• Headquarters: Madrid, Spain
  • GCC Regional Branch: Dubai, United Arab Emirates
  • info@plan2capital.com
Our Articles
Your Gateway to Business Success
MEMBERS Area
Request A Quote

Privacy Policy

Privacy Policy and Consent to Share Information for Plan2Capital

Effective Date: December 15, 2025
Website: https://plan2capital.com

  1. Introduction and Scope

Plan2Capital (“we,” “us,” or “our”) is committed to protecting your privacy and handling your personal data transparently and securely. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://plan2capital.com and use our services.

This policy is designed to comply with major international data protection laws, including:

· The General Data Protection Regulation (GDPR) for individuals in the European Union (EU) and European Economic Area (EEA).
· The California Consumer Privacy Act (CCPA) as amended by the CPRA for residents of California, USA.
· Other applicable global regulations such as Brazil’s LGPD, China’s PIPL, and India’s IT Act.

  1. Definitions

· Personal Data/Personal Information: Any information relating to an identified or identifiable natural person. This includes direct identifiers like name and email address, and indirect identifiers such as online identifiers, location data, and profile information.
· Sensitive Personal Data: A special category that includes data revealing racial or ethnic origin, political opinions, religious beliefs, genetic data, biometric data, health data, or data concerning a person’s sex life or sexual orientation. Financial account information and precise geolocation are also treated as sensitive under certain laws like the CCPA.
· Processing: Any operation performed on personal data, such as collection, recording, storage, use, or disclosure.
· Data Controller: The entity that determines the purposes and means of processing personal data.
· Data Processor: A third party that processes data on behalf of the Data Controller.

  1. Data We Collect

We collect information that you provide directly to us and information collected automatically.

Information You Provide:

· Contact details (name, email address, phone number, business address).
· Account information (username, password, profile data).
· Financial and investment information necessary for our services.
· Communications (contents of emails, chat logs, or support tickets).
· Information you submit through forms, surveys, or applications.

Information Collected Automatically:

· Device and Usage Data: IP address, browser type, operating system, referring URLs, pages visited, links clicked, and dates/times of access.
· Cookies and Tracking Technologies: We use cookies and similar technologies to analyze trends, administer the website, and track user movements. You can control cookie settings through your browser.

  1. Legal Basis for Processing (GDPR & International Compliance)

We only process your personal data when we have a valid legal basis to do so. The legal grounds we rely on include:

· Your Consent: For specific, informed purposes where you have given clear affirmative consent (e.g., subscribing to a marketing newsletter). You may withdraw consent at any time.
· Contractual Necessity: To perform a contract with you or to take steps at your request before entering a contract (e.g., providing requested capital planning services).
· Legal Obligation: To comply with a legal or regulatory requirement (e.g., tax laws, financial regulations).
· Legitimate Interests: To pursue our legitimate business interests, provided your fundamental rights do not override those interests. This includes activities like network security, fraud prevention, and improving our website.

  1. How We Use Your Information

We use the collected data for the following business and commercial purposes:

· To provide, operate, and maintain our services.
· To process transactions and manage your account.
· To communicate with you, including sending service-related updates and responses to inquiries.
· For security, fraud prevention, and to ensure the integrity of our services.
· To comply with legal obligations and protect our legal rights.
· To analyze website usage and improve our website, products, and services.
· For marketing purposes, where permitted by law and in accordance with your preferences.

  1. Sharing and Disclosing Information

We do not and will not sell your personal information to third parties. We may disclose your information in the following limited circumstances:

Service Providers: We share data with trusted vendors and processors who perform services on our behalf (e.g., hosting, payment processing, analytics, customer service) under strict contractual data protection terms.

Legal Requirements: We may disclose information if required by law, such as to comply with a subpoena, or to protect the rights, property, or safety of Plan2Capital, our users, or others.

Business Transfers: In connection with a merger, acquisition, or sale of all or a portion of our assets.

With Your Consent: For any other purpose disclosed to you with your prior permission.

  1. International Data Transfers

Your personal data may be transferred to, and processed in, countries other than your own. These countries may have data protection laws that differ from your jurisdiction. When we transfer data across borders, we implement safeguards as required by law, such as:

· Transferring data to countries with an adequacy decision from the European Commission.
· Using Standard Contractual Clauses (SCCs) approved by relevant authorities.
· Implementing Binding Corporate Rules (BCRs).

  1. Your Data Protection Rights

Depending on your location, you may have the following rights regarding your personal data. To exercise any of these rights, please contact us using the details in Section 14.

For EU/EEA Individuals (GDPR Rights):

· Right of Access: To request a copy of your personal data we hold.
· Right to Rectification: To correct inaccurate or incomplete data.
· Right to Erasure (“Right to be Forgotten”): To request deletion of your data under certain conditions.
· Right to Restrict Processing: To request a temporary halt on processing your data.
· Right to Data Portability: To receive your data in a structured, machine-readable format.
· Right to Object: To object to processing based on our legitimate interests.

For California Residents (CCPA/CPRA Rights):

· Right to Know: To request disclosure of the categories and specific pieces of personal information collected, used, and shared.
· Right to Delete: To request deletion of personal information collected from you, subject to legal exceptions.
· Right to Correct: To request correction of inaccurate personal information.
· Right to Opt-Out of Sale/Sharing: We do not sell your data. You have the right to opt-out if our practices change.
· Right to Limit Use of Sensitive Personal Information: To limit the use of sensitive personal information to certain purposes.
· Right to Non-Discrimination: You will not be discriminated against for exercising your privacy rights.

Verification: We will need to verify your identity before fulfilling certain requests, which may require you to provide additional information.

Authorized Agent: You may designate an authorized agent to make requests on your behalf, subject to our verification procedures.

  1. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, secure network architecture, and regular security assessments. We require all our service providers to maintain similar protections.

  1. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements, in accordance with the principle of storage limitation. Our retention periods are based on the nature of the data and the legal context.

  1. Children’s Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal data, please contact us.

  1. Specific Regional Notices

For California Residents:
In the preceding 12 months,we have collected the following categories of personal information as defined by the CCPA: Identifiers; Commercial Information; Internet or Electronic Network Activity; and Professional or Employment-Related Information. We disclose these categories to service providers for business purposes. For a detailed breakdown of sources and business purposes, please contact us.

For Nevada Residents: Nevada law permits residents to opt-out of the sale of certain personally identifiable information. We do not currently sell data as defined by Nevada law, but you may contact us to submit a verified opt-out request.

  1. Consent to Share Information

Separate Consent for Specific Disclosures
Beyond the disclosures outlined in Section 6,there may be instances where we propose to share your information with a specific third party (e.g., a strategic partner for a joint service offering) for a purpose that requires your explicit, separate consent.

Mechanism for Consent:
When such a situation arises, we will present you with a clear and separate consent request that describes:

· The specific third-party recipient.
· The exact categories of information to be shared.
· The precise purpose of the sharing.
· The duration for which the consent is valid.

You will be asked to actively agree (e.g., by checking a box) to this sharing arrangement. This consent can be withdrawn at any time by contacting us, after which we will cease the specified sharing, but any processing that occurred before withdrawal remains lawful.

  1. Contact Information

If you have questions, wish to exercise your privacy rights, or want to contact our Data Protection Officer (where applicable), please use the following:

Email: privacy@plan2capital.com
Postal Address:
Plan2Capital
Attn: Privacy Officer / Data Protection Officer

We will respond to your request within the timeframes required by applicable law (e.g., 45 days under the CCPA, subject to extension).

  1. Changes to This Policy

We may update this Privacy Policy periodically. The updated version will be indicated by the “Effective Date” at the top. We encourage you to review this policy frequently to stay informed about how we protect your information.

error: Content is protected !!
Investors Area
Founders Area