Privacy and personal
In accordance with the provisions of Law 29/2021 of 28 October on the classification of personal data (LQPD) and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR), with regard to the processing activities that are subject to the foregoing and in accordance with Article 3.2 of the aforementioned Regulation, all of our customers are hereby informed that the personal data collected will be entered into and processed by databases belonging to CA VIDA ASSEGURANCES S.A, for the sole purpose of formalising and managing the insurance relationship, fulfilling the contract or preliminary contract and ensuring compliance with the corresponding legal obligations.
– We will collect your data in accordance with the principle of data minimisation. In other words, we will only collect the data that are necessary and essential, without going beyond the bounds of our purposes.
– We will only collect and process your data for the purposes set out in our policy, and we will inform you of who the recipients are.
– We will only collect and process the data required to ensure that your request is processed correctly or to personalise the services that you request from us.
– We undertake to adopt the necessary measures to ensure the confidentiality of your data and prevent their disclosure to unauthorised third parties.
– During the transfer of data to authorised third parties, we will adopt all the necessary measures to make sure the transfer is secure.
– We will inform you of your rights of access, rectification and objection in accordance with Law 29/2021 of 28 October.
1. RESPONSABLE DEL TRACTAMENT
– The controller of our customers’ data is CA VIDA ASSEGURANCES, S.A.
– Tax Registration Number (NRT): A-714091-U
– Registered address: Avinguda Fiter i Rossell, 22, AD 700 Escaldes Engordany
– Telephone: +376 889119
– E-mail address: info@creandvida.ad
– Data Protection Officer’s contact details: dpo@creandvida.ad
2. TIPOLOGIA DE DADES
CA VIDA may collect and process personal details that you have provided directly and voluntarily, such as your name, address, e-mail address, telephone number, date of birth and ID card/passport number.
We will not ask for or process sensitive data, such as data related to race, ethnicity, political opinions, religious or philosophical beliefs or sexual orientation. We only process health-related data when it is strictly necessary in order to manage the contracted service.
3. FINALITAT DE TRACTAMENT I BASE DE LEGITIMACIÓ
– When the user fills out a form or contracts our services.
– By other companies in the group or subsidiaries, when it is necessary to do so in order to provide a service or within the framework of the commercial relationship with the user.
– Through the use of cookies or similar systems (please consult our Cookie Policy).
The provision of any personal data via the various forms and e-mail addresses provided on this website implies that you accept and consent to the processing of your data in accordance with the terms and conditions specified in this Privacy Policy.
As such, the consent you grant (or the other legitimate bases for processing, such as performance of the contract, our legitimate interest and compliance with legal requirements) will serve the following purposes, which have their own respective legitimate bases. Moreover, your data will not be used for any purposes other than those for which they were collected.
The personal data provided by the data subjects will be used solely for the following purposes:
– To manage, fulfil and perform the contractual relationship with CA VIDA. We will use your data to provide the contracted services, manage the invoicing process and comply with the legal obligations arising from the provision of services.
– To send commercial communications via electronic channels (e-mail/text message), post or telephone, in order to inform you of services similar to those you have contracted with CA VIDA.
– To deal with any queries or requests for information you may send to CA VIDA via the website or any other communication channel.
– To maintain the commercial relationship with suppliers, partners, self-employed businesspeople and freelancers, for the purposes of establishing a professional relationship with CA VIDA.
– Queries: to deal with, respond to and follow up any queries and requests for information submitted by the data subjects and/or provide information requested by the user.
– Communicating changes to the Privacy Policy: to inform you of or announce any relevant changes to the Data Protection and Privacy Policy, Legal Notice or Cookie Policy.
– Statistics: to carry out market surveys and generate statistics regarding our products and services (under no circumstances will automated decisions be made).
The company hereby informs you that your personal data will not be processed for any purpose other than those specified in this section, except in cases where there is a legal obligation or judicial summons.
Your personal data will not be subject to automated decision-making that produces legal effects for the data subject.
Legitimate basis for the processing of your data
The legal basis for the processing of your personal data consists of the user’s free and legitimate acceptance of the legal relationship with the company.
Below are details of the legitimate basis for the processing of your personal data, with reference to each of the purposes specified above:
– To manage, fulfil and perform the contractual relationship with CA VIDA: The legitimate basis for the processing of personal data in this case is the need to perform a contract to which the data subject is a party, or in order to apply pre-contractual measures at the data subject’s request, in accordance with the provisions of sections a) and b) of Article 6.1 of the LQPD and the GDPR.
– To send commercial communications via electronic channels (e-mail/text message), post or telephone, in order to inform you of services similar to those you have contracted with CA VIDA. The legal basis in this case is the legitimate interest of the controller, in accordance with the provisions of section f) of Article 6.1 of the LQPD and the GDPR.
– To deal with any queries or requests for information you may send to CA VIDA via the website or any other communication channel. The processing is necessary in order to perform a contract to which the data subject is a party, or in order to apply pre-contractual measures at the data subject’s request, in accordance with the provisions of section b) of Article 6.1 of the LQPD and the GDPR.
– To maintain the commercial relationship with suppliers, partners, self-employed businesspeople and freelancers, for the purposes of establishing a professional relationship with CA VIDA. The processing is necessary in order to perform the contract or agreement that has been reached by the two parties, in accordance with the provisions of section b) of Article 6.1 of the LQPD and the GDPR.
– Queries. The data subject has consented to the processing of their personal data, in accordance with the provisions of section a) of Article 6.1 of the LQPD and the GDPR.
– Communicating changes to the Privacy Policy. The legitimate basis for the processing of personal data in this case is the convenience of informing the data subjects of any changes to the company’s Privacy Policy, as well as their free acceptance of and consent to said processing, in accordance with the provisions of sections a) and b) of Article 6.1 of the LQPD and the GDPR.
– Statistics. The legitimate basis for the processing of data in order to carry out market surveys and generate statistics regarding our products and services (under no circumstances taking automated decisions that produce legal effects for the data subject) consists of the data subject’s free acceptance of and consent to said processing, in accordance with the provisions of section a) of Article 6.1 of the LQPD and the GDPR. We hereby inform you that you have the right to withdraw your consent to this processing at any time, without this affecting the lawfulness of processing based on consent before its withdrawal. If you wish to withdraw your consent, please consult the section titled “Rights of data subjects”.
4. CONSERVACIÓ DE LES DADES
The personal data provided will be stored by CA VIDA while there is a contractual and/or commercial relationship and as long as you do not exercise your right to erasure, object and/or restrict the processing of your personal data. On our side, we will also store your data for the maximum period permitted by the data protection legislation, including the limitation period for legal action, so that we can deal with any liabilities that may arise from the contractual relationship.
In this latter case, CA VIDA will keep the data secure and refrain from using them for any purpose, while they remain necessary for exercising or defending against any claims that may be made or while any kind of judicial, legal or contractual liabilities may arise from the processing of the data, so that the data can be recovered in order to deal with said liabilities.
5. INFORMACIÓ TRACTADA. QUINES CATEGORIES DE DADES PERSONALS TRACTEM?
We strive to ensure that we only collect the minimum amount of data necessary to fulfil the purposes specified in this Data Protection and Privacy Policy.
Our company may process the following categories of personal data:
– Identification data: first name and surname(s), ID card/passport number, country, etc.
– Health data: we may collect this data during the pre-contractual stage in order to assess the suitability of the product for the customer, and while managing the contracting process.
– Postal and/or e-mail addresses and telephone number.
– Economic and financial information: we may collect this data in order to manage the contracting process, issue invoices and collect payment for the service requested, and comply with the regulations on the prevention of money-laundering.
– Data related to the products purchased and services contracted.
– Identification codes or keys: we may collect this data if you have signed up as a user via the website or app.
– Academic and employment-related data: we may collect this data if you have decided to apply for a job or have sent us your CV, and in order to comply with regulations to prevent money-laundering.
– Website browsing data: for more information, please consult the section on cookies.
– The categories of data subjects whose personal data we process: a priori, we process the data of people who are interested in our company’s products and services and in entering into a contract or preliminary contract for such products and services. People who sign up to our jobs noticeboard or send us their CV are also considered data subjects.
– The data subject must ensure: that the personal data they have provided us with are truthful and that they inform the company of any changes to or errors in them. The data subject will be held liable for the truthfulness and accuracy of the data they provide us with at any given time.
If a data subject wishes to provide the personal data of a third party, they must first inform said party and obtain their consent, in accordance with our Data Protection and Privacy Policy. Consequently, if a user enters the personal data of a third party, they must declare and ensure that the third party has consented to the provision of their data and its subsequent processing by our company, and that they have previously informed the third party of the content of this Data Protection and Privacy Policy.
6. DADES PERSONALS QUE RECOPILEM DE FORMA AUTOMÀTICA
When the data subject visits our website, we collect certain information automatically, even if they do not end up purchasing a product or contracting a service. This information may include their IP address, the date and time at which they accessed our services, details regarding the hardware, software or browser the data subject uses, and the language chosen, among other details.
This information enables us to improve our services and the user experience of our website, identify potentially fraudulent use and attacks against the website’s security systems, and generate statistics regarding the use and effectiveness of our website. Unless we detect any fraudulent use or attacks against the website’s security systems, we do not store this information. Under no circumstances will automated decisions that produce legal effects for the user be taken on the basis of this information.
For more information, please consult the section on cookies.
7. TRAMESA DE COMUNICACIONS
8. LINKS A PÀGINES WEB DE TERCERS
Our website may contain links to websites belonging to third-party organisations and companies. As we cannot be responsible for how these organisations and companies protect their users’ privacy and personal data, we advise you to read the privacy policies of third-party websites carefully in order to learn how they use, process and protect the personal data they collect.
9. MITJANS DE COMUNICACIÓ SOCIAL
10. MENORS D' EDAT
The CA VIDA website is not intended for minors. In any case, we will not collect any personal data pertaining to minors under the age of 16 without the consent of their legal guardian.
11. COMUNICACIÓ DE DADES A TERCERS
12. EXERCICIS DE DRET EN MATÈRIA DE PROTECCIÓ DE DADES
| RIGHT | CONTENT | CUSTOMER SERVICE CHANNELS |
|---|---|---|
| Access | You can consult your personal data stored on the databases of CA VIDA. | dpo@creandvida.ad |
| Rectification | You can modify your personal data if they are inaccurate. | |
| Erasure | You can ask for your personal data to be deleted. | |
| Objection | You can ask for your personal data not to be processed. | |
| Restriction of processing | You can ask for the processing of your personal data to be restricted under the following circumstances: when you are contesting the accuracy of your data; when the processing is unlawful, but you oppose the erasure of your personal data; when CA VIDA no longer needs to process your personal data but you require the data in order to exercise or defend against a legal claim; or when you have objected to the processing of your personal data pursuant to the performance of a task carried out in the public interest or for the purpose of a legitimate interest, pending verification of whether the legitimate grounds for the processing override yours. | |
| Portability | You can receive, in electronic format, the personal data you have provided us with and share them with another organisation. | |
| The user must specify which right they wish to exercise and enclose a copy of their identification document (e.g. ID card, passport). If we need additional details in order to verify your identity, we will inform you accordingly. | ||
| If you do not believe that we have processed your personal data in accordance with the regulations, you can write to the Data Protection Officer at dpo@creandvida.ad. | ||
| If you have given your consent, you have the right to withdraw it at any time, without this affecting the lawfulness of processing based on consent before its withdrawal. Requests must be sent by e-mail to dpo@creandvida.ad or by post to our registered address at Avinguda Fiter i Rossell, 22, AD 700 Escaldes Engordany. | ||
13.MESURES I NIVELLS DE SEGURETAT
CA VIDA ha adoptat les mesures necessàries per mantenir el nivell de seguretat requerit, segons la naturalesa de les dades personaCA VIDA has adopted the necessary measures to maintain the required level of security, in accordance with the nature of the personal data being processed and the circumstances of the processing. The company’s aim is to prevent, as far as possible and always in accordance with the state of the art, the unauthorised access, modification, loss or processing of the data.
To this end, CA VIDA guarantees that it has implemented mechanisms to:
– Ensure the confidentiality, integrity and resilience of its processing systems and services.
– Restore availability and access to the personal data in a timely manner in the event of a physical or technical incident.
– Regularly test, assess and evaluate the effectiveness of the technical and organisational measures that have been put in place to ensure the security of the processing.
– Pseudonymise and encrypt the personal data, where applicable.
14. TRANSFERÈNCIES INTERNACIONALS
The data subject’s personal data may be transferred outside of Andorra. However, under all circumstances CA VIDA will ensure compliance with the stipulations of the LQPD in order to guarantee the security and lawfulness of the processing on the part of the recipient, whether by virtue of the fact that the recipient is located in a territory with data protection legislation equivalent to that of Andorra or because the recipient is bound by the standard contractual clauses of the European Commission.
15.COOKIES
16. CONFIDENCIALITAT I SECRET PROFESSIONAL
The data we collect from all private communications between CA VIDA and our customers will be processed under conditions of absolute confidentiality. To this end, we undertake to keep the personal data secret, to store them properly and to adopt all of the necessary measures to prevent their unauthorised access, modification, loss or processing, in accordance with the stipulations of the applicable data protection regulations.
The same conditions of confidentiality will be applied to any and all information that is exchanged between the parties, information that the parties agree to treat as confidential, and data that simply refers to the content of such information.
17. MODIFICACIONS
CA VIDA reserves the right to modify its Data Protection and Security Policy in order to adapt it to any changes in the legislation or jurisprudence, along with any changes that may arise from codes of conduct related to data protection or strategic corporate decisions. Any such modifications shall enter into force upon their publication on our website.