Privacy Policy

2. DEFINITIONS

For what purpose will we process your personal data?
METASTARTUP, S.L. will process your information in order to:

• "Personal Data": any information about an identified or identifiable natural person ("the Website User"); an identifiable natural person is any person whose identity can be determined, directly or indirectly, in particular by means of an identifier, such as a name, an identification number, location data, an online identifier or one or more elements of that person's physical, physiological, genetic, mental, economic, cultural or social identity.
  
• "Processing" means any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automatic means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  
• "Limitation of processing": the marking of personal data retained for the purpose of limiting their processing in the future.
  
• "Profiling" means any form of automated processing of personal data consisting of using personal data to evaluate certain personal aspects of a natural person, in particular to analyze or predict aspects relating to that natural person's professional performance, financial situation, health, personal preferences, interests, reliability, behavior, location or movements.
  
• "Pseudonymization" means the processing of personal data in such a way that they can no longer be attributed to a data subject without the use of additional information, provided that such additional information is listed separately and is subject to technical and organizational measures designed to ensure that the personal data are not attributed to an identified or identifiable natural person.
  
• "File" means any structured set of personal data, accessible according to specified criteria, whether centralized, decentralized or distributed functionally or geographically.
  
• "Controller" or "controller" shall mean the natural or legal person, public authority, service or other body which alone or jointly with others determines the purposes and means of processing; if Union or Member State law determines the purposes and means of processing, the controller or the specific criteria for its nomination may be laid down by Union or Member State law.
  
• "Processor" or "processor" means the natural or legal person, public authority, service or other body processing personal data on behalf of the controller.
  
• "Recipient" shall mean the natural or legal person, public authority, service or other body to whom personal data are disclosed, whether or not a third party is involved. However, public authorities which may receive personal data in the framework of a specific investigation in accordance with Union or Member State law shall not be considered as recipients; the processing of such data by such public authorities shall be in accordance with the data protection rules applicable to the purposes of the processing.
  
• "Third party" means a natural or legal person, public authority, service or body other than the data subject, the controller, the processor and the persons authorized to process personal data under the direct authority of the controller or the processor.
  
• "Consent of the data subject" means any freely given, specific, informed and unambiguous expression of will by which the data subject agrees, either by a statement or by a clear affirmative action, to the processing of personal data concerning him/her.
  
• "Personal data security breach" means any breach of security resulting in the accidental or unlawful destruction, loss or alteration of, or unauthorized communication of or access to, personal data transmitted, stored or otherwise processed.
  
• "Genetic data" means personal data relating to inherited or acquired genetic characteristics of a natural person that provide unique information about that person's physiology or health, obtained in particular from the analysis of a biological sample from such person.
  
• "Biometric data" means personal data obtained from specific technical processing, relating to the physical, physiological or behavioral characteristics of a natural person that allow or confirm the unique identification of that person, such as facial images or dactyloscopic data.
  
• "Health-related data" means personal data concerning the physical or mental health of a natural person, including the provision of health care services, revealing information about his or her health status.
  
• "Main establishment":
  a) as regards a controller with establishments in more than one Member State, the place of its central administration in the Union, unless decisions on the purposes and means of processing are taken in another establishment of the controller in the Union and the latter establishment has the power to implement such decisions, in which case the establishment which has taken such decisions shall be considered as the main establishment.
  (b) as regards a processor with establishments in more than one Member State, the place of its central administration in the Union or, if there is no central administration, the establishment of the processor in the Union where the main processing activities are carried out in the context of the activities of an establishment of the processor in so far as the processor is subject to specific obligations under this Regulation.
  
• "Representative" means a natural or legal person established in the Union who, having been designated in writing by the controller the processor pursuant to Article 27 of the GDPR, represents the controller or the processor with regard to their respective obligations under this Regulation.
  
• "Enterprise" means a natural or legal person engaged in an economic activity, regardless of its legal form, including companies or partnerships regularly carrying out an economic activity.
  
• "Supervisory authority": the independent public authority established by a Member State in accordance with the provisions of Article 51 of the GDPR. In the case of Spain, this is the Agencia Española de Protección de Datos.
  In the case of Germany, you can contact Berliner Beauftragte für Datenschutz und Informationsfreiheit
  . In the case of Germany, you can contact Berliner Beauftragte für Datenschutz und Informationsfreiheit
  . In the case of Austria, you can contact Österreichische Datenschutzbehörde.
  For Belgium, please contact Autorité de protection des donnéesGegevensbeschermingsautoriteit
  For Bulgaria, please contact the Commission for Personal Data Protection.
  For Denmark, you can contact Datatilsynet.
  For Slovakia, please contact https://dataprotection.gov.sk/uoou/
  For Slovenia, please contact https://www.ip-rs.si/.
  In the case of Estonia you can contact https://www.aki.ee/et
  In the case of Spain it is the Spanish Data Protection Agency.
  In the case of Finland, you can contact the Oyce of the Data Protection Ombudsman.
  In the case of France, you can contact the Commission Nationale de l'Informatique et des Libertés
  In the case of Greece, you can contact the Hellenic Data Protection Authority
  In the case of Hungary, you can contact the Oyce of the Commissioner for Fundamental Rights of Hungary
  In the case of Ireland, you can contact the Data Protection Commission.
  For Italy, please contact Garante per la Protezione dei Dati Personali
  For Latvia, please contact https://www.dvi.gov.lv/lv
  For Lithuania, please contact State Data Protection Inspectorate
  For Luxembourg, please contact Commission Nationale pour la Protection des Données
  For Malta, please contact Information and Data Protection Commissioner
  For the Netherlands, please contact https://autoriteitpersoonsgegevens.nl/en
  For Poland, please contact https://archiwum.giodo.gov.pl/
  For Portugal, please contact Comissão Nacional de Proteção de Dados
  For the United Kingdom, please contact the Information Commissioner's Oyce
  For Romania, please contact Autoritatea Naţională de Supraveghere a Prelucrării Datelor cu Caracter Personal
  For Sweden, please contact the Swedish Autority For Privacy Protection
  For the Czech Republic, please contact https://www.uoou.cz/
  For Cyprus you can contact Oyce of the Commissioner for Personal Data Protection
  
  Data Protection Authorities (other European countries):
  For Andorra you can contact Agència Andorrana de Protecció de Dades
  For Croatia you can contact Croatian Personal Data Protection Agency
  For Iceland you can contact https://www.personuvernd.is/
  For Liechtenstein you can contact https://www.llv.li/
  For Macedonia you can contact https://dzlp.mk/
  For Monaco you can contact Commission de Contrôle des Informations Nominatives
  For Norway you can contact Datatilsynet
  For Switzerland you can contact https://www.edoeb.admin.ch/edoeb/de/home.html
  Other International Data Protection Authorities
  For Canada you can contact https://www.priv.gc.ca/en/
  For Hong Kong you can contact https://www.priv.gc.ca/en/ For Hong Kong you can contact https://www.pcpd.org.hk/
  
• "Transborder processing":
  (a) processing of personal data carried out in the context of the activities of establishments in more than one Member State of a controller or a processor in the Union, if the controller or processor is established in more than one Member State, or
  (b) processing of personal data carried out in the context of the activities of a single establishment of a controller or a processor in the Union, but which substantially affects or is likely to substantially affect data subjects in more than one Member State.
  
• "Information society service" means any information society service, i.e., any service normally provided for remuneration, at a distance, by electronic means and at the individual request of a recipient of services.
  

3. IDENTITY OF THE DATA CONTROLLER

Who collects and processes your data?
TheData Controller is the natural or legal person, of a public or private nature, or administrative body, which alone or jointly with others determines the purposes and means of the processing of personal data; in the event that the purposes and means of the processing are determined by the law of the European Union or of the Spanish Member State. In this case, our identification data as Data Controller are the following: Metastartup SL CIF B87578043.

How can you contact us?
Postal and officeaddress: Alfonso XI 3. 28014, Madrid (Madrid), Spain
Company address: Alfonso XI 3. 28014, Madrid (Madrid), Spain
Email: info@dendary.com - Phone: 911 938 887

Who can help you with our Data Protection Policy?
Wehave a person or entity specialized in data protection, which is responsible for ensuring proper compliance in our entity of the legislation and regulations in force. This person is called Data Protection Officer (DPO) and, if you need it, you can contact him/her as follows:
AURATECH LEGAL SOLUTIONS SLP- CIF B87984621
Email: dpo@mio.es - Phone: 0034 911 134 963

4. APPLICABLE LAWS AND REGULATIONS

This Privacy and Data Protection Policy is developed based on the following data protection laws and regulations:

• Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data. Hereinafter GDPR.
  
• Organic Law 3/2018 of December 5, 2018 on the Protection of Personal Data and Guarantee of Digital Rights. Hereinafter LOPD/GDD.
  
• Law 34/2002, of July 11, 2002, on Information Society Services and Electronic Commerce. Hereinafter LSSICE.
  

5. PRINCIPLES APPLICABLE TO THE PROCESSING OF PERSONAL DATA

Personal data collected and processed through this Web site will be treated in accordance with the following principles:

• Principle of lawfulness, fairness and transparency: Any processing of personal data carried out through this Website shall be lawful and fair, and it shall be completely clear to the user when personal data concerning him/her are being collected, used, consulted or processed. The information relating to the processing carried out will be transmitted in advance, easily accessible and easy to understand, in simple and clear language.
  
• Purpose limitation principle: All data will be collected for specified, explicit and legitimate purposes and will not be further processed in a manner incompatible with the purposes for which they were collected.
  
• Principle of data minimization: The data collected will be adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
  
• Principle of accuracy: The data will be accurate and, if necessary, updated, taking all reasonable steps to ensure that personal data that are inaccurate with respect to the purposes for which they are processed are deleted or rectified without delay.
  
• Principle of limitation of the storage period: Data will be kept in a form that permits identification of data subjects for no longer than is necessary for the purposes of processing the personal data.
  
• Principle of integrity and confidentiality: Data shall be processed in a manner that ensures appropriate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss or damage, through the implementation of appropriate technical and organizational measures.
  
• Principle of proactive responsibility: The entity owning the Website shall be responsible for compliance with the principles set forth in this paragraph and shall be able to demonstrate it.
  

6. SECURITY MEASURES

What do we do to ensure the privacy of your data?
Dendaryhas taken all measures required to protect personal data and Dendary has taken all available technical measures to prevent data loss, unfair use, alteration, unauthorized access or theft of data. However, the user shall bear in mind that security measures on the Internet are not completely indestructible.

Dendary adopts the necessary organizational and technical measures to ensure the security and privacy of your data, avoid its alteration, loss, treatment or unauthorized access, depending on the state of technology, the nature of the data stored and the risks to which they are exposed.

Among others, the following measures stand out:

• Guarantee:
  o Confidentiality: The information processed by Dendary will be made available or disclosed exclusively to authorized persons at the time and by the means established.
  o Integrity: The information processed by Dendary will be complete, accurate and valid, and the content will be provided by the parties concerned and will be subject to no manipulation of any kind.
  o Availability: The information processed by Dendary will be accessible and usable by authorized persons at any given time, ensuring its persistence against any eventuality.
  
• Restore availability and access to personal data quickly in the event of a physical or technical incident.
  
• Verify, evaluate and assess, on a regular basis, the effectiveness of the technical and organizational measures implemented to ensure the security of the processing.
  
• Pseudonymize and encrypt personal data, in case of sensitive data.
  

Dendary assumes responsibility for supporting and promoting the establishment of the organizational, technical and control measures necessary to comply with the above security guidelines.

Furthermore, Dendary manages information systems in accordance with the following principles:

• Principle of regulatory compliance: All information systems shall comply with the applicable legal, regulatory and sectorial regulations affecting information security, especially those related to the protection of personal data, security of systems, data, communications and electronic services.
  
• Risk management principle: Risks shall be minimized to acceptable levels and a balance shall be sought between security controls and the nature of the information. Security objectives shall be established, reviewed and consistent with information security aspects.
  
• Principle of awareness and training: Training programs, sensitization and awareness campaigns shall be articulated for all users with access to information, in terms of information security.
  
• Principle of proportionality: The implementation of controls that mitigate the security risks of the assets shall be carried out seeking a balance between security measures, nature and information and risk.
  
• Principle of responsibility: All members of the Data Controller shall be responsible for their conduct in terms of information security, complying with the established rules and controls.
  
• Principle of continuous improvement: The degree of effectiveness of the security controls implemented in the organization will be reviewed on a recurring basis to increase its capacity to adapt to the constant evolution of risk and the technological environment.
  

7. PURPOSES OF TREATMENT

Why do we want to treat your data?
Below, we detail the uses and purposes foreseen:
Consultations and web contacts: Management and contact with users; Response to queries received through the electronic form on the web.
Cookies, pixels and tracking: Obtain statistical data on user navigation, identify problems and analyze their preferences; Retain user preferences during their stay on a website.
Resume management / Job board: Consult the resumes received to select the person who best suits the needs of the company; Personnel selection.

How long do we keep your data?
We useyour data for the time strictly necessary to fulfill the purposes indicated above. Unless there is a legal obligation or requirement, the expected retention periods are:

Web inquiries and contacts: For a period of 1 year from the last confirmation of interest. The personal data provided will be kept as long as their deletion is not requested by the interested party and it is appropriate, and as long as they are necessary - including the need to keep them during the applicable statute of limitations - or relevant for the purpose for which they were collected or recorded.

Cookies, pixels and tracking: Others. You should access our cookies policy to know the retention time of each cookie, as well as the information that has been collected.

Resume management / Job board: For a period of 1 year from the last confirmation of interest. The personal data provided will be retained for one year or until deletion is requested by the interested party. In case of being an employee of the company will be retained as long as the employment relationship is in force and thereafter during the applicable or relevant statute of limitations.

8. LEGITIMACY OF THE TREATMENT

Why do we process your data?
Thecollection and processing of your data is always legitimized by one or more legal bases, which are detailed below:

Web inquiries and contacts

• (Art. 6.1.a RGPD) Consent of the interested party
  or LSSICE. Law 34/2002, of July 11, 2002, on information society services and electronic commerce. Law 34/2002, of July 11, 2002, on information society services and electronic commerce
  or RGPD and LOPDGDD. Compliance with legal obligation: General Data Protection Regulation (RGPD) and Organic Law 3/2018, of December 5, on Personal Data Protection and guarantee of digital rights (LOPDYGDD). Legal obligation compliance: General Data Protection Regulation (GDPR) and Organic Law 3/2018, of December 5, 2018, on Personal Data Protection and guarantee of digital rights (LOPDYGDD).
  

Cookies, pixels and tracking
(Art. 6.1.a RGPD) Data subject consent

Resume management / Job board
Explicit consent of the person concerned.

9. RECIPIENTS OF YOUR DATA

To whom do we transfer your data within the European Union?
Occasionally, in order to comply with our legal obligations and our contractual commitment to you, we are faced with the obligation and need to transfer some of your data to certain categories of recipients, which we specify below:

Consultations and web contacts: Entities of the business group. Data may be communicated to other MIO Group companies.
Cookies, pixels and tracking: Companies dedicated to advertising or direct marketing.
Resume management / Job board: Entities of the group of companies. If the profile could fit in another company of the group your resume will be shared with the same in order to help you in your job search.

Do we make International Transfers of your data outside the European Union?
We donotmake international transfers of your data

10. DATA PROCESSING ACTIVITIES

The data processing activities carried out through the website are detailed below, specifying each of the following sections:

Activity: Name of the data processing activity.
Purposes: Each of the uses and processing carried out with the data collected.
Legal basis: The legal basis that legitimizes the processing of data.
Data processed: Type of data processed.
Origin: From where the data is obtained.
Conservation: Period during which the data is kept.
Recipients: Persons or third parties to whom the data is provided.
International transfers: Cross-border transfers of data outside the European Union.

10. 1. Treatment activities

Are those data processing activities whose purposes are necessary for the provision of services.Name of the data processing activity.

11. DATA OF MINORS

Minors under 14 years of age may not use the services available through the Website without the prior authorization of their parents, guardians or legal representatives, who shall be solely responsible for all acts carried out through the Website by the minors in their care, including the completion of the telematic forms with the personal data of such minors and the marking, where appropriate, of the boxes that accompany them.

In compliance with the provisions of Article 8 of the RGPD and Article 7 of the LOPD/GDD, only those over 14 years of age may give their consent to the processing of their personal data in a lawful manner by Dendary.

12. ORIGIN AND TYPES OF DATA PROCESSED

Where did we get your data from?

Web queries and contacts
Web contacts: The interested party itself or its legal representative
Cookies, pixels and tracking
Web users: The interested party or his/her legal representative
Resume management / Job board
Job candidates: The interested party or his/her legal representative
Employees: The interested party or his/her legal representative

What types of your data do we collect and process?

Web queries and contacts
Web contacts: Identifying data (Name and Surname; Email address; Phone)
Cookies, pixels and tracking
Web users: Identifying data (IP address)
Other categories (ID generated by Pixel or Cookie)
Resume management / Job board
Job candidates:

• Identification data (Name and Surname; Mailing address; E-mail address; Telephone number)
  
• Academic and Professional (Degrees; Student record; Professional experience; Curriculum Vitae)
  
• Identification data (Name and Surname; Mailing address; E-mail address; Telephone number) Academic and professional data (Qualifications;
  
• Personal characteristics (Marital status data; Sex; Nationality; Mother tongue; Date of birth)
  
• Social circumstances (Licenses, permits and authorizations)Employment details (Occupation; Work history)
  
• Employment Details (Occupation; Worker History)
  

Employees:

• Academic and professional (Curriculum Vitae)
  

12. ORIGIN AND TYPES OF DATA PROCESSED

Where did we get your data from?

Web queries and contacts
Web contacts: The interested party itself or its legal representative
Cookies, pixels and tracking
Web users: The interested party or his/her legal representative
Resume management / Job board
Job candidates: The interested party or his/her legal representative
Employees: The interested party or his/her legal representative

What types of your data do we collect and process?

Web queries and contacts
Web contacts: Identifying data (Name and Surname; Email address; Phone)
Cookies, pixels and tracking
Web users: Identifying data (IP address)
Other categories (ID generated by Pixel or Cookie)
Resume management / Job board
Job candidates:

• Identification data (Name and Surname; Mailing address; E-mail address; Telephone number)
  
• Academic and Professional (Degrees; Student record; Professional experience; Curriculum Vitae)
  
• Identification data (Name and Surname; Mailing address; E-mail address; Telephone number) Academic and professional data (Qualifications;
  
• Personal characteristics (Marital status data; Sex; Nationality; Mother tongue; Date of birth)
  
• Social circumstances (Licenses, permits and authorizations)Employment details (Occupation; Work history)
  
• Employment Details (Occupation; Worker History)
  

Employees:

• Academic and professional (Curriculum Vitae)
  

13. RIGHTS OF THE INTERESTED PARTIES

What are your rights?
The current data protection regulations protect you in a series of rights in relation to the use we make of your data. Each and every one of your rights are unipersonal and non-transferable, that is to say, they can only be exercised by the owner of the data, after verifying his or her identity.

Below, we indicate which rights you are entitled to:

• Right of access: This is the right of the Website user to obtain confirmation as to whether or not the Data Controller is processing his/her personal data and, if so, to obtain information on his/her specific personal data and on the processing that the Data Controller has carried out or is carrying out, as well as, among other things, the information available on the origin of such data and the recipients of the communications made or planned in such data.
  
• Right of rectification: This is the right that the Website user has to have his or her personal data that proves to be inaccurate or, taking into account the purposes of the processing, incomplete, modified.
  
• Right of deletion: It is usually known as the "right to be forgotten", and it is the right that the Website user has, provided that the legislation in force does not establish otherwise, to obtain the deletion of his/her personal data when these are no longer necessary for the purposes for which they were collected or processed; the User has withdrawn his/her consent to the processing and there is no other legal basis; the User objects to the processing and there is no other legitimate reason to continue the processing; the personal data have been processed unlawfully; the personal data have been obtained as a result of a direct offer of information society services to a minor under 14 years of age. In addition to deleting the data, the Controller shall, taking into account the technology available and the cost of its implementation, take reasonable steps to inform other data controllers that may be processing the personal data of the data subject's request for the deletion of any link to such personal data.
  
• Right to the limitation of data: This is the Website User's right to limit the processing of his/her personal data. The Website User has the right to obtain the limitation of the processing when he/she contests the accuracy of his/her personal data; the processing is unlawful; the Controller no longer needs the personal data, but the User needs it to make claims; and when the Website User has objected to the processing.
  
• Right to data portability: In cases where processing is carried out by automated means, the Website User shall have the right to receive from the Data Controller his or her personal data in a structured, commonly used and machine-readable format, and to transmit it to another Data Controller. whenever technically possible, the Data Controller shall directly transmit the data to that other Data Controller.
  
• Right of opposition: The User's right not to have his or her personal data processed or to cease the processing of such data by the Data Controller. Right not to be subject to automated decisions and/or profiling: The right of the Website User not to be subject to an individualized decision based solely on the automated processing of their personal data, including profiling, unless otherwise provided for in the legislation in force.
  
• Right to revoke consent: This is the right of the Website User to withdraw, at any time, the consent given for the processing of his/her data.
  
• Right to file a complaint regarding data protection before the Supervisory Authority: Spanish Data Protection Agency.
  

The interested party may exercise any of the aforementioned rights by contacting the Data Controller and prior identification of the User using the following contact information:

Responsible: Metastartup SL
Address: Alfonso XI 3. 28014, Madrid, Spain
Telephone: 911 938 887
Email: info@dendary.com
Website: https://www.dendary.com/

You may also exercise your rights before the Data Protection Officer:
Email: dpo@mio.es - Telephone: 0034 911 134 963

How can you exercise your rights in relation to your data?
Toexercise your rights of access, rectification, deletion, limitation or opposition, portability and withdrawal of consent, you can do so as follows:

Consultations and web contacts
Responsible: Metastartup SL
Address: Alfonso XI 3. 28014, Madrid (Madrid), Spain
Email: info@dendary.com
Web page: https://www.dendary.com/

Cookies, pixels and tracking
Responsible: Metastartup SL
Address: Alfonso XI 3. 28014, Madrid (Madrid), Spain
Phone: 911 938 887
Email: info@dendary.com
Website: https://www.dendary.com/

Resume Management / Job Board
Responsible: Metastartup SL
Address: Alfonso XI 3. 28014, Madrid (Madrid), Spain
Email: info@dendary.comPágina web: https://www.dendary.com/


How can you file a complaint?
In addition to the rights you have, if you believe that your data is not being collected or processed in accordance with current Data Protection regulations, you can make a complaint to the Supervisory Authority, whose contact details we indicate below:

Spanish Data Protection Agency
C/. Jorge Juan, 6. 28001, Madrid (Madrid), Spain
Email: info@aepd.es- Phone: 912663517
Web: https://www.aepd.es

For Germany, please contact Berliner Beauftragte für Datenschutz und Informationsfreiheit
For Austria, please contact Österreichische Datenschutzbehörde.
For Belgium, please contact Autorité de protection des donnéesGegevensbeschermingsautoriteit
For Bulgaria, please contact the Commission for Personal Data Protection.
For Denmark, you can contact Datatilsynet.
For Slovakia, please contact https://dataprotection.gov.sk/uoou/
For Slovenia, please contact https://www.ip-rs.si/.
For Estonia, please contact https://www.aki.ee/et
For Finland, please contact Oyce of the Data Protection Ombudsman
For France, please contact Commission Nationale de l'Informatique et des Libertés
For Greece, please contact Hellenic Data Protection Authority
For Hungary, please contact Oyce of the Commissioner for Fundamental Rights of Hungary
For Ireland, please contact Data Protection Commission.
For Italy, please contact Garante per la Protezione dei Dati Personali
For Latvia, please contact https://www.dvi.gov.lv/lv
For Lithuania, please contact State Data Protection Inspectorate
For Luxembourg, please contact Commission Nationale pour la Protection des Données
For Malta, please contact Information and Data Protection Commissioner
For the Netherlands, please contact https://autoriteitpersoonsgegevens.nl/en
For Poland, please contact https://archiwum.giodo.gov.pl/
For Portugal, please contact Comissão Nacional de Proteção de Dados
For the United Kingdom, please contact the Information Commissioner's Oyce
For Romania, please contact Autoritatea Naţională de Supraveghere a Prelucrării Datelor cu Caracter Personal
For Sweden, please contact the Swedish Autority For Privacy Protection
For the Czech Republic, please contact https://www.uoou.cz/
For Cyprus you can contact Oyce of the Commissioner for Personal Data Protection

Data Protection Authorities (other European countries):
For Andorra you can contact Agència Andorrana de Protecció de Dades
For Croatia you can contact Croatian Personal Data Protection Agency
For Iceland you can contact https://www.personuvernd.is/
For Liechtenstein you can contact https://www.llv.li/
For Macedonia you can contact https://dzlp.mk/
For Monaco you can contact the Commission de Contrôle des Informations Nominatives
For Norway you can contact Datatilsynet
For Switzerland you can contact https://www.edoeb.admin.ch/edoeb/de/home.html

14. ACCEPTANCE

The acceptance and provision of this document indicates that you understand and accept all the clauses of our privacy policy and therefore authorize the collection and processing of your personal data under these terms. This acceptance is done by checking the "Read and Accept" checkbox in our Privacy Policy.

Dendary reserves the right to modify this Privacy Policy, according to its own criteria, or motivated by a legislative, jurisprudential or doctrinal change of the Spanish Data Protection Agency or other European supervisory authorities mentioned in the previous point. Changes or updates made to this Privacy Policy that affect the purposes, retention periods, data transfers to third parties, international data transfers, as well as any rights of the Website User, will be explicitly communicated to the user.

This policy will be maintained, updated and adapted to Dendary's needs and aligned with its strategic risk management principles. To that end, it will be reviewed at planned intervals or whenever significant changes arise to ensure its adequacy and effectiveness.