Privacy Policy

Previous recommendation

We welcome you to this website and we recommend that you read our Privacy Policy. Here we describe the way in which the site https://www.mariademarcos.com collect and use information about her clients, users and subscribers of this website.

On this website, the users personal data is respected and safely taken care of. As a user you should know that your rights are guaranteed. We have strived to create a safe and reliable space.

Your privacy is important for us

In this privacy statement we explain what personal information we collect from our users and how we use it. We encourage you to read these terms carefully before providing your personal data on this website.

We have strived to create a safe and reliable space and that is why we want to share our terms regarding your privacy:

  • We never ask for personal information unless it is really necessary to provide the services that you require.

  • We never share personal information about our users with anyone, except to comply with the law or should you have given us your express authorization.

  • We never use your personal data for a purpose other than that expressed in this privacy policy.

It should be noted that this Privacy Policy may vary depending on legislative requirements or self-regulation, so users are advised to visit it periodically. It will be applicable in case the users decide to fill out any form of any of our contact forms where personal data is collected.

María de Marcos has adapted this website to the requirements of the Organic Law 15/1999, of December 13, Protection of Personal Data (LOPD), and Royal Decree 1720/2007, of December 21, known as the LOPD Development Regulation. It also complies with Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016 on the protection of natural persons (RGPD), as well as with Law 34/2002, of July 11, of Services of the Information Society and Electronic Commerce (LSSICE or LSSI).

Information to the user

The purpose of this website is to offer the user mentoring, coaching and training programs.

Who is responsible for the treatment of your personal data:

  • Identity of the responsible party: María de Marcos

  • Commercial name: María de Marcos

  • NIF: 03467322A

  • Address: Calle Libertad 6, 1A La Granja, Segovia, Spain

  • Email: maria@mariademarcos.com

  • Data Protection Delegate: María de Marcos, contact: maria@mariademarcos.com.

Principles that we will apply to your personal information

In the processing of your personal data, we will apply the following principles that meet the requirements of the new European data protection regulation:

  • Principle of legality, loyalty and transparency: we will always require your consent to the processing of your personal data for one or more specific purposes that we will inform you in advance with absolute transparency.

  • Principle of data minimization: we are only going to request strictly necessary data in relation to the purposes for which we require it. The minimum possible.

  • Principle of limitation of the conservation period: the data will be kept for no longer than necessary for the purposes of the treatment, depending on the purpose, we will inform you of the corresponding conservation period, in the case of subscriptions, we will periodically review our lists and eliminate those records that have been inactive for a considerable time.

  • Principle of integrity and confidentiality: Your data will be treated in such a way that an adequate security of personal data is guaranteed and confidentiality is guaranteed. You should know that we take all necessary precautions to prevent unauthorized access or improper use of our users' data by third parties.

Data requested on the website and purpose of the treatment

  • Name and email: to make any direct contact with the person in charge, either to raise questions, comments, suggestions, request a service or product or any other information. Failure to provide the minimum necessary personal data will prevent the person responsible from responding to the request.

  • Name, surname and email for mailing list (newsletter): with the express and voluntary consent of the owner of the data, the minimum information necessary to send an automated commercial bulletin will be requested on the website, where advertising will be reported, promotions and other information about the services and / or products offered by the person in charge, as well as sending tips and free resources

  • Name and email: to make comments on the blog of the website.

  • Full name, phone (optional) and email: this information will be requested to reserve video call sessions.

  • Name, surname, address, telephone, email, tax identification number: this information will be requested when hiring a service, in order to prepare the contract and invoice it.

Under Age

Our services and products are for users over 18 years old. Children under this age are not authorized to use our services without parent consent and should not, therefore, send us their personal information. The responsible party has no way to effectively check the age of the users, so it is exempt from any liability, if the user does not comply with what is indicated here.

What are your rights when you provide us with your information?

Anyone has the right to obtain confirmation on whether or not at María de Marcos we are treating personal data that concerns them.

Interested persons have the right to:

  • Request access to personal data concerning the interested party.

  • Request rectification or deletion.

  • Request the limitation of its treatment.

  • Oppose to treatment.

  • Request data portability.

Interested parties may access their personal data, as well as request the rectification of inaccurate data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purposes that was collected. In certain circumstances, the interested parties may request the limitation of the processing of their data, in which case we will only keep it for the exercise or defense of claims.

In certain circumstances and for reasons related to their particular situation, the interested parties may object to the processing of their data. María de Marcos will stop processing the data, except for compelling legitimate reasons, or the exercise or defense of possible claims. As the interested party, you have the right to receive any personal data that concerns you, that you have given us and in a structured format, of common use and mechanical reading, and to transmit it to another person responsible for the treatment when:

  • The treatment is based on consent.

  • The data has been provided by the person concerned.

  • The treatment is carried out by automated means.

By exercising your right to the portability of your data, you will have the right to have personal data transmitted directly from responsible to responsible when technically possible.

Interested parties will also have the right to effective judicial protection and to submit a claim to the supervisory authority, in this case, the Spanish Agency for Data Protection, if they consider that the processing of personal data that concerns them violates the Regulation.

According to the provisions of the general regulation of European data protection (RGPD) 2016/679, María de Marcos, with address at Libertad 6, 1A, 40100 La Granja, Segovia, Manzanillo, will be responsible for data processing corresponding to web users and subscribers.

María de Marcos, does not sell, rent or give personal data that can identify the user, nor will it do in the future, to third parties without prior consent. However, in some cases collaborations can be made with other professionals. In such instances, consent will be required from users informing about the identity of the collaborator and the purpose of the collaboration. It will always be done under the strictest safety standards.

Forms

This website uses 5 types of forms:

  • Contact: the user, buyer or participant can find forms that will facilitate communication with the person in charge, to raise questions, comments, request a quote, reserve any of the services offered on the website or demand any rights they have. Failure to provide the minimum necessary personal data will make it impossible for the person responsible to respond to the request. This treatment will be considered legitimate because it is part of a pre-contractual diligence. The server of the website and the email address of the responsible will be responsible for the treatment.

  • Advertising: users, buyers or participants will be asked for their express and voluntary consent, to deliver to the person in charge the minimum data necessary to send advertising and commercial information related to the services and / or products offered by the person in charge, so that it can be added to an automated email marketing file managed by the person in charge of the treatment indicated below. The processing of personal data found in this section has been made with the consent of the owner of the data.

  • For comments on the blog: in order to avoid spam, inappropriate messages, and make a proper follow-up, the user will be asked for their name, email and website to identify it in the comments they want to make in the blog entries. From this data, only the website will be visible to other users of the website. If you do not want the data to be visible by other people, you can comment anonymously. The server of the website will be in charge of the treatment and will be carried out with the consent of the owner of the data.

  • To book video call sessions: to reserve online video call sessions, the user will be asked for their full name, their email, and their telephone number (this is optional), in order to identify their reservation. The person in charge of processing this data will be the server of the appointment booking platform (see below).

  • For services: to gather information about the needs of the client, essential to be able to offer the contracted services. The server of the website, the form collection service and the email address of the person responsible will be responsible for the treatment.

Data managers

The person in charge needs the support of third parties in order to be able to offer their services and products adequately, with which they have concluded the necessary confidentiality agreements and verified that they comply with the Spanish regulations on the protection of personal data.

The data provided to these third parties may not be used for other purposes not authorized by the owner of the data.

In compliance with the principles of information and transparency, it is made known that these third parties are:

  • Squarespace: platform on which the website is hosted, which also generates statistics on the traffic and volume of visits to the website. Service in charge of Squarespace, Inc. is headquartered in New York, United States of America. It is held by Squarespace Ireland Ltd., located in Dublin, Ireland. It has a security agreement called Privacy Shield, in accordance with the requirements of the European Committee for Data Protection that can be consulted here. You can check their privacy policy here

  • Mailchimp: used to automate the commercial information bulletins and send to the email of the owner of the data, advertising of the products and / or services offered on the website. Service in charge of the company The Rocket Science Group LLC, located in the United States of America. It has a security agreement called Privacy Shield, in accordance with the requirements of the European Committee for Data Protection that can be consulted here. You can check their privacy policy here.

  • Typeform: platform that provides interactive online forms. Used to collect contact data; for questions and requests for information about a service; to specify the needs of the applicant; to sign up for a service; for satisfaction surveys with the service provided. Typeform provides derivation data and used devices. Service provided by the company Typeform, located in Barcelona, Spain. It has a security agreement called Privacy Shield, in accordance with the requirements of the European Committee for Data Protection that can be consulted here. You can check their privacy policy here.

  • Google Drive and GSuite: used to back up information and share folders and files in Google Drive with customers and collaborators; to manage email in Gmail; to make video calls in Hangouts; to share calendars in Google Calendar; to conduct customer satisfaction surveys or to collect information about your brand, necessary to provide the services correctly, Google Forms; and other services of the Suite as necessary. Service provided by Google LLC, located in the United States of America. It has a security agreement called Privacy Shield, in accordance with the requirements of the European Committee for Data Protection that can be consulted here. You can check their privacy policy here.

  • Zapier: application integration service. Used to connect the information collected through GumRoad, Googleforms and Typeform with Mailchimp and GoogleDrive. Zapier is located in the United States of America. It has a security agreement called Privacy Shield, in accordance with the requirements of the European Committee for Data Protection that can be consulted here. You can check their privacy policy here.

  • Acuity Scheduling: used for clients or potential clients to reserve video calls with me. Service provided by Acuity Scheduling, Inc., located in the United States of America. It has a security agreement called the International Data Transfer Agreement, in accordance with the requirements of the European Committee for Data Protection. You can check their privacy policy here.

  • Skype: used to make video calls with clients or potential clients. Service provided by Microsoft Corporation, located in the United States of America. It has a security agreement called Privacy Shield, in accordance with the requirements of the European Committee for Data Protection that can be consulted here. You can check their privacy policy here.

  • Voxer: used as an instant messaging service through the telephone and / or the computer as part (optional) of any of the online services offered. Located in the United States of America. You can check their privacy policy here.

  • GumRoad: used as an electronic commerce platform to manage contact data and payment information as well as to collect electronic services and send access data and Discover purchase receipts. At no time María de Marcos has access to the bank details (credit card) provided. GumRoad Inc. is located in the United States of America. You can check their privacy policy here.

  • PayPal: used to process and collect payments from customers outside of Spain. At no time María de Marcos has access to the bank details (credit card) provided. Service provided by PayPal (Europe) S.a.r.l. et Cie, S.C.A., which is located in the European Economic Area. You can check their privacy policy here.

  • Google Analytics: used to compile statistics on the traffic and volume of visits to the web. Service provided by Google LLC, located in the United States of America. It has a security agreement called Privacy Shield, in accordance with the requirements of the European Committee for Data Protection that can be consulted here. You can check their privacy policy here.

  • Spanish Tax Agency Service: used to submit invoices and quarterly statements, necessary for the responsible to comply with their tax obligations in their country of residence. Service in charge of the Spanish Tax Agency, located in Spain. You can check their privacy policy here.

Policies related to the newsletter

These policies shall be understood at all times as a complementary part of the terms and conditions set out on the website, both of which are of equal application at the time of a dispute. The privacy and intellectual property policy applied will be the same as stated in the terms and conditions of the website.

It will be understood as a "newsletter" to the digital bulletin that the person in charge performs on a regular basis and that it sends to its subscribers through an external email service provider, to which the user has subscribed voluntarily.

The responsible party is not obliged to send the newsletter in defined periods of time, so it is totally free to do so when it deems appropriate. The user may at any time exercise their rights of access, rectification, cancellation or opposition by following the instructions found in the footer of the newsletter.

The user should not share their content with third parties, as this would violate the copyright of the person responsible. The only possible distribution channel is the one managed and / or authorized by the person in charge.

The person in charge will not be responsible for the content of third parties exposed in the newsletter, any controversy that may arise should be dealt directly with the person or company of which mention is made.

All the material that is exposed in the newsletter is protected by copyright in favor of the person in charge, and in the case of belonging to third parties, it will be understood that the person in charge has the proper authorization to use it as agreed with the author.

Social networks

Presence in networks: in order to inform about their professional activity and publicize their services, the person responsible uses professional accounts in these social networks of the Internet: LinkedIn, Instagram, Facebook, YouTube, Twitter.

Purpose and legitimacy: the treatment that the responsible person carries out with the data within each of these networks is, at most, the one allowed by the social network to the corporate profiles. As long as the law does not prohibit it, you can inform your followers by any means that the social network allows about your activities, services, products and promotions, as well as providing personalized customer service.

Extraction of data: in no case the person in charge will extract data from social networks, unless the user's consent is expressly and expressly obtained for it.

Rights: when, due to the very nature of social networks, the effective exercise of the data protection rights of the follower is subject to the modification of the personal profile of the follower, the person in charge can not provide advice or help.

Legitimation for the treatment of your data

The legal basis for the treatment of your data is: consent.

To contact or make comments on this website, consent is required with this privacy policy.

The prospective or commercial offer of products and services is based on the consent that is requested. In no case will the withdrawal of such consent condition the execution of the subscription contract.

Duration of treatment, preservation and communication of data

In the case of personal data provided for billing and purchase of products or services, they will be kept for the legally applicable time.

In the case of personal data provided for electronic commercial bulletins and comments on the blog, it will be for the time that the data owner wishes to remain on the subscription list, so you can unsubscribe at the time you wish. , automatically as indicated in each newsletter, or by writing to maria@mariademarcos.com

Deletion of the data: will be suppressed with adequate security measures to guarantee the pseudonymization of the data or the total destruction of the same.

Communication of the data: The data will not be communicated to third parties, except legal obligation.

Secrecy and data security

https://www.mariademarcos.com is committed to the use and treatment of the personal data included by users, respecting their confidentiality and using such data in accordance with its purpose, as well as to comply with our obligation to save it and adopt all measures to avoid alteration, loss, unauthorized treatment or access, in accordance with the provisions of the current data protection regulations.

This website includes an SSL certificate.It is a security protocol that makes your data travel in an integral and secure way, that is, the transmission of data between a server and web user, is fully encrypted.

https://www.mariademarcos.com, can not guarantee the absolute inexpugnability of the Internet network and therefore the violation of data through fraudulent access to it by third parties.

With respect to the confidentiality of the processing, María de Marcos will ensure that any person who is authorized by María de Marcos to process the client's data (including its staff, collaborators and providers), will be under the appropriate obligation of confidentiality (be it a contractual or legal duty).

When a security incident occurs, upon realization, María de Marcos,  shall notify the Client without undue delay and shall provide timely information related to the Security Incident as soon as it is known or when the Client reasonably requests it.

Data accuracy and veracity

As a user, you are solely responsible for the accuracy and correctness of the data you send to https://www.mariademarcos.com, exonerating María de Marcos, of any responsibility in this regard.

Users guarantee and respond, in any case, towards the accuracy, validity and authenticity of the personal data provided, and commit to keep it properly updated. The user agrees to provide complete and correct information in the contact or subscription form.

Acceptance and consent

The user declares to have been informed of the conditions on protection of personal data, accepting and consenting to the treatment of it by María de Marcos in the manner and for the purposes indicated in this Privacy Policy.

Revocability

The consent given, both for the treatment and for the transfer of data from the interested parties, is revocable at any time by notifying María de Marcos in the terms established in this Policy for the exercise of ARCOrights. This revocation will not be retroactive in any case.

Rights that assist the user

  • Right to withdraw consent at any time.

  • Right of access, rectification, portability and deletion of your data and the limitation or opposition to your treatment.

  • Right to file a claim with the control authority (agpd.es) if it considers that the treatment does not comply with current regulations.

  • Models, forms and more information about your rights: Official website of the Spanish Agency for Data Protection.

At all times you can communicate with me and exercise your rights through email to: maria@mariademarcos.com

Changes in the Privacy Policy

María de Marcos reserves the right to modify this policy to adapt it to new legislation or jurisprudence, as well as industry practices. In these cases, María de Marcos will announce on this page the changes introduced with reasonable notice before its implementation.

Commercial post office

According to the LSSICE, https://www.mariademarcos.com does not practice SPAM, so it does not send commercial mail via the internet that has not been previously requested or authorized by the user. Consequently, in each of the forms available on the web, the user has the possibility of giving his/her express consent to receive the newsletter, regardless of the commercial information promptly requested.

In accordance with the provisions of Law 34/2002 on Services of the Information Society and Electronic Commerce,  https://www.mariademarcos.com commits to not sending communications of a commercial nature without properly identifying it.

This privacy policy has been updated for the last time on 22-05-2019.