Privacy Policy

By means of this privacy policy 2Shapes Technologies SLU wishes to inform all people who browse and access the website of how their personal data is handled. 

Accessing the website does not require prior registration. In all cases, by continuing to browse, the user accepts this privacy policy and the cookie policy in full.

Before sending any request for information via the contact form on this website, the user must accept the privacy policy, in order to provide their express and informed consent to the handling of their data for the purposes indicated.

In accordance with Regulation (EU) 2016/679, of 27 April 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and further to what is not regulated, Royal Decree 1720/2007, of 21 December, which approves the Regulations for enacting Constitutional Law 15/1999, of 13 December, on Personal Data Protection, 2Shapes Technologies SLU informs you of the following:

Basic Information On Data Protection
Data Controller

2Shapes Technologies SLU | B66937251

Avda. Ciudad de Soria, 8, 4ª planta, La Terminal, A08 | 50003 Zaragoza, Spain

Purpose and form of holding the data

2Shapes Technologies SLU will handle users’ data for the following purposes:

  • To manage the use of the features made available through the website: The data handled for this purpose will be held while the contractual and/or business relationship continues between the user and 2Shapes Technologies SLU. In cases where the requests made by a user do not constitute a contractual relationship, the data will be held until said request has been resolved.
  • To keep users informed, via marketing messages, of 2Shapes Technologies SLU services and news: The user will only receive said marketing messages if they explicitly consent to it by ticking the corresponding box. Said data will only be held until the moment at which the user withdraws their consent or exercises their right to oppose the holding of it.

Users have the right to withdraw their consent for receiving marketing messages at any time. Additionally, users have the right to object to the processing of their data for direct marketing purposes, including profiling to the extent that it is related to such direct marketing. To exercise these rights or for any inquiries regarding data processing, users can contact us at or at


The processing of the mentioned data is legitimized by:

  1. Fulfillment of contractual obligations: When data processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
  2. Consent of the data subject: User consent is obtained explicitly and verifiably through means such as online forms with specific checkboxes. This consent is required for the sending of requests and inclusion in the process of selecting or receiving marketing messages.
  3. Compliance with legal obligations: When processing is necessary for compliance with a legal obligation applicable to the data controller.
  4. Protection of vital interests of the data subject: When processing is necessary to protect vital interests of the data subject or another natural person.
Third-party recipients

Personal data will not be shared with third parties unless legally required or necessary for the fulfillment of contractual obligations. In the event of disclosure to third parties, all necessary measures will be taken to ensure the confidentiality and security of the data, and the data subject will be informed as required by applicable law.

Additionally, in the case of international data transfers, appropriate measures will be implemented to ensure that such transfers comply with applicable data protection regulations, including adequate protection mechanisms and obtaining sufficient guarantees from recipients, if necessary.


The user may freely exercise their rights to access, rectify, oppose the holding of the data, or delete it at any time, as well as the other rights regulated by Regulation (EU) 2016/679 (General Data Protection Regulation), including the right to data portability and the right to restrict processing. Users can exercise these rights by submitting a written request, along with a copy of their DNI (Spanish ID) or other valid identification document, to Av. Ciudad de Soria 8, 50003 Zaragoza, or by contacting us via email at

2Shapes Technologies SLU informs the user that, if they deem it appropriate, they have the right to file a complaint with the corresponding supervisory authority.

Is it obligatory to provide all the information requested on the contact form?

On the forms on the website, the user is required to complete the fields marked as “required.” This is necessary to ensure that we have the necessary information to process and respond to your requests effectively. Failure to provide the required personal data, or providing it partially, may result in 2Shapes Technologies SLU being unable to fully meet your requests. Consequently, 2Shapes Technologies SLU will not be held liable should any of the services requested not be provided in whole or in part due to insufficient information provided by the user.

The personal data provided by the user to 2Shapes Technologies SLU must be up-to-date in order for the information held to be current and correct. By submitting the contact form, the user confirms that the information provided is true and accurate to the best of their knowledge.

What security measures are taken by the company?

2Shapes Technologies SLU informs the user that their personal data is handled at all times in accordance with the applicable regulations on data protection and the services of information companies. We have implemented comprehensive technical and organizational security measures to ensure the security of users’ personal data.

These measures include, but are not limited to, encryption of sensitive data, strict access controls, regular security audits, ongoing staff training on data protection practices, and adherence to industry best practices. Furthermore, we regularly review and update our security measures to adapt to evolving technological advancements and emerging security threats.

2Shapes Technologies SLU is committed to maintaining the highest standards of data security to prevent unauthorized access, alteration, loss, or disclosure of users’ personal data, in accordance with applicable regulations and industry standards.

Underage children

Children under the age of 14 may not provide their personal data to 2Shapes Technologies SLU without the prior consent of their parents and/or legal guardians, in accordance with applicable data protection regulations such as the General Data Protection Regulation (GDPR) or relevant national laws regarding the protection of children’s privacy.

In the event that 2Shapes Technologies SLU suspects that a user is under the age of 14, we reserve the right to request a copy of the user’s DNI (Spanish ID) or equivalent identity document, or, where appropriate, the authorization of their parents and/or legal guardians. Failure to provide such documentation or authorization may result in the cancellation of services or the deletion of personal data associated with the underage user.

We are committed to protecting the privacy and security of children’s personal data and will take appropriate measures to verify the age of users and obtain parental consent where necessary.

Social networks

2Shapes Technologies SLU maintains social network profiles to publish and disseminate information about the services provided on the website, interact with users, and offer a channel for feedback and social interaction. Please note that when interacting with our social media profiles, your personal data may be collected by 2Shapes Technologies SLU in accordance with our Privacy Policy.

In addition, the privacy policies of the social networks on which 2Shapes Technologies SLU has an active profile are available via the following links:

  • Facebook:
  • Twitter:
  • Youtube:
  • Instagram:

We are committed to protecting your privacy and security when interacting with our social media profiles. If you have any questions or concerns about how your personal data is handled, please contact us.

Cookies Policy

This website uses cookies to collect statistical information on user’s browsing and improve our services according to your preferences, generated from your browsing patterns. By continuing to browse, you are considered to have accepted the terms and conditions of our Cookie Policy .
What Are Cookies And Why Does Our Website Use Them?

A cookie is a file that is downloaded to the user’s device when they access certain websites which stores and retrieves information about the browsing activity on their computer.

Cookies allow this website, among other things, to store and retrieve information about the user’s decisions and habits. The cookies that exist on this website are necessary for it to function.

It is important to highlight that the use of cookies does not provide access to the user’s personal data.

What Type Of Cookies Does The Website Use?

Cookies can be divided into session or persistent cookies. depending on the time they remain active. The only type used on this website are:

  • Session cookies: Cookies designed to collect and store data while the user accesses a website. They are normally used to store information which only needs to be kept in order to provide the service requested by the user on just one occasion.
  • Persistent cookies: The data remains stored on the device and can be accessed and handled during a period specified by the issuer of the cookie, which may be from a few minutes to several years.

Additionally, depending on the organisation managing them, cookies may be classified as first-party or third-party cookies. This website only uses:

  • First-party cookies: These are sent to the user’s device from a computer or domain managed by the website publisher and are used to provide the service requested by the user.
  • Third-party cookies: These are sent to the user’s device from a computer or domain that is not managed by the website publisher, but by another organisation that handles data obtained from cookies.
In Terms Of Their Purpose, The Types Of Cookies Used On The Website Are:
  • Technical cookies: These allow the user to browse a website, platform or application and use the different service options found there.
  • Profiling cookies: These allow the user to access the service with some predefined general features based on a series of criteria on the user’s device such as language, settings, etc.
  • Analytical cookies: These allow the website owner to track and analyse user behaviour on the websites to which they are linked. The information collected is used to measure activity on the websites and to create user’s browsing profiles, with the aim of introducing improvements.
  • Advertising cookies: These allow the advertising spaces which the publisher puts on the website to be managed as efficiently as possible.
  • Behavioural advertising cookies: These allow the advertising spaces to be managed, by storing user behaviour information obtained through the continuous observation of their browsing habits, which allows specific advertising to be shown to the user according to their interests.
Cookie Declaration Last Updated On 16/07/2018

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

__cfduidnpmcdn.comThe “__cfduid” cookie is set by the CloudFlare service to identify trusted web traffic. It does not correspond to any user id in the web application, nor does the cookie store any personally identifiable information.1 YearHTTP Cookie
__cb-enabledwejewel.aiThis cookie is associated with a free script which shows a cookie alert notice on a website. It is used to record when the user has dismissed the notice to prevent it reappearing on return visits. The main purpose of this cookie is: Strictly Necessary.2 yearsHTTP Cookie
__cf_ob_infowejewel.aiUsed by CloudFlare content delivery network to display a notice in case the website is temporarily inaccessible.SessionHTTP Cookie

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

__gawejewel.aiRegisters a unique ID that is used to generate statistical data on how the visitor uses the website.2 yearsHTTP Cookie
__gidwejewel.aiRegisters a unique ID that is used to generate statistical data on how the visitor uses the website.24 hoursHTTP Cookie
How Do You Disable Cookies In A Browser?

The user can adjust the settings in their browser so as not to accept the use of cookies, in which case the user would not have a customized browsing experience. Choosing this setting may result in certain parts of the website not being accessible, as this may cause less effective browsing.

Most browsers currently allow the user to choose whether they want to accept cookies and which types. These settings are usually found in the “settings” or “preferences” in your browsers menu.

These are the instructions to change the cookie settings in the main browsers:

  • Chrome: Settings → Show advanced options → Privacy → Content settings. For more information, ask Google support or click Help in the browser.
  • Firefox: Tools → Options → Privacy → History → Custom settings . For more information, ask Mozilla support or click Help in the browser.
  • Internet Explorer: Tools → Internet Options → Privacy → Settings . For more information, ask Microsoft support or click Help in the browser.
  • Safari: Preferences → Security . For more information, ask Apple support or click Help in the browser.
Additional Information
For more information about the use of cookies and how to disable them, go to , If you have any question or comment about our use of cookies, please contact us via

CCPA Privacy Notice

2Shapes Technologies SLU is complying with the CCPA and considering its underlying principles in how we think about customer trust and data privacy as a core pillar of our business. We are providing this CCPA-specific privacy notice to supplement the information and disclosures already contained in our Privacy Policy. This notice applies to individuals residing in California from whom we collect Personal Information.

The TLDR for California residents is: We do not sell your Personal Information.
The chart below outlines the categories of Personal Information (which are defined by the CCPA, not us) that we have collected and/or disclosed for a business purpose in the preceding twelve months. The examples of Personal Information provided for each category are taken from the CCPA and are included to help you understand what the categories mean. The examples are not meant to indicate what we actually collect or disclose, and more information about our specific practices can be found in our Privacy Policy.
Category We Collect We Disclose We Sell
A. Identifiers Yes Yes No
Examples: Name, alias, postal address, unique personal identifier, online identifier, internet protocol address, email address, account name, social security number, driver’s license number, passport number, or other similar identifiers.
B. Categories of Personal Information in Cal. Civ. Code 1798.80(e) Yes Yes No
Examples: Name, signature, social security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information.
C. Characteristics of Protected Classifications under California or Federal Law No N/A N/A
Examples: Race or color, ancestry or national origin, religion or creed, age (over 40), mental or physical disability, sex (including gender and pregnancy, childbirth, breastfeeding or related medical conditions), sexual orientation, gender identity or expression, medical condition, genetic information, marital status, military and veteran status.
D. Commercial Information Yes Yes No
Examples: Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
E. Biometric Information No N/A N/A
Examples: Physiological, biological, or behavioral characteristics, including DNA, that can be used, singly or in combination with each other or with other identifying data, to establish individual identity, such as imagery of the iris, retina, fingerprint, face, hand, palm, vein patterns, and voice recordings, from which an identifier template, such as a faceprint, a minutiae template, or a voiceprint, can be extracted, and keystroke patterns or rhythms, gait patterns or rhythms, and sleep, health, or exercise data that contain identifying information.
F. Internet or Other Electronic Network Activity Information Yes Yes No
Examples: Browsing history, search history, and information regarding a consumer’s interaction with an internet website, application or advertisement.
G. Geolocation Data No N/A N/A
Example: Precise physical location.
H. Sensory Information No N/A N/A
Examples: Audio, electronic, visual, thermal, olfactory, or similar information.
I. Professional or employment-related information Yes Yes No
Examples: Job application or resume information, past and current job history, and job performance information.
J. Non-Public Education Information (as defined in 20 U.S.C. 1232g; 34 C.F.R. Part 99) No N/A N/A
Examples: Records that are directly related to a student maintained by an educational agency or institution or by a party acting for the agency or institution.
K. Inferences Drawn from Personal Information Yes Yes No
Examples: Consumer profiles reflecting a consumer’s preferences, characteristics, psychological trends, preferences, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
Use of Personal Information

The CCPA defines various business and commercial purposes for collecting, using, and disclosing Personal Information. While we collect, use, and disclose Personal Information pursuant to our Privacy Policy as a whole, we wanted to clarify out that this includes Personal Information in accordance with the specific CCPA business and commercial purposes below:

  1. Auditing related to a current interaction with you and concurrent transactions, including, but not limited to auditing compliance with this specification and other standards.
  2. Detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible for that activity.
  3. Debugging to identify and repair errors that impair existing intended functionality.
  4. Short-term, transient use.
  5. Contracting with service providers to perform services on our behalf, including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing advertising or marketing services, providing analytic services, or providing similar services on behalf of the business or service provider.
  6. Undertaking internal research for technological development and demonstration.
  7. Undertaking activities to verify or maintain the quality or safety of our services, and to improve, upgrade, or enhance our services.
  8. Otherwise enabling or effecting, directly or indirectly, a commercial transaction.
  9. For other purposes for which we provide specific notice at the time the information is collected.
Collection and Disclosure of Personal Information

In the preceding twelve months since this notice was last updated, we have collected Personal Information from general sources including you, your use of our services, your devices, our affiliates, our vendors, and our service providers. More specific information about Personal Information we collect is laid out in this notice and in our Privacy Policy, which we update from time to time.

As also explained in our Privacy Policy, we share your Personal Information with the following categories of CCPA third parties: 

  1. Affiliates.
  2. Vendors and service providers, including for data analytics and marketing and advertising our products and services to you.
  3. Third parties integrated into our services.
  4. Third parties as required by law and similar disclosures.
  5. Third parties in connection with a merger, sale, or asset transfer.
  6. Other third parties for whom we have obtained your permission to disclose your Personal Information.
Your California Privacy Rights

If you are a California resident, you may exercise the following rights.

Right to Know and Access:

You may submit a verifiable request for information regarding the: (1) categories of Personal Information collected or disclosed by us; (2) purposes for which categories of Personal Information are collected by us; (3) categories of sources from which we collect Personal Information; and (4) specific pieces of Personal Information we have collected about you during the past twelve months.

Right to Delete: 

Subject to certain exceptions, you have the option to delete Personal Information about you that we have collected from you.


Requests for access to or deletion of Personal Information are subject to our ability to reasonably verify your identity in light of the information requested and pursuant to relevant CCPA requirements, limitations, and regulations.

Right to Equal Service and Price:

You have the right not to receive discriminatory treatment for the exercise of your CCPA privacy rights, subject to certain limitations.

Shine the Light:

We do not rent, sell, or share your Personal Information with nonaffiliated companies for their direct marketing purposes, unless we have your permission.

Submit Requests:

To exercise your rights under the CCPA, you can deactivate and purge your account in your Profile page. For other requests or to authorize an agent to make a request on your behalf, you can also reach out to us at


If you have any questions, comments, or concerns about our processing activities, or you would like to exercise your privacy rights, please contact us via

CCPA Data Processing

This CCPA Data Processing Addendum (the “Addendum”) reflects the requirements of the California Consumer Privacy Act of 2018 and its implementing regulations, as amended or superseded from time to time (California Civil Code §§ 1798.100 to 1798.199) (the “CCPA”). This Addendum makes clear that 2Shapes is acting as a Service Provider for CCPA purposes.

This Addendum is an addendum to the Customer Terms of Service (“Agreement”) and its incorporated Customer Data Processing Agreement (the “DPA”) between 2Shapes Technologies SLU (“2Shapes”) and the Customer (each a “Party”; collectively the “Parties”) and is in effect for so long as 2Shapes maintains Personal Information (as defined in and to the extent protected by the CCPA) provided by Customer or which is collected on behalf of Customer by 2Shapes (hereinafter, the “Personal Information”). This Addendum shall only apply and bind the Parties if and to the extent Customer is a Business under the CCPA. This Addendum prevails over any conflicting terms of the Agreement or DPA, but does not otherwise modify the Agreement or DPA. All capitalized terms not defined in this Addendum shall have the meanings set forth in the CCPA. Customer enters into this Addendum on behalf of itself and, to the extent required under the CCPA, in the name and on behalf of its Authorized Affiliates (defined below).

The parties agree as follows:

1. Definitions

1.1. “Affiliate” means an entity that directly or indirectly Controls, is Controlled by or is under common Control with an entity.

1.2. “Authorized Affiliate” means any of Customers’ Affiliate(s) permitted to or otherwise receiving the benefit of the Services pursuant to the Agreement.2. Scope and Applicability of this Addendum.

2. Scope and Applicability of this Addendum

2.1. This Addendum applies to the collection, retention, use, and disclosure of the Personal Information to provide Services to Customer pursuant to the Agreement or to perform a Business Purpose.

2.2. Customer is a Business and appoints 2Shapes as a Service Provider to process the Personal Information on behalf of Customer. Customer is responsible for compliance with the requirements of the CCPA applicable to Businesses.

2.3. 2Shapes’s collection, retention, use, or disclosure of Personal Information for its own purposes independent of providing the Services specified in the Agreement are outside the scope of this Addendum.

3. Restrictions on Processing

3.1. 2Shapes is prohibited from retaining, using, or disclosing the Personal Information for any purpose other than for the specific purpose of performing the Services specified in the Agreement for Customer, as set out in this Addendum, or as otherwise permitted by the CCPA.

3.2. 2Shapes shall not further collect, sell, or use the Personal Information except as necessary to perform the Business Purpose. For the avoidance of doubt, 2Shapes shall not use the Personal Information for the purpose of providing services to another person or entity, except that 2Shapes may combine Personal Information received from one or more entities to which it provides similar services to the extent necessary to detect data security incidents, or protect against fraudulent or illegal activity.

4. Notice

4.1. Customer represents and warrants that it has provided notice that the Personal Information is being used or shared consistent with Cal. Civ. Code 1798.140(t)(2)(C)(i).

5. Consumer Rights

5.1. 2Shapes shall provide reasonable assistance to Customer in facilitating compliance with Consumer rights requests.

5.2. Upon direction by Customer and within a commercially reasonable amount of time, 2Shapes shall delete the Personal Information.

5.2.1 2Shapes shall not be required to delete any of the Personal Information to comply with a Consumer’s request directed by Customer if it is necessary to maintain such information in accordance with Cal. Civ. Code 1798.105(d), in which case 2Shapes shall promptly inform Customer of the exceptions relied upon under 1798.105(d) and 2Shapes shall not use the Personal Information retained for any other purpose than provided for by that exception.

6. Deidentified Information.
6.1. In the event that either Party shares Deidentified Information with the other Party, the receiving Party warrants that it: (i) has implemented technical safeguards that prohibit reidentification of the Consumer to whom the information may pertain; (ii) has implemented business processes that specifically prohibit reidentification of the information; (iii) has implemented business processes to prevent inadvertent release of Deidentified Information; (iv) will make no attempt to reidentify the information.
7. Mergers, Sale, or other asset transfer
7.1. In the event that either Party transfers to a Third Party the Personal Information of a Consumer as an asset that is part of a merger, acquisition, bankruptcy, or other transaction in which the Third Party assumes control of all or part of such Party to the Agreement, that information shall be used or shared consistently with applicable law. If a Third Party materially alters how it uses or shares the Personal Information of a Consumer in a manner that is materially inconsistent with the promises made at the time of collection, it shall provide prior notice of the new or changed practice to the Consumer in accordance with applicable law.
8. As required by law

8.1. Notwithstanding any provision to the contrary of the Agreement, the DPA or this Addendum, 2Shapes may cooperate with law enforcement agencies concerning conduct or activity that it reasonably and in good faith believes may violate international, federal, state, or local law.

9. No Sale of Personal Information
9.1. The Parties acknowledge and agree that the exchange of Personal Information between the Parties does not form part of any monetary or other valuable consideration exchanged between the Parties with respect to the Agreement, the DPA or this Addendum.

If there are any questions regarding this privacy policy, please contact us via