This Policy describes how CAP Capital processes the personal data of users and contacts of the Website, including data collected through forms (e.g., "Work with us").
Responsible | CAP CAPITAL HOLDING LTD |
Address | 20 North Audley Street, London, W1K 6WE, United Kingdom |
Privacy email | info@capcapital.uk (or privacy@capcapital.uk) |
Depending on your interaction with the Website, we may process the following categories of data:
We process personal data for the following purposes and on the following legal bases:
Purpose | Standard data | Legal basis |
Respond to inquiries and requests (email and forms) | Identification, contact, message content | Pre-contractual measures (Art. 6.1.b GDPR) and/or legitimate interest (Art. 6.1.f GDPR) |
Management of investment/collaboration proposals and relationships with potential partners | Contact details and professionals | Pre-contractual measures (Art. 6.1.b GDPR) and legitimate interest (Art. 6.1.f GDPR) |
Application management and talent contact (if job channel/CV enabled) | Contact, CV, professional profile | Pre-contractual measures (Art. 6.1.b GDPR) and consent where applicable |
Navigation analytics and website improvement (analytical cookies, if enabled) | Browsing data | Consent (Art. 6.1.a GDPR + Art. 22.2 LSSI) |
Website Security and Abuse Prevention | IP, technical logs | Legitimate interest (Art. 6.1.f GDPR) |
Compliance with legal obligations | Those necessary in each case | Legal obligation (Art. 6.1.c GDPR) |
Sending commercial communications/newsletters (if enabled) | Email and preferences | Consent (Art. 6.1.a GDPR) and LSSI rules for commercial communications |
The data may be processed by providers that offer services to CAP Capital (e.g., web hosting, maintenance, form tools, analytics, email, or CRM), acting as data processors under contract. Data will not be transferred to third parties except when legally required or when necessary to respond to a user request.
CAP Capital may use providers located outside the European Economic Area. In such cases, appropriate safeguards in accordance with the GDPR (e.g., adequacy decisions, Standard Contractual Clauses, or others) will apply. If the data is processed or hosted in the United Kingdom, the transfer may be covered by the European Commission's current adequacy decision.
We will retain the data for the following approximate periods (unless there is a different legal obligation):
Treatment | Approximate time frame |
General inquiries and requests | During the processing of the request and, subsequently, for up to 12 months for follow-up; thereafter, blocked or deleted except for legal responsibilities. |
Investment/collaboration proposals | For the duration of the evaluation/relationship and, subsequently, for up to 24 months for follow-up, unless a request for deletion is made or there is a legal requirement. |
Applications / talent (if applicable) | Up to 12 months from the last interaction (or the period communicated), except for incorporation into the process and applicable obligations. |
Browsing data/cookies | Depending on the duration of each cookie and the user's settings (see Cookie Policy). |
Technical safety records | Up to 12 months, unless retention is necessary due to incidents or claims. |
You may exercise your rights of access, rectification, erasure, objection, restriction, and portability, as well as withdraw your consent when the processing is based on it. To do so, send a request to [privacy email] indicating the right you wish to exercise and proving your identity when necessary.
You may also lodge a complaint with the competent supervisory authority. If you are in Spain, the Spanish Data Protection Agency (AEPD): www.aepd.es. If you are in another country in the European Economic Area, you can contact your local authority.
CAP Capital applies reasonable technical and organizational measures to protect data against unauthorized access, loss, alteration, or disclosure, taking into account the nature of the data processed and the risks involved.
The Website is not intended for minors. If you become aware that a minor has provided personal data without authorization, please contact CAP Capital to request its deletion.
CAP Capital may update this Policy to adapt it to regulatory or technical changes. The current version will be the one published on the Website.
