Privacy Policy

1. Data Controller

The data controller responsible for the processing of personal data collected through the DermMatch Europe website is:

DermMatch Europe
Address: C/ 9 de Octubre, nº 1, 46110 Godella, Valencia, Spain
E-mail: in**@*********eu.com

2. Purpose of this Privacy Policy

The purpose of this Privacy Policy is to inform users of the DermMatch Europe website about how their personal data is collected, used, stored and protected, in accordance with applicable data protection regulations, in particular Regulation (EU) 2016/679, also known as the General Data Protection Regulation or GDPR.

3. Personal Data Collected

We may collect the following categories of personal data:

• Identification data: first name and last name.
• Contact data: e-mail address, telephone number and postal address.
• Order and billing data: products ordered, amount, payment method, billing details and information required to manage the order and shipment.
• Customer service data: content of messages sent through the contact form, by e-mail or through other communication channels.
• Technical and browsing data: IP address, device type, browser, pages visited, cookies and other tracking tools, within the limits of the preferences expressed by the user where required.

4. Purposes of Processing

The user’s personal data may be processed for the following purposes:

• to manage orders, payments, shipments and deliveries;
• to provide customer support and respond to user requests;
• to manage returns, complaints, colour changes and after-sales requests;
• to send communications relating to an order, shipment or requested service;
• to send, where permitted by law or where consent is required and obtained, commercial communications about our products and services;
• to improve the functioning of the website, security and user experience;
• to comply with legal, tax, accounting and regulatory obligations.

5. Legal Bases for Processing

Depending on the case, the processing of personal data is based on one or more of the following legal bases:

• Performance of a contract or implementation of pre-contractual measures, especially for the management of orders, payments, deliveries and requests related to purchases.
• Compliance with a legal obligation, especially in accounting, tax or data retention matters.
• Legitimate interest of DermMatch Europe, for example to improve customer service, protect the website, prevent fraud or ensure the security of operations.
• User consent, where required, especially for certain cookies, tracking tools or marketing communications.

6. Mandatory or Optional Nature of Providing Data

Providing certain personal data may be necessary to process an order, respond to a request or provide a service. If such data is not provided, we may be unable to properly manage the order, shipment, support request or requested service.

Providing data for marketing purposes or for certain non-essential cookies is optional and, where required, is based on the user’s consent.

7. Data Recipients

The user’s personal data may be disclosed, within the necessary limits, to the following categories of recipients:

• internal staff or authorised collaborators of DermMatch Europe;
• technical providers involved in hosting, website maintenance and IT management;
• payment service providers;
• carriers, postal operators and logistics providers;
• accounting, tax, legal or administrative advisors;
• competent authorities, where required by law.

8. Retention Period

Personal data will be retained for no longer than necessary for the purposes for which it is processed, without prejudice to any legal obligations that may require a longer retention period.

For guidance purposes:

• data relating to orders, payments and invoices will be retained for the period required by applicable accounting and tax regulations;
• data relating to contact or support requests will be retained for the time necessary to manage the request and, where necessary, to protect the rights and legitimate interests of DermMatch Europe;
• data used for marketing purposes will be retained until consent is withdrawn or for a period appropriate to the commercial relationship and applicable regulations;
• cookies and tracking tools will be retained according to their nature, duration and the preferences expressed by the user.

9. Rights of Data Subjects

In accordance with applicable regulations, the user may exercise, within the limits provided by law, the following rights:

• right of access to personal data;
• right to rectification of inaccurate or incomplete data;
• right to erasure of personal data;
• right to restriction of processing;
• right to object to processing;
• right to data portability;
• right to withdraw consent at any time, where processing is based on consent.

10. Exercising Your Rights

The user may exercise their rights by contacting us:

By e-mail: in**@*********eu.com
By post: C/ 9 de Octubre, nº 1, 46110 Godella, Valencia, Spain

To protect personal data, an identity document may be requested where necessary to verify the identity of the data subject.

Requests will be handled within the time limits established by applicable regulations.

11. Complaint to the Supervisory Authority

If the user considers that the processing of their personal data does not comply with applicable regulations, they may lodge a complaint with the competent supervisory authority.

In Spain, the competent authority is the Spanish Data Protection Agency or AEPD. The user may also contact the supervisory authority of their place of residence, workplace or the place where they consider that a violation has occurred.

12. Data Security

DermMatch Europe adopts appropriate technical and organisational measures to protect personal data against destruction, loss, alteration, unauthorised disclosure or unauthorised access.

However, no system for transmitting or storing data can be considered completely secure. For this reason, we take reasonable measures to protect users’ personal information.

13. Cookies and Tracking Tools

The website may use cookies and other tracking tools to ensure its proper functioning, measure audience traffic, improve the user experience and, where applicable, provide personalised content or advertising.

Where required, the installation or reading of certain cookies is based on the user’s consent. For more information, please consult our Cookie Policy.

14. International Data Transfers

Some providers or technical tools used for the operation of the website, order management, payments, shipping or traffic analysis may process personal data outside the European Economic Area.

In such cases, DermMatch Europe ensures that any international data transfers are carried out in accordance with applicable regulations and, where necessary, through appropriate safeguards.

15. Links to Third-Party Websites

The website may contain links to third-party websites. DermMatch Europe is not responsible for the privacy practices, content or policies adopted by such external websites.

Users are invited to consult the privacy policies of any websites visited through external links.

16. Changes to this Privacy Policy

DermMatch Europe may modify this Privacy Policy at any time to take into account legal, regulatory, technical or business changes.

The most recent version of this Privacy Policy is the one published on the website.

17. Contact

For any questions related to this Privacy Policy or the processing of personal data, you may write to us at:

in**@*********eu.com