About

Residencies

Collaborate

Contact

Tickets

Privacy Policy

Introduction
When we need to obtain information from you, we will always ask you to provide it voluntarily and explicitly. The data collected through data collection forms on the website or through other means will be incorporated into Bitute’s data processing systems.
This entity will process the data confidentially and exclusively for the purpose of providing the requested services, with all the legal and security guarantees required by Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and by Law 34/2002 of July 11, on Information Society Services and Electronic Commerce.

Who is responsible for the processing of your data?
The person responsible is: Matias Campa Olivares
NIF/CIF: 60809286T
Address: Catalunya
Email: mcampaol@gmail.com

For what purpose do we process your personal data?
At Bitute, we process the information provided by the data subjects fairly, lawfully, and transparently, in compliance with EU Regulation 2016/679 of April 27 of the European Parliament and of the Council and Law 3/2018 of December 5 on Data Protection and Guarantee of Digital Rights.

If you are a CLIENT/PATIENT or USER:
If you are a client/patient or user, we will process the following categories of personal data:

  • Identification data (name, surname, ID…)

  • Contact data (email, WhatsApp…)

  • Banking data (account number, bank card…)

  • Financial data in case of requesting financing (payslip, documentation related to financial solvency…)

  • Clinical history data (health, image…)

  • Other data (provided by the data subject in open forms or communications)
    We process your data for the purpose of:

  • Managing the requested services, information, and/or products.

  • Performing treatments and medical follow-ups.

  • Sending communications of interest (if duly authorized by the data subject).

  • Complying with legal obligations applicable to the controller.

If you are an EMPLOYEE or JOB APPLICANT:
If you are an employee or applicant/candidate, we will process the following categories of personal data:

  • Identification data (name, surname, ID…)

  • Data included in the résumé (education, work experience, hobbies…)

  • Contact data (email, WhatsApp…)

  • Banking data (account number, account holder, SEPA mandate)

  • Image

  • Other data (provided by the data subject in open forms or communications)
    We process your data for the purpose of:

  • Managing rights and obligations related to the contractual relationship.

  • Selecting candidates.

  • Using, reproducing, or publishing image, name, and voice (if duly authorized by the data subject).

  • Complying with legal obligations applicable to companies.

If you are a SUPPLIER to our company:
If you are a supplier, we will process the following categories of personal data:

  • Identification data (name, surname, ID…)

  • Contact data (email, WhatsApp…)

  • Banking data (account number, billing…)

  • Other data (provided by the data subject in open forms or communications)
    We process your data for the purpose of:

  • Administrative, accounting, and tax management.

  • Monitoring and controlling the business relationship.

  • Complying with the company’s legal obligations.

Am I obliged to provide personal data?
Bitute will only request the data strictly necessary for the purpose for which it is collected; therefore, if it is not provided, the requested service cannot be delivered.

How long will we keep your data?
The personal data provided and obtained during the relationship between the data subject and Bitute will be kept for a maximum period of 5 years from the last expression of interest or as long as a legal provision obliges us to do so. In such cases, the data will be properly blocked and deleted when no longer necessary.

What is the legal basis for processing your data?
In compliance with Article 6.1 of EU Regulation 2016/679 of April 27, we inform you that the legal basis for processing your data is as follows:

  • The data subject has given consent for the processing of their personal data for one or more specific purposes; and/or

  • The processing is necessary to comply with a legal obligation applicable to the controller; and/or

  • The processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, provided such interests are not overridden by the interests or fundamental rights and freedoms of the data subject that require protection of personal data, particularly when the data subject is a child.

To whom will your data be communicated?
The data processed by Bitute may be communicated to third parties when required by law.
Additionally, Bitute has service providers for whom it is necessary to share data in different business areas (administration, accounting, taxation, marketing, labor, etc.). The relationship with these companies is regulated in accordance with Article 28 of EU Regulation 2016/679 of April 27 of the European Parliament and of the Council (GDPR). The data accessed by these companies will only be used for the necessary business purpose and will not be retained for any other use.

What are your rights when you provide us with your data?
Any data subject has the right to obtain confirmation as to whether Bitute is processing their personal data.
Data subjects have the right to access their personal data, request the correction of inaccurate data, or request their deletion when, among other reasons, the data are no longer necessary for the purposes for which they were collected.
In certain circumstances, data subjects may request the restriction of the processing of their data, in which case we will only keep them for the exercise or defense of claims. Users may also object to the processing of their data. Bitute will cease processing the data unless there are compelling legitimate grounds or for the exercise or defense of legal claims.
The user may send a written request to Bitute, to the controller’s address, or via the email indicated at the beginning of this Policy, attaching a copy of their ID, at any time and free of charge, to:

  • Revoke the consent given.

  • Obtain confirmation as to whether personal data concerning them are being processed.

  • Access their personal data.

  • Correct inaccurate or incomplete data.

  • Request the deletion of their data when they are no longer necessary for the purposes for which they were collected.

  • Request the restriction of processing when one of the conditions provided for in the data protection regulations is met.

  • Request the portability of their data.

  • Contact Bitute’s DPO.

  • File a complaint with the supervisory authority (www.aepd.es) if they believe their rights recognized by data protection regulations have been violated.

Bitute adopts the appropriate security levels required by the aforementioned Personal Data Protection Regulations and other applicable legislation. These security levels are mandatory for entities that access our information under a contractual and/or service relationship, pursuant to Article 28 of EU Regulation 2016/679 (GDPR).
However, Bitute assumes no responsibility for damages arising from alterations caused by third parties to users’ computer systems, electronic documents, or files.
Cookies may be used during the provision of website services. Cookies are physical files containing personal information stored on the user’s device. The user can configure their browser to prevent the creation of cookie files or to alert them when cookies are created. Please review our cookie policy via the link available on this website.
If you choose to leave our website through links to websites not belonging to our entity, Bitute is not responsible for the privacy policies of such websites or for the cookies they may store on your computer.
Our policy regarding email focuses on sending only communications that you have requested to receive.
If you prefer not to receive such messages, we will offer you the option, within the same communications, to exercise your right to cancel and opt out of receiving these messages, in accordance with Title III, Article 22 of Law 34/2002 on Information Society Services and Electronic Commerce.