Legal

Privacy Policy

Data protection contact: legal@omniloy.com

About this Privacy Policy

This Privacy Policy must be accessible from the website and is linked from the email signature, providing greater alignment with the GDPR.

The contact email is legal@omniloy.com; a procedure is in place to handle data subject requests.

Privacy Policy

At OMNILOY SOCIEDAD LIMITADA (hereinafter THE CONTROLLER or OMNILOY), we strive to offer you the best possible experience through our services and products. To do so, in some cases we need to collect information. We care about your privacy and we believe in transparency about the use of the data you provide to us.

Accordingly, for the purposes of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 (hereinafter the GDPR), on the protection of natural persons with regard to the processing of personal data and the free movement of such data, and for the purposes of Spanish Act 34/1988 of 11 July, on Information Society Services and Electronic Commerce (hereinafter LSSI), THE CONTROLLER informs the user that, as controller of the processing, it will incorporate the personal data provided by users into an automated file under its ownership.

OMNILOY's Privacy and Data Protection Policy contributes to and seeks to guarantee the security of personal data and to prevent its alteration, loss, unauthorised processing or access.

Basic data protection information

Below we inform you about OMNILOY's data protection policy:

Controller

OMNILOY is the controller of the processing of all data collected from data subjects for the exercise of its business functions, which are carried out in accordance with the criteria and limitations set out in Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR).

OMNILOY is, for the purposes of the Law, the Controller of Processing Activities.

Controller details:

  • Entity: OMNILOY SOCIEDAD LIMITADA (hereinafter OMNILOY)
  • Registered office: Avenida de Catalunya, 11, Ent, Postal Code 46020, Valencia (Spain)
  • Tax ID (CIF): B75956227
  • Registry details: Mercantile Registry: S 8, H V 224212, I/A 1 (12/03/2025) CVE: BORME-A-2025-54-46
  • E-mail (DPO contact): legal@omniloy.com

Purposes of the processing

The personal data you provide through the contact form on this website, as well as any data you provide in the future, will be incorporated into a data file owned by OMNILOY and maintained under its responsibility.

The purpose of this file is to manage OMNILOY's relationship with the website users and other customers (web service management) and to provide them with the information they request and the management of the services they contract. It will also serve to keep you informed about our services (commercial communications related to our services), using the email address or other contact details provided by the user with their express consent.

The information you provide in data collection forms is voluntary; however, if you do not provide it, we may not be able to deliver the service.

It will be your responsibility to keep the data updated so that it corresponds to reality at all times. Any false or inaccurate statement made as a result of the data provided, as well as any harm such information may cause to OMNILOY, will be the responsibility of the user.

Data retention periods

At OMNILOY all data retention periods and the criteria established for them are aligned with current applicable regulations.

In any case, the personal data provided will be retained for as long as is necessary to fulfil the purpose for which it was collected and to determine any responsibilities that may arise from that purpose, as well as for the periods set out in the relevant archive and documentation regulations. It will also be retained while a mutual interest exists to maintain the purpose of the processing, and when it is no longer necessary for that purpose, it will be deleted with appropriate security measures to ensure pseudonymisation of the data or its total destruction.

Legal basis

OMNILOY will only process your personal data in one of the following situations:

  • With the free, explicit, unambiguous and informed consent of the data subject. Simple means will be enabled to revoke such consent.
  • When there is a legitimate interest of OMNILOY that justifies the processing, provided that the interests, rights or freedoms of the data subjects do not prevail.
  • When the processing is necessary for the maintenance or performance of a legal relationship between OMNILOY and the data subject.
  • When the processing or transfer responds to the fulfilment of an obligation imposed by applicable national legislation or is carried out by a Public Authority or Administration that requires it, in the legitimate exercise of its powers, while guaranteeing the right to privacy of the data subjects to the greatest extent possible.
  • When exceptional situations arise that endanger the life, health or safety of the data subject or of other persons or groups.

Recipients

OMNILOY will only allow access to personal data to those of its administrators, collaborators or dependent persons who need to access the personal data due to the activity they carry out within the framework of the contracted services.

We also inform you that, to the extent strictly necessary to fulfil the informed purposes, your data may be shared with other companies or entities belonging to or affiliated with Grupo Lãberit, a group with which our company collaborates; for processing under their responsibility and always for the same purposes informed in this Policy. The companies or entities belonging to or affiliated with Grupo Lãberit with which your data may be shared can be consulted at www.laberit.com. In addition, where there is a legal obligation or requirement to do so, we may communicate your data to the competent public authorities in accordance with such obligation or legal requirement.

To guarantee compliance with the provisions of the GDPR, when OMNILOY entrusts processing activities to a processor, it will only use processors that provide sufficient guarantees, particularly in terms of specialised knowledge, reliability and resources, for the implementation of technical and organisational measures that meet the requirements of the GDPR, including the security of the processing.

International Data Transfers

Please note that OMNILOY does not transfer personal data to third countries or international organisations.

Use of artificial intelligence at OMNILOY

Risk category. OMNILOY's AI systems are considered to be of minimal or limited risk. No prohibited or high-risk systems are used.

Ethical and technical principles:

  • Human oversight in relevant processes.
  • Non-discrimination, transparency and traceability.
  • Protection of fundamental rights.
  • Special attention to vulnerable groups.

User rights regarding AI

The user has the right to:

  • Be informed when interacting with an AI system.
  • Request explanations of automated decisions.
  • Request human intervention in important decisions.
  • Request correction or review.
  • Not be subjected to automated decisions without safeguards.

Rights

Any person has the right to obtain confirmation as to whether or not OMNILOY is processing personal data concerning them.

Data subjects have the right to access their personal data, as well as to request the rectification of inaccurate data or, where appropriate, to request its erasure when, among other reasons, the data is no longer necessary for the purposes for which it was collected.

In certain circumstances, data subjects may request the restriction of the processing of their data, in which case we will only retain it for the establishment or defence of claims.

In certain circumstances, and for reasons relating to their particular situation, data subjects may object to the processing of their data.

OMNILOY will cease processing the data, except for compelling legitimate reasons, or for the establishment or defence of possible claims.

The user may exercise the aforementioned rights at any time and free of charge, by writing to the contact details set out at the start of this privacy policy, either by post or by email.

In order to process a rights request, the user's identity will need to be verified, so the request must include first name and surname, the specific request, address for notifications, date, signature and a photocopy of national ID or another valid identification document.

The exercise of these rights will in no way affect access to the website.

Depending on the right you wish to exercise, we will, if you so wish, provide you with the appropriate form so that you can complete it in accordance with the provisions of Regulation (EU) 2016/679 of 27 April 2016.

Data subjects may exercise their rights of access, rectification, deletion or blocking, restriction and objection to the processing of their data by contacting us at the following email address: legal@omniloy.com.

For more information on the exercise of rights, please refer to the website of the Spanish Data Protection Agency.

Complaints to the Supervisory Authority

If you believe there is a problem with the way OMNILOY is processing your data, you may direct your complaints to the relevant data protection authority. In Spain this is the Spanish Data Protection Agency (AEPD). The agency's website is www.aepd.es.

Changes to the Privacy Policy

OMNILOY may modify this Privacy Policy at any time, with successive versions published on the Website. In any case, OMNILOY will give prior notice of any changes to this policy that affect users so they can accept them.

Security Measures and Policies

OMNILOY has established rigorous controls for the correct processing of personal data, implementing the technological measures necessary to guarantee its integrity and confidentiality, as well as a set of Policies aimed at providing the maximum guarantee of security, confidentiality and integrity of your personal data.

OMNILOY:

  • Minimises and anonymises personal data.
  • Does not use biometric data or carry out intrusive profiling.
  • Applies advanced security measures.
  • Does not transfer data outside the EU without adequate safeguards.