Privacy Policy
Last updated: March 9, 2024
1. INTRODUCTION
Whether you are one of our freemium users or one of our most important customers, we deeply value the trust you have placed in us by using Epinium and want to say “thank you” for it.
Our Terms of Service and Privacy Policy demonstrate both our commitment to maintaining your trust and our dedication to a product that always prioritizes your privacy and data, and the privacy and data of its users.
At Epinium we work to offer the user the best possible experience through its products and services. In some cases, it is necessary to collect information to achieve this.
Therefore, and for the purposes of the provisions of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016 (hereinafter, “
GDPR
“) regarding the protection of natural persons with regard to the processing of personal data and the free movement of such data, and Law 34/2002, of July 11, on Services of the Information Society and Electronic Commerce (hereinafter, “
LSSI
“),
Epinium SL
informs the user that, as the data controller, it will incorporate the personal data provided by users into an automated file.
2. DATA CONTROLLER
Epinium S.L. (hereinafter, “
Epinium
” or the “
Company
”) is the company that created this website, as well as the controller of the personal data that the user shares with us. Below is the general information of the Company:
Epinium SL
Carrer d’Ernest Lluch 32 TCM2 2.17
08302, Mataró
Barcelona
+34 (93) 151-2830
3. COLLECTION OF PERSONAL DATA AND ITS PROCESSING
Below are the personal data that may be processed on the website, as well as the legal basis that justifies such data processing.
“Contact us” form
. To manage this form, data such as name and surname, email, phone number, and the optional message text will be processed.
“7 days Free Trial” registration:
To manage the registration on the platform in free trial mode, personal data such as name and surname, phone number, email and password will be processed. There is also the option to register through providers such as Google and Facebook, whose personal data will be processed by them.
Commercial communications. To manage any commercial communication and/or newsletter subscription for Epinium’s products and services, email will be processed, along with any other personal data required to manage such processing.
Customer and/or User Support via instant messaging.
To manage any type of support for questions relating to the services offered, data such as email will be processed, along with any other information you choose to communicate via the enabled chat.
“Work with us”
form. To manage any job application, your data such as name and surname, email, phone number, curriculum vitae, and optionally your photograph will be processed. There is also the option to manage your application through providers LinkedIn and Indeed, whose personal data will be processed by them.
4. LEGAL BASIS FOR THE PROCESSING OF YOUR DATA
The legal basis that justifies the processing of the aforementioned data is:
Consent of the data subject for demo request forms, newsletter registrations, managing submitted applications, webinar registrations, user support via chat, and the processing of optional cookies accepted by the user.
Compliance with legal obligations for fraud prevention, communication with public authorities, and third-party claims.
5. RETENTION OF YOUR PERSONAL DATA
Personal Data is only kept for the time necessary for the purposes for which it was collected with your express consent, to meet your needs, or to comply with legal obligations.
To determine how long Personal Data is retained, the following criteria are used:
Personal Data obtained when contacting Epinium in relation to a query or request: for the time necessary to resolve the query.
Personal Data obtained upon giving consent to send communications or because it is necessary in compliance with regulations: until the end of the period for which it was required.
Some Personal Data may be retained to comply with legal or regulatory obligations, as well as to administer Epinium’s rights (for example, to file claims in court) or for statistical or historical purposes.
Once the retention periods for your Personal Data required by law have elapsed, Epinium will proceed to delete them from systems and records or anonymize them so that the user can no longer be identified.
Epinium has a Data Retention Policy. For more information, please contact us at
.
6. RECIPIENTS TO WHOM YOUR DATA IS DISCLOSED
In some cases, only when necessary, Epinium will provide user data to third parties. However, the data will never be sold to third parties. The external service providers that Epinium uses to provide auxiliary data processing services may have access to such data in accordance with the instructions given by Epinium and solely for the purpose of correctly executing the contractual relationship between Epinium and its suppliers.
To obtain information about the providers that access your personal data, you can send an email to
.
Epinium seeks to ensure the security of personal data when sent outside the company and ensures that third-party service providers respect confidentiality and have adequate measures in place to protect personal data. These third parties are obligated to ensure that information is handled in accordance with data privacy regulations. To comply with these safeguards, Epinium signs data processing agreements with said providers in accordance with Article 28 of the GDPR.
In some cases, the law may require that personal data be disclosed to public bodies or other parties; only what is strictly necessary to comply with such legal obligations will be disclosed.
7. STORAGE OF YOUR PERSONAL DATA
In general, data is stored within the EU. However, if the processing of your data involves an international transfer of data outside the European Economic Area (EEA), Epinium undertakes to implement the necessary security measures to ensure an adequate level of protection for such transfers through data processing agreements and, where applicable, will ensure that they offer an adequate level of protection, either through Binding Corporate Rules (BCR) or through subscription to the European Commission’s standard contractual clauses. For more information about service providers, contact us at:
.
8. EXERCISE OF RIGHTS AND HOW TO EXERCISE THEM
You may direct your communications and exercise your rights by submitting a request to the following email address:
.
Right to information
: you may request information about the personal data held about you.
Right of rectification
: you may communicate any changes to your personal data.
Right of erasure and to be forgotten
: you may request the prior blocking and erasure of personal data.
Right to restriction of processing
: this involves restricting the processing of your personal data.
Right to data portability
: in some cases, you may request a copy of your personal data in a structured, commonly used and machine-readable format for transmission to another data controller.
Right to object and to not be subject to automated individual decision-making:
you may request that decisions based solely on automated processing, including profiling, that produce legal effects or significantly affect you, not be made.
In some cases, the request may be denied if you request the deletion of data necessary for compliance with legal obligations. Additionally, if you have a complaint about data processing, you may file a claim with the competent data protection authority (Spanish Agency for Data Protection or “
AEPD
”).
9. RESPONSIBILITY FOR THE ACCURACY AND TRUTHFULNESS OF THE DATA PROVIDED
The user is solely responsible for the truthfulness and accuracy of the data provided, exonerating Epinium from any liability in this regard. Users guarantee and are responsible, in all cases, for the accuracy, currency, and authenticity of the personal data provided, and undertake to keep it duly updated. The user undertakes to provide complete and accurate information in the registration or subscription form. Epinium reserves the right to terminate services contracted with users in the event that the data provided is false, incomplete, inaccurate, or not up to date.
Epinium is not responsible for the truthfulness of information that is not of its own creation and for which another source is indicated, and therefore assumes no liability for any hypothetical damages that may arise from the use of such information.
Epinium reserves the right to update, modify, or delete the information contained on its web pages and may even limit or deny access to such information.
10. SECURITY MEASURES APPLIED TO PROTECT YOUR PERSONAL DATA
Epinium has adopted the legally required personal data protection security levels and endeavors to implement additional technical means and measures at its disposal to prevent the loss, misuse, alteration, unauthorized access, and theft of personal data provided to Epinium.
Epinium is not responsible for hypothetical damages that may arise from interference, omissions, interruptions, computer viruses, telephone failures, or disconnections in the operation of this electronic system caused by factors beyond Epinium’s control, or from delays or blockages in the use of this electronic system caused by deficiencies or overloads of telephone lines or overloads in the Data Processing Center, the Internet system, or other electronic systems, nor for damages that may be caused by third parties through illegitimate interference beyond Epinium’s control. However, the user must be aware that Internet security measures are not impenetrable.
In particular, the website is secured with a TLS certificate with RSA encryption, which means that all information sent to the website is encrypted with HTTPS protocol.
11. EPINIUM DATA PROCESSING AGREEMENT FOR THE EU
Make sure your terms of service or privacy policy adequately communicates to your users how you use Epinium (and any other similar service) on your website or application. This requirement has always been part of Epinium’s
terms of service
, but the GDPR may penalize you heavily if you have not done so clearly. We recommend that you ensure your policies are up to date and clear to your readers.
If you are in the European Union, you may wish to sign a Data Processing Agreement with Epinium. We will be happy to do so. Working with external advisors in Germany and Malta, we have updated this document to comply with the GDPR and other generally accepted privacy laws. You can review and digitally sign a copy of the
Data Processing Agreement
. We will countersign it and provide you with a fully executed downloadable copy by email within 2 business days.
If you have any questions about its content, simply send an email to
with a detailed description of your concerns. We will do our best to resolve such issues as soon as possible.
12. CONTACT AND MODIFICATION OF THE PRIVACY POLICY
This privacy policy may be modified. It is recommended to review it from time to time.