Last updated: [July 13, 2025]
1. Introduction and Commitment to Privacy
At Saludable Medic (hereinafter, "we," "our," "the Company"), we are committed to protecting the privacy and security of our customers' and users' personal data, both in our physical store and through our online platform. We rigorously comply with the General Data Protection Regulation (GDPR) of the European Union and Spanish Organic Law 3/2018, of December 5, on Personal Data Protection and guarantee of digital rights (LOPDGDD).
This policy describes how we collect, use, process, and protect your personal information, as well as your rights regarding your data.
2. Who is Responsible for Processing Your Data?
Identity: Saludable Medic S.L.
Address: Calle Hilarion Eslava 24 Local Derecha CP: 28015 Madrid, Spain
Email: info@saludablemedic.com
Phone: 613660647
3. Principles We Apply to Data Processing
At Saludable Medic, we are governed by the following key principles to ensure responsible management of your data:
Lawfulness, fairness, and transparency: Your data will be processed lawfully, fairly, and transparently, with clear information about its purpose.
Purpose limitation: We only collect data for specified, explicit, and legitimate purposes, and we will not process it further in a manner incompatible with those purposes.
Data minimization: We collect only the data that is necessary and adequate in relation to the purposes for which it is processed.
Accuracy: We keep your data accurate and up-to-date, taking measures to rectify or delete inaccurate data without delay.
Storage limitation: Your data will be stored only for the time strictly necessary for the purposes of processing or as required by law.
Integrity and confidentiality: We implement security measures to protect your data against unauthorized access, loss, destruction, or accidental damage.
Proactive accountability: We are proactive in complying with regulations, ensuring that our practices are transparent and accountable.
4. What Data Do We Collect and for What Purpose?
We collect different types of data depending on your interaction with us, whether in the physical store or on our online store. The main purpose is to manage our commercial relationship and improve your experience.
Specific purposes of processing:
Order and purchase management: Processing your purchases, shipments, returns, and managing payments.
Customer service: Responding to your inquiries, requests, or complaints.
Sending commercial communications: With your consent, we will send you information about our products, offers, and promotions.
User account management: Creating and maintaining your account, allowing you to manage your data and orders.
Browse analysis and website improvement: Analyzing the use of our website to understand how you interact and improve our services and your online experience.
Compliance with legal obligations: Tax, accounting, and administrative management.
Health Data (Special Treatment): Given the nature of our business as a parapharmacy, we may process health-related data if you voluntarily provide it to us for, for example, personalized recommendations or management of specific products. In these cases, you will be provided with additional detailed information, and your explicit consent will be specifically requested for the processing of this category of sensitive data, in accordance with the GDPR.
5. With Whom Do We Share Your Data?
Your personal data will not be sold, rented, or transferred to third parties without your consent, except in the following cases:
Service providers: Companies that help us operate our business (e.g., transport companies for shipments, payment gateway providers, web hosting services, email marketing platforms). These providers will only have access to the data necessary to perform their services and under a contract that guarantees the protection of your data.
Legal obligations: When we are legally obliged to do so (e.g., tax or judicial authorities).
6. International Data Transfers
We may use third-party services that may involve transferring your data to countries outside the European Economic Area (EEA). In these cases, we will ensure that such transfers comply with the appropriate safeguards required by the GDPR (e.g., standard contractual clauses, adequacy decisions).
7. What Are Cookies and How Do We Use Them?
A cookie is a small text file that is stored in your browser when you visit our website. Cookies allow us to remember information about your visit, such as your preferences, and improve your Browse experience.
We use our own and third-party cookies for different purposes:
Essential/technical cookies: These are necessary for the basic functioning of the website (e.g., keeping your session open, managing the shopping cart). They do not require your consent.
Performance/analytical cookies: These allow us to collect anonymous information about how you use our website (e.g., pages visited, time on the website) to improve its performance. (Require consent).
Advertising/marketing cookies: These are used to show you relevant ads based on your interests and Browse habits. (Require consent).
Cookie Management: When you first visit our website, you will be presented with a cookie consent banner. You can accept all cookies, reject them (except essential ones), or set your preferences. You can change your cookie preferences at any time.
8. How Long Do We Retain Your Data?
We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, as well as to comply with legal obligations (tax, accounting, etc.). Once the purpose has been fulfilled, the data will be securely deleted or anonymized.
9. What Are Your Rights?
As the data subject, you have the following rights under the GDPR:
Right of Access: To know if we are processing your personal data and, if so, to access it.
Right to Rectification: To request the correction of inaccurate or incomplete data.
Right to Erasure (Right to Be Forgotten): To request the deletion of your data in certain circumstances.
Right to Restriction of Processing: To request the restriction of the processing of your data in certain cases.
Right to Data Portability: To receive your data in a structured format and transmit it to another controller.
Right to Object: To object to the processing of your data in certain situations, including direct marketing.
Right not to be subject to automated individual decision-making: Including profiling that produces legal effects concerning you or significantly affects you.
How to exercise your rights?
You can exercise any of these rights by sending an email to info@saludablemedic.com or a letter to Calle Hilarion Eslava 24 Local Derecha CP: 28015 Madrid, Spain. You must attach a copy of your ID or similar identity document to verify your identity.
Right to lodge a complaint: If you believe that the processing of your data does not comply with data protection regulations, you have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD) through its website www.aepd.es.
10. Security Measures
At Saludable Medic, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk of processing your personal data, including protection against unauthorized access, alteration, disclosure, loss, destruction, or accidental or unlawful damage. We conduct periodic audits and, when necessary, Data Protection Impact Assessments (DPIAs), especially when processing health data.
11. Changes to This Privacy Policy
This Privacy and Cookies Policy may be updated periodically to reflect changes in regulations, our data processing practices, or technology. We will notify you of any substantial changes by publishing the updated policy on our website. We recommend that you review this policy regularly to stay informed about how we protect your information.