PRIVACY POLICY

USER INFORMATION

Who is responsible for processing your personal data?

DIRECTSALUD, S.L.U. is the CONTROLLER of the personal data of the USER and informs them that these data will be processed in accordance with the provisions of Regulation (EU) 2016/679, of 27 April (‘GDPR’), and Act 3/2018, of 5 December (‘LOPDGDD’).

What do we process your personal data for?

To maintain a business relationship with the user. The operations planned for processing are:

Sending of commercial advertising communications by e-mail, fax, SMS, MMS, social media or any other present or future electronic or physical means serving to conduct commercial communications. These communications will be performed by the CONTROLLER and will be related to its products and services, or those of its collaborators or suppliers with which it has reached a promotional agreement. In this case, third parties will never have access to personal data.

Conduct market research and statistical analyses.
Process orders, requests, response to queries or any type of request made by the USER through any of the contact methods made available to them on the CONTROLLER’s website.
Send the online newsletter on news, offers and promotions in our activity.

Why may we process your personal data?

Because the processing is legitimated by Article 6 of the GDPR as follows:

  • With the consent of the USER: sending of commercial communications and the newsletter.
  • Through the legitimate interest of the CONTROLLER: conduct market research, statistical analyses, etc. and process orders, requests, etc. at the request of the USER.

How long will we keep your personal data?

They will be stored for no longer than is necessary to maintain the purpose of processing or the existence of legal requirements dictating their retention, and when no longer necessary for this purpose, they will be deleted with adequate security measures to guarantee the anonymisation of the data or their total destruction.

Who do we provide your personal data to?

No communication of personal data to third parties is planned except by legal obligation or, if necessary for the development and execution of the purposes of processing, to our service providers involved with communications, with which the CONTROLLER has signed the confidentiality and data processor agreements required by the applicable privacy regulations.

What are your rights?

The rights of the USER are:

  • Right to withdraw consent at any time.
  • Right of access, rectification, portability and erasure of their data, and of restriction of or objection to the processing thereof.
  • Right to lodge a complaint with the supervisory authority (www.aepd.es) if they consider that processing does not comply with the applicable regulations.

Contact details to exercise your rights:

DIRECTSALUD, S.L.U. Calle Rocafort, 252, Entresuelo 2 – 08029 Barcelona, Barcelona. E-mail: direccion@directsalud.es

  1. MANDATORY OR OPTIONAL NATURE OF THE INFORMATION PROVIDED BY THE USER

The USERS, by ticking the corresponding boxes and entering data in the fields marked with an asterisk (*) in the contact form or submitted in download forms, expressly, freely and unequivocally accept that their data are necessary for the provider to fulfil their request, while the inclusion of data in the remaining fields is voluntary. The USER guarantees that the personal data provided to the CONTROLLER are true, and is responsible for communicating any modification thereto.

The CONTROLLER informs the USER that all data requested via the website are mandatory, as they are necessary so as to provide an optimal service. In the event that not all data are provided, it cannot be guaranteed that the information and services provided will be fully aligned with the USER’s needs.

  1. SECURITY MEASURES

In accordance with the provisions of the regulations in force regarding personal data protection, the CONTROLLER complies with all provisions of the GDPR and LOPDGDD [Spanish Data Protection and Digital Rights guarantee Act] regulations for the processing of personal data under its control, and manifestly with the principles described in Article 5 of the GDPR, under which they are processed in a manner that is lawful, fair and transparent with regard to the data subject, and is appropriate, relevant and limited to what is necessary in relation to the purposes for which they are processed.

The CONTROLLER guarantees that it has implemented appropriate technical and organisational policies to implement the security measures established by the GDPR and the LOPDGDD in order to protect the rights and freedoms of USERS, and has informed them of the appropriate information so that they can exercise the such rights.

For further information about privacy guarantees, you may contact the CONTROLLER via DIRECTSALUD, S.L.U. Calle Rocafort, 252, Entresuelo 2 – 08029 Barcelona, Barcelona. E-mail: direccion@directsalud.es