标志的法律公司abogodos
Facebook Instagram Linkedin

隐私政策

隐私政策

Last updated: May 11, 2026

Cafore Abogados («Cafore», «we», «our», or «us») operates legal, marketing,
advertising measurement, analytics, and client communication systems connected to
www.caforeabogados.com. This
Privacy Policy explains how we collect, use, store, protect, and share
personal data and Google API data when users visit our website, contact us,
or authorize tools that connect to Google services, including the Google Ads API.

谁负责处理这些数据?

The data controller is Cafore Abogados, located at Edificio Excelsior,
Carrera 7 No. 12B – 65, Oficina 401, Bogota, Colombia. You may contact us at
[email protected].

Data we collect

Depending on the interaction, we may collect the following categories of data:

  • Contact data, such as name, email address, phone number, company, and message content.
  • Legal service intake data voluntarily provided through forms, WhatsApp, phone calls, email, CRM tools, or consultations.
  • Website and advertising interaction data, such as landing page, URL parameters, cookies, device data, IP-derived approximate location, browser type, and analytics events.
  • Google Ads and Google Tag Manager data authorized through Google APIs, such as account identifiers, campaign structure, ads, keywords, search terms, recommendations, performance metrics, conversion actions, tags, and diagnostic information.
  • OAuth and technical data needed to maintain integrations, such as authorization status, token metadata, scopes granted, request logs, error logs, and security audit records.

How we use data

We use data only for legitimate business, legal, analytics, and operational purposes, including:

  • Responding to requests and providing legal services.
  • Measuring website and advertising performance.
  • Managing, auditing, reporting, and optimizing Google Ads campaigns and related conversion tracking.
  • Importing or validating offline conversions when a user or client has provided a lawful basis for doing so.
  • Detecting errors, fraud, abuse, security incidents, and unauthorized access.
  • Complying with legal, accounting, contractual, and regulatory obligations.

Google API Services and Google Ads API data

When Cafore tools access Google user data through Google API Services, including
Google Ads API, Google Tag Manager API, Google Analytics, Google Search Console,
and Google Business Profile APIs, the access is limited to the scopes
authorized by the relevant Google user or account administrator. We request only
the permissions needed to provide reporting, diagnostics, campaign management,
keyword planning, conversion tracking, and related support services.

Depending on the specific integration enabled by the user or account administrator, our tools may request one or more of the following Google OAuth scopes:

  • https://www.googleapis.com/auth/adwords for Google Ads API reporting, recommendations, campaign diagnostics, keyword planning, and approved campaign or conversion actions.
  • https://www.googleapis.com/auth/tagmanager.readonly for Google Tag Manager diagnostics.
  • https://www.googleapis.com/auth/tagmanager.edit.containers, https://www.googleapis.com/auth/tagmanager.edit.containerversions, and https://www.googleapis.com/auth/tagmanager.publish only when an authorized user explicitly enables Tag Manager editing or publishing workflows.
  • https://www.googleapis.com/auth/webmasters.readonly for Search Console performance analysis.
  • https://www.googleapis.com/auth/analytics.readonly for Google Analytics reporting.
  • https://www.googleapis.com/auth/business.manage for Google Business Profile diagnostics and management when expressly authorized.

Cafore’s use and transfer to any other app of information received from Google
APIs will adhere to the
Google API Services User Data Policy,
including the Limited Use requirements where applicable.

We do not sell Google user data. We do not transfer Google user data to data
brokers or information resellers. We do not use Google user data for unrelated
advertising, retargeting, personalized advertising outside the authorized
Google Ads management and measurement context, credit-worthiness, lending,
or unrelated profiling.

Humans at Cafore or our authorized service providers may access Google API data
only when needed to provide or improve the authorized user-facing service, to
investigate security or technical issues, to comply with law, or where the data
is aggregated and used for internal operations in accordance with applicable law.

We do not use Google API data to train generalized artificial intelligence models.
If a future feature requires a materially different use of Google user data, we
will update this policy and obtain any required consent before using the data
for that new purpose.

我们如何存储和保护数据

We apply administrative, technical, and organizational safeguards designed to
protect data against unauthorized access, alteration, disclosure, or destruction.
Access to production systems, OAuth credentials, developer tokens, API keys, and
client data is restricted to authorized personnel and service providers who need
the information to perform their duties.

Credentials and tokens are stored in secured credential stores or protected
server environments. We avoid storing secrets in public repositories, documents,
dashboards, or client-facing reports.

Sharing and processors

We may share data with trusted processors and service providers only when needed
to operate our website, CRM, analytics, hosting, security, legal, accounting,
or advertising measurement systems. These providers may include Google services,
CRM and communications tools, hosting providers, analytics providers, and
professional advisors. We may also disclose data if required by law or by a
competent authority.

Retention

We retain data only for as long as reasonably necessary for the purposes described
in this policy, for the duration of the client or business relationship, or as
required by applicable law. OAuth access can be revoked by the Google user or
account administrator through their Google Account or Google Ads account settings.

Users may request deletion of personal data or disconnection of Google API access
by contacting us at [email protected].
We will delete or anonymize data that is no longer required for the authorized
service, security, audit, legal, accounting, or contractual purposes.

Your rights

Depending on applicable law, you may request access, correction, update, deletion,
portability, restriction, or objection to processing of your personal data. You may
also revoke consent where processing is based on consent, subject to legal or
contractual retention obligations.

To exercise your rights, contact
[email protected] with a clear
description of your request and enough information to verify your identity.

International transfers

Some processors or systems may operate outside Colombia. When this occurs, we use
contractual, technical, and organizational measures intended to protect personal
data according to applicable law and this policy.

Changes to this policy

We may update this Privacy Policy to reflect changes in our services, Google API
integrations, legal requirements, or security practices. The updated version will
be published on this website with a new effective date.

Related policy

This Privacy Policy complements Cafore’s broader personal data processing policy
in Spanish, available at
https://www.caforeabogados.com/politica-de-tratamiento-de-la-informacion/.