Privacy Policy

In compliance with current legislation, INBIOT MONITORINGS.L., owner of the Website www.inbiot.es, undertakes to adopt the necessary technical and organizational measures, according to the level of security appropriate to the risk of the data collected.

This privacy policy is adapted to current Spanish and European regulations on the protection of personal data on the Internet.

Specifically, it respects the following regulations:
- Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation of these data (RGPD).
- Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights (LOPD-GDD).
- Law 34/2002, of July 11, on Information Society Services and Electronic Commerce (LSSI-CE).

1. Identity of the person responsible for processing personal data

The person responsible for the processing of personal data collected on the website with URL www.inbiot.es is INBIOT MONITORING S.L., with CIF: B71361596 (hereinafter, "Data Controller"). Its contact details are as follows:

- Company registered in the Commercial Registry of Navarra, volume 1922, folio 1, page NA-38.214.
- Address: Paseo Santxiki 2, LB5, 31192 Mutilva (Navarra).
- Contact telephone number: 948 335 126.

- Contact email: info@inbiot.com Data Protection Officer: Eleva Legal, SL - Email: dpd@eleva.legal

2. Personal Data Registration

In compliance with the provisions of the GDPR and the LOPD-GDD, we inform you that the personal data collected by the Data Controller through the forms available on its pages will be incorporated and processed to facilitate, expedite, and fulfill the commitments established between the Data Controller and the User, or to maintain the relationship established in the forms completed by the User, or for the purposes of the website www.inbiot.es.

Additionally, in accordance with the GDPR and the LOPD-GDD, unless the exception provided for in Article 30.5 of the GDPR applies, a record of processing activities is maintained, specifying, according to their purposes, the processing activities carried out and other circumstances established by the GDPR.

3. Principles applicable to the processing of personal data

The processing of the User's personal data will adhere to the following principles outlined in Article 5 of the GDPR and Articles 4 and subsequent of Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights:

- Principle of lawfulness, fairness, and transparency: The User's consent will always be required after providing fully transparent information regarding the purposes for which the personal data is collected.
- Principle of purpose limitation: Personal data will be collected for specific, explicit, and legitimate purposes.
- Principle of data minimization: Only the personal data strictly necessary for the purposes for which it is processed will be collected.
- Principle of accuracy: Personal data must be accurate and kept up to date at all times.
- Principle of storage limitation: Personal data will only be retained in a way that allows for the identification of the User for as long as necessary for the purposes of its processing.
- Principle of integrity and confidentiality: Personal data will be processed in a manner that ensures its security and confidentiality.
- Principle of proactive accountability: The Data Controller will be responsible for ensuring compliance with the aforementioned principles.

4. Categories of personal data

The categories of data processed on the website www.inbiot.es are limited to identification data only. Under no circumstances are special categories of personal data, as defined in Article 9 of the GDPR, processed.

5. Legal basis for the processing of personal data

The legal basis for processing personal data is consent. The Data Controller commits to obtaining the User's express and verifiable consent for the processing of their personal data for one or more specific purposes.  

The User has the right to withdraw their consent at any time. Withdrawing consent will be as simple as providing it. As a general rule, the withdrawal of consent will not affect the User's ability to use the Website.

When the User is required or able to provide their data via forms to submit inquiries, request information, or for purposes related to the content of the Website, they will be informed if any fields are mandatory because they are essential for the proper execution of the requested operation.

6. Purposes of the processing for which personal data are intended

Personal data is collected and managed by the Data Controller to facilitate, expedite, and fulfill the commitments and services established between the Website and the User, or to maintain the relationship established through the forms completed by the User, or to respond to a request or inquiry.

At the time the personal data is collected, the User will be informed of the specific purpose(s) for which the data will be processed, i.e., the use(s) to which the collected information will be put.

7. Periods for the retention of personal data

Personal data will only be retained for the minimum time necessary to fulfill the purposes of its processing and for a reasonable period to demonstrate compliance with our duties and obligations.

8. Recipient of personal data

The User's personal data (non-client) will only be shared with third-party recipients for the purposes outlined in this Privacy Policy, aiming to carry out the specified processing activities for the described purposes. For this, inBiot may engage trusted providers who may have access to personal data. These providers will act as data processors and will be contractually obligated to fulfill their legal responsibilities as processors, maintaining confidentiality and secrecy of the information.

Regarding the categories of recipients, it is noted that the User's personal information may be shared with inBiot's commercial department, depending on the products and/or services about which the User has requested information, as well as with audit and service quality teams, administrative and back-office services, and advertising and communication services.

9. International data transfers

N/A

10. Personal data of minors

In accordance with Article 8 of the GDPR and Article 7 of Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights, only individuals aged 14 or older may lawfully consent to the processing of their personal data.  If the individual is under 14 years of age, the consent of their parents or legal guardians will be required for the processing of their data. Such processing will only be considered lawful to the extent that this consent has been provided.

11. Confidentiality and security of personal data

The Data Controller is committed to adopting the necessary technical and organizational measures, based on the appropriate security level relative to the risk of the collected data, to ensure the security of personal data and prevent accidental or unlawful destruction, loss, or alteration of personal data transmitted, stored, or processed, as well as unauthorized communication or access to such data.

The Website is equipped with an SSL (Secure Socket Layer) certificate, which ensures that personal data is transmitted securely and confidentially, with the transmission between the server and the User being fully encrypted.

However, since the Data Controller cannot guarantee the impenetrability of the internet or the complete absence of hackers or other individuals who may fraudulently access personal data, the Data Controller is committed to promptly informing the User in the event of a personal data breach likely to result in a high risk to the rights and freedoms of individuals.

As defined in Article 4 of the GDPR, a personal data breach is any security breach that results in the accidental or unlawful destruction, loss, or alteration of personal data transmitted, stored, or processed, or unauthorized communication or access to such data.

Personal data will be treated as confidential by the Data Controller, who is committed to informing and ensuring, through a legal or contractual obligation, that this confidentiality is respected by their employees, associates, and anyone to whom the information is made accessible.

12. Cookies

N/A

13. Rights derived from the processing of personal data

The User may exercise the following rights before the Data Controller, as recognized in the GDPR and Organic Law 3/2018, of December 5, on the Protection of Personal Data and the Guarantee of Digital Rights:

- Right of Access: The User's right to obtain confirmation as to whether or not the Data Controller is processing their personal data and, if so, to receive information about their specific personal data and the processing carried out or being carried out, including information about the origin of the data and the recipients of any communications made or planned.

- Right of Rectification: The User's right to have their personal data corrected if it is inaccurate or, considering the purposes of processing, incomplete.

- Right of Erasure ("Right to be Forgotten"): The User's right to have their personal data erased when it is no longer necessary for the purposes for which it was collected or processed; the User has withdrawn their consent and there is no other legal basis for processing; the User objects to the processing and there are no legitimate reasons to continue; the personal data has been processed unlawfully; the personal data must be erased to comply with a legal obligation; or the personal data has been obtained through direct offers of information society services to a child under 14 years old. In addition to erasing the data, the Data Controller must take reasonable steps, considering available technology and the cost of implementation, to inform others processing the data of the User’s request for erasure of any links to that personal data.

- Right to Restriction of Processing: The User's right to limit the processing of their personal data. The User has the right to obtain restriction of processing when they dispute the accuracy of their personal data; the processing is unlawful; the Data Controller no longer needs the data, but the User needs it to make legal claims; or when the User has objected to the processing.

- Right to Data Portability: When processing is carried out by automated means, the User has the right to receive their personal data from the Data Controller in a structured, commonly used, and machine-readable format and transmit it to another data controller. When technically feasible, the Data Controller will transmit the data directly to the other controller.

- Right to Object: The User's right to prevent or cease the processing of their personal data.

- Right Not to Be Subject to Decisions Based Solely on Automated Processing, Including Profiling: The User's right not to be subject to an individualized decision based solely on automated processing of their personal data, including profiling, unless otherwise established by law.

The User may exercise these rights by sending a written request to the Data Controller at the postal address or email provided in this document, verifying their identity and specifying which right they wish to exercise.

14. Links to third-party websites

The Website may include hyperlinks or links that allow access to third-party websites that are not operated by the Website Owner. The owners of these websites will have their own data protection policies and are responsible for their own files and privacy practices.

15. Complaints to the supervisory authority

If the User believes that there is a problem or violation of current regulations regarding the way their personal data is being processed, they have the right to effective judicial protection and to file a complaint with a supervisory authority, particularly in the country where they reside, work, or where the alleged infringement took place. In Spain, the supervisory authority is the Spanish Data Protection Agency (Agencia Española de Protección de Datos) (http://www.agpd.es).

16. Acceptance and changes to this privacy policy

It is necessary for the User to have read and agreed to the terms regarding the protection of personal data outlined in this Privacy Policy, as well as to consent to the processing of their personal data so that the Data Controller can proceed with such processing in the manner, within the timeframes, and for the purposes specified. Using the Website will imply acceptance of this Privacy Policy.

The Data Controller reserves the right to modify its Privacy Policy, either at its discretion or due to legislative, jurisprudential, or doctrinal changes by the Spanish Data Protection Agency. Changes or updates to this Privacy Policy will not be explicitly notified to the User. The User is advised to periodically consult this page to stay informed of the latest changes or updates.

This Privacy Policy was updated to comply with Regulation (EU) 2016/679 of the European Parliament and Council of April 27, 2016, on the protection of individuals with regard to the processing of personal data and the free movement of such data (GDPR) and Organic Law 3/2018, of December 5, on the Protection of Personal Data and the Guarantee of Digital Rights.

Last Updated

July 2024.

By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. See our Privacy Policy for more information.
PreferencesDenyAccept
MICA DevicesMICA MiniMICAMICA PlusMICA WELL
Cloud ServicesMy inBiot PlatforminBiot's APIBusiness Intelligence
SolutionIntegral SolutionCertificationsImpactSegments
CompanyPartnersAbout inBiotContact us
HelpSupportManualsWikinbiot

Contact us

Technical support

Paseo Santxiki, 2, Oficina LB5, 31192 Mutilva, Navarra

Term & Conditions

Privacy Policy

Legal Notice

Cookies Policy

Copyright © 2024 inBiot. All right reserved