Legal Framework
Regulatory Protocol
All operations governed by the laws of the Kingdom of Spain and the European Union General Data Protection Regulation (EU 2016/679).
Privacy Protocol
1. Data Controller Identity
The data controller responsible for the processing of personal data collected through this website is CedarAtlasForge, registered at Calle Gran Via de Colon 14, 18010 Granada, Spain. For all data protection inquiries, contact our designated officer at [email protected].
2. Categories of Personal Data Processed
We collect and process the following categories of personal data through our web forms and service delivery channels:
- Identification Data: Full name, professional title, and organization affiliation provided through inquiry forms.
- Contact Data: Email address, telephone number, and physical mailing address submitted during project initiation.
- Technical Data: IP address, browser type and version, operating system, referral source, and page interaction timestamps collected via standard server logging.
- Service Data: Project specifications, technical requirements, and business context voluntarily provided during engagement scoping.
3. Legal Basis for Processing
All personal data processing is conducted under one or more of the following legal bases as defined in Article 6(1) of the EU GDPR:
- Consent (Art. 6(1)(a)): Where you have given explicit, informed consent for specific processing purposes, such as receiving marketing communications.
- Contract Performance (Art. 6(1)(b)): Where processing is necessary for the performance of a contract to which you are a party, or for pre-contractual measures taken at your request.
- Legitimate Interest (Art. 6(1)(f)): Where processing is necessary for our legitimate interests in maintaining website security, preventing fraud, and improving our services, provided such interests are not overridden by your fundamental rights.
4. Data Retention Periods
Personal data is retained only for the duration necessary to fulfill the purposes for which it was collected:
- Inquiry form data: Retained for 12 months from the date of submission, or until the conclusion of any resulting contractual relationship, whichever is later.
- Contract and service delivery data: Retained for the duration of the contractual relationship plus 6 years, in compliance with Spanish commercial record-keeping obligations.
- Technical logs: Retained for a maximum of 90 days, after which they are automatically purged.
5. Data Recipients and Third-Party Transfers
Your personal data may be shared with the following categories of recipients, all operating under appropriate data processing agreements:
- Cloud infrastructure providers hosting our services within the European Economic Area.
- Payment processing partners for transaction-related communications, operating under PCI DSS Level 1 compliance.
- Legal and professional advisors where disclosure is required by law or necessary for the establishment, exercise, or defense of legal claims.
We do not transfer personal data outside the European Economic Area without implementing appropriate safeguards as defined in Chapter V of the EU GDPR, including Standard Contractual Clauses or adequacy decisions.
6. Data Subject Rights
Under the EU GDPR, you possess the following rights regarding your personal data:
- Right of Access (Art. 15): The right to obtain confirmation of whether we process your personal data and to receive a copy of such data.
- Right to Rectification (Art. 16): The right to request the correction of inaccurate personal data or the completion of incomplete data.
- Right to Erasure (Art. 17): The right to request the deletion of your personal data where there is no compelling legal ground for continued processing.
- Right to Restriction (Art. 18): The right to request the restriction of processing under specific circumstances.
- Right to Data Portability (Art. 20): The right to receive your personal data in a structured, commonly used, machine-readable format.
- Right to Object (Art. 21): The right to object to processing based on legitimate interests, including profiling.
- Right to Lodge a Complaint: The right to lodge a complaint with the Spanish Data Protection Agency (AEPD) at www.aepd.es.
7. Security Measures
CedarAtlasForge implements appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including but not limited to: encryption of personal data in transit and at rest, regular testing and evaluation of security measures, ability to ensure the ongoing confidentiality and integrity of processing systems, and a process for regularly testing and evaluating the effectiveness of technical and organizational measures.
Refund Terms
1. General Refund Framework
All services provided by CedarAtlasForge are delivered as定制 professional engineering and consulting engagements. Refund eligibility is evaluated based on the project milestone structure defined in the service agreement executed at project initiation.
2. Milestone-Based Refund Structure
- Pre-Engagement Cancellation: If cancellation occurs before any work has commenced, a full refund of any advance payment will be issued within 14 business days.
- Phase 1 (Discovery & Mapping): Refunds for Phase 1 work are evaluated based on the percentage of deliverables completed. If less than 50% of Phase 1 deliverables have been produced, a pro-rata refund of the remaining phase fee will be calculated and issued.
- Phase 2 (Engineering & Integration): Once Phase 2 has commenced, refunds are limited to the undelivered portion of the phase. Engineering hours already logged and resources allocated are non-refundable.
- Phase 3 (Deployment & Delivery): Phase 3 fees are non-refundable once deployment has commenced. If deployment has not yet begun, the remaining phase fee is eligible for refund.
3. Refund Processing
Approved refunds are processed within 30 business days using the original payment method. Where the original payment method is no longer available, an alternative refund method will be arranged in consultation with the client. Banking fees and currency conversion costs incurred during the refund process are the responsibility of the client.
4. Non-Refundable Items
- Third-party software licenses, API credits, or infrastructure costs procured on behalf of the client.
- Completed and delivered documentation, architecture diagrams, or technical specifications.
- Consultation hours consumed, regardless of whether they form part of a larger engagement.
5. Dispute Resolution
In the event of a refund dispute, CedarAtlasForge commits to engaging in good-faith mediation before any formal proceedings. Disputes that cannot be resolved through mediation shall be submitted to the exclusive jurisdiction of the courts of Granada, Spain, in accordance with applicable Spanish consumer protection legislation.
Service Accord
1. Acceptance of Terms
By accessing this website, submitting an inquiry form, or engaging CedarAtlasForge for professional services, you acknowledge and agree to be bound by these Terms of Service. If you do not agree to these terms, you must immediately discontinue use of our website and services.
2. Scope of Services
CedarAtlasForge provides digital engineering, e-commerce architecture, and corporate infrastructure consulting services as described on this website. All service specifications, timelines, and deliverables are defined in the individual project agreement executed for each engagement. The information presented on this website constitutes an invitation to treat and does not constitute a binding offer.
3. Intellectual Property
- All pre-existing intellectual property of CedarAtlasForge, including frameworks, methodologies, reusable code libraries, and design systems, remains the exclusive property of CedarAtlasForge and is licensed to the client for use exclusively within the scope of the delivered project.
- Custom deliverables created specifically for a client engagement become the intellectual property of the client upon full payment of all associated fees.
- Neither party may use the other party's trademarks, logos, or branding materials without prior written consent.
4. Confidentiality
Both parties agree to maintain the confidentiality of all proprietary information disclosed during the course of an engagement. This obligation survives the termination of the service agreement for a period of 3 years. Confidential information may not be disclosed to third parties without written consent, except as required by law.
5. Limitation of Liability
To the maximum extent permitted by applicable law, CedarAtlasForge shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising out of or related to the use of our services. Our total aggregate liability for any engagement shall not exceed the total fees paid by the client for the specific service giving rise to the claim.
6. Force Majeure
CedarAtlasForge shall not be liable for any failure or delay in performance resulting from causes beyond our reasonable control, including but not limited to natural disasters, pandemics, government actions, power failures, telecommunications outages, or cyberattacks. In such events, our obligations shall be suspended for the duration of the force majeure event.
7. Governing Law and Jurisdiction
These Terms of Service are governed by the laws of the Kingdom of Spain and, where applicable, the regulations of the European Union. Any disputes arising from these terms or from the services provided by CedarAtlasForge shall be subject to the exclusive jurisdiction of the courts of Granada, Spain. Consumers may also invoke the jurisdiction of their place of residence in accordance with applicable EU consumer protection directives.
8. Amendments
CedarAtlasForge reserves the right to modify these Terms of Service at any time. Updated terms become effective upon publication on this website. Continued use of our website or services following any modifications constitutes acceptance of the revised terms.
Last updated: July 2026 · CedarAtlasForge · Calle Gran Via de Colon 14, 18010 Granada, Spain