Privacy Policy

Last updated: 09/04/2025

1. Introduction

At Gestoría Legal, we are committed to protecting your privacy. This policy details how we collect, use, store, and protect your personal data in accordance with the EU General Data Protection Regulation (GDPR) and the Spanish Organic Law on Data Protection and guarantee of digital rights (LOPDGDD).

2. Data Controller

The controller responsible for processing your personal data is:

  • Nombre: Gestoría Legal
  • Dirección: Passeig de Calvell 19, 08005, Barcelona, Spain
  • Email: [email protected]

3. Personal Data We Collect

We may collect and process the following types of personal data:

  • Identification data: Name, surname.
  • Contact data: Email address, phone number, postal address.
  • Voluntarily provided data: Information you provide us through contact forms, comments, surveys, etc.
  • Billing and transaction data: If you make purchases or contract services (necessary for contract execution).

4. Purpose of Processing

We use your personal data for the following purposes:

  • Providing our services and managing the contractual relationship.
  • Responding to your inquiries, requests, or petitions.
  • Managing the sending of commercial information or newsletters, provided we have your explicit consent.
  • Improving our website and services by analyzing navigation (aggregated or anonymized data).
  • Complying with our legal and tax obligations.
  • Managing website security and preventing fraud.

5. Legal Basis for Processing

The legal basis for processing your data depends on the purpose:

  • Consent: For sending commercial communications, installing certain cookies, or when you voluntarily provide us with data.
  • Contract Execution: For providing contracted services, payment management, etc.
  • Legal Obligation Compliance: For billing, tax filing, etc.
  • Legitimate Interest: For improving our services, ensuring security, responding to initial inquiries (always balancing your rights and freedoms).

6. Data Retention Period

We will keep your personal data only for the time necessary to fulfill the purposes for which it was collected, as well as to comply with legal obligations (tax, commercial, etc.). Once the purpose is fulfilled or legal deadlines expire, the data will be deleted or anonymized.

7. Data Sharing with Third Parties

We will not transfer your personal data to third parties, unless it is necessary for service provision (e.g., hosting providers, payment gateways, courier companies), due to legal obligation (e.g., judicial or administrative requirement), or if we have your explicit consent. We require all data processors to respect the security of your data and process it according to the law. Some tools we use (e.g., Google Analytics) may involve international data transfers, which are carried out under adequacy mechanisms approved by the EU (such as Standard Contractual Clauses).

8. Your Data Protection Rights

You have the right to:

  • Access: Request access to the personal data we hold about you.
  • Rectification: Ask for the correction of inaccurate or incomplete data.
  • Erasure ('Right to be Forgotten'): Request the deletion of your data when it is no longer necessary for the purposes for which it was collected, you withdraw your consent, etc.
  • Restriction of Processing: Ask us to limit the processing of your data in certain circumstances.
  • Portability: Receive your personal data in a structured, commonly used, and machine-readable format, and transmit it to another controller.
  • Objection: Object to the processing of your data for reasons related to your particular situation, especially for direct marketing purposes.
  • Not be subject to automated individual decision-making: Right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

You can exercise these rights by sending a written request, accompanied by a copy of your ID card or equivalent identification document, to our postal address Passeig de Calvell 19, 08005, Barcelona, Spain or via email to [email protected], clearly indicating the right you wish to exercise.

9. Security Measures

We have adopted the necessary technical and organizational measures to ensure the security of your personal data and prevent its alteration, loss, unauthorized processing, or access, taking into account the state of technology, the nature of the stored data, and the risks to which it is exposed.

10. Cookie Policy

We do not use cookies on our website. However, if we decide to use cookies in the future, we will inform you appropriately and give you the option to accept or reject them.

11. Changes to the Privacy Policy

We reserve the right to modify this privacy policy to adapt it to legislative or jurisprudential changes, as well as industry practices. We will inform you of significant changes through our website or by email before they take effect. We recommend reviewing this policy periodically.

12. Contact

If you have any questions or concerns about this privacy policy or the processing of your data, do not hesitate to contact us via [email protected] or at our postal address.

13. Supervisory Authority

If you believe your data protection rights have been violated, you have the right to file a complaint with the Spanish Data Protection Agency (AEPD): C/ Jorge Juan, 6, 28001 Madrid, or through its electronic headquarters: [https://sedeagpd.gob.es/sede-electronica-web/](https://sedeagpd.gob.es/sede-electronica-web/).