Legal Information

Under EU Regulation 2016/679 of the European Parliament and of the Council, 27 April 2016, regarding the protection of natural persons in terms of personal data processing and the free circulation of this data (hereinafter, the “GDPR”), as well as under Organic Law 3/2018, 5 December, on Personal Data Protection and the Digital Rights Guarantee (hereinafter, the “LOPD-GDD”), below you can access detailed information about how your personal data is processed.

ALLIANZ, COMPAÑÍA DE SEGUROS Y REASEGUROS, S.A. (hereinafter, “ALLIANZ” or the “Company”), with registered address at C/ Ramírez de Arellano, 35, 28043 Madrid, Corporate Tax ID number A28007748 and email address info@clientes.allianz.es.

The DPO is the Data Controller responsible for protecting the fundamental right to personal data protection at ALLIANZ, as well as the Company supervising compliance with these regulations. You can contact the DPO:

• Via email: lopd@allianz.es
  

or 

• By post or in person at C/ Tarragona, 109, 08014 Barcelona.

• Identification data, such as your full name, ID number identification codes or keys and your date of birth.
• Data relating to your personal characteristics (for example, age, gender, marital status, nationality, etc.) as well as data relating to your social and family or socio-demographic circumstances (for example, characteristics of your home, technical specifications of your vehicle, number of inhabitants in your home, postal address, education and occupation or other socio-demographic data).
• Contact data, such as postal or email addresses and contact telephone numbers.
• Economic and financial data, such as your bank account number, about non-compliance, if applicable, with monetary obligations registered in credit solvency files or your contributions to a pension plan.
• Commercial and transactional information about the insurance or pension plans that you have contracted with Allianz, such as the history of products and services contracted or information about declared claims.
• Data about the insured risk.
• Data related to your health, such as those collected through the health questionnaires required to contract certain insurance policies. 

ALLIANZ may process your personal data for the following purposes: 

1. Respond to your contact request and contact you by telephone, email, post or via the channel through which you contacted Allianz or have instructed it to do so to offer you general information about the product or service in which you have expressed an interest and/or to answer any questions you may wish to ask.
   
   - Legal basis for processing: Application of pre-contractual measures or execution of the contractual relationship between the parties (in a broad sense), under the terms provided for in article 6.1.b) of the GDPR. The processing is strictly necessary to comply with what is requested by the user.
   - Data category: identification and contact data.
   
   
2. Carrying out assessments, selection, verification and pricing of risks to calculate the premium of your insurance policy. This process helps you to make fair decisions about your insurance premium. The lower, the more favourable the data obtained to calculate it and the higher, the less favourable the data. This process may be carried out through automated decision systems, including profiling, and applying statistical/actuarial techniques that use an algorithm to determine your risk profile. Please note that you have the right to have a human being intervene in this automated process to evaluate your situation, as well as to express your point of view and challenge the decision. Allianz periodically checks the methods it uses to calculate the insurance premium it offers to policyholders to ensure that they are fair and proportional. Additionally, if you take out motor vehicle insurance, to calculate the premium of your insurance policy, Allianz may consult BASE SEVEN, a database owned by Instituto de Investigación Sobre Vehiculos, S.A. (hereinafter, “CENTRO ZARAGOZA”) and which contains the main technical specifications of each vehicle marketed in the Spanish market as well as the CARFAX file, a database owned by Carfax Europe GmbH that contains information about the vehicle to be insured: administrative and/or financial status, irregularities in mileage, number of previous owners, maintenance and inspection history, import information and theft. 
   
   - Legal basis for processing: compliance with a legal obligation, established in Law 50/1980, 8 October, on insurance agreements, which requires insurance companies to obtain the information required to assess the risk and determine the premium. Profile creation and the use of automated decision systems for the purposes indicated above, as well as querying BASE SEVEN and the CARFAX file, are protected by Allianz's legitimate interest in making these assessments and calculations more quickly and efficiently within the framework of its product and service contracting processes, based on market criteria and the user's profile and interests.
   - Data category: identification and contact data, data related to your personal, social and family characteristics, commercial and transactional information and economic and financial data.
   
   
3.  Contracting, maintenance, development and control of the contracted insurance, including processing claims and sending informative communications related to the insurance agreement.
   
   - Legal basis for processing: Application of pre-contractual measures or execution of the contractual relationship between the parties, under article 6.1.b) of the GDPR and about data related to health, the processing permitted within Law 20/2015 regarding insurance and reinsurance entity organisation, supervision and solvency, under article 9.2 h) of the GDPR and under additional provision seventeen of the LOPD-GDD. Please note that if all the data requested is not provided, the insurance agreement cannot be signed.
   - Data category: identification and contact data, data related to personal characteristics and/or social and family circumstances, commercial and transactional information, economic data, risk analyses, as well as data related to your health (if applicable).
   
   
4.  Fraud prevention in contracting insurance and throughout its validity, by querying fraud prevention files such as the following UNESPA files: (i) total loss, fire and theft; (ii) automobile insurance history; and (iii) fraud prevention in insurance in various fields; as well as the transfer of your accident data related to your insurance or your declared claims to the owners of these files, such as UNESPA, as data controller for these files. Also, and for the same purpose, Allianz may consult the CARFAX file (to insure a motor vehicle) and the land registry (if insuring real estate).
   
   - Legal basis for processing: compliance with a legal obligation, established in articles 99.7 and 100 of Law 20/2015, 14 July, on insurance and reinsurance entity organisation, supervision and solvency, under article 6.1 c) of the GDPR.
   - Data category: identification data, commercial and transactional information.
   
   
5. Prevent late payments and assess policyholders' financial solvency by querying credit solvency files, such as that of the National Credit Financial Establishment Association, known as the ASNEF-EQUIFAX File.
   
   - Legal basis for processing: Allianz's legitimate interest, under article 20.1 of the LOPD-GDD.
   - Data category: identification data and economic and financial data.
   
   
6. Carry out the corresponding checks under current legislation on money laundering and terrorist financing prevention.
   
   - Legal basis for processing: compliance with a legal obligation, Law 10/2010 on Money Laundering Prevention, under article 6.1 c) of the GDPR.
   - Type of data: identifying data, data related to personal characteristics and/or social and family circumstances, commercial and transactional information, economic data, risk analyses.
   
   
7. Profile creation for actuarial and market analysis purposes. 
   
   - Legal basis for processing: Legitimate interest of Allianz and insurance entities in general (improve actuarial functions and minimise financial risk within the company, as well as improve the market analysis procedures carried out), under article 6.1 f) of the GDPR.
   - Data category: identification data and commercial and transactional information, related to personal characteristics, as well as socio-demographic data and data on the insured risk.
   
   
8.  Direct marketing by creating a commercial profile to determine what your preferences and interests are and, therefore, the products and services that may best fit your needs, that will be used to send you commercial communications. No automated individual decisions that have legal effects on you or that significantly affect you will be made based on this commercial profile.
   
   - Legal basis for processing: legitimate interest (improving the results of commercial communications and offering commercial communications that are more relevant to you), under article 6.1 f) of the GDPR. When a legitimate interest is not applicable, your consent will be requested, under articles 6.1 a) and 7 of the GDPR. 
   - Data category: Identification data, related to personal characteristics, as well as socio-demographic data and commercial and transactional information (history of contracted products), risk profile.
   
   
9. Advertising and commercial prospecting purposes by sending commercial communications about Allianz's own products and/or services as well as those of other Allianz Group entities, similar or not to those contracted or requested by you through the channels enabled for this purpose, as long as you did not oppose receiving such communications at the time of data collection or after receiving any subsequent commercial communication and, when this is mandatory, as long as you have provided your consent. Please note that these internal commercial communications may be personalised after creating the commercial profile indicated in section 8 above. 
   
   - Legal basis for processing: Article 21.2 of Law 34/2002, 11 July, on information society services and electronic commerce (LSSI) about commercial communications sent through digital channels about products and services similar to those contracted and Allianz's legitimate interest (promote products and services) about commercial communications about products and services similar to those contracted sent channels other than digital, under article 6.1 f) of the GDPR. When article 21.2 of the LSSI or legitimate interest is not applicable (sending communications about products and services other than those contracted or from other Allianz Group entities), your consent will be requested, under article 6.1 a) and 7 of the GDPR. 
   - Data category: identification, socio-demographic and contact data.
   
   
10.  Avoid sending commercial communications when you have opposed it.
    
    - Legal basis for processing: legitimate interest, under article 23.1 of the LOPD-GDD.
    - Data category: Identification and contact data.
    
    
11. . Improve your experience and satisfaction as a customer (through statistics, surveys, market studies, etc. to optimise business processes. For example, to make contracting, claim management and customer service and consumer query, etc. processes more efficient). 
    
    - Legal basis for processing: Allianz's legitimate interest (understand and analyse business development, as well as improve products, services and internal processes resulting in an optimised customer experience and, therefore, a higher rate of customers recruitment, retention and loyalty), under article 6.1 f) of the GDPR.
    - Data category: identification and contact data as well as transactional information about the products and services contracted.
    
    
12. Anonymisation of the data processed by the interested parties through anonymisation techniques that guarantee that users cannot be re-identified, and that this data is not considered personal data once the anonymisation process is completed.
    
    - Legal basis for processing: Allianz's legitimate interest (improving products, services and internal processes), under article 6.1 f) of the GDPR. 
    - Data category: identification and contact data, as well as transactional information about the products and services contracted. 
    
    
13. Management of building access control and other functions related to surveillance and security.
    
    - Legal basis for processing: Allianz's legitimate interest in preserving the security of the assets, people and facilities under its management, under article 22.1 of the LOPD-GDD.
    - Data category: identification data.
    
    
14. Corporate restructuring operations, sale and purchase of a branch of activity or transfer of insured customer portfolios.
    
    - Legal basis for processing: Allianz's legitimate interest in designing, evaluating and carrying out this type of transaction, under articles 21 of the LOPD-GDD and 89 of Law 20/2015, 14 July, on Insurance and Reinsurance Entity Organisation, Supervision and Solvency. 
    - Data category: identification and contact data, data related to personal characteristics and/or social and family circumstances, commercial and transactional information, economic data, risk analyses.
    
    
15. Carrying out prevention exercises and analysing vulnerabilities on information cyber security. As part of these exercises, Allianz and its suppliers may need to access your personal data or the systems that host it.
    - Legal basis for processing: Allianz's legitimate interest in effectively complying with its privacy obligations and preserving the security of its business activity, intangible assets and reputation.
    - Data category: identification data, identification and contact data, data related to personal characteristics and/or social and family circumstances, commercial and transactional information, economic data, risk analyses.
    
    
16. Contracting, maintenance, development and control of the contracted pension plan, including affiliation to a pension fund or sending informative communications related to the contracted pension plan.
    - Legal basis for processing: Application of pre-contractual measures or execution of the contractual relationship between the parties under the terms provided for in article 6.1.b) of the GDPR. Please note that if all the requested information is not provided, the pension plan cannot be contracted.
    - Data category: identification and contact data, data related to personal characteristics and/or social and family circumstances, commercial and transactional information, economic data, risk analyses. 
    
    
17. Carrying out the (i) requirements and needs test to determine your requirements and needs before contracting an insurance product, as well as the (ii) suitability test to determine your knowledge and experience in the investment field for the type of product you are interested in, when it is an insurance-based investment product.
    
    - Legal basis for processing: compliance with a legal obligation, established in articles 175 and 181, respectively, of Royal Decree 3/2020, 4 February, on urgent measures by which several European Union directives in the field of public procurement in certain sectors are incorporated into the applicable provisions stated in the Spanish legal system, under article 6.1 c) of the GDPR. 
    - Data category: identification and contact data, data related to personal characteristics and/or social circumstances or demographic data and economic data.

Users' personal data will be retained for the period necessary to fulfill the purposes indicated above for which it was collected. Specifically, the data of the insured or participants will be retained for the duration of the contractual relationship. Once the contractual relationship has ended, ALLIANZ will keep your personal data blocked during the applicable legal prescription periods, available exclusively to judges and courts and competent public administrations. Once this period has transpired, it will be permanently deleted. The data relating to insurance applications that have not been finally formalised will be retained for 10 days, counting from the date on which the validity of the quote ends (generally, they are valid for three months). Subsequently, the data will be retained duly blocked during the applicable legal prescription periods, available exclusively to judges and courts and competent public administrations. Once this period has transpired, it will be permanently deleted. Data relating to potential customers who have requested to be contacted by the company and have provided their consent will be retained as long as the user does not withdraw the consent granted. The data will subsequently be retained duly blocked for the legally applicable statute of limitation periods. The data relating to potential customers who have provided their consent to send commercial communications will be retained as long as the user does not withdraw the consent granted. The data will subsequently be retained duly blocked for the legally applicable statute of limitation periods. The data processed to comply with the obligations established in the regulations for preventing money laundering and financing terrorism will be retained for ten (10) years from the end of the contractual relationship with the user. Under article 25 of Law 10/2010, 28 April, prevention of money laundering and financing terrorism, from the fifth year counting from this date, access to said information will be restricted to internal control bodies of the reporting party and, if applicable, those responsible for its legal defense. The data processed to manage access control to the building and other functions related to surveillance and security will be deleted within a maximum period of one (1) month from its collection, except when it must be retained to prove the commission of acts that threaten the integrity of people, property or facilities.

1. To the competent public administrations, to courts and tribunals or to the state security forces and bodies. Your data may also be communicated to claimants, investigators, detectives, lawyers, experts, court attorneys and notaries within the framework of filing, investigation or defence against potential claims. 
   
   - Legal basis for processing: Compliance with legal obligations arising from accounting, tax, consumer regulations, etc. under article 6.1.c) of the GDPR or based on ALLIANZ's legitimate interest, under article 6.1.f) of the GDPR, in defending itself against potential judicial or extrajudicial claims that may take place or to take action against third parties in defence of its interests.
   - Data category: data of an identifying nature, contact data, related to your personal characteristics and social and family circumstances, as well as commercial and transactional information. 
   
   
2. To other companies within the ALLIANZ GROUP (can be consulted at www.allianz.es) for internal administrative purposes.  
   
   - Legal basis for processing: Allianz's legitimate interest under article 6.1 f) of the GDPR, in correctly managing its material and human resources.
   - Data category: identification data, contact data, related to your personal characteristics as well as commercial and transactional information.
   
   
3.  To other ALLIANZ GROUP companies for advertising and sales prospecting purposes to inform you, by any channel, about opportunities to contract insurance and financial services related to them and that may be of interest to you. 
   
   - Legal basis for processing: the user's consent, under article 6.1 a) and 7 of the GDPR. 
   - Data category: identification data, contact data, related to your personal characteristics as well as commercial and transactional information.
   
   
4.  To third parties in the insurance sector for the execution of reinsurance or coinsurance agreements.
   
   - Legal basis for processing: Allianz's legitimate interest in entering into insurance and reinsurance agreements under article 99.4 of Law 20/2015, 14 July, on insurance and reinsurance entity organisation, supervision and solvency about article 77 of Law 50/1980, 8 October, on insurance agreements, under article 6.1 f) of the GDPR.
   - Data category: identification and contact data related to your personal characteristics, as well as commercial and transactional information and risk profile. 
   
   
5. To entities or organisations that manage common files for claim settlement, actuarial statistical collaboration and insurance technical studies, as well as fraud prevention. In particular for fraud prevention, the following data will be communicated to the following files for which the Spanish Union of Insurance and Reinsurance Entities (UNESPA) is the Data Controller and the entity Information Technologies and Networks for Insurance Entities, S.A. is the Data Processor. (TIREA) in its capacity as a Data Processor:
   
   - The claim data related to your insurance or the data of your claims is sent to several branches of the UNESPA Insurance Fraud Prevention File. The purpose of the file is fraud prevention and detection, either by warning Allianz once the policy is issued or by detecting fraud already committed in the declared claims. To exercise data protection rights, contact TIREA, Ctra. Las Rozas a El Escorial Km 0,3 Las Rozas 28231 Madrid. You can find the rest of the data protection information on the websites of UNESPA (www.unespa.es) and TIREA (www.tirea.es).
   
   - In the case of contracting automobile or motorcycle insurance, the historical data of the number of accidents related to your insurance to the Total Loss, Fire and Theft File. Its purpose is to automatically identify any anomaly or fraud risk situations, to cooperate with the State Security Forces and Bodies by facilitating the investigation of possible crimes of theft and fraud, among others, related to insured motor vehicles and to cooperate with CENTRO ZARAGOZA, the State Security Forces and Corps, the Traffic General Directorate and the affected insurance entity in identifying and locating the stolen and indemnified vehicles. To exercise your data protection rights, you can contact TIREA, Ctra. Las Rozas a El Escorial Km 0,3 Las Rozas 28231 Madrid. You can find the rest of the data protection information on the websites of UNESPA (www.unespa.es) and TIREA (www.tirea.es). 
   
   - If contracting automobile or motorcycle insurance, the historical data on the number of claims will be added to the Automobile Insurance Historical File for pricing and risk selection. Its purpose at the time of signing the agreement is to provide rigorous and verified information on accident data by sharing the information obtained through policies and accidents over the last five years, under the terms expressed in the Civil Liability and Insurance Act. To exercise your data protection rights, you can contact TIREA, Ctra. Las Rozas a El Escorial Km 0,3 Las Rozas 28231 Madrid. You can find the rest of the data protection information on the websites of UNESPA (www.unespa.es) and TIREA (www.tirea.es).
   
   - Legal basis for processing: the legitimate interest of Allianz and third entities belonging to the insurance sector in tools for pricing, risk management and insurance technical studies, including establishing common files whose purpose is to prevent fraud in insurance, under articles 99.7 and 100 of Law 20/2015, 14 July, on insurance and reinsurance entity organisation, supervision and solvency.
   - Data categories: identifying data and commercial and transactional information about your claims. 
   
   
   If you have contracted automobile or motorcycle insurance, your vehicle data may be communicated to the Insured Vehicle Information File (FIVA) managed by the Insurance Compensation Consortium, to provide the information required so that those injured in a motorcycle traffic accident in which they are involved may know, as soon as possible, that Allianz is the entity that covers the civil liability of their vehicle and thus facilitate the control of the obligation to subscribe and maintain a valid insurance agreement that covers the mandatory subscription. To exercise your data protection rights, contact the Insurance Compensation Consortium by post: Pº de la Castellana, 32, 28046 Madrid or by email: dpo@consorseguros.es. You can find the rest of the data protection information on the Insurance Compensation Consortium website (www.consorseguros.es). 
   
   - Legal basis for processing: compliance with the legal obligations established in chapter IV of Royal Decree 1507/2008, 12 September, which approves the Regulation of compulsory civil liability insurance in the circulation of motor vehicles, under article 6.1 c) of the GDPR.
   - Data categories: identifying data relating to your vehicle
   
   
6. To third-party companies stipulated in the policy with which collaboration agreements are reached to provide services and that will process the data as data controllers, such as:
   1. Workshops.
   2. Medical centres and hospitals. Internal
   3. Dental centres.
   4. Rehabilitation centres.
   5. Collective accident managers.
   6. Rehabilitation managers.
   7. Medical assessors.
   8. Salvage companies.
   9. Loss adjusters.
   10. Reconstruction services.
   11. Medical transport companies.
   12. If a Health policy is contracted with DKV Servicios, S.A., the medical network and management services will be outsourced to DKV Servicios, S.A. 
   
   - Legal basis for processing: the contractual relationship between the parties, under article 6.1.b) of the GDPR.
   - Type of data: identification and contact data relating to your personal characteristics and social and family circumstances, as well as commercial and transactional information and data on the insured risk.
   
   
7. If you have contracted life insurance with death coverage or accident insurance that covers death contingency of the insured, whether individual or group policies, to the Registry of insurance agreements for death coverage for which the Registry and Notary General Directorate, dependent on the Ministry of Justice, is the Data Controller, to provide the information required so that potential users can determine whether a deceased person had death contracted insurance with Allianz to allow potential beneficiaries to check whether they appear as beneficiaries and, if applicable, claim the benefit arising from the agreement.
   
   - Legal basis for processing: compliance with the legal obligations established in Law 20/2005, 14 November, on the creation of the Insurance Agreement Registry for death coverage and its developmental royal decree, under article 6.1 c) of the GDPR. 
   - Data category: identification data of the insured.
   
   

 If you have contracted a pension plan with Allianz, to the managing entity (when this is not Allianz) and depositary of the pension fund to which your pension plan is assigned. 

- Legal basis for processing: formalising the contractual relationship between the parties, under article 6.1.b) of the GDPR and under the legal obligations established in Royal Legislative Decree 1/2002, 29 November, by which the Consolidated Text of the Law on the Regulation of Pension Plans and Funds and its implementing regulations are approved, under article 6.1 c) of the GDPR.
- Data category: identification and contact data of the participant and/or beneficiary, as well as financial and economic data. 


All of the above, including suppliers that Allianz may engage to provide services, intermediaries and participants in the insurance distribution chain, such as its insurance mediation agents, will process the personal data solely and exclusively to provide services.

Allianz will make every effort to ensure that suppliers and participants in the insurance distribution chain located outside of the European Economic Area are in jurisdictions that have received an adequacy decision from the European Commission. If an adequacy decision is not available for the destination country, Allianz will implement appropriate safeguards, including the use of standard data protection conditions adopted by the European Commission, to ensure that you have enforceable rights and effective legal remedies.

In cases where the entities involved belong to the ALLIANZ GROUP, the Binding Corporate Rules (BCRs) approved by the Bavarian Data Protection Authority (BayLDA) will apply. These BCRs are available and can be consulted on the website: https://www.allianz.com/de or in the document: Allianz Privacy Standard. Specifically, and within the framework of the IT services that Allianz Technology S.L. provides to Allianz, international transfers may be made to entities of the ALLIANZ GROUP technological division located in India.

For further information on the adequate guarantees adopted for making international transfers, please contact Allianz's DPO at the address provided for this purpose hereinabove. 

1. What is the origin of your data?
   
   Normally, Allianz obtains the data from the users or from the insurance distributors who mediate the contracting that is subsequently processed within the framework of its activity. In some cases, however, it may be obtained from the following sources:
   1. From your insurance agent (if you have one).
   2. From the policyholder, if you are a beneficiary of the policy or injured in an accident.
   3. From those responsible for the fraud prevention files indicated in section 4 of the section 'For what purpose and on what basis can Allianz process your data?' of this Privacy Policy, as well as the credit information files indicated in section 5 of the same section.
   4. From public or private sources, such as official gazettes, bulletin boards, business information files, motor vehicle information files, public records or media to comply with obligations regarding money laundering, fraud prevention and/or calculating your insurance premium.
   5. From your insurance company, if you are involved in an accident with one of Allianz's policyholders.
   6. From third-party companies providing the services defined in the policy if an incident is declared.  
   
   What are your privacy rights? 
   
   
2. Right to access: Any person has the right to obtain confirmation as to whether the Company is processing personal data that concerns them or not and, if applicable, obtain access to that data and certain additional information.
   
   
3. Right to modify: you may request changes to your data if it is inaccurate, outdated or incomplete.
   
   
4. Right of limitation: In certain circumstances, users may request limitations on processing their data, in which case it will only be retained by the Company for exercising or defending claims. These cases are:
   - When the accuracy of the data is disputed, while the Data Controller verifies its accuracy.
   - When the right to object to data processing has been exercised while verifying whether the Data Controller's legitimate reasons prevail over those of the user.
   - When the data processing is illegal and the user opposes the deletion of their data.
   - When the controller no longer needs your personal data for the processing, but the user needs it to formulate, exercise or defend claims.
   
   
5. Right to object: you may oppose the processing at any time when it is the subject of the company's legitimate interest. In this case, the Data Controller will stop processing your personal data, unless there are reasons that legitimise this processing taking precedence over the customers' interests, rights and freedoms.
   
   
6. Right to object to receiving commercial communications: right to object at any time to receiving commercial communications about Allianz products and services through the channels enabled for this purpose by sending an email to lopd@allianz.es or through the links included in all commercial communications you receive. Please be advised of the existence of advertising exclusion systems to which you may register if you do not wish to receive general commercial communications. You can obtain further information about the advertising exclusion systems that currently exist here: https://www.aepd.es/areas/publicidad/index.html
   
   
   
7. Right to portability: users may request the right to portability of the data they have provided to the Company. You may obtain a copy of the personal data to transfer it to another Data Controller. This right may only be exercised when the processing is based on an agreement or on your consent and the processing is automated. 
   
   
8. Right to erasure: you have the right to have your personal data erased by the Data Controller if any of the circumstances listed in Article 17 of the GDPR apply. However, your personal data may remain available to public authorities, and courts and/or may be processed to address potential liabilities arising from the processing during its limitation period.

To exercise the aforementioned rights, send a duly completed application accompanied by an identification document to lopd@allianz.es lopd@allianz.es or to the attention of the DPO at C/ Tarragona, 109, Barcelona (08014).

The user may at any time withdraw consent for the specific purposes for which consent has been obtained, without affecting the legality of the processing based on consent prior to the withdrawal.

In any case, the user may file a claim with the Spanish Data Protection Agency (https://www.aepd.es), C/ Jorge Juan, 6 (28001) Madrid, telephone 900 293 183.

Last update 22 April 2022