Registration open · AI applied to omnichannel commerceBuenos Aires · Aug 26–27, 2026 · in-personCourse of 30–40 people · early bird until Jun 30Reserve your seat →
House of Commerce by Visual Latina

Home Privacy

Privacy Policy.

How we collect, use and protect your data. Written to be understood, not to defend ourselves.

  • Last updatedJune 3, 2026
  • Effective fromJune 3, 2026
  • Versionv2.2
  • Read time10 min

What matters in 30 seconds

The important parts in 30 seconds

  • Visual Express S.A. (Vicente López, Buenos Aires, Argentina) is the data controller. We comply with Argentine Law 25.326 on Personal Data Protection and notify as required.
  • We only collect what we need to reply, deliver a course or improve the site.
  • We don't sell your data. Ever. And we don't share with ad networks for off-site retargeting.
  • You have rights of access, rectification, erasure, objection, portability and habeas data — email martina.diantonio@visuallatina.com and we'll reply within 10 business days.
01Who we are

House of Commerce is the continuous-education practice of Visual Express S.A. — the company trading commercially under the «House of Commerce» and «Visual Latina» trademarks — a commerce consultancy based in Greater Buenos Aires since 1995. For the purposes of Argentine Law 25.326 on Personal Data Protection, the data controller is:

  • Visual Express S.A. (CUIT 30-68828107-4), with registered address at Gaspar Campos 647, B1638 Vicente López, Province of Buenos Aires, Argentina.
  • Privacy contact: martina.diantonio@visuallatina.com
  • Supervisory authority: Agencia de Acceso a la Información Pública (AAIP), Av. Pte. General Julio A. Roca 710, CABA — argentina.gob.ar/aaip.

If our services reach users in the European Union, Visual Express S.A. acts as the controller under GDPR; the contact remains the same. For users in other LATAM countries (Brazil-LGPD, Mexico-LFPDPPP, Colombia-Law 1581, Chile-Law 19.628), we apply a compliance standard compatible with local legislation, based on informed consent, purpose limitation and minimum collection.

02Key definitions

So this policy is easy to understand, we set out some terms (aligned with art. 2 of Law 25.326):

  • Personal data: information of any kind referring to determined or determinable natural or legal persons.
  • Processing: operations on personal data — collection, storage, organization, consultation, transfer, deletion.
  • Data subject: you, the person to whom the data refers.
  • Processor: third party that processes data on our behalf (e.g. Resend, HubSpot, Vercel).
  • Dissociation: processing such that the information cannot be associated with a determined person.
03What data we collect

We only collect the data you voluntarily give us and the data your browser generates while using the site, always related to the purpose for which we collect it:

  • Professional contact data: first name, last name, work email, company, role, country.
  • Course enrollment data: additional professional information (industry, team, cases to work on), plus billing document if required by the cohort.
  • Payment data: we never touch your card or bank details — payments go through external processors (MercadoPago, Stripe, etc.). You'll always be told when you're about to leave our site and which site you're being redirected to for payment. We only receive the payment status and a transaction identifier.
  • Browsing data: page viewed, referrer, device, browser, country (city level) — via analytics (see section 09).
  • Site preferences: selected language, cookie preference, newsletter subscriptions.

We don't collect sensitive data (racial or ethnic origin, political opinions, religious or philosophical beliefs, union membership, health, sex life). Our services are aimed at professionals over 18 acting in a work context — see section 11.

04How we collect data

Data reaches us through three channels:

  • Directly from you: when you fill out a form, enroll in a course, subscribe to the newsletter, download a guide, book a call or email us.
  • Automatically: when you browse the site — analytics, cookies, server logs (see Cookie Policy).
  • From third parties: if a colleague or partner refers you, we receive your email and context. We let you know on first contact.
05Purposes and legal basis

Each processing has a specific purpose and legal basis. We detail both per use:

  • Replying to commercial inquiries: basis — legitimate interest in maintaining the commercial relationship; or consent if you contacted us first.
  • Enrollment, delivery and certification of courses: basis — performance of the training contract you sign by enrolling.
  • Sending newsletter or downloadable material: basis — explicit consent (you subscribed). You can revoke at any time via the link in every email.
  • Billing and tax obligations: basis — compliance with legal obligations (AFIP in Argentina and local equivalents).
  • Improving the site: basis — legitimate interest, using aggregated and dissociated data.
  • Security and fraud prevention: basis — legitimate interest in protecting users and the platform.

We don't make automated decisions with significant effects on you. We don't profile for commercial purposes.

06Who we share your data with

Only with processors that help us operate and deliver our services correctly, under data processing agreements (DPA) that require the same protection standard we apply ourselves:

  • Sanity content management (CMS).
  • Vercelhosting and CDN.
  • Cloudflare DNS, security layer and attack mitigation.
  • n8n form automation bus (self-hosted or cloud depending on environment).
  • HubSpot CRM for commercial contacts.
  • Resend transactional email (confirmations, reminders).
  • Beehiiv newsletter (opt-in subscribers only).
  • Calendly scheduling of discovery calls.
  • Google Analytics 4 · Amplitude analytics, configured with anonymized IP and no personal identifiers.
  • Sentry technical error monitoring (no personal data processed under normal use).
  • MercadoPago · Stripe payment processing (we don't receive card data).

We don't sell your data. Ever. We also don't share with ad networks (Meta, Google Ads, TikTok Ads) for off-site retargeting. If we implement advertising pixels in the future, we'll email you and update this policy 15 days in advance.

07International transfers

Several of our processors operate servers outside Argentina (mainly in the United States and the European Union). This is considered an international transfer under Law 25.326.

We carry out these transfers considering that the receiving country provides an adequate level of personal data protection. Failing that, in accordance with the regulations, we sign the model agreements provided for such transfers, based on:

  • The informed consent you give when accepting this policy.
  • Standard contractual clauses (DPAs) with each processor, requiring standards equivalent to Argentine and European legislation (GDPR art. 46).
  • Where available, recognized adequacy decisions (the EU has recognized Argentina as having an adequate level of protection since 2003).

If you want to know where a specific piece of data is stored, email us and we'll reply within the legal timeframe.

08Your rights

Under Law 25.326 (arts. 14, 15, 16, 27) and equivalent regulations, you can exercise the following rights at any time at no cost:

  • Information: know what data of yours we have and what we process it for.
  • Access: obtain a copy of your data in a readable format.
  • Rectification / update: correct inaccurate or out-of-date data.
  • Erasure: ask us to delete your data, except where we are required to keep them by tax law.
  • Objection: object to processing based on legitimate interest.
  • Portability: receive your data in a structured, portable format.
  • Withdrawal of consent: for processing that depends on your consent (newsletter, marketing).
  • Habeas data: judicial action to access, rectify or delete data when a public or private entity does not respond.

The data subject or their legal representatives have the right to exercise access to their data free of charge at intervals of no less than six months, unless a legitimate interest is demonstrated, as set out in article 14, paragraph 3 of Law 25.326.

Participants or their legal representatives may request that such information be provided, updated, rectified or removed from the database upon their request. To do so, they must contact us by email at martina.diantonio@visuallatina.com.

The Agencia de Acceso a la Información Pública, supervisory authority for Law 25.326, has the authority to handle complaints and claims regarding non-compliance with personal data protection regulations.

Registration and participation implies the granting by the data subject of the consent provided for in articles 5 and 11 of Law 25.326.

To exercise any of these rights, email us at martina.diantonio@visuallatina.com with the subject «Data subject rights» indicating what you want to exercise and a way to verify your identity. We'll reply within 10 business days (art. 14, Law 25.326).

If you're not satisfied with our response, you can file a complaint with the Agencia de Acceso a la Información Pública (AAIP). For users outside Argentina, with the competent regulator in your jurisdiction (INAI in Mexico, SIC in Colombia, ANPD in Brazil, EU DPAs in Europe, etc.).

09Cookies and analytics

We use essential cookies (necessary for the site to work), analytics cookies (anonymized) and, if you actively enable them, marketing cookies. The full cookie management is in the Cookie Policy and, from the banner that appears on your first visit, you can accept, reject or customize by category.

Analytics tools (Google Analytics 4, Amplitude) operate with anonymized IP and no cross-site identifiers. We don't use third-party advertising pixels (Meta, Google Ads, TikTok).

10Security

We apply technical and organizational measures to protect your data:

  • Encryption in transit (HTTPS / TLS 1.3) across the entire site and APIs.
  • Encryption at rest on key services (Sanity, Vercel, HubSpot).
  • Least-privilege access and multifactor authentication for the internal team.
  • Processors with SOC 2 Type II, ISO 27001 or equivalent certifications.
  • Contractual clause with all processors to notify us of incidents within 72 hours.

If a security incident that may affect you occurs, we'll notify you by email within the legal timeframe (72 hours for high-risk cases) along with information on how to proceed.

11Minors

House of Commerce is a professional service aimed at people over 18 acting in a work context. We don't knowingly collect data from minors. If we discover that a minor sent us data without the consent of their legal guardian, we'll delete it. If you are responsible for a minor and believe they sent us data, email us at martina.diantonio@visuallatina.com.

12Data retention

We keep data only as long as needed for the processing purpose:

  • Newsletter subscribers: until you unsubscribe (basis: revocable consent).
  • Leads and commercial contacts in CRM: up to 5 years from the last relevant exchange; then anonymization or deletion.
  • Course enrollments: during the course and up to 2 years after for student support and certificate validation.
  • Billing documentation: 10 years if tax law requires it (Ley General de Sociedades and Código Civil y Comercial).
  • Server logs: 30 days, except for incident investigation.
  • Aggregated analytics: 14 months, with no personal identifiers.

Once the periods expire, data is automatically deleted or dissociated for statistical use.

13Changes to this policy

If we update this policy, we'll notify you at least 15 days in advance:

  • By email to those on the newsletter or active CRM.
  • By showing the last-updated date at the top of this page.
  • If the change is material (new significant processor, new purpose, etc.) we highlight it in the site banner for 30 days.

If you keep using the site after the effective date, we understand that you accept the updated version. If you don't agree, you can exercise your right to object or ask us to close your account.

Other

policies

TermsCookies

We use cookies to understand what's relevant and improve the content. You choose. Cookie policy.