Protection of personal data

This legal text provides details on how we collect and process your personal data through the use of our website https://www.nexioconsulting.com, including any information you may provide us through the site when you submit your data via the form provided for this purpose. By providing us with your data, we inform you that our services are not available to those persons who are prevented by law from giving their consent. Therefore, when you submit the forms to us, you guarantee that you have the capacity to give your consent. Below, we inform you about the data protection policy of: NEXIO ADVISORY SL

  1. Data controller.

Contact details of the person responsible:

NEXIO ADVISORY SL, with Tax ID Number: B19844679 and registered address at: Gran Via Don Diego Lopez De Haro, 81, 48011, Bilbao, Spain, and telephone number: +34 94 439 82 10. Email: info@nexioconsulting.com

NEXIO ADVISORY SL is responsible for your data. (Hereinafter referred to as “we” or “our”).

  1. What information do we collect?

The General Data Protection Regulation defines personal data as any information relating to an identified or identifiable natural person, i.e., any information capable of identifying a person. This would not include anonymous data or percentages.

Any personal data that may be collected directly from the data subject will be treated confidentially and will be incorporated into the corresponding processing activities, owned by NEXIO ADVISORY SL.

On our Website, we may process certain types of personal data, which may include:

  • Identity details: name
  • Contact details: email and telephone number.

We do not collect any data relating to special categories of personal data (those that reveal your ethnic or racial origin, political opinions, religious or philosophical beliefs, trade union membership, and information about your health, genetic or biometric data).

If you are required by law or under the terms of the contract between us to provide personal data and you refuse to do so, we may not be able to perform the contract or provide the service, and you must notify us in advance.

  1. How do we collect your personal data?

The means we use to collect personal data are:

  • Through the form on our website, through our contact email, by phone, or by mail, when:
    • Request information about our products or services

To ensure the quality of our portal, we reserve the right to refuse any registration request or to suspend or cancel a previously accepted registration if we believe that it does not comply with these requirements or any other law or regulation. If this occurs, we will attempt to explain the reasons for our decision, but we cannot commit to doing so in all cases.

  • Through technology or automated interactions: on our site, we may automatically collect technical data about your equipment, browsing actions, and usage patterns. This data is collected through cookies or similar technologies. For more information, please see our cookie policy here (link).
  • Through third parties:
    • Google: analytical data or search data. Outside the European Union.
  1. Purpose and legitimacy for the use of your data.

The most common uses of your personal data are:

  • For the formalization of a contract between NEXIO ADVISORY SL and you.
  • When you give your consent to the processing of your data.
  • When we need them to comply with a legal or regulatory obligation.
  • When necessary for our legitimate interest or that of a third party.

The User may revoke the consent given at any time by sending an email to info@nexioconsulting.com or by consulting the section on exercising rights below.

Below is a table showing how we will use your personal data and the legitimacy of its use, as well as what type of personal data we will process. We may process some personal data for additional legal reasons, so if you need further details, please email us at info@nexioconsulting.com

Form Purpose Type of data Legitimacy for processing
Contact The purpose is to manage contacts and requests for information received via the website - Name- Email- Phone number Consent of the data subject (Art. 6.1.a GDPR) Pre-contractual measures (Art. 6.1.b GDPR) Processing necessary for the purposes of the legitimate interests pursued by the controller (Art. 6.1f GDPR)

Purpose: we will only use your data for the purposes for which we collect it, unless we reasonably consider that we should use it for another reason, notifying you in advance so that you are informed of the legal reason for its processing and provided that the purpose is compatible with the original purpose.

  1. How long will we keep your data?

They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine any possible liabilities that may arise from that purpose and from the processing of the data. The provisions of the various regulations regarding the retention period shall apply, as applicable to this processing.

  1. Minors

NEXIO ADVISORY SL does not authorize minors under the age of 14 to provide their personal data through the means enabled on this website (filling in web forms to request services, contact forms, or by sending emails). Therefore, individuals who provide personal data using these means formally declare that they are over 14 years of age, and NEXIO ADVISORY SL is exempt from any liability for non-compliance with this requirement.

If your child under the established age limit has provided personal information to NEXIO ADVISORY SL, please contact us to request the exercise of their applicable rights.

In cases where the services offered by NEXIO ADVISORY SL are intended for minors under the age of 14, the means to obtain the authorization of the minor's parents or legal guardians will be enabled.

  1. Exercising Data Protection Rights:

How to exercise these rights? Users may send a letter to the registered office of NEXIO ADVISORY SL or an email to info@nexioconsulting.com, including in both cases a photocopy of their ID card or other similar identification document, to request the exercise of the following rights:

  • Access to your personal data: you may ask NEXIO ADVISORY SL if it is using your personal data.
  • To request their rectification, if they are incorrect, or to exercise the right to be forgotten with regard to them.
  • To request the limitation of processing, in this case, they will only be kept by NEXIO ADVISORY SL for the exercise or defense of claims.
  • To object to the processing of your data: NEXIO ADVISORY SL will stop processing your data in the manner you specify, unless there are legitimate reasons or for the exercise or defense of possible claims, in which case the data must continue to be processed.
  • Data portability: if you want your data to be processed by another firm, NEXIO ADVISORY SL will facilitate the portability of your data to the new data controller.

You may use the forms provided by the Spanish Data Protection Agency to exercise your rights: Here

Complaints to the AEPD: if you believe there is a problem with the way NEXIO ADVISORY SL is processing your data, you may address your complaints to the relevant supervisory authority, which in Spain is the Spanish Data Protection Agency.

We will ask you for specific information to help us confirm your identity and ensure your right to access your personal data (or exercise any of the other rights mentioned above). This is a security measure to ensure that personal data is not disclosed to any person who is not entitled to receive it.

We will respond to all requests within the legal deadline of one month. However, it may take us longer than a month if your request is particularly complex. In this case, we will notify you and keep you updated.

  1. Data communication: provision of services.

In the course of our work, we may need the assistance of third parties, who will only process the data to provide the contracted service, and with whom we have the appropriate measures in place to guarantee your rights:

  • Service providers that provide systems administration and information technology services.
  • Professional advisors, including lawyers, auditors, and insurers, who provide banking, legal, insurance, and accounting consulting services.

All data processors to whom we transfer your data will respect the security of your personal data and will process it in accordance with the GDPR.

We only allow these processors to process your data for specific purposes and in accordance with our instructions. However, in accordance with transparency requirements, you may request a list of the companies that provide services to us by sending an email to: info@nexioconsulting.com

  1. 9. Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized manner, altered, or disclosed. In addition, we limit access to your personal data to those employees, contractors, and other third parties who have a business need to know such data. They will only process your personal data on our instructions and will be subject to a duty of confidentiality.

We have implemented procedures to deal with any suspected breach of your personal data and will notify you and the Supervisory Authority in the event of a security breach, as regulated in Articles 33 and 34 of the GDPR.