Data processing and privacy policy

GENERAL PRIVACY INFORMATION This Privacy Policy of IMO MIRANZA regulates the collection, use and other forms of processing of personal data provided by Users on this website or in any of the institution’s Internet environments. By implementing the forms included on the different websites related to the services rendered by IMO MIRANZA, Users accept the incorporation and processing of data provided in a personal data process, which is owned by IMO MIRANZA, whereas the relevant rights under the following clauses may be exercised. All legal texts are available to Users and/or interested people on the corresponding website. These texts may be modified and/or updated according to the needs and activities carried out by IMO MIRANZA Who is in charge of processing your data? IMO MIRANZA (made up of the companies: INSTITUTO DE MICROCIRUGÍA OCULAR DOS, S.L.U., INSTITUTO OFTALMOLÓGICO LÀSER VISIÓ, S.L.U. and MIRANZA PIRINEOS, S.A.U.) is responsible for collecting and processing your personal data with regard to the services it renders. IMO MIRANZA is committed to respecting and safeguarding your privacy and the security of your data. The data identifying the person in charge of processing them are as follows:   Business name: IMO MIRANZA. Address for notification purposes: Carrer Josep Maria Lladó, 3, 08035 Barcelona. Contact with the Data Protection Delegate: dpd.rgpd@miranza.es. For what purpose(s) do we collect your data? In accordance with current legislation on the protection of personal data, IMO MIRANZA only collects the data that is strictly necessary to provide the services resulting from its activities and other services, procedures and activities assigned by law. On this website, only contact and identification details provided by the Users themselves are processed. The data that may be collected from the user will be processed on the legal bases that are described, as well as for the following purposes:
  1. Booking appointments at one of our centres and with the specialists determined based on the explicit consent provided by the interested party.
  2. Teleconsultation service with one of our specialists based on the contractual relationship (provision of the service) between both parties.
  3. Management of contact requests, requests for information, request for more information with regard to treatment financing, etc., and contact with the user through the means provided by the user (phone and/or e-mail) in order to respond to their concerns based on the explicit consent provided by the interested party.
  4. Processing of sign-ups for the 'IMO Club' loyalty programme, hence providing the advantages, discounts, offers and special conditions associated with the aforementioned programme based on the explicit consent provided by the interested party.
  5. Sending business communications (newsletter) in accordance with the explicit consent provided by the interested party.
  6. Management of the reservation of facilities and organisation of events at the IMO facilities based on the explicit consent of the interested parties at the time of the request and, if the agreement is formalised, in accordance with the existing business relationship between both parties.
  1. Statistical
We inform you that automated decision making will not be carried out. We also inform you that the information in the databases may be used to identify Users and for statistical studies of registered Users. How long do we keep your personal information? Personal data will be stored in accordance with the following criteria:
  • Normatively established deadlines.
  • Limitation period for actions that may arise in relation to the processing.
  • Exercising the rights of opposition/deletion by the data subjects.
To which recipients will your data be communicated? Your data may be communicated to other companies of the Group, in order to perform the administrative and commercial management of the service we provide, as well as to the following trusted third parties of IMO MIRANZA:
  • Third parties that help us provide IT services, such as platform providers, hosting services, maintenance and support, on our databases, as well as on our software and applications that may contain data about you.
  • In those cases in which a legal obligation so determines.
IMO MIRANZA does not sell, rent or forward the Users’ personal data on these websites, except where this is necessary for the provision of the service. The website contains links, applications or features shared with third parties, such as social networks or online communication systems. IMO MIRANZA is not responsible for the information collected in these applications, features or social networks owned by third parties, as it does not have any management capacity or control over them. Thus, the legal notices and privacy policies that may appear on the third-party websites or similar may apply. What are the rights of Users who provide us with their data? Users may exercise, in respect of the data collected in the manner described in point 1, the rights recognised in Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, hence repealing Directive 95/46/EC (General Data Protection Regulation), and Organic Law 3/2018, of 5 December, on the Protection of Personal Data and the Guarantee of Digital Rights as well as Law 29/2021, of 28 October, on the protection of personal data and, in particular, the rights of portability, access, rectification, deletion, opposition and processing limitation and data portability. The rights referred to in the preceding paragraph may be exercised by each User through a written and signed request, accompanied by a photocopy of their ID or passport, sent to the following address: Carrer Josep Maria Lladó, 3, 08035 Barcelona. Or e-mail: dpd.rgpd@miranza.es. Likewise, Users are informed that, should they know that their rights have been infringed, they may file a complaint with the Supervising Authority (Spanish Data Protection Agency). REPORTING OF INCIDENTS AND IRREGULARITIES. In case any behaviour or situation occurs that might generate an incidence or irregularity of any kind, please contact: IMO MIRANZA. Carrer Josep Maria Lladó, 3, 08035 Barcelona. dpd.rgpd@miranza.es.      

USER COMMITMENT TO REGISTERING THEIR DATA IN A PROCESSING SYSTEM

IMO MIRANZA recommends that, before entering data on any or some of the data collection sheets on this website, you read the legal notice, cookie policy and privacy policy carefully. In any case, the user is responsible for the authenticity of the data provided, which are accurate, current and complete for the purpose for which they are provided, while assuming responsibility for damages, both for loss of profit and for consequential damage, which may be caused by such inaccuracies or falsehoods. In any case, if the data provided in the respective forms were owned by a third party, the user is responsible for the correct recording of the consent and information to the third party as to the aspects reflected in this legal notice and privacy policies.

USER LIABILITY FOR USE AND CONTENT

Both access to the websites and the use made of the information and content included therein shall be the sole responsibility of the person performing them. Therefore, the use made of the information, images, content and/or reviewed products that are accessible through the same shall be subject to applicable law, be it national or international, as well as the principles of good faith and lawful use by the Users, who will be entirely responsible for the said access and proper use. Users are obliged to make reasonable use of the services or content, under the principle of good faith and abiding by current legislation, morality, public order, good morals, the rights of third parties or of IMO MIRANZA, all according to the possibilities and purposes for which they were conceived. IMO MIRANZA assumes no responsibility, whether direct or indirect, for consequential damage or lost profits arising from the misuse of services or content by Users or third parties.

INFORMATION REGARDING THE LAW ON INFORMATION SOCIETY SERVICES AND ELECTRONIC COMMERCE

In compliance with the information duty referred to in Article 10 of current Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce, we inform you that the facilitator and manager of the website content, where you can download different applications and/or information, is Carrer Josep Maria Lladó, 3, 08035 Barcelona, and as regards the management of the Internet domain miranza-dev.servidor.gal, registered in the corresponding records, while catering to communications from users and/or interested parties by email via dpd.rgpd@miranza.es. Any other business, commercial, administrative or good and/or service procurement activity is the responsibility of the company mentioned above, which is the owner of this domain.

INFORMATION ON THE USE OF OTHER WEBSITES AND SOCIAL NETWORKS

The company is only liable for the content and management of the websites it owns or on which it holds rights of a similar nature. Any other website or social network or online data repository outside this website is the responsibility of their legitimate owners. IMO MIRANZA collaborates in an ordinary fashion with different applications and web environments, and always recommends that all users carefully read the corresponding legal notices and privacy policies before accessing these web environments, while only accessing them once they have understood and accepted in full the said legal text. IMO MIRANZA undertakes to check the content being posted on such social networks and expel those users who misuse them. IMO MIRANZA recommends, following instructions by the National Institute of Communication Technologies (INTECO) and the Spanish Data Protection Agency (AEPD) as to the use of social networks or browsing in web environments, executing the following actions (in case they are used some day):
  • All Users are advised to resort to the use of pseudonyms and personal nicknames, with which to operate over the Internet, thus allowing them to feature a true “digital identity” that does not compromise the security of their personal and professional life.
  • Users are recommended to take special care when publishing audiovisual content and graphics on their profiles, since they may be putting at risk the privacy and intimacy of people around them in this case. • It is recommended to review and read, both prior to user registration and subsequently, the general terms of use and privacy policy the platform makes available on its websites. • It is recommended to properly set the privacy degree of the user profile on the social network, so it is not completely public, but only people who have been previously tagged as “friends” or “direct contacts” by the user have access to the information published in the profile. • It is recommended to accept as a contact only known people or with whom you have some prior relationship, while not compulsively accepting all contact requests received and always researching, wherever possible and necessary, who is the person requesting contact through the social network. • It is recommended not to publish physical contact information in the user profile, hence allowing anyone to know where you live, work or study on a daily basis or the entertainment venues where you usually hang around. • Users of microblogging tools are advised to take special care when posting information about where they are at all times. • Users are advised to use and publish only content for which they have sufficient intellectual property rights. Otherwise, the user will be committing a civil wrong that is protectable by the national courts. • Users are advised to use different usernames and passwords to enter the various social networks they are a member of. • It is recommended to use passwords with a minimum length of 8 alphanumeric and case-sensitive characters. • All users are advised to have an antivirus software installed and properly updated on their computers. • Minors must not disclose too many personal details. You should never provide data to strangers. • You should read all information concerning the website. It explains who its owners are and the purpose for which data are requested. • If the user is under fourteen, the consent of the parents or legal guardians is also needed. In these cases, wherever data is requested by a social network, the parents or legal guardians should be asked if they approve the subscription or not. • Usernames and passwords should not be communicated to third parties nor shared with friends or classmates. These details are private and should not be communicated to third parties and/or strangers. • Whenever there is any doubt about a situation arising from the use of social networks and collaborative tools, parents or legal guardians should be asked. • The computer must be kept in a common area at home. • Rules on the use of the Internet should be set at home. • Parents should know the operation and possibilities of such platforms, both positive and negative. • Activate parental control and the platform’s control tools and set the parent’s or legal guardian’s mail as secondary mail contact. • Ensure that age verification controls are implemented. • Ensure proper installation of a content blocker. • Raise awareness and inform children about safety aspects. • Explain to children that they should never meet people they have known in the online world and that, if they do, they must always be accompanied by their parents or legal guardians. • Make sure that children know the risks and implications of hosting content, such as videos and photographs, as well as the use of web cameras via social networks. • Check the child’s user profile. • Ensure that the child only accesses the pages recommended for their age. • Ensure that children do not use their full name.