GDPR: Data Protection and Privacy

All our projects comply with the General Data Protection Regulation (GDPR) to ensure users’ rights and enhance security in data processing.

What is the GDPR?

The GDPR (General Data Protection Regulation) is a privacy regulation from the European Union that came into effect on May 25, 2018. It was designed to strengthen and unify the protection of personal data for EU citizens and to improve individuals’ control over their data.

The GDPR establishes a series of principles and requirements that companies must follow when processing personal data. These requirements include obtaining informed consent from individuals before collecting their data, ensuring adequate security for the data, allowing people to access, correct, and delete their data, and notifying the relevant authorities and affected individuals in case of a data breach.

Non-compliance with the GDPR can result in significant financial penalties. Therefore, it is crucial for businesses handling personal data to understand and comply with the provisions of the GDPR to ensure data protection and maintain customer trust.

Principles and Obligations of the GDPR

GDPR Principles:

Lawfulness, fairness, and transparency: Data must be processed legally, fairly, and transparently.
Purpose limitation: Data should only be used for the specific purposes for which it was collected.
Data minimization: Only necessary and relevant data should be collected.
Accuracy: Data must be accurate and up-to-date.
Storage limitation: Data should only be kept for as long as necessary for its intended purpose.
Security: Data must be protected against unauthorized access or loss.

GDPR Obligations:

Consent: Obtain consent from individuals before processing their data, unless there is a valid legal basis.
Rights of individuals: Respect the rights of access, rectification, erasure, and data portability.
Data protection impact assessment: Conduct risk assessments when engaging in activities that pose a high risk to privacy.
Notification of security breaches: Inform authorities and affected individuals in case of a data breach.
Accountability and compliance: Be accountable for GDPR compliance and take proactive steps to demonstrate it.

Users’ Rights and Security Measures

The GDPR ensures users’ rights and promotes security in the processing of personal data.

Users’ Rights:

Informed consent: Users must provide explicit and voluntary consent for the processing of their data.
Access and rectification: Users have the right to access and correct their personal data.
Data portability: Users can transfer their data to another service provider.
Right to be forgotten: Users can request the deletion of their data when it is no longer needed.

Security Measures:

Data protection by design: Companies must integrate data protection at all stages of the project.
Data protection impact assessment: Risks associated with the processing of personal data must be assessed and mitigated.
Notification of security breaches: Companies must report any breach that may affect users’ rights.
International data transfers: Adequate measures must be implemented when transferring data outside the European Union.
Compliance with the GDPR strengthens user trust and builds strong relationships with clients.

GDPR in the Healthcare Sector

Compliance with the GDPR in the healthcare sector has had a significant impact. The GDPR protects the personal data and privacy of patients, where confidentiality is crucial, leading to significant changes in how data is handled.

The collection and use of personal health data require explicit consent from patients. Additionally, security measures must be implemented to protect the information, such as data encryption and restricted access.

Compliance with the GDPR in the healthcare sector not only has legal implications but also offers tangible benefits for both patients and organizations. By ensuring stronger protection of personal data, it strengthens public trust in healthcare services and promotes greater transparency in the management of information. Moreover, the focus on security and privacy fosters a data protection culture, which can help prevent risks and improve overall information management.

Cookie	Duration	Description
__cf_bm	1 hour	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
_cfuvid	session	Calendly sets this cookie to track users across sessions to optimize user experience by maintaining session consistency and providing personalized services
cookielawinfo-checkbox-cookies-analiticas	1 year	CookieYes set this cookie to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-cookies-necesarias	1 año	CookieYes set this cookie to store the user consent for the cookies in the category "Necessary".
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gat_gtag_UA_*	2 minutos	Google Analytics sets this cookie to store a unique user ID.
_gcl_au	3 meses	Google Tag Manager sets the cookie to experiment advertisement efficiency of websites using their services.
_gid	1 day 1 minute	Google Analytics sets this cookie to store information on how visitors use a website while also creating an analytics report of the website's performance. Some of the collected data includes the number of visitors, their source, and the pages they visit anonymously.
_hjSession_*	1 hour	Hotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user ID, which persists in the Hotjar User ID, which is unique to that site.
_hjSessionUser_*	1 año	Hotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user ID, which persists in the Hotjar User ID, which is unique to that site.

Cookie	Duration	Description
pll_language	1 year	Polylang sets this cookie to remember the language the user selects when returning to the website and get the language information when unavailable in another way.
yt-player-headers-readable	never	The yt-player-headers-readable cookie is used by YouTube to store user preferences related to video playback and interface, enhancing the user's viewing experience.
yt-remote-cast-installed	session	The yt-remote-cast-installed cookie is used to store the user's video player preferences using embedded YouTube video.
yt-remote-connected-devices	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt-remote-device-id	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt-remote-fast-check-period	sesion	The yt-remote-fast-check-period cookie is used by YouTube to store the user's video player preferences for embedded YouTube videos.
yt-remote-session-app	session	The yt-remote-session-app cookie is used by YouTube to store user preferences and information about the interface of the embedded YouTube video player.
yt-remote-session-name	session	The yt-remote-session-name cookie is used by YouTube to store the user's video player preferences using embedded YouTube video.
ytidb::LAST_RESULT_ENTRY_KEY	never	The cookie ytidb::LAST_RESULT_ENTRY_KEY is used by YouTube to store the last search result entry that was clicked by the user. This information is used to improve the user experience by providing more relevant search results in the future.

You may be interested:

We have attended to the World Economic Forum at its headquarters in Geneva

Leaders in Value Based Healthcare (VBHC)

First WordPress VIP Silver Partner of Spain and Latin America

Our Brands: