Privacy Policy
Last updated: 29 April 2026
Joan Lecha Guix, operating as a self-employed professional under Spanish law under the trade name "Tigermole" ("Tigermole", "we", "us") is committed to protecting your personal data and respecting your privacy in accordance with Regulation (EU) 2016/679 (GDPR) and applicable Spanish data protection law (LOPDGDD). This Privacy Policy explains what data we collect, why, and your rights over that data.
1. Data Controller
Joan Lecha Guix (Tigermole) Calle Joaquim Vives Prat 18, B-2, 08392 Sant Andreu de Llavaneres, Barcelona, Spain DNI: 21784928H joan@tigermole.com
2. Data We Collect
We collect the following categories of personal data:
Account & Transactional Data: Email address, name (optional), and company name (optional) when you register a free trial or purchase a subscription. Payment information is processed directly by Stripe and never stored on our servers.
Licence Data: Email address and licence activation records processed by Keygen.sh to validate your entitlement to use the Software.
Analytics Data (consent required): If you accept analytics cookies, we collect anonymised usage metrics about how visitors interact with our website — pages visited, session duration, and feature engagement. This is collected via PostHog (EU-hosted) and Google Analytics 4. No code you write, no prompts you send, and no data masked by TigerMole's proxy are ever collected.
Support & Contact Data: Any information you voluntarily provide when contacting us via the contact form or by email.
3. Legal Basis for Processing
We process your personal data on the following legal bases under GDPR Article 6:
• Contractual necessity (Art. 6(1)(b)): Account and licence data are processed to provide you with the Software and manage your subscription.
• Consent (Art. 6(1)(a)): Analytics cookies (PostHog, Google Analytics 4) are only activated after you explicitly accept analytics cookies via our consent banner. You may withdraw consent at any time.
• Legitimate interest (Art. 6(1)(f)): Security monitoring and fraud prevention, where our interests do not override your rights and freedoms.
• Legal obligation (Art. 6(1)(c)): Invoicing and tax records as required by Spanish tax law.
4. Data Retention
Account and subscription data: retained for the duration of your subscription plus 5 years to comply with Spanish tax obligations.
Analytics data: retained for 12 months in PostHog and 14 months in Google Analytics 4, then automatically deleted.
Contact/support data: retained for 2 years from last interaction.
Licence records: retained for the duration of the licence plus 5 years.
5. Third-Party Data Processors
We use the following sub-processors:
• Stripe, Inc. — Payment processing. Data transferred under EU Standard Contractual Clauses. Privacy policy: stripe.com/privacy.
• PostHog, Inc. — Website analytics. Data stored on EU-based servers (eu.i.posthog.com). GDPR DPA in place. Privacy policy: posthog.com/privacy.
• Google Ireland Limited — Google Analytics 4. Data processed under Google's EU DPA. Privacy policy: policies.google.com/privacy.
• Keygen.sh — Software licence management. Privacy policy: keygen.sh/privacy.
• EmailJS — Transactional email delivery. Privacy policy: emailjs.com/legal/privacy-policy.
6. Cookies
We use the following cookies:
Essential cookies:
• tm_consent — Stores your cookie consent preferences. Duration: 1 year. No personal data.
• i18nextLng — Stores your language preference. Duration: session/localStorage. No personal data.
Analytics cookies (consent required):
• ph_* (PostHog) — Anonymised session analytics. Duration: 1 year.
• _ga, _ga_* (Google Analytics 4) — Aggregated usage analytics. Duration: up to 2 years.
You can manage your cookie preferences at any time by clicking the "Cookie Preferences" link in the site footer.
7. Your GDPR Rights
Under GDPR Chapter III, you have the following rights:
• Right of access (Art. 15): Request a copy of the personal data we hold about you.
• Right to rectification (Art. 16): Request correction of inaccurate data.
• Right to erasure (Art. 17): Request deletion of your data ("right to be forgotten") where no legal basis for retention exists.
• Right to restriction (Art. 18): Request that we restrict processing of your data.
• Right to data portability (Art. 20): Receive your data in a structured, machine-readable format.
• Right to object (Art. 21): Object to processing based on legitimate interests.
• Right to withdraw consent: Withdraw analytics consent at any time via the cookie preferences panel — this does not affect prior processing.
To exercise any right, contact joan@tigermole.com. We will respond within 30 days. You also have the right to lodge a complaint with the Spanish Data Protection Authority (AEPD) at aepd.es.
8. International Data Transfers
Where personal data is transferred outside the European Economic Area (EEA), we ensure an adequate level of protection through:
• EU Standard Contractual Clauses (SCCs) approved by the European Commission;
• Adequacy decisions where applicable.
PostHog analytics data remains within the EU (Frankfurt, Germany). Google Analytics data may be processed in the US under Google's EU DPA.
9. Data Security
We implement appropriate technical and organisational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, or unauthorised disclosure. These measures include TLS encryption for data in transit, access controls, and regular security reviews.
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the AEPD within 72 hours and, where required, notify affected individuals without undue delay.
10. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.
11. Contact
For any privacy-related questions or to exercise your rights, contact:
Joan Lecha Guix (Tigermole) joan@tigermole.com Calle Joaquim Vives Prat 18, B-2, 08392 Sant Andreu de Llavaneres, Barcelona, Spain