Legal document
Privacy Notice
Last updated: June 2026
Operated by Akibana Services SAPI de CV · Mexico City, México
Data Controller
Shiba Group Co. (operated by Akibana Services SAPI de CV), with its domicile and operations in Ciudad de México, México, is the party responsible for the processing of your personal data, in accordance with the Federal Law on the Protection of Personal Data Held by Private Parties (LFPDPPP), its Regulations, and the applicable secondary provisions.
Contact for privacy matters: privacy@shibagroup.co
Personal Data We Collect
For the purposes set out in this Privacy Notice, we may collect the following categories of personal data:
- Identification data: full name, email address, and phone number
- Usage or browsing data: pages visited, interaction with our artificial intelligence assistant (Naiyel), and browser and device information
- Communication data: messages sent through our contact form or chat
We do not collect sensitive personal data through this website.
Purposes of the Processing
Primary purposes:
- Identity verification by email (one-time password, OTP) when you choose to reach the founder or hand off to our team
- Addressing and responding to requests for information about our business units and services
- Compliance with the legal obligations applicable to us
Secondary purposes:
- Sending communications about Shiba Group Co. business units and updates
- Improvement of our services and preparation of analytics
The secondary purposes are not necessary for the primary relationship with you. You may at any time express your refusal of the processing of your personal data for these secondary purposes by sending an email to privacy@shibagroup.co. Such refusal will not be a condition for us to provide the products or services you request.
Transfers and Data Processors
We do not sell, rent, or trade your personal data. For operational purposes, we rely on the following service providers, who act as data processors and may process your data on behalf of and under the instructions of the Data Controller:
- Resend (email delivery, United States of America)
- Google Analytics (website analytics, United States of America)
- Cloudflare (security and content delivery network, United States of America)
- Hetzner (hosting infrastructure, Germany/Finland)
These data processors are located outside Mexican territory and act within the framework of the LFPDPPP. We require them to maintain security measures equivalent to those described in this Privacy Notice and to process the data solely for the purposes set out herein.
ARCO Rights
Under the LFPDPPP, you have the right to Access, Rectify, Cancel, or Object to the processing of your personal data (ARCO rights), as well as to revoke the consent you have granted us. To exercise these rights, send your request, accompanied by a copy of your official identification, to privacy@shibagroup.co. The request must state your name, the domicile or means to receive a response, the documents that prove your identity, a clear description of the data over which you seek to exercise the right, and any element that facilitates locating the data. We will respond to your request within a maximum term of 20 business days following its receipt.
Data Retention
We retain personal data only for the time necessary to fulfill the purposes described in this Privacy Notice, in accordance with the following criteria:
- Contact and verification data: retained until you request its cancellation
- Analytics data: retained for a period of up to 2 years
- Chat conversation data: retained for a period of up to 1 year
Security Measures
We implement administrative, technical, and physical security measures to protect your personal data against damage, loss, alteration, destruction, or unauthorized use, access, or processing. These measures include TLS/SSL encryption for all data in transit, encrypted storage for sensitive data, and role-based access controls.
Changes to This Privacy Notice
We reserve the right to modify this Privacy Notice at any time in order to address legislative changes, internal policies, or new requirements for the provision of our services. Any modification will be published on this page together with the corresponding revision date.
Complaints Before the INAI
If you consider that your right to the protection of personal data has been infringed, you may file your complaint before the National Institute of Transparency, Access to Information and Protection of Personal Data (INAI), at www.inai.org.mx.