Privacy Policy

At AVILASA SANCHO, S.L. (hereinafter, ANATOMIE), we protect your privacy in accordance with the General Data Protection Regulation (GDPR) and Organic Law 3/2018, of December 5, on Personal Data Protection and Guarantee of Digital Rights (LOPDGDD). This policy explains how we collect, use, protect, and share your personal data, as well as your rights. If you have any questions, contact us at info@anatomie.es or through our contact form.

1. Who We Are

  • Name: AVILASA SANCHO, S.L.
  • Tax ID: ES B85897304
  • Address: C/ Marbella, 46, 28034 Madrid, Spain
  • Registration: Madrid Commercial Registry, Volume 27,593, Folio 9, Section 8, Page M-497240, Entry 1
  • Email: info@anatomie.es

2. What Personal Data We Collect and Why

We collect personal data only when necessary to provide our products, improve your experience on www.anatomie.es, and comply with legal obligations.

a) Data Provided Directly

  • Contact or subscription forms: Name, email, phone number, address, or tax information when you fill out forms to contact us, subscribe to newsletters, or register.
    • Purpose: Manage your inquiries, send marketing communications (with your consent), or process your registration.
  • Purchases and accounts: Name, address, billing information, and, in some cases, proof of residency (e.g., to comply with telecommunications regulations).
    • Purpose: Process orders, billing, shipping, and manage your account.
  • Customer Service or Sales communications: Contact details and information shared in your inquiries.
    • Purpose: Respond to your requests, keep a record of interactions, and improve our service.

b) Data Collected Automatically

  • Browsing: IP address, browser type, pages visited, and cookies to analyze website usage and personalize content.
    • Purpose: Improve the browsing experience, prevent fraud, and measure the effectiveness of our campaigns. See our Cookie Policy for more details.
  • Platform or API usage: IP address and interaction data to audit access and ensure security.
    • Purpose: Detect and prevent fraud or abuse.

c) Data from Public Sources

We may collect public information (e.g., from LinkedIn) about you or your company, such as industry or size, to personalize our communications.

Purpose: Improve the relevance of our services and communications.

d) Sensitive Data

We do not collect sensitive data, such as health information, unless strictly necessary and with your explicit consent.

e) Comments

If our website allows comments (e.g., on a blog), we collect the name, email, and content of the comment provided.

Purpose: Moderate comments and prevent spam.

f) Media

If we allow the upload of media files (e.g., images on a blog or account), these are public and may include metadata (e.g., EXIF data with location information).

Purpose: Manage uploaded content. We recommend reviewing metadata before uploading files.

g) Analytics

We use Google Analytics to collect anonymous data about website traffic and behavior (e.g., pages visited, visit duration).

Purpose: Optimize the website and measure the effectiveness of our campaigns. You can disable tracking in our Cookie Policy or through your browser.

3. Legal Basis for Processing

We process your data under the following legal bases:

  • Consent: For marketing communications or non-essential cookies.
  • Contract performance: To manage purchases, accounts, or contracted services.
  • Legitimate interest: To improve the website, analyze its usage, or prevent fraud.
  • Legal obligation: To comply with tax, accounting, or telecommunications regulations.

4. Who We Share Your Data With

We do not sell, transfer, or disclose your personal data to third parties, except:

  • Service providers: Courier companies, payment processors, or analytics providers (e.g., Google Analytics) operating under agreements ensuring GDPR compliance.
  • Legal obligations: Judicial or governmental authorities, if required by law.
  • Telecommunications: Telephony providers, if necessary to comply with local regulations.

If data is transferred outside the European Economic Area (EEA), we use standard contractual clauses or agreements like Privacy Shield to ensure GDPR-equivalent protection.

5. How Long We Retain Your Data

We retain your data only for as long as necessary to fulfill the purposes described or meet legal obligations:

  • Account and purchase data: Up to 10 years after account closure, in accordance with Spanish tax and accounting regulations (e.g., General Tax Law).
  • Contact forms: Retained indefinitely to maintain a history of interactions for customer service and relationship management, unless you request deletion or it is required for legal purposes.
  • Comments: As long as the comment is published on our website, unless you request its deletion.
  • Analytics: 1 year for anonymous Google Analytics data, per standard retention settings.
  • Marketing communications: Until you withdraw consent via the link in our emails or by contacting us.

If you request data deletion, we will delete it unless we are required to retain it for legal or contracted service purposes. Contact us at info@anatomie.es to manage your data.

6. Your Rights Over Your Data

You have the right to:

  • Access: Know what data we hold about you.
  • Rectification: Correct inaccurate data.
  • Erasure: Delete your data, when possible.
  • Objection: Refuse the use of your data for certain purposes (e.g., marketing).
  • Restriction: Limit processing in certain cases.
  • Portability: Receive your data in a structured format.
  • Withdraw consent: At any time, without affecting prior processing.

To exercise these rights, contact us at:

  • Postal mail: AVILASA SANCHO, S.L., C/ Marbella, 46, 28034 Madrid, Spain
  • Email: info@anatomie.es
    We will respond within one month after verifying your identity.

7. How We Protect Your Data

We implement technical and organizational measures to protect your data, such as:

  • SSL encryption for data transmission on the website.
  • Restricted access to personal data, only for authorized personnel.
  • Regular security audits.
  • Staff training on data protection.

8. Data Breach Procedures

We have protocols to manage data breaches:

  • We are committed to identifying and managing security incidents in accordance with applicable regulations.
  • Investigation to assess the scope of the issue.
  • Notification to affected users and the Spanish Data Protection Agency (AEPD) within 72 hours, if necessary.
  • Corrective measures to mitigate risks.

9. Automated Decision-Making and Profiling

We use your data for personalized suggestions (e.g., products based on your purchase history or abandoned carts). These decisions do not have significant legal effects, but you can object to profiling by contacting us at info@anatomie.es or via the unsubscribe link in our communications.

10. Promotional Communications

With your consent, we send newsletters, promotions, or suggestions based on your purchase history, viewed products, or abandoned carts. You can unsubscribe at any time via the link in our emails, your account portal, or by contacting us at info@anatomie.es.

11. Third-Party Data

We may receive public data about you or your company (e.g., from LinkedIn) to personalize our communications. We do not share this data with third parties unless required by law.

12. Updates to This Policy

We reserve the right to update this policy to adapt to legal or technical changes. We will inform you of significant changes via our website.