Cookie Policy

Last Updated: May 28, 2026
 

Controller

OrangeGuide Academy, S.L.U. (hereinafter “we”, “us” or “OrangeGuide Academy”) is the data controller for the cookies and similar tracking technologies used on orangeguide-academy.com.

​

• Registered name: OrangeGuide Academy, S.L.U.

• NIF: B26946160

• Registered office: Rambla Catalunya 57–59, 4º 1ª, 08007 Barcelona, Spain

• Registered with the Mercantile Registry of Barcelona:
  IRUS: 1000472505965, Folio: 1, Hoja: B 656040, Inscripción: 1

• Contact for cookie / privacy enquiries: privacy@orangeguide-academy.com

• No Data Protection Officer has been appointed, as no obligation arises under Art. 37 GDPR.
   

For our general Privacy Policy and Legal Notice / Impressum, please see the documents linked in the footer of our website.

​

This Cookie Policy explains how we use cookies and similar tracking technologies on our website, in compliance with:

​

• EU law: ePrivacy Directive 2002/58/EC (as transposed into Spanish LSSI and German TDDDG); GDPR (Regulation (EU) 2016/679).

• Spanish law: Ley 34/2002 (LSSI), Art. 22.2; AEPD authoritative guidance (Guía sobre el uso de las cookies, May 2024).

• German law: § 25 TDDDG (Telekommunikation-Digitale-Dienste-Datenschutz-Gesetz); Einwilligungsverwaltungsverordnung (EinwV), in force since 01.04.2025.

• Austrian law: ePrivacy provisions under § 165 TKG 2021.

• EDPB Guidelines: 05/2020 on consent and 03/2022 on deceptive design patterns.

​

1. What are cookies?

Cookies are small text files that are stored on your device (computer, smartphone, tablet) when you visit a website. They enable the site to function properly and allow us to collect information about your visit. Similar technologies (e.g. pixels, local storage, fingerprinting) are treated the same way under § 25 TDDDG and Art. 22.2 LSSI.

​

2. Cookies we use — Detailed inventory

In line with AEPD authoritative guidance (May 2024), we provide a complete, up-to-date inventory of all cookies and similar technologies, listing each by name, provider, purpose, type (session/persistent), duration, category and party.

​

This list is based on our current Wix platform and the Cookiebot™ for Wix Consent Management Platform (CMP) provided by Usercentrics GmbH. We scan our website for cookies at least every 6 months and after every significant change to the website or its integrations. You can always view the live, granular details in the Cookiebot consent banner / preferences panel.​​

​

2.1 Strictly necessary cookies

Essential for the website to function. Exempt from consent under Art. 22.2 LSSI and § 25(2) TDDDG.

​

​

​

​

​

​

​

​

​​

​

​​

​

​

​

​​

​

​

​

​

​

2.2 Analytics cookies

These would help us understand how visitors use the website (pseudonymised statistics) and would be set only after your explicit consent.

We currently use no analytics cookies. Wix's built-in analytics dashboard produces aggregate traffic statistics primarily from the strictly necessary cookies listed in section 2.1 and does not rely on separate consent-based analytics cookies. If we add a dedicated analytics tool (such as Google Analytics 4) in the future, the additional cookies will be listed here and set only after your consent; GA4 would be configured with IP truncation enabled and Google Signals / cross-device features disabled by default.

​

2.3 Marketing / Preference cookies

We currently use no marketing or preference cookies. If we add any in the future, this Cookie Policy will be updated and the new categories will require your prior, granular, explicit consent through our cookie banner before any such cookies are set.

​

3. Legal basis

Storage of / access to information on your terminal device (ePrivacy / LSSI / TDDDG):

• Strictly necessary cookies → exempt from consent (Art. 22.2 LSSI; § 25(2) TDDDG).

• All other cookies → your explicit consent (Art. 22.2 LSSI; § 25(1) TDDDG).

​

Processing of personal data collected via cookies (GDPR):

• Service cookies required to deliver the website you actively requested (e.g. session, consent storage) → performance of a contract / pre-contractual measures (Art. 6(1)(b) GDPR).

• Security cookies (e.g. XSRF-TOKEN, attack detection) → legitimate interests (Art. 6(1)(f) GDPR) — securing our website.

• Analytics cookies and any future marketing/preference cookies → your explicit consent (Art. 6(1)(a) GDPR).

​

4. Consent management with Cookiebot by Usercentrics

We use Cookiebot™ for Wix, provided by Usercentrics GmbH (Germany), as our consent-management platform (CMP). Usercentrics is a Google-certified CMP partner and supports the IAB Transparency and Consent Framework (TCF) v2.2. The CMP:

• obtains granular, freely given consent before non-essential cookies are set;

• blocks scripts until consent is given;

• detects and honours Global Privacy Control (GPC) signals — see section 7;

• stores your preferences in a first-party cookie named CookieConsent for up to 12 months, after which the banner reappears and you will be re-prompted. Note: in Safari 12.1 and newer, Apple's Intelligent Tracking Prevention reduces this retention to 7 days, after which the banner reappears regardless of our settings;

• logs consents for accountability; consent logs are retained in line with the limitation period under Art. 45 LSSI-CE.

​

Our banner is designed so that accepting or rejecting non-essential cookies is equally easy and prominent, with the “Reject all” button at the same level and visual weight as the “Accept all” button — in line with EDPB Guidelines 03/2022.

Refusing non-essential cookies does not condition or restrict your access to the website’s core functions.

​

5. How to manage or withdraw consent

• Via our banner: click the cookie icon in the bottom-left corner of the website at any time. Withdrawal is as easy as giving consent.

• Via your browser settings: most browsers (Chrome, Firefox, Safari, Edge, Brave, etc.) allow you to view, delete or block cookies. Please consult your browser’s documentation for the exact steps.

• Via Global Privacy Control (GPC): see section 7.

​

You can also delete all cookies or block them entirely (note: this may impair site functionality).

​

6. Third-party cookies and international transfers

Third parties involved:

​

• Wix.com Ltd. (Israel) — covered by EU adequacy decision 2011/61/EU, confirmed valid by the Commission's first periodic review on 15 January 2024; sub-processors may include EEA-based infrastructure and US providers covered by SCCs and the EU-US Data Privacy Framework.

• Usercentrics GmbH (Germany) — provider of the Cookiebot™ for Wix CMP. Within the EEA; where any onward transfer outside the EEA occurs through Usercentrics' sub-processors, it is governed by EU Standard Contractual Clauses.

• EFFECTIFY LTD (Israel) — operator of the Blocky app used for geo-blocking and bot protection. Covered by EU adequacy decision 2011/61/EU + EU SCCs for any onward transfers.

• ​Google LLC (reCAPTCHA) — spam and bot protection on website forms, loaded via the Wix platform; may load associated Google-hosted resources (e.g. fonts) and process your IP address. United States, with EU data centres; covered by the EU-US Data Privacy Framework + EU SCCs.

​

Detailed information and transfer mechanisms for each vendor are available in the live Cookiebot banner and in our Privacy Policy. We ensure appropriate safeguards for any transfers outside the EEA.​

​

7. Global Privacy Control (GPC) and Do Not Track (DNT)

We honour Global Privacy Control (GPC) signals as a valid expression of your right to object under Art. 21 GDPR and as a refusal of consent under § 25 TDDDG. When our website detects a GPC signal in your browser, we will not set non-essential cookies and will not load scripts that depend on your consent. You may still adjust individual preferences via the Cookiebot banner.

We do not currently honour the older Do Not Track (DNT) signal, as it has no clear legal status in the EU and lacks a uniform specification.

​

8. Children and minors

Our services are directed exclusively at adults (persons 18 years or older). We do not knowingly process personal data of minors via cookies or otherwise. If you are a minor, please do not use this website.

​

9. Changes to this policy

We may update this Cookie Policy from time to time. The current version is always available on this page. Significant changes will be notified via the website or the consent banner and, where required, will trigger a fresh request for your consent.

​

10. Your rights and complaints

You have the right to lodge a complaint with the supervisory authority of your habitual residence, your place of work or the place of the alleged infringement, in particular:

​

• Spain (AEPD) — www.aepd.es — our lead supervisory authority under the GDPR One-Stop-Shop.

• Germany — the competent state DPA (Landesdatenschutzbehörde) or, for telecommunications / digital services matters, the Bundesnetzagentur / BfDI. Matters under § 25 TDDDG are not subject to the One-Stop-Shop and may be enforced directly by the competent German authority.

• Austria — Datenschutzbehörde (DSB), www.dsb.gv.at.

​

For the full list of your data-subject rights (access, rectification, erasure, restriction, objection, portability, withdrawal of consent), please see our full Privacy Policy.

Cross-references: This Cookie Policy forms part of our interconnected compliance framework together with the Privacy Policy and the Legal Notice / Impressum.