Some of our service providers (notably Shopify and certain payment processors) are located in the United States or other countries outside the European Economic Area (EEA).

When we transfer your personal information out of the EEA or the United Kingdom, we rely on recognised transfer mechanisms including the European Commission's Standard Contractual Clauses, equivalent UK contracts, or transfers to countries recognised by the European Commission as providing an adequate level of protection.

7. Cookies and similar technologies

We use cookies and similar technologies on safepool.store. Cookies are small text files placed on your device when you visit a website.

We use the following categories:

  • Strictly necessary cookies — required for the store to function (cart, checkout, security, session management). These are loaded automatically and cannot be disabled.
  • Analytics cookies — Shopify Analytics, used to understand how the site is used in aggregate. Loaded only with your consent.
  • Marketing cookies — used to display relevant advertising and measure campaign performance. Loaded only with your consent.

You can accept, reject, or customise non-essential cookies through the cookie banner shown on your first visit. You can also change your preferences at any time through your browser settings or by clearing cookies.

Refusing non-essential cookies does not prevent you from using the Services.

8. Third-party websites and links

The Services may provide links to websites or other online platforms operated by third parties. We do not control these websites and are not responsible for their privacy practices. We recommend you review their privacy and security policies before providing any personal information.

9. Children's data

The Services are not intended for children. In Spain, the digital age of consent is 14 (Art. 7 LOPDGDD). We do not knowingly collect personal information from children under 14 without verifiable parental or guardian consent.

If you are the parent or guardian of a child who has provided us with personal information without your consent, please contact us using the details below and we will delete it.

10. Security and retention

We apply reasonable technical and organisational measures to protect your personal information. However, no security measures are perfect, and we cannot guarantee absolute security.

We retain personal information only for as long as necessary to provide the Services and to comply with our legal obligations:

  • Order and invoice records — 6 years, in line with the Spanish Commercial Code (Art. 30) and tax law (Ley General Tributaria).
  • Account information — while your account is active, plus a reasonable period after closure to handle disputes or comply with legal obligations.
  • Marketing data — until you withdraw consent or unsubscribe, and in any event no longer than 24 months from your last interaction with us.
  • Customer support communications — up to 3 years.

We delete or anonymise personal information once these periods expire and the data is no longer needed.

11. Your rights

Under GDPR and Spanish law, you have the following rights with respect to your personal information:

  • Right of access — to obtain a copy of the personal information we hold about you.
  • Right to rectification — to correct inaccurate or incomplete personal information.
  • Right to erasure ("right to be forgotten") — to request that we delete personal information about you.
  • Right to restrict processing — to request that we limit how we use your personal information.
  • Right to object — to processing based on our legitimate interests, including direct marketing.
  • Right to data portability — to receive your personal information in a structured, commonly-used, machine-readable format and have it transmitted to another controller.
  • Right to withdraw consent — at any time, where processing is based on your consent.
  • Right not to be subject to automated decision-making with significant effects (we do not currently engage in such decision-making).

To exercise any of these rights, email info@safepool.es or write to us at the address below, including proof of identity. We will respond within one month, as required by GDPR Art. 12.

You can also opt out of marketing emails at any time using the unsubscribe link in any of our emails.

12. Complaints

If you believe we are not handling your personal information in accordance with applicable law, you may contact us first at info@safepool.es and we will do our best to resolve the issue.

You also have the right to lodge a complaint directly with your local data protection authority. In Spain, this is the Agencia Española de Protección de Datos (AEPD):

Agencia Española de Protección de Datos C/ Jorge Juan, 6, 28001 Madrid www.aepd.es

If you live in another EEA country or the UK, you can find a list of supervisory authorities at https://edpb.europa.eu/about-edpb/about-edpb/members_en.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time, including to reflect changes to our practices or for other operational, legal, or regulatory reasons. We will post the revised Privacy Policy on this website, update the "Last updated" date, and provide notice as required by applicable law.

14. Contact

If you have any questions about our privacy practices or this Privacy Policy, or if you would like to exercise any of your rights, please contact us:

Safe Smart Pool, S.L. Calle Siroco 7, 29649 Riviera del Sol, Málaga, Spain CIF: B-09941634 Email: info@safepool.es Phone: +34 670 964 333 WhatsApp: +34 666 553 399

For the purposes of applicable data protection laws, we are the data controller of your personal information. Privacy-related enquiries should be addressed to the same contact above.