You are using an outdated browser. For a faster, safer browsing experience, upgrade for free today.

What is personal data?

In this Privacy Policy, “personal data” means any information relating to you as an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an online identifier or to one or more factors specific to your physical, physiological, genetic, mental, economic, cultural or social identity.
For the avoidance of doubt, personal data does not include data from which you cannot be identified (which is referred to simply as data, non-personal data, anonymous data, or de-identified data).
In this Privacy Policy, “processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

How do we collect personal data and for what purposes?

ADCaixa collects the personal data on the moment the customer sign-ups in the Website, with the customer’s consent. Subsequently, you may enter into an agreement or contract with ADCaixa, and where this is the case, personal data will be processed only as is necessary for the performance of that agreement or contract or in order to take steps at your request prior to entering into that contract or agreement. By submitting your information to us, you agree to the processing set out in this Privacy Policy. After that, your personal data is stored while your partnership with ADCaixa is ongoing and once said the relationship is terminated for whatever cause, unless you oppose to it.
Once the relationship is terminated, your personal data will be processed solely to the effects of demonstrating compliance with the legal obligations of the Company or only as is necessary for the purposes of any legitimate interests pursued by ADCaixa or by a third party (and in the latter case, only to such extent as those legitimate interests are not overridden by your interests or fundamental rights and freedoms).
As a data subject, you have rights under applicable legislation to access, change/rectify, request deletion or restriction, object of processing, or requesting to receive or for us to transfer (port) your personal data free of costs at any time, according to the law in force. Further information on these rights is included within this Privacy Policy.

How we use your personal data

When visiting our website
We may collect and process personal data about your use of our website. This data may include Technical Data as described above. This data may be processed in order to deliver the content of our website correctly, to optimize the content of our website to ensure the long-term viability of our information technology systems and website technology, and to provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack.
We also collect, use and share ‘Aggregated Data’ such as statistical or demographic data. Aggregated Data may be derived from your personal data but is not considered personal data in law provided it has been de-identified and anonymised. For example, we may aggregate your usage data to calculate the percentage of users accessing a specific website feature. If we combine or connect Aggregated Data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data; such data will be processed in accordance with this Privacy Policy.
The legal basis for this processing is our legitimate business interests, namely monitoring and improving our website and the proper protection of our business against risks and your consent when agreeing to accept cookies. Personal Data will be stored in accordance with the time limits of such cookies and how they are set to expire and will be deleted automatically afterwards (normally no more than one year), or de-identified for statistical purposes, and in this latter case shall be kept indefinitely.
In certain cases, some of the above data is collected using cookies, and includes data from which you cannot be identified. Such data will be retained in accordance with our Cookies Policy, which can be accessed via the link at the beginning of this Privacy Policy.

Other uses of your personal data
We may process any of your personal data where it is necessary to establish, exercise, or defend legal claims. the legal basis for this processing is our legitimate interests, namely the protection and assertion of our legal rights, your legal rights and the legal rights of others.
Further, we may process your personal data where such processing is necessary in order for us to comply with a legal obligation to which we are subject
Contact data can be used for communication purposes, including but not limited to email messaging (system email, marketing email, etc.)

Confidentiality and Security

ADCaixa commits to taking all the necessary measures to prevent and secure the data that’s collected and treated, preventing them from being damaged, destroyed or even stolen. However, we don’t control every risk associated with internet usage, so there’re always risks associated with the usage of internet and data sharing online.
No data transmission over the Internet or website can be guaranteed to be secure from intrusion; any transmission is at your own risk. However, we maintain commercially reasonable physical, electronic and procedural safeguards to protect your personal information in accordance with data protection legislative requirements.
All information you provide to us is stored on our or our subcontractors’ secure servers and accessed and used subject to our security policies and standards. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our Website, you are responsible for keeping this password confidential and for complying with any other security procedures that we notify you of. We ask you not to share a password with anyone.

Third parties access

Your data may be transferred to third parties for compliance with legal obligations to which the Company is subject based on its activity, or as may be required in order to provide the services that those third parties were hired for. Providers with whom ADCaixa has subscribed will need to enter into confidentiality and data processing agreements that are necessary and mandatory under any applicable privacy legislation. We may permit selected third parties such as business partners, suppliers, service providers, agents and contractors who will be subject to obligations to process such information in compliance with the same safeguards that we deploy, to use your personal information.
We may also use third party applications and software for the purposes of creation and maintenance of mailing lists, webform collection, and transmission of social media links. We are not responsible for the privacy practices and policies of such third party service providers and you are strongly encouraged to review such policies in order to ensure you agree to the processing of your personal data by third parties in the manner described therein. We will however, to such extent as reasonably possible, ensure that third parties we use keep your information secure and agree not to use it for their own direct marketing purposes.
In addition, we may transfer your personal information to a third party as part of a sale of some, or all, of our business and assets or as part of any business restructuring or reorganisation, or if we are under a duty to disclose or share your Personal Data in order to comply with any legal obligation. However, we will take steps to ensure that your privacy rights continue to be protected.

Existence of Automated Decision-making

We do not use automatic decision-making or profiling when processing personal data. This means decisions are not made by robots or computers, and therefore not ‘automated’. However, certain third parties may use certain automated decision-making tools or software.
We are not responsible for the privacy practices of others and will take reasonable steps to bring such automated decision-making to your attention, but you are encouraged to become familiar with the privacy practices of any third parties you enter into any agreements with.

Storage limits and retention

We will retain your personal information for as long as is necessary for the processing purpose(s) for which it was collected and any other permitted linked purpose (for example certain transaction details and correspondence may be retained until the time limit for claims in respect of the transaction has expired or in order to comply with regulatory requirements regarding the retention of such data).
So if information is used for two purposes we will retain it until the purpose with the latest period expires, but we will stop using it for the purpose with a shorter period one that period expires.
We restrict access to your personal information to those persons who need to use it for the relevant purpose(s). Our retention periods are based on business needs and your information that is no longer needed is either irreversibly anonymized (and the anonymized information may be retained) or securely destroyed.

Cookies

Our Website uses cookies to distinguish you from other users of the Website. This helps us provide you with a good experience when you browse our Website and also allows us to improve our Website.

Changes to our Privacy Policy

We may change the content of our website or services without notice, and consequently our Privacy Policy (and/or Cookies Policy) may change at any time in the future. We, therefore, encourage you to review it from time to time to stay informed of how we are using personal information.
If we update or modify this Privacy Policy we will change the “Last Updated” date at the beginning of this Privacy Policy (the same applies to our Cookies Policy). Any amended policy will be effective immediately after the date it is posted. If you do not agree to the revised policy, you should discontinue your use of the Website. By continuing to access or use the Website after the effective date, you confirm your acceptance of the revised policy and all of the terms incorporated therein by reference.
Any social media channels connected to the Website and third party applications will be subject to the privacy and cookies policies and practices of the relevant platform providers which, unless otherwise indicated, are not affiliated or associated with us

Contacting Us

If you have questions or concerns regarding this statement, you should first contact us through email.