Privacy Policy

At First Line, we value the trust of our clients, suppliers and business partners. This Privacy Policy explains, clearly and transparently, how we collect, use and safeguard the personal information you provide through our website, in compliance with the GDPR and,
where applicable, the Spanish Organic Law 3/2018 on Data Protection and Digital Rights Guarantee (LOPDGDD).

As a business-to-business (B2B) corporate site, our starting principle is data minimization: we do not sell your data to third parties, and any tracking or analytics tool we use is limited to the purposes described below.

1. Data Controller

  • Data Controller: First Line
  • Privacy contact:customer.care@firstline-global.com

2. What Data We Collect and How We Get It

First Line only collects information that you actively and voluntarily provide, plus limited technical data generated automatically by your browsing:

  • Newsletter Subscription Form: name, email address, and optionally company name or industrial sector
  • Technical / Commercial Contact Forms: name, corporate email, phone number, and any details you include in your message.
  • Essential/Technical Cookies: basic technical data (anonymized IP address, browser type, operating system) needed for the Site to function and for security.
  • Analytics and Marketing Cookies: if you consent via our cookie banner, tools such as Google Analytics and/or the Meta (Facebook) Pixel collect browsing data (pages visited, interactions, approximate location, device/browser data) to measure Site performance and, where used, to show relevant advertising.

3. Purpose and Legal Basis for Processing

3.1 Sending Commercial and Industrial Communications (Newsletter)

  • Purpose: to send product updates, technical innovations, case studies and corporate news.
  • Legal basis: explicit consent (double opt-in) — we only email you if you actively checked the subscription box.

3.2 Managing Inquiries or Quote Requests

  • Purpose: to respond to technical or commercial requests submitted through the web forms.
  • Legal basis: performance of pre-contractual measures at your request.

3.3 Website Analytics and Marketing

  • Purpose: to understand how visitors use the Site, improve it, and, where applicable, measure or personalize advertising.
  • Legal basis: your consent, given through the cookie banner. You can withdraw it at any time.

3.4 Essential Website Operation

  • Purpose: security, fraud prevention and correct technical functioning of the Site.
  • Legal basis: legitimate interest in operating a secure, functioning website.

4. Cookies We Use

When you first visit the Site, a cookie banner lets you accept or reject non-essential cookies (analytics and marketing) before they are set. Essential cookies do not require consent, as they are necessary to provide the service you request. You can change your
choice at any time via the “Cookie Settings” link in the Site footer, or by deleting/blocking cookies through your browser settings (Chrome, Firefox, Safari, Edge) — note that blocking essential cookies may affect the Site’s functionality.

5. Data Retention and Erasure

  • Newsletter data: retained until you withdraw consent or unsubscribe.
  • Commercial contact data: deleted from active systems within [Insert, e.g. 12 or 24] months of the last contact if no commercial relationship results, remaining blocked only for compliance with legal obligations.
  • Analytics/marketing data: retained for the period set by each provider’s default configuration (e.g. Google Analytics), or as configured by us.

6. Data Sharing with Third Parties

First Line does not sell, rent or share your personal data with third parties for their own marketing purposes. Your data is only accessible to trusted service providers acting as data processors under confidentiality agreements — for example, our email marketing platform, our website hosting provider, and (where you consent) Google/Meta for analytics and advertising. These providers may only use your data to deliver the service contracted by First Line.

[If any processor is located outside the EEA (e.g. a US-based analytics provider, or if data is accessed by a non-EU parent/affiliate company), add: “Some of these providers may process data outside the European Economic Area. Where this occurs, we rely on the
European Commission’s Standard Contractual Clauses or another valid transfer mechanism under Chapter V GDPR to protect your data.” Confirm with counsel which providers/entities this applies to.]

7. Your Privacy Rights

You may exercise the following rights at any time by emailing [Insert privacy email]:

  • Access: to know whether we process your data and what data we hold.
  • Rectification: to correct inaccurate or incomplete data.
  • Erasure: to request deletion of your data (“right to be forgotten”).
  • Objection and withdrawal of consent: including one-click unsubscribe from the newsletter, and withdrawing cookie consent at any time.
  • Portability and restriction of processing, where applicable under the GDPR.

You also have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD, www.aepd.es) or your local supervisory authority.

8. Information Security

We apply technical and organizational security measures, including SSL/HTTPS encryption across the Site, to prevent loss, misuse, alteration or unauthorized access to your data. This is a B2B environment that does not process sensitive categories of data (e.g. health or financial data).

9. Updates to This Policy

We may update this Privacy Policy to reflect changes in our data practices or in applicable law. The “Last Updated” date below indicates the latest revision.