Privacy Policy

 

1. Identity of the Data Controller

Data Controller: Teknia Entidad de Gestión, S.L.U. (hereinafter “Teknia” or “the Controller”), with registered address at C/ Condesa de Venadito 1, 8º, 28027 Madrid, tax identification number B87862397, and registration in the Commercial Registry of Madrid, Sheet M-654481, Volume 46251, Folio 79. Contact email for data protection matters: dataprotection.web@tekniagroup.com.  

 

2.- Purpose and Legal Basis of the Processing

Scope. This policy applies to browsing the website tekniagroup.com and to the contact form.

Personal data processed. Internet identifiers, technical logs, and the data entered in the form (email address, first name, last name, subject and comments).

Source. The data subject.

Purpose. User data is processed to handle requests for information submitted through Teknia’s website, via contact forms and area-specific mailboxes, and to enable the proper operation of the website (e.g., logs and technical cookies). Analytics or marketing cookies will only be activated if the user accepts them in the preferences panel.

Legal basis. The legal basis for processing personal data collected through the website will depend on the purpose: (i) the performance of pre-contractual measures and/or Teknia’s legitimate interest in managing and responding to inquiries; (ii) consent for marketing collaborations and non-technical cookies; and (iii) legitimate interest and, where applicable, compliance with legal obligations (e.g., for the cybersecurity mailbox).

Submitting a form does not imply consent as the legal basis. Teknia will process the data necessary to manage the request in accordance with the applicable bases. When consent is required, it will be collected expressly (e.g., checkboxes or acceptance in the cookie panel) and may be withdrawn at any time through the mechanisms provided. Access to the website does not require acceptance of non-technical cookies; users may configure them at any time in the preferences panel.

At the time of collection, the user will be informed of the specific purpose and corresponding legal basis. Users may object to processing and/or exercise their other rights in accordance with applicable law.

 

3. Data Recipents

Data will not be disclosed to third parties, except: (i) service providers offering services to Teknia (e.g., hosting, web maintenance, support, email, analytics) acting as processors under contract; (ii) Teknia Group companies when necessary to manage the request or provide internal support; (iii) compliance with legal obligations or requests from authorities or courts; and (iv) corporate operations (e.g., mergers or restructurings) in accordance with applicable law. Data is not sold.

If international transfers occur, appropriate safeguards (e.g., Standard Contractual Clauses) will be applied and will be reported in this policy and/or in the Cookie Policy.

 

4. Mandatory or Optional Nature of the Information Requested

The Controller will always comply with the data minimisation principle. Forms will identify mandatory fields with an asterisk (*), requesting only the data strictly necessary for the purpose.

Information not marked as mandatory will be optional. Failure to provide mandatory data will prevent the processing of the request.

Users should avoid including data of third parties or special categories of data (Art. 9 GDPR) in free-text fields; in forms (particularly the cybersecurity mailbox) they should not include unnecessary personal data. In any case, under the data minimisation principle, the Controller reserves the right not to process any unnecessary data and to delete it in accordance with this policy and applicable regulation.

 

5. Data retention

Data will be kept only for the time strictly necessary for each purpose, according to the following criteria: (i) contact forms: during the management of the request and, after closing, blocked for up to five (5) years to handle potential liabilities; (ii) if the communication gives rise to a contractual or transactional relationship: up to six (6) years due to commercial regulations; (iii) compliance with legal obligations or authority requests: for the periods required; (iv) records of consent and cookie preferences: up to twenty-four (24) months or until withdrawal.

After these periods, data will be securely erased, including reasonable deletion of copies and backups when technically feasible.

6. Exercise of Rights

Users may exercise their rights —including rights of access, rectification, erasure, objection, restriction of processing, and portability— as well as withdraw consent at any time by contacting Teknia free of charge at dataprotection.web@tekniagroup.com or in writing to the address indicated in Section 1.

The request must identify the right being exercised, and Teknia may request proof of identity where necessary. Teknia will respond within one (1) month, extendable in complex cases. Exercising rights is free of charge, except for manifestly unfounded or excessive requests. Users may lodge a complaint with the competent supervisory authority if they consider that their data protection rights have been infringed. No automated individual decisions or profiling with legal effects are carried out.

 

7. User Commitments Regarding Data Protection

Users declare that they are at least eighteen (18) years old and that the information provided is true, accurate and up to date, and commit to informing Teknia of any changes to their data via dataprotection.web@tekniagroup.com. They will not include third-party data unless authorised and previously informed, nor provide special categories of data (Art. 9 GDPR) or any data unnecessary for managing their request, without prejudice to Section 4 of this Privacy Policy.

 

8. Security Measures

We apply appropriate technical and organisational measures to ensure the confidentiality, integrity and availability of personal data, taking into account the state of the art, implementation costs, and the nature, scope, context and purposes of the processing, as well as the risks to individuals’ rights and freedoms. These measures are reviewed periodically to maintain an adequate level of security.

 

9. User Acceptance

The user declares that they have read and understood this policy. When processing requires consent, it will be provided expressly through the mechanisms enabled (e.g., acceptance checkboxes or cookie panel). In all other cases, processing will be carried out in accordance with the legal bases outlined in Section 2. Users may contact dataprotection.web@tekniagroup.com with any questions regarding the scope, interpretation or application of this Privacy Policy.

© 2025 Teknia - All rights reserved.