Privacy Policy
Last Updated: December 2025
1. Introduction
Welcome to The Araleya Saga website ("we," "our," or "us"). We are committed to protecting your personal data and respecting your privacy in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and other applicable European Union data protection laws.
This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website at araleya.eu, worldsofaraleya.com, and any associated subdomains.
2. Data Controller
The data controller responsible for your personal data is:
3. Personal Data We Collect
We collect only the personal data that is necessary to operate our website and provide the services you request.We may collect and process the following categories of personal data:
3.1 Information You Provide Directly
- Contact Information: Name and email address when you contact us
- Communication Data: Content of emails or messages you send us
3.2 Information Collected Automatically
- Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform
- Usage Data: Information about how you use our website, including pages visited and time spent on pages
4. Legal Basis for Processing
Under GDPR, we process your personal data based on the following legal grounds:
- Consent (Article 6(1)(a) GDPR): Where you have given clear consent for us to process your personal data for specific purposes
- Legitimate Interests (Article 6(1)(f) GDPR): Where processing is necessary for our legitimate interests (such as website security and improvement) and your interests and fundamental rights do not override those interests
- Legal Obligation (Article 6(1)(c) GDPR): Where we need to comply with a legal obligation
5. How We Use Your Data
We use your personal data for the following purposes:
- To respond to your inquiries and provide customer support
- To improve our website and user experience
- To ensure website security and prevent fraud
- To comply with legal obligations
- To send you information about our books and services (only with your explicit consent). You may unsubscribe at any time via the link in our emails.”
6. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements.
Retention Periods: Contact form submissions and email correspondence are retained for up to 3 years. Website analytics data is retained for up to 26 months. You may request deletion of your data at any time.
7. Your Rights Under GDPR
As a data subject in the European Union, you have the following rights:
To exercise any of these rights, please contact us at info@araleya.eu
We will respond to your request within one month.8. Cookies and Tracking Technologies
Our website may use cookies and similar tracking technologies. Cookies are small text files placed on your device that help us provide a better user experience.
Types of cookies we may use:
- Essential Cookies: Necessary for the website to function properly
- Analytics Cookies: We may use analytics services in the future to help us understand how visitors interact with our website. Where required by law, we obtain your consent through a cookie consent banner before placing non-essential cookies.
You can control cookies through your browser settings. Note that disabling certain cookies may affect website functionality.
9. Data Security
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:
- Encryption of data in transit using SSL/TLS
- Secure hosting infrastructure
- Limited access to personal data on a need-to-know basis
- Regular security assessments
10. International Data Transfers
Some service providers may process data outside the European Economic Area (EEA). Where such transfers occur, we ensure that appropriate safeguards are in place, such as:
- EU Standard Contractual Clauses
- Adequacy decisions by the European Commission
- Other legally approved transfer mechanisms
11. Third-Party Services
We may use third-party services that process personal data on our behalf. These services are contractually bound to protect your data and process it only according to our instructions. Such services may include:
- Website hosting providers
- Analytics services
- Email service providers We do not sell, rent, or trade your personal data to third parties.
12. Children's Privacy
Our website is not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If you believe we have collected data from a child under 16, please contact us immediately.
13. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy periodically.
14. Right to Lodge a Complaint
If you believe that we have not complied with your data protection rights, you have the right to lodge a complaint with a supervisory authority. In the EU, you can contact your local Data Protection Authority.
For a list of EU Data Protection Authorities, visit: European Data Protection Board - Members
15. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us: