Política de Privacidad

1. Information We Collect

We collect information you provide directly to us, such as when you create an account, contact us, or use our services.

Personal Information

• Name and contact information (email address, phone number)
• Account credentials (username, password)
• Payment information (processed securely by third-party providers)
• Communication preferences

Usage Information

• Device information (IP address, browser type, operating system)
• Usage data (pages visited, time spent, click patterns)
• Cookies and similar tracking technologies

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our services
• Process transactions and send related information
• Send technical notices, updates, and support messages
• Respond to your comments, questions, and customer service requests
• Monitor and analyze trends, usage, and activities in connection with our services
• Comply with legal obligations

3. Legal Basis for Processing

Under GDPR, we process your personal data based on:

• Consent: When you explicitly agree to data processing
• Contract: To fulfill our contractual obligations to you
• Legal obligation: To comply with applicable laws
• Legitimate interests: To improve our services (balanced against your rights)

4. Your Rights (GDPR)

You have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Request transfer of your data
• Right to Object: Object to certain types of data processing

To exercise these rights, please contact us at dpo@omnivers.es.

5. Data Retention

We retain your personal data for as long as necessary to provide our services and comply with legal obligations. We will securely delete or anonymize your data when it is no longer needed.

Retention periods:

• Account data: Until account deletion
• Communication data: 3 years after last contact
• Financial data: 7 years (legal requirement)
• Usage data: 2 years maximum

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption in transit and at rest
• Regular security assessments
• Access controls and authentication
• Employee training on data protection
• Incident response procedures

7. International Transfers

Your personal data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including:

• Adequacy decisions by the European Commission
• Standard Contractual Clauses (SCCs)
• Certification schemes and codes of conduct

8. Contact Information

For any questions about this Privacy Policy or our data practices, please contact us: