Privacy Policy

We are a company for which transparency in information is essential to establish a relationship of trust with the people who are part of our project and with our suppliers and customers. Since protecting the personal data of the people who place their trust in us is of vital importance, through this Privacy Policy we want to inform you how we collect and how we process or use such data.

This privacy policy sets out the basis on which the company processes the personal data that our users voluntarily provide to us through the website.

This Policy will always apply whenever data is provided to the company, which will be responsible for your data (Data Controller), through any of the contact or subscription forms in which personal data is collected (name, email, etc.).

What do we commit to?

– To respect the privacy of our users and process personal data with their consent.

– To process only the personal data that we strictly need in order to provide the requested service, and to process it securely and confidentially, taking the necessary measures to prevent unauthorised access and misuse.

– Not to use personal data for purposes for which we have not previously obtained consent.

– Not to disclose or share personal data with third parties.

– To keep personal data only for the time strictly necessary for the specific purpose for which it was provided.

Who is responsible for your personal data?

– Company name: Clínica Médica Sants, SL

– Tax ID: B64934078

– Address: C/ Roger 23 Baixos, 08028, Barcelona

– Email: INFO@CGSANTS.ES

What is personal data and the processing of personal data?

Personal data is any information relating to an identified or identifiable natural person. An identifiable natural person is any person whose identity can be determined directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to that person’s physical, physiological, genetic, mental, economic, cultural, or social identity.

Likewise, the processing of personal data means any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or any other form of making available, alignment or combination, restriction, erasure, or destruction.

What processing do we carry out on your personal data and for what purposes?

– Request for information by the user: To manage the request for information sent by the user through the contact form and/or the email address, postal address, and/or telephone number provided through the website.

– Registration and access to the user profile: Management of registration and access to the user portal through the corresponding user account and password.

– Management of comments on the blog: To manage the sending and receipt of comments left by the user on the blog.

What personal data do we collect?

Through our website, we may collect personal data for different purposes:

– Request for information by the user: We will collect the personal data that you have provided to us in relation to the enquiry submitted.

– Registration and access to the user profile: Username and password, as well as any other data provided in order to create the account or profile.

– Management of comments on the blog: Any data provided when publishing the relevant comment.

Depending on the purpose for which the data is provided, only the strictly necessary data will be required.

It is important that the user is aware of the data they provide and the purpose for which they do so because, at the moment they provide it, they are accepting that we collect, store, and use that data for the required purpose, and they may withdraw the consent given at any time through the appropriate channels, with the data subject’s consent being the legal basis and legitimising ground for the processing of their personal data.

What is the legal basis for processing personal data?

In accordance with current data protection regulations, we need a legal basis for the processing of your personal data.
The legal basis is your consent.

What rights do you have regarding personal data?

As a user, you may exercise the following rights:

– Right of access: You have the right to obtain confirmation from the company as to whether or not your personal data is being processed and, if so, which data is being processed.

– Right to rectification: You have the right to obtain from Clínica Médica Sants, SL the rectification of inaccurate personal data concerning you. In the rectification request, you must indicate the data you wish to have modified.

– Right to object: You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you when such processing is based on the company’s legitimate interest.

– Right to erasure: You have the right to obtain from Clínica Médica Sants, SL the erasure of personal data concerning you.

– Right to data portability: You have the right to have the company transfer your personal data to another data controller.

– Right to restriction of processing: You have the right to ask us to suspend the processing of your data when: you contest the accuracy of the data, while Clínica Médica Sants, SL verifies such accuracy; or you have exercised the right to object to the processing of your data, while it is verified whether the legitimate grounds of Clínica Médica Sants, SL override yours as the data subject.

At any time, you may exercise these Rights by sending a written request to the data controller at the address indicated above, or through the email address: info@cgsants.es.

In addition, you may lodge a complaint with the Spanish Data Protection Agency if you consider that the processing of personal data infringes the applicable legislation.

Security and storage of data

We will retain the data only for the time strictly necessary to provide the requested service and for as long as the data subject does not request its deletion, adopting appropriate technical and organisational measures against unauthorised or unlawful processing and against accidental loss, destruction, or damage, doing everything possible to protect and keep it secure.

What personal data do we share with third parties?

Data disclosures are not envisaged except in those cases where there is a legal obligation or communication is necessary in order to properly provide the requested service.

No international data transfers are envisaged.