Privacy Policy
We take your privacy very seriously and comply with the applicable national and European data protection provisions. We outline below the most important information concerning how we collect, process and use personal data when you use the www.iddero.com and www.idderocloud.com web sites, including in particular, what information and personal data we collect, and what we do with it.
This Privacy Policy complies with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data ("GDPR"), and of Spanish Organic Law 3/2018 of 5 December on the Protection of Personal Data and Guarantee of Digital Rights.
Data controller
The responsible entity for the collection, processing and use of your personal data (the "Data Controller" according to Art. 4(7) of the GDPR), is INGELABS S.L., with VAT number ESB92727205 and registered address at Av. Juan López Peñalver 21, 29590 Málaga (Spain).
If you have any questions, you can contact us at the above address, or by sending an email to:
Collection and processing of personal data
Data that you provide to us directly
We collect personal data that you provide to us directly when you contact us (by email or phone, or by submitting the contact or registration forms in the web sites), when you subscribe to our newsletter, and when you create an account in the idderocloud service. Data collected may include your full name, company, email address, country, and any other information that you choose to provide us, along with any communications between you and us such as email exchanges, support tickets, history of requests and responses, etc.
The purposes of collection and processing are as follows:
- When you contact us by email or phone, or by submitting the contact or registration forms in the web sites: to reply to your communication; to respond to your request for information; to include you or the company you belong to in our address book; to facilitate future commercial relations or to manage existing commercial relationships; to carry out necessary communications; to send you necessary documentation or information that has been requested; as well as to maintain a history of commercial relations and communications.
- When you subscribe to our newsletter: to send you our newsletter containing information related to our products and services, as per your request. You can unsubscribe at anytime through the unsubscribe link included in the footer of every newsletter email.
- When you create an account in the idderocount service: to provide the idderocloud service, allowing remote access to your Iddero devices.
The legal basis for the processing is your consent by accepting this Privacy policy and providing your personal data, pursuant to Art. 6(1)(a) of the GDPR. Additionally, when you create an account in the idderocloud service, the processing of your data is necessary for the performance of a contract with you (providing the idderocloud service), pursuant to Art. 6(1)(b) of the GDPR.
Data that we collect automatically
We may automatically collect data when you visit the web sites, including your IP address, the access date and time, visited pages, and information on your web browser and operating system.
This information is collected and processed anonymously in order to obtain information about the use of the web sites, detect possible attacks and security threats, diagnose issues and problems, and in general improve our products and services.
The legal basis for the processing is our legitimate interest, pursuant to Art. 6(1)(f) of the GDPR.
Data retention
Personal data is retained for so long as necessary to fulfill the purposes for which it was collected (for example, for as long as commercial relations exist), and always for the minimum period required by the law.
Sharing of personal data
In general, we will not transfer personal data to third parties, except where required by law. Personal data will never be sold to third parties.
We work with external service providers such as hosting providers, cloud storage providers, email providers, shipping companies, etc. Such service providers may get access to your personal data in order to perform their services.
We will ensure that external service providers have appropriate measures in place in order to protect your personal data. Such service providers have an obligation to ensure that the information is treated in accordance with current data protection regulations.
Place of storage and processing
In general, data is stored and processed within the European Union. If we transfer personal data to external recipients outside the EU, we will ensure that the recipient guarantees an adequate level of data protection, equivalent to that guaranteed by the GDPR; for example, by signing EU-approved Standard Contractual Clauses.
Data accuracy
Any data provided by the user should be accurate and correct. The user is responsible for keeping their personal data up to date.
Minors
Our services do not target minors. If you are a minor, please refrain from providing your personal data in any way. If we become aware of the existence of personal data belong to a minor in our files, we will delete this data immediately.
Your rights
Subject to meeting any requirements stated by Law, you have the following rights in relation to the processing of your personal data:
- Right of access: the right to obtain information about any personal data being processed.
- Right to rectification: the right to correct errors and modify inaccurate or incomplete data.
- Right to erasure: the right to delete data that is inadequate or excessive, or data for which there is no legal basis for processing.
- Right to object: the right to object to the processing of your personal data for certain purposes and under certain circumstances.
- Right to restrict processing: the right to restrict any future processing of your personal data to the exercise or defense of legal claims.
- Right to data portability: the right to receive your personal data without hindrance, so that you can transmit it to another person or company.
- Right not to be subject to automated individual decision-making (including profiling): the right not to be the subject of a decision based solely on automated processing which produces legal effects or significantly affects you.
- Right to withdraw consent: you have the right to withdraw previously given consent at any time. The withdrawal of consent will not affect the lawfulness of the processing carried out before the withdrawal of consent.
In order to exercise your rights, please contact us as described in the Data controller section. You must provide a copy of your National Identity Document, or other legally valid means of proving your identity. If you contact us by email, you must do so from the email account registered in our files.
If you believe that our processing of your personal data may have violated your rights, you also have the right to submit a complaint to the competent supervisory authority.
Security
We have adopted the legally required levels of security for the protection of personal data, and we try our best to implement any additional technical means and measures at our disposal in order to prevent the loss, misuse, alteration, unauthorized access and theft of personal data provided to us. However, transmissions over the Internet are never completely secure; if you want to avoid any risk, you should not provide any personal data.
Cookies
This web site uses cookies. Please check our Cookie policy for detailed information.
Modifications of this Privacy Policy
INGELABS S.L. reserves the right to update this Privacy Policy at anytime without prior notice. You acknowledge and agree that it is your responsibility to periodically review this Privacy Policy.
Updated: August 2022