Enomads — Digital Nomad Community

Privacy Policy

Last updated: May 19, 2026

1. Who we are

Enomads is an independent digital nomad platform operated by Camil Predescu, based in Bucharest, Romania, and is the data controller for personal data processed via enomads.eu.

Privacy & general contact: contact@enomads.eu

2. What we collect

  • Email address — collected only when you request the free Portugal D8 Visa Guide PDF. Used to deliver the PDF (via Resend) and to send occasional updates about the guide. Nothing else.
  • Account data (optional) — name, email and profile fields if you create an account to save searches or post community content.
  • Analytics & usage data — pages visited, device and browser type, referrer, approximate country. Collected via Google Analytics 4 (ID: G-NVHGGN4Z6S) and Microsoft Clarity (ID: wn06gaoawk) — only after you accept the cookie banner.
  • Server logs — truncated IP addresses and request metadata, retained 90 days for security.

3. What we do NOT do

  • We do not sell, rent or share your email data with third parties.
  • We do not run advertising cookies or third-party ad-tech.
  • We do not build advertising profiles on you.

4. Cookies & analytics

We use strictly necessary cookies for authentication and session management.

We also use Google Analytics 4 (GA4) and Microsoft Clarity to understand how visitors use the site. Analytics cookies are denied by default (Google Consent Mode v2) and only loaded after you explicitly accept the cookie banner. GA4 is configured with IP anonymization. You can opt out at any time by clicking "Decline" on the banner or clearing the enomads_cookie_consent entry in your browser storage.

5. Sub-processors

  • Supabase Inc. — database, authentication, storage.
  • Cloudflare Inc. — CDN, DDoS protection, edge hosting.
  • Resend — transactional email delivery (Portugal D8 PDF + system emails).
  • Paddle.com — Merchant of Record for any paid orders.
  • Google LLC — GA4 analytics; Google OAuth if you sign in with Google.
  • Microsoft Corp. — Clarity behavioural analytics.

International transfers outside the EEA rely on EU Standard Contractual Clauses (2021/914).

6. Your GDPR rights

You have the right to:

  • Access the personal data we hold about you.
  • Rectify inaccurate data.
  • Erase your data ("right to be forgotten") — we honour requests within 30 days.
  • Restrict or object to processing.
  • Data portability — receive your data in JSON.
  • Withdraw consent for analytics or email at any time.
  • Lodge a complaint with your supervisory authority — in Romania, the ANSPDCP.

To exercise any of these rights, email contact@enomads.eu.

7. Retention

  • Portugal D8 PDF email list: until you unsubscribe or request deletion.
  • Account data: while your account is active, plus 30 days after deletion.
  • Payment / invoice data: 7 years (Romanian tax law).
  • Server / security logs: 90 days, then anonymised.

8. Security

  • TLS 1.3 in transit (HTTPS everywhere).
  • Row-Level Security on the database; role-based access for admin features.
  • Periodic dependency & vulnerability scanning.

9. Children

Enomads is not directed at children under 16. We do not knowingly collect data from minors.

10. Changes

Material changes will be posted here and, where appropriate, communicated by email.

11. Contact

Privacy questions: contact@enomads.eu.