Privacy policy

Last updated: 2026-06-21

Data controller
Westend Consulting Ltd. (C 113523)
The Core, Triq il-Wied ta' l-Imsida, Msida MSD 9021, Malta
contact [at] kreditano [dot] com

This Privacy Policy explains how we collect and process personal data through this website (kreditano.com), the corporate and informational site of the Kreditano brand. This website is not the credit-comparison platform itself — our country platforms (kreditano.ro, kreditano.mx, kreditano.pl) operate under their own separate privacy policies.

1. Who is responsible for your data (controller)

The data controller for this website is the company identified in the “Data controller” box above. You can contact us about privacy matters using the email address shown there.

2. What data we collect

We keep data collection to a minimum on this site:

Contact form data: when you send us a message, we process the name, email address, subject and message content you provide.
Technical/server data: like most websites, our server may log limited technical information (such as IP address, browser type and time of request) for security and to keep the service running.
We use cookieless analytics (Ahrefs Web Analytics and Cloudflare Web Analytics) to understand aggregate traffic; they do not set cookies or build user profiles. We do not run advertising tracking on this site.

3. Why we process it and our legal bases (GDPR Art. 6)

To respond to your enquiry — based on our legitimate interest in answering you, and/or steps taken at your request.
To keep the website secure and operational — based on our legitimate interest in protecting our systems.
To comply with legal obligations where applicable.

4. Sharing and processors

We do not sell your personal data. We use a small number of trusted service providers who act on our behalf under data-processing terms:

Email delivery (Resend) — to transmit and deliver contact-form messages to us.
Hosting — our website infrastructure provider.
Web fonts — typography is currently loaded via Google Fonts, which may receive your IP address when the page loads. (Self-hosting fonts is a recommended hardening step.)

5. International transfers

Where a provider processes data outside the European Economic Area, we rely on appropriate safeguards (such as the European Commission’s Standard Contractual Clauses) to protect your data.

6. How long we keep it

We retain contact messages only for as long as needed to handle your request and for a reasonable follow-up period, after which they are deleted or anonymised. Server logs are kept for a short period for security purposes.

7. Your rights

Under the GDPR you have the right to:

access the personal data we hold about you;
have inaccurate data corrected;
have your data erased;
restrict or object to processing;
data portability;
withdraw consent at any time, where processing is based on consent.

8. Complaints

If you believe we have not handled your data properly, you may lodge a complaint with the Maltese supervisory authority, the Information and Data Protection Commissioner (IDPC), or your local data-protection authority.

9. Changes to this policy

We may update this policy from time to time. The “last updated” date above reflects the latest version.