Privacy policy

DATADOPE, S.L. assumes the maximum responsibility and commitment to the establishment, implementation and maintenance of this Privacy Policy ensuring continuous improvement with the aim of achieving excellence in relation to compliance with data protection regulations applicable in our country: General Data Protection Regulation (EU) 2016/679, of 27 April on the protection of natural persons with regard to the processing of personal data and the free movement of such data (hereinafter GDPR) and Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights (hereinafter LOPDGDD).

This Privacy Policy is applicable to the data processing that DATADOPE, S.L. carries out through this website: www.datadope.io (hereinafter, the “Website”) and/or those indicated. We recommend you to read it carefully before using this Website or providing your data through it. Please do not hesitate to contact us with any queries you may have by email: tratamientodatos@datadope.io

TABLE OF CONTENTS

In this Policy you will find all the information relating to the processing of your personal data and the rights that you can exercise to maintain control over them. In this regard, you will find information on:

  1. Who is responsible for the processing of your data.
  2. What requirements you must meet in order to provide us with your personal data.
  3. What data processing we carry out through the website and what their main characteristics are, explaining to you:
    1. What data we collect and how we collect it.
    2. For what purposes we collect the data we request from you.
    3. What is the legitimacy for its treatment?
  4. How long we keep them.
  5. To which recipients your data is communicated.
  6. Existence of international transfers of your data.
  7. What your rights are and how you can exercise them. 
  8. How we protect your personal information.
  9. Changes to this policy.

1. WHO IS RESPONSIBLE FOR THE PROCESSING OF YOUR PERSONAL DATA?

Your personal data will be processed by the company DATADOPE, S.L. (“DATADOPE”), with NIF B87779625 and whose contact details are as follows:

  • Address: Paseo de Europa, 26, 1ª Oficina, 28703, San Sebastián de los Reyes, Madrid
  • Contact telephone: 919410539
  • Contact email: tratamientodatos@datadope.io

2. WHAT REQUIREMENTS MUST YOU MEET IN ORDER TO PROVIDE US WITH YOUR PERSONAL DATA?

2.1. Minimum age. In order to provide us with your personal data, you must be at least 14 years of age and/or, where applicable, have sufficient legal capacity to use this Website.

2.2. Truthfulness. When you provide us with your data to use our services, you guarantee that the data and information provided is real, truthful, updated and also belongs to you and not to third parties. 

Furthermore, you must notify us of any modification that may occur in the data provided, and you are responsible in any case for the truthfulness and accuracy of the data provided at all times. 

2.3. Age and Veracity Control. DATADOPE reserves the right to verify your age and identification information at any time, if necessary, even requiring an official document or equivalent procedure and, in case of fraud detection that proves or suspects that you are under the indicated age, to delete, deactivate temporarily and/or cancel your account.

3. WHAT DATA PROCESSING DO WE CARRY OUT THROUGH THE WEBSITE AND WHAT ARE ITS MAIN CHARACTERISTICS?

Below, we explain how we process your personal information and provide you with all the relevant information concerning your privacy in detail:

3.1. When you contact us through our channels (contact form, demo request form, email):

What are the data collection routes?

  • Contact form
  • Demo request form
  • Sending e-mails to tratamientodatos@datadope.io or other DATADOPE e-mail addresses.

What data do we collect?

Identifying and contact information. We collect your identifying information (name) and email address, as well as any other information you voluntarily include in the communications you send us.

We may request additional information from you if necessary to fulfill your request or requirement.

What are the purposes of the processing of your personal data?

To answer your requests. The main purpose of the processing of this data will be to answer your requests, resolve your doubts, and/or provide you with the required information, as well as, where appropriate, to follow up on your requests.

 

To provide you with a demo of our product: when you fill in the form requesting a demo of our product, we will ask you for a series of personal data in order to provide it to you.

What is the basis of legitimacy that allows us to process your data? Is the provision of this data obligatory?

Consent. The data provided for the above purposes will be processed on the basis of your consent, given when you voluntarily contact us through the means made available to you to request information or make a request.

The information that you are obliged to provide will be indicated by an asterisk or similar. Without this information it will not be possible to deal with your queries or requests.

How long do we keep your information?

All your personal information will be treated during the time your requests are being processed and, if necessary, to follow up on them. At the end of this period, DATADOPE will keep this information, blocked, for the periods provided for by law to meet any liabilities and to demonstrate compliance with our obligations. 

Who do we give your personal information to?

We do not make any additional transfers to carry out this processing other than those indicated, in general terms, in point 4. To whom do we transfer your personal information? In this regard, some of the channels through which you can contact us are managed by service providers, who act as Processors. You will find more information on how these service providers operate in section 4 above.

3.2. When you apply for our job offers.

What are the data collection routes?

  • Work with us” form.

What data do we collect?

Identification, academic and professional data. To participate in our selection processes, we request information such as name, surname and contact details, as well as information related to the academic and professional field, which will be included in the Curriculum Vitae (CV), which you must attach in the corresponding section. You can include all the information about your education and professional experience that you think is relevant. You can also attach a cover letter. 

What are the purposes of the processing of your personal data?

Participate in our selection processes. We will process your personal information in order to carry out the relevant selection process for possible recruitment. 

The selection processes may involve personal or remote interviews or practical tests related to the job or languages in which the job duties are to be performed. 

What is the basis of legitimacy that allows us to process your data? Is the provision of this data obligatory?

Implementation of pre-contractual measures. The processing of data is necessary for the implementation of pre-contractual measures at the request of the data subject or the intention to conclude a contract. 

 

All data requested and processed by DATADOPE for the above purposes shall be necessary for the stated purposes. If they are not provided, the tasks related to them cannot be carried out.

How long do we keep your information?

We will process all personal information for as long as it is necessary to manage the selection process for which you have registered or until you ask us to stop doing so. Once this period has expired, DATADOPE will keep this information, blocked, for the periods provided for by law in order to meet any liabilities and to demonstrate compliance with our obligations. 

Who do we give your personal information to?

We do not make any additional transfers to carry out this processing other than those indicated, in general terms, in point 4. To whom do we transfer your personal information? In this regard, we may use service providers for the provision of certain ancillary services (e.g. management software), who act as Processors. You will find more information on how these service providers operate in point 4 above.

3.3. What are the data collection routes?hen you have a contractual relationship with us (provision of services)

¿Cuáles son las vías de recogida de los datos?

  • Contracting DATADOPE’s services (signing of contracts, acceptance of quotations, or other legal acts). 

What data do we collect?

Identifying and contact information. We collect your identification data (name and surname) and email and/or postal address, as well as any other data that you voluntarily include in the communications you send us.

Employment details: During the contractual relationship, we may collect data relating to the contact person representing the client company (first and last name, professional email address, position and/or department).

What are the purposes of the processing of your personal data?

To perform and maintain the contractual relationship between the Parties. The main purpose of the processing of this data will be to maintain and execute the contractual relationship between the parties, which may include: Administrative, fiscal, legal, accounting and commercial management of customer data. Making and sending estimates. Carrying out work. Attention to queries and complaints via web, telephone, electronic or in person. Setting up meetings and client visits. Collection management. 

What is the basis of legitimacy that allows us to process your data? Is the provision of this data obligatory?

Execution of the contract. The processing of the data is necessary for the performance of the contract between the parties. 

 

Legitimate interest. The sending of commercial information to customers is carried out based on our legitimate interest, due to the existence of a previous contractual relationship between the parties in accordance with the electronic commerce regulations (LSSI).

 

All the data requested and treated by DATADOPE for the previous purposes will be necessary for the indicated purposes. In case of not supplying them, it would not be possible to execute the services and to carry out the administrative tasks linked to them.

How long do we keep your information?

All personal information will be processed for the duration of the contractual relationship between the parties. In the case of sending commercial information, as long as the contractual relationship lasts and unless you oppose to the treatment, unsubscribing from our distribution list following the instructions in the same communications or writing to: tratamientodatos@datadope.io

 

Once this period is over, DATADOPE will keep, blocked, this information during the periods foreseen in the legislation to attend eventual responsibilities and to demonstrate the fulfilment of our obligations. 

Who do we give your personal information to?

We do not make any additional transfers to carry out this processing other than those indicated, in general terms, in point 4. To whom do we transfer your personal information? In this regard, we may use service providers for the provision of certain ancillary services (e.g. management software), who act as Processors. You will find more information on how these service providers operate in point 4 above.

3. 4. When you comment on our blog:

What are the data collection routes?

  • Comment insertion form.

What data do we collect?

Identification and contact details: In order to comment on our blog you will be asked for identification details (name) and contact details (email), web, as well as any other information that you voluntarily include in your comment.

What are the purposes of the processing of your personal data?

Leave a comment on our blog. The sole and main purpose of the processing of your data is the publication of your comment, opinion or contribution in the corresponding publication of our blog. You must take into account that it is mandatory to comply with the Comments Publication Policy.

What is the basis of legitimacy that allows us to process your data? Is the provision of this data obligatory?

Consent. The data provided for the above purposes will be processed on the basis of your consent, given when you voluntarily leave a comment. 

The information that you are obliged to provide will be indicated with an asterisk or in a similar manner.

How long do we keep your information?

Your comments (along with identifying information) will be published on the Blog for as long as the post remains published on the Website. 

 

Once the Blog entry is removed from the Blog, your personal information will be blocked for the legal periods provided for in order to deal with any possible liabilities.

Who do we give your personal information to?

There are no specific transfers of your personal data to fulfil the purpose indicated in this section.

3.5. Browsing the Website (cookies).

We use cookies or other tracking and tracing tools on this Website to collect information about how users use the Website. 

For more information on how we treat such tracking tools, please see our Cookie Policy.

3.6. DATADOPE profiles in social networks.

DATADOPE has a profile in the main social networks, such as Facebook, Twitter, LinkedIn or YouTube. 

When you become a follower of any of our pages in the social networks, the data treatment will be ruled by the conditions of use, privacy policies and access regulations belonging to the corresponding social network and previously accepted by the user. 

DATADOPE, in this sense, will treat your data for the purposes of properly managing its presence in the social network, informing you of activities, products or services, as well as for any other purpose that the regulations of social networks allow. 

Please note that we have no influence over the information that the social network collects or how it processes it, so we recommend that you keep yourself informed of the purpose and scope of the collection of information that is carried out through these social networks.

4. TO WHOM DO WE GIVE YOUR PERSONAL INFORMATION?

In general, DATADOPE will not disclose your data to third parties. However, in addition to the transfers that we specifically indicate in the section in which we explain the characteristics of the different operations (point 3), we inform you of the communications that we can make, in general, and that affect all the previous treatments and their legitimising basis.

  • Providers of services essential to the performance of the service we offer you (e.g. computer hosting companies). Notwithstanding the foregoing, these entities have signed the corresponding confidentiality agreements and will only process your data in accordance with our instructions, and may not use them for their own purposes or for purposes other than the service they provide us with.
  • Public Bodies. We may disclose to the competent public authorities the data and any other information in our possession or accessible through our systems when there is a legal obligation to do so, as well as when required, for example, when the purpose is to prevent or prosecute abuse of services or fraudulent activities through our Website or web page. In such cases, the personal data you provide to us will be retained and made available to administrative or judicial authorities.
  • In the event of a corporate transaction: In the event of a merger, acquisition, sale of all or part of its assets or any other corporate transaction involving a third party, we may share, disclose or transfer your information to the successor entity (including during the pre-transaction phase).
  • To third parties after aggregation or anonymisation: we may disclose or use aggregated or anonymised data (i.e. data which is not linkable to an identified or identifiable natural person) for any purpose.
  • To third parties with your consent or other legitimate basis: In the event that we wish to share data with third parties outside the scope of this Privacy Policy, we will always seek your consent or disclose your consent and legitimate basis.

We also inform you that this Privacy Policy only refers to the collection, processing and use of information (relating to personal data) by us through your interaction with our Website. Access to third party websites that you may access through links from the Website have their own privacy policies over which we have no control. Therefore, before you provide them with any personal information, we recommend that you inform yourself about their privacy policies.

5. ¿SE TRANSFIEREN TUS DATOS PERSONALES A TERCEROS PAÍSES FUERA DEL ESPACIO ECÓNOMICO?

ARE YOUR PERSONAL DATA TRANSFERRED TO THIRD COUNTRIES OUTSIDE THE EUROPEAN ECONOMIC AREA?

Some of our service providers are located in countries outside the European Economic Area (“EEA“).

The location of these companies outside the EEA implies the existence of an international transfer of your personal data, which could imply a lower degree of protection than the one stated in the European regulations. However, DATADOPE has implemented measures to ensure that such transfers do not result in a lower level of protection of your personal data.

In this sense, the service providers outside the EEA have signed the corresponding standard contractual clauses approved by the European Commission (“STC”), agreement signed between both entities by which the non-EU company guarantees that it applies the European data protection standards. 

Therefore, the use of these providers does not result in a lower level of protection of your personal data than the use of providers located in the European Union. You can consult the content of the TCHs at the following link: https://ec.europa.eu/info/law/law-topic/data-protection/publications/standard-contractual-clauses-controllers-and-processors_en

The following are the international transfers that we carry out from DATADOPE:

Name

Country

Transfer mechanism

Google, LLC

EEUU

Cláusulas contractuales tipo (https://eur-lex.europa.eu/legal-content/ES/TXT/?uri=CELEX%3A32021D0914)

6. WHAT RIGHTS CAN YOU EXERCISE AS A DATA SUBJECT?

You can exercise the rights that the law guarantees you in relation to the processing of your personal data by contacting us by e-mail at tratamientodatos@datadope.io .

Any request for rights that we receive will be dealt with as soon as possible and, in any case, within the maximum period established by law from the time we receive it. In some cases, we may need to ask you for a copy of your ID card or other identifying document if we need to verify your identity.

The rights that correspond to you as the interested party are as follows: 

  • Right to withdraw your consent

You may withdraw your consent in relation to all processing based on your consent at any time. However, withdrawal of consent will not affect the lawfulness of the processing based on the consent prior to its withdrawal.

  • Right of access

You have the right to know what data is being processed, if any, and, if so, to obtain a copy of it, as well as to obtain information relating to: 

    • the origin and recipients of the data; 
    • the purposes for which the data are processed; 
    • whether an automated decision-making process, including profiling, is in place 
    • the data retention period; and 
    • the rights provided by law.
  • Right of rectification

You have the right to obtain the rectification of your personal data or to supplement your personal data where it is incomplete.

  • Right to erasure

You have the right to request the deletion of your personal data if they are no longer necessary for the purpose for which they were collected or, as the case may be, if we are no longer authorised to process them.

  • Right to data portability

You have the right to request data portability in the case of processing of your data that is based on your consent or the performance of a contract, provided that the processing has been carried out by automated means. In case of exercise of this right, you will receive your personal data in a structured format, commonly used and readable by any electronic device. However, you may also request, where possible, that your data be transmitted directly to another company.

  • Right to restrict the processing of your personal data

You have the right to restrict the processing of your data in the following cases:

a) Where you have requested rectification of your personal data during the period in which we verify the accuracy of your personal data.

b) When you consider that we are not authorised to process your data. In this case, you may ask us to restrict their use instead of requesting their deletion.

c) When you consider that it is no longer necessary for us to continue processing your data and you want us to keep it for the purpose of exercising or defending claims.

d) Where there is processing based on our legitimate interest and you have exercised your right to object to the processing, you may ask us to restrict the use of your data during the verification of the prevalence of those interests over your interests.

  • Right to object

You have the right to object at any time to the processing of your personal data based on our legitimate interest, including profiling.

Opt-out of commercial communications: Remember that you may at any time opt-out of receiving such communications by sending an email to tratamientodatos@datadope.io You may also opt-out of this service by following the instructions at the bottom of the body of each electronic communication we send you.

  • Right to lodge a complaint with the Supervisory Authority

Remember that, at any time, and in the event that you consider that we have infringed your right to the protection of your data, you may address your defence to the corresponding Control Authority, in the case of Spain, the Spanish Data Protection Agency (www.agpd.es).

7. HOW DO WE GUARANTEE THE CONFIDENTIALITY OF YOUR INFORMATION?

The security of your personal data is a priority for us. Therefore, DATADOPE has implemented all the necessary security measures to guarantee an efficient use and treatment of the personal data provided by the user, safeguarding the intimacy, privacy, confidentiality and integrity of them and makes use of the necessary technical means to avoid the alteration, loss, unauthorized access or treatment of your data, according to the state of the technology at every moment.

Consequently, we comply with the security standards recommended to protect them. However, it is impossible to guarantee total security because of the nature of the Internet and because there may be malicious acts by third parties beyond our control. 

We undertake to act promptly and diligently in the event that data security is compromised or compromised, and to inform you if relevant.

8. CHANGES TO THIS POLICY

DATADOPE can modify the content of the privacy policy at any time, especially when there are legislative, jurisprudential or interpretation modifications of the Spanish Data Protection Agency that affect the data treatments carried out by DATADOPE through this Website. Any new version of this Privacy Policy will come into force on the published effective date.

Therefore, we recommend that you periodically review this Privacy Policy to be informed of how your personal data is treated and protected, as well as the rights you have.

9.  INFORMATION SECURITY POLICY

DATADOPE’s Management, aware of the relevance that nowadays has for the company the satisfaction of the needs and expectations of its interested parties, manages the necessary resources to achieve that its activities comply with the information security and the applicable regulations, at the same time that it assures the continuity of its business. In order to achieve these objectives, an Information Security Management System has been established based on the requirements established by the UNE-EN ISO/IEC 27001 standard.

Therefore, DATADOPE is committed to:

  • Provide quality service to our customers continuously seeking to achieve the highest levels of satisfaction through the fulfillment of the established information security requirements.
  • Develop our activities ensuring compliance with the requirements of information security and personal data of our customers, suppliers and employees.
  • Establish objectives and goals focused on the evaluation of information security performance, as well as the improvement of those activities regulated in the Management System.
  • Consider continuous improvement as a fundamental principle of action, which guides the analysis of risks and opportunities that may affect the conformity of the services provided.
  • Raise awareness among our company’s staff of the importance of information security and privacy management.
  • Create a company culture based on information security and privacy.
  • Comply with the legal requirements and contractual terms subscribed with partners, subcontractors and third parties regarding information security.

The improvement of DATADOPE’s Information Security Management System involves the entire organization in order to achieve management excellence.

This Privacy Policy was amended on 4th December 2023.