PRIVACY POLICY
Date this Privacy Policy was updated: May 31, 2023 Identity of the data controller: MALLORCA MEDICAL GROUP SL
Registered office: CALLE MURCIA, 40, 07013 PALMA DE MALLORCA (BALEARIC ISLANDS)
Contact email: info@mallorcamedicalgroup.com Website: www.mallorcamedicalgroup.com
Phone: 971 254 686
In compliance with the provisions of Organic Law 3/18 of December 5 on the Protection of Personal Data and the Guarantee of Digital Rights, as well as Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, MALLORCA MEDICAL GROUP SL (hereinafter, “THE CONTROLLER”), the entity responsible for the website www.mallorcamedicalgroup.com (hereinafter, the website), establishes the following Privacy Policy, which it will follow in the processing of personal data. This policy is, in any case, without prejudice to the provisions of the corresponding Legal Notice.
Simply by visiting the Website, THE OWNER does not record any personal data in any database; however, certain non-personal information is collected by the servers that provide hosting services to the Data Controller. Among this information, data regarding the IP address used to access the website is collected.
The user is responsible for providing all of their information correctly. THE OWNER is not liable for any service failures resulting from incorrect or false information.
On some contact forms, you must provide the personal information marked as required and accept the corresponding Privacy Policy and Legal Notice.
The user agrees to the website’s Privacy Policy in accordance with the following Terms and Conditions:
Any information that may be requested from users of this website through contact forms, as well as data included in any comments posted on the corporate pages of linked or unlinked social media sites, but under the CONTROLLER’s responsibility—the personal data that users enter in the designated sections, or that is provided through other available communication channels (such as email or private sections), is under the CONTROLLER’s responsibility.
RECIPIENTS OF THE INFORMATION
The information will be processed by authorized personnel of the DATA CONTROLLER.
Personal data collected through the various contact forms or via email, mail, or telephone will not be transferred or disclosed to third parties, except where necessary for the development, monitoring, and fulfillment of the purpose(s) stated on the
website as provided by law, as well as in specific cases, of which the USER will be expressly informed.
With regard to the corporate profiles maintained by this entity on the various social media platforms linked from this Website, the data may be processed in accordance with other privacy policies (specifically, those of the respective social media platform operators).
The official social media profiles linked from this website have been created to help you learn more about our activities and to provide an alternative channel of communication with people interested in our organization and the services we offer.
THE DATA CONTROLLER will use the data that the USER provides to us in inquiry forms, via email, or through any other exclusively designated channels. Specifically, the purposes of data processing through the website are:
Resolving doubts, questions, inquiries, or complaints submitted via the web forms.
Managing medical appointment bookings through the website.
Processing sales and orders and executing sales contracts with customers who purchase services through the website, and fulfilling the obligations arising therefrom.
Creating a private user account or profile through which the customer can manage their orders and receipts.
To inform you about services, news, and events organized by the data controller, subject to your prior consent.
The USER consents to the processing of their data for the purposes described, without prejudice to their right to revoke such consent by sending an email to the following address: info@mallorcamedicalgroup.com, identifying themselves as a USER of the WEBSITE and specifying their request or, where applicable, by checking the box provided for that purpose on the form itself.
Your data is processed on the following legal grounds, which provide the basis for such processing:
1) Requests for information and/or the contracting of services from THE DATA CONTROLLER, whose terms and conditions will always be made available to you prior to any potential contract.
2) Free, specific, informed, and unambiguous consent, in that we inform you by making this privacy policy available to you; after reading it, if you agree, you may accept it by means of a statement or a clear affirmative action, such as checking a box provided for that purpose.
If you choose not to provide us with your information, or if the information you provide is incorrect or incomplete, we will be unable to process your request, making it completely impossible to provide you with the requested information or to proceed with the service contract.
The required fields on each form will be identified as such on the form itself.
Failure to provide this information will prevent the service requested by the USER from being provided.
The personal data you provide will be retained for as long as necessary to handle your inquiry, suggestion, complaint, or claim, as well as to provide the requested service or fulfill the contractual relationship established between you and THE DATA CONTROLLER.
Once the process is complete, the data will be retained for the period necessary to comply with legal obligations or for as long as a judge or court may require.
In the case of email newsletter subscriptions, your data will be processed until you withdraw your consent or object to the processing.
The data will not be disclosed to any third party other than THE DATA CONTROLLER, unless required by law.
As data controllers, we have contracted service providers who have committed to complying with the applicable data protection regulations at the time of contracting.
The USER warrants that he or she is at least 14 years old and that the information provided is accurate and truthful.
The USER agrees to notify THE OWNER of any changes to the information provided by sending an email to the following address: info@mallorcamedicalgroup.com, identifying themselves as a USER of the WEBSITE and specifying the information that needs to be changed.
Furthermore, the USER agrees to keep passwords and identification codes confidential and to notify THE ACCOUNT HOLDER as soon as possible in the event of loss, theft, or unauthorized access.
Until such notification is provided, THE ACCOUNT HOLDER shall be exempt from any liability that may arise from the misuse of such passwords and identification codes by unauthorized third parties.
If the USER provides personal data of third parties for any purpose, the USER warrants that he or she has previously informed the individuals concerned and obtained their consent to the disclosure of their data to THE DATA CONTROLLER.
The USER warrants that the individuals concerned are at least 14 years of age and that the information provided is accurate and truthful.
THE DATA CONTROLLER will verify the consent of the data subjects in question through an initial non-commercial email requesting confirmation of the consent granted on their behalf by the USER.
In the event that liability arises from a breach of these terms by the USER, the USER shall be liable for the consequences of such breach.
The data subject may, in any case, exercise the rights granted to them under the GDPR (General Data Protection Regulation), which are:
Right to request access to personal data concerning the data subject.
Right to request rectification or erasure.
Right to request restriction of processing.
Right to object to processing.
Right to data portability.
The USER must specify which of these rights they are requesting to be exercised and must also provide a photocopy of their national ID card or an equivalent form of identification. If the USER is acting through a representative—whether legal or voluntary—they must also provide a document proving the representative’s authority and the representative’s identification document.
The data subject may exercise these rights by submitting a request accompanied by a photocopy of their national ID card, specifying which of these rights they wish to exercise, to CALLE MURCIA, 40, CHALET, ZIP Code 07013, PALMA DE MALLORCA (BALEARIC ISLANDS), or to the email address: info@mallorcamedicalgroup.com
Furthermore, if you believe your right to personal data protection has been violated, you may file a complaint with the Spanish Data Protection Agency (www.agpd.es).
THE OWNER maintains several pages and/or profiles on various social media platforms, linked through this Website. The Owner shall not be liable for content posted by third parties on the aforementioned social media platforms. The use and processing of data by third parties on these platforms shall be subject to general or specific terms and conditions other than those set forth herein. We recommend that you read these terms carefully and familiarize yourself with them.
With regard to Facebook, when a user becomes a fan of our page by clicking the “Like” button, they authorize us to use their personal data solely through the platform of the aforementioned social network for the purposes of managing our fan page and maintaining two-way communications with our followers via chat, messages, or other means of communication that Facebook allows now and in the future. However, such processing will be subject to this social network’s privacy policies, which the USER can view at the following link: “https://www.facebook.com/policy.php”.
We also want to let you know that when a user becomes a fan, the posts we publish will also appear on their wall, and if they leave comments on our page, both their comment and their profile name—as well as their profile picture, if they have one—will be visible to other fans.
In any case, the user is responsible for how they use the social network.
We will not use users’ personal data for purposes other than those indicated in the preceding paragraphs, nor will we send them information through any platform other than the social network.
With regard to the rights of access, rectification, cancellation, erasure, portability, and the right to be forgotten, which are recognized by law, we can only act within the limits permitted by Facebook for this purpose; USERS must contact Facebook directly if they wish to exercise any of th
s rights of this type. However, you may unsubscribe from our page at any time by unfollowing us by clicking the “Dislike” button, in which case we will no longer have access to your personal data; however, Facebook may retain any comments you have previously posted on our wall.
With regard to Twitter, when a USER follows us by clicking the “Follow” button, we will have access to information about the people who follow us—specifically, their username, profile picture (if the user has uploaded one to their profile), and any comments or “Tweets” they have posted, as well as the rest of the information they have published on their profile—such as the users they follow and their followers—even if we do not use that information.
In particular, we may have access to the information that users provide in their “bio.”
As with the previous platform, users are responsible for their use of the social network.
We use the data from users who follow us on Twitter solely to manage and respond to the “tweets” or messages we exchange with them.
You can view Twitter’s privacy policy at the following link: “https://twitter.com/privacy”.
In the event that THE ACCOUNT HOLDER sends emails within the framework of the contractual relationship between the parties, we hereby inform you that the information contained in said email or attached files may be confidential. Accessing and/or disclosing the content of an email constitutes a criminal offense under Article 197 of the Penal Code.
If you are not the intended recipient, please be advised that any use, distribution, disclosure, or reproduction of this information without the express permission or authorization of the rightful recipient is prohibited under applicable law.
Please notify us immediately through this same channel or by phone and proceed to destroy it.
Email does not guarantee the confidentiality of the messages it transmits, nor their integrity or proper receipt.
THE DATA CONTROLLER has adopted the necessary technical and organizational measures to ensure the security of personal data and prevent its alteration, loss, or unauthorized processing or access, taking into account the state of the art, the nature of the data stored, and the risks to which the data is exposed, whether arising from human action or the physical environment.
However, the USER should be aware that Internet security measures are not impenetrable.
THE DATA CONTROLLER hereby informs that, as a data hosting service provider and pursuant to the provisions of Law 34/2002 of July 11 on Information Society Services and Electronic Commerce (LSSI), it retains, for a maximum period of 12 months, the information necessary to identify the origin of the hosted data and the time at which the service began. The retention of this data does not affect the confidentiality of communications and may only be used within the
framework of a criminal investigation or to safeguard public safety, and will be made available to judges and/or courts or to the Ministry that so requests.
The disclosure of data to law enforcement agencies will be carried out in accordance with the provisions of the regulations on personal data protection.
THE OWNER is responsible for all copyrights, intellectual property rights, industrial property rights, “know-how,” and any other rights related to the content of the website www.mallorcamedicalgroup.comy, the services offered on it, as well as the software necessary for its implementation and related information.
The reproduction, publication, and/or use of the content of the website www.mallorcamedicalgroup.com—in whole or in part—for any purpose other than strictly personal use is prohibited without prior written consent.
Users must respect third-party software made available to them by THE OWNER, even if it is free and/or publicly available.
THE LICENSEE holds the necessary exploitation and intellectual property rights to the software.
The user does not acquire any rights or licenses with respect to the contracted service, the software necessary to provide the service, or the technical information used to monitor the service, except for the rights and licenses necessary to fulfill the contracted services and solely for the duration of such services.
For any action that goes beyond the fulfillment of the contract, the user must obtain written authorization from THE OWNER; the user is prohibited from accessing, modifying, or viewing the configuration, and the structure of the servers owned by THE OWNER, and the user assumes civil and criminal liability arising from any incident that may occur on the servers and security systems as a direct result of negligent or malicious conduct on the user’s part.
Any use of the services provided by THE OWNER that violates intellectual property laws is prohibited, including, in particular:
Any use that violates Spanish law or infringes on the rights of third parties.
The publication or transmission of any content that, in the OPERATOR’s judgment, is violent, obscene, abusive, illegal, racist, xenophobic, or defamatory.
Cracks, software serial numbers, or any other content that infringes on the intellectual property rights of third parties.
The collection and/or use of other users’ personal data without their express consent or in violation of the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.
The use of the domain’s mail server and email addresses to send bulk spam.
The user bears full responsibility for the content of their website, the information transmitted and stored, hyperlinks, third-party claims, and legal actions related to intellectual property, third-party rights, and the protection of minors.
The user is responsible for complying with applicable laws and regulations, as well as rules governing the operation of online services, e-commerce, copyright, the maintenance of public order, and universal principles of Internet use.
The user shall indemnify THE OWNER for any expenses incurred by www.mallorcamedicalgroup.com in any legal proceeding for which the user is liable, including attorneys’ fees and legal defense costs, even in the event of a non-final court decision.
THE OWNER backs up the content hosted on its servers; however, it is not liable for the loss or accidental deletion of data by users. Similarly, the OWNER does not guarantee the full restoration of data deleted by users, as such data may have been deleted and/or modified during the period of time that has elapsed since the last backup.
The services offered, with the exception of specific backup services, do not include the restoration of content stored in backups created by THE OWNER when such loss is attributable to the user; in this case, a fee will be determined based on the complexity and volume of the recovery, subject to the user’s prior acceptance.
The recovery of deleted data is included in the service price only when the loss of content is due to causes attributable to THE ACCOUNT HOLDER.
In accordance with the LSSI, THE OWNER will not send advertising or promotional communications via email or any other equivalent electronic means of communication that have not been previously requested or expressly authorized by the recipients. In the case of users with whom there is a prior contractual relationship, THE OWNER is authorized to send commercial communications regarding products or services from www.mallorcamedicalgroup.com that are similar to those initially contracted with the customer.
In any case, after verifying their identity, users may request that no further marketing information be sent to them through Customer Service channels.