Cookie Policy

Last updated: 15 April 2026

1. Data controller

Legal Name MANUEL NAVARRO RAJOY
Tax ID (NIF) 53285850W
Trade Name MAMBO CLUB
Address C/ Miquel Servet 149, 08912 Badalona, Barcelona, España
Email info@mambo.club
Phone (+34) 679 51 97 44

2. What are cookies?

Cookies are small text files that websites store on your device (computer, tablet or smartphone) when you visit them. They are widely used to make websites work more efficiently, as well as to provide information to the site owners.

Cookies may be "first-party" (set by the domain of the site you visit) or "third-party" (set by a different domain). They are also classified according to their duration as "session" cookies (deleted when you close the browser) and "persistent" cookies (remaining on your device for a set period).

3. Legal basis for the use of cookies

The legal basis for processing your data through cookies depends on the type of cookie used:

  • Technical/essential cookies: These do not require consent, as they are strictly necessary to provide the service requested by the user (Article 22.2 of the LSSI-CE).
  • Analytics, personalisation and advertising cookies: These require your express and informed consent prior to their installation, in accordance with Article 22.2 of the LSSI-CE and Article 6.1.a) of the GDPR (Regulation (EU) 2016/679).

You may grant, refuse or withdraw your consent at any time through our cookie settings panel, accessible from the cookie icon at the bottom of the screen.

4. Types of cookies we use

Below are the cookies used on www.mambo.club, classified by their purpose:

4.1. Technical and strictly necessary cookies

NO CONSENT REQUIRED

These are essential for the website to function properly. They enable navigation and the use of basic features such as access to secure areas, session management and privacy preferences.

Cookie Provider Purpose Duration Type
SESSION mambo.club Identifies the user's session. Essential for navigation, login and forms. Session First-party
_csrf mambo.club Protection against CSRF attacks. Ensures the security of forms. Session First-party
cookieconsent_status mambo.club Stores the user's choice regarding the acceptance or rejection of cookies. 12 months First-party

4.2. Analytics or measurement cookies

CONSENT REQUIRED

These allow the tracking and analysis of user behaviour. The information is used in an aggregated and anonymous manner to improve the service.

Cookie Provider Purpose Duration Type
_ga Google Analytics (Google LLC) Registers a unique identifier to generate statistical data about how the visitor uses the website. 2 years Third-party
_ga_LRSQMPHSSL Google Analytics (Google LLC) Used by Google Analytics 4 to store and count page views and monitor performance. 2 years Third-party

Provider: Google LLC, USA. Certified under the EU-U.S. Data Privacy Framework. Google's privacy policy.

4.3. Functionality and preference cookies

CONSENT REQUIRED

These allow the website to remember information that changes the way it behaves or looks, such as your preferred language or the region you are in.

Cookie Provider Purpose Duration Type
SEARCH_SAMESITE Google (google.com) Manages the transmission of cookies between different sites by applying SameSite policies to improve security. 6 months Third-party

4.4. Advertising and behavioural marketing cookies

CONSENT REQUIRED

These collect information about your browsing habits in order to show you personalised advertising. They also limit the frequency of ads and measure the effectiveness of advertising campaigns.

Cookie Provider Purpose Duration Type
NID Google (google.com) Unique device identifier used to show relevant ads based on browsing preferences. 6 months Third-party
SID, SSID, HSID, SIDCC Google (google.com) User authentication, prevention of fraudulent use of credentials and ad personalisation. 2 years Third-party
APISID, SAPISID Google (google.com) Display personalised ads based on recent searches and previous interactions. 2 years Third-party
AEC, OTZ Google (google.com) Ensure that requests within a session come from the legitimate user. Fraud prevention and ad optimisation. 6 months / 1 month Third-party
_Secure-1PAPISID, _Secure-1PSID, _Secure-1PSIDCC Google (google.com) Secure (HTTPS) versions of authentication and advertising personalisation cookies. 2 years Third-party
_Secure-3PAPISID, _Secure-3PSID, _Secure-3PSIDCC Google (google.com) Secure third-party cookies for interest profiles and relevant ads on the Google network. 2 years Third-party

Provider: Google LLC. Opt-out options: Google Ads Settings.

4.5. Third-party cookies for payment security

CONSENT REQUIRED

Installed by payment service providers to prevent fraud and ensure the security of transactions.

Cookie Provider Purpose Duration Type
stripe_mid Stripe Inc. (stripe.com) Stripe session identifier for fraud prevention and security in payment transactions. 1 year Third-party

Provider: Stripe, Inc., USA. Stripe's privacy policy.

5. International data transfers

Some of the service providers whose cookies are installed on your device when browsing www.mambo.club are established outside the European Economic Area (EEA), which involves international transfers of your personal data.

In accordance with Articles 44 to 49 of the General Data Protection Regulation (GDPR), such transfers are only carried out when appropriate safeguards are in place to ensure a level of protection equivalent to the European one. Below are the providers involved, their location, and the legal basis legitimising each transfer:

Google LLC

Legal name Google LLC
Headquarters 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States
Associated cookies _ga, _ga_LRSQMPHSSL, NID, SID, SIDCC, SSID, HSID, APISID, SAPISID, AEC, OTZ, SEARCH_SAMESITE, _Secure-*
Purpose Web analytics (Google Analytics), personalisation and delivery of relevant advertising, authentication security and fraud prevention.
Applicable safeguard Adequacy decision - EU-U.S. Data Privacy Framework (DPF)
Google LLC is certified under the EU-U.S. Data Privacy Framework, approved by the European Commission's Implementing Decision of 10 July 2023, in accordance with Article 45 of the GDPR. This framework ensures that certified companies provide a level of data protection substantially equivalent to the European one.
More information Google's privacy policy
Google's commitment to data protection
Data Privacy Framework (DPF) registry

Stripe, Inc.

Legal name Stripe, Inc.
Headquarters 354 Oyster Point Boulevard, South San Francisco, CA 94080, United States
Associated cookies stripe_mid
Purpose Fraud prevention and improved security in payment transactions carried out through the website.
Applicable safeguard Adequacy decision - EU-U.S. Data Privacy Framework (DPF)
Stripe, Inc. is certified under the EU-U.S. Data Privacy Framework approved by the European Commission (Implementing Decision of 10 July 2023), in accordance with Article 45 of the GDPR. In addition, Stripe applies Standard Contractual Clauses (SCCs) approved by the European Commission as a complementary safeguard mechanism.
More information Stripe's privacy policy
Stripe's Data Processing Agreement (DPA)
Data Privacy Framework (DPF) registry

Summary of applied safeguards

All international data transfers arising from the use of cookies on this website are covered by the following legal mechanisms recognised by the GDPR:

  • Adequacy decision (Art. 45 GDPR): The EU-U.S. Data Privacy Framework (EU-U.S. Data Privacy Framework), approved by the European Commission's Implementing Decision (EU) 2023/1795 of 10 July 2023, allows the transfer of personal data to certified U.S. companies without the need for additional safeguards.
  • Standard Contractual Clauses (Art. 46.2.c GDPR): Some providers, such as Stripe, also apply Standard Contractual Clauses (SCCs) approved by the European Commission as a complementary mechanism to ensure the required level of protection.
  • Explicit consent (Art. 49.1.a GDPR): In any case, non-essential cookies that generate international transfers are only activated upon the user's express and informed consent through our cookie settings panel.

You can find more information on international data transfers in the following official resources:

If you wish to obtain a copy of the safeguards adopted or additional information about international transfers, you can request it by writing to info@mambo.club.

6. How can you manage or disable cookies?

You have several options to control or limit the use of cookies:

Cookie settings panel

You can change your preferences at any time from our cookie settings panel, accessible by clicking the "Manage my cookies" button on this page or the icon at the bottom of the screen.

Browser settings

You can configure your browser to block or delete cookies. Please note that blocking certain cookies may affect the proper functioning of the website.

Below are links to the cookie settings of the most common browsers:

In addition, you can use the following third-party tools to manage advertising and analytics cookies:

7. User rights

In accordance with the General Data Protection Regulation (GDPR) and Organic Law 3/2018 of 5 December on the Protection of Personal Data and guarantee of digital rights (LOPDGDD), you have the right to:

Access

Find out what personal data we process about you.

Rectification

Request the correction of inaccurate or incomplete data.

Erasure

Request the deletion of your personal data.

Objection

Object to the processing of your data in certain circumstances.

Restriction

Request the restriction of the processing of your data.

Portability

Receive your data in a structured and commonly used format.

To exercise any of these rights, you may contact:

  • Email: info@mambo.club
  • Postal address: C/ Miquel Servet 149, 08912 Badalona, Barcelona, España

You must accompany your request with a copy of your ID card or equivalent document proving your identity. Likewise, if you consider that the processing of your data is not appropriate, you have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD), located at C/ Jorge Juan 6, 28001 Madrid, or through its electronic office: sedeagpd.gob.es.

8. Withdrawal of consent

You may withdraw the consent previously given for the use of cookies at any time and without the need for justification. To do so, you have the following options:

  • Settings panel: Click the "Manage my cookies" button available on this page to access the panel and change your preferences.
  • Browser: Delete the stored cookies from your browser settings and reconfigure your preferences the next time you visit the site.
  • Direct contact: Write to us at info@mambo.club stating your wish to withdraw consent.

The withdrawal of consent will not affect the lawfulness of the processing based on consent before its withdrawal, in accordance with Article 7.3 of the GDPR.

9. Updates to the Cookie Policy

MAMBO CLUB reserves the right to modify this Cookie Policy at any time in order to adapt it to legislative developments, case-law criteria, industry practices, or changes in the website's features.

Any substantial modification will be notified by means of a visible notice on the website and, where applicable, your consent will be requested again when legally required.

We recommend that you review this policy periodically to stay informed about how we protect your privacy.

10. Applicable legislation and regulatory references

This Cookie Policy is governed by the Spanish and European regulations in force, and in particular by:

  • Regulation (EU) 2016/679 (GDPR) - General Data Protection Regulation.
  • Organic Law 3/2018 of 5 December (LOPDGDD) - Protection of Personal Data and guarantee of digital rights.
  • Law 34/2002 of 11 July (LSSI-CE) - Information Society Services and Electronic Commerce (Article 22.2 on cookies).
  • Guide on the use of cookies from the Spanish Data Protection Agency (AEPD), updated in 2023.

11. Contact

If you have any questions or queries about this Cookie Policy or about the processing of your personal data, you can contact us through:

Postal address

C/ Miquel Servet 149
08912 Badalona, Barcelona

You may also contact our Data Protection Officer (DPO):

  • DPO: Manuel Navarro Rajoy
  • DPO contact: info@legaldata.pro
  • AEPD_DPD certification no.: A2025166DPD