Privacy Policy


RESPONSIBLE: Juan Manuel Marín Sanabria
PURPOSE: Management of volunteers suitable for epicutaneous studies / execution of budgets
LEGITIMATION: Legitimate interest of the person in charge, of a third party and the consent of the interested party
RECIPIENTS: Clients of Juan Manuel Marín Sanabria (age, sex, skin type and skin reaction).
RIGHTS: Once the relationship with Juan Manuel Marín Sanabria has ended, you can access, rectify, delete, as well as other rights as explained in the additional information.
ADDITIONAL INFORMATION: You can exercise your rights by contacting and/or requesting it at Carrer Sant Benet, 9 Mataró (Barcelona), or by communicating it to or by phone at 93 518 32 11. You can consult the information additional and detailed information on Data Protection on our website:

Juan Manuel Marín Sanabria (hereinafter, collectively and interchangeably referred to as “ CVR “, “ we “, “ our ” or “ us “), is a law firm, specialized in banking procedural law.

This Privacy Policy of our website (hereinafter, the “ website ”), regulates the protection of personal data, both of our visitors and of any other interested parties who provide us with information. through the same, whose information is processed by CVR, as part of the provision of services (hereinafter and jointly, “ you ” or the “ user ” and plurally, “ you ” or the “ users ”). In this sense, CVR undertakes to process your data in accordance with (i) REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016 regarding the protection of natural persons with regard to to the processing of personal data and the free circulation of these data and which repeals Directive 95/46/EC, as well as (ii) Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights, we inform you about the processing of your personal data during your employment relationship with CVR and after its termination.  

In this sense, CVR informs about its Privacy Policy, in order to make users aware of the processing of their data, as well as the fundamental principles on personal data protection that it applies. Despite this, certain services provided or that may be provided in the future on the website may contain particular conditions of use with provisions regarding the protection of personal data, which prevail over this Privacy Policy.

In connection with the above, we urge all users to carefully read this Privacy Policy in order to inform themselves about the rules and practices that we have developed to protect personal data and to better understand our relationships with third parties who may have access to such data. data.

In any case, the user is solely responsible for the veracity of the information provided on the website and if in the future CVR wishes to use it for purposes other than those referred to, we will inform you of these new purposes and request your consent, if necessary. accurate.

By using our website, you acknowledge that you have read and accept this Privacy Policy, our Cookies Policy and our Legal Notice .   

  1. Who is responsible for the treatment?

Contact details of the person in charge of the treatment : Juan Manuel Marín Sanabria, with CIF 38839392M, address at Carrer Sant Benet, 9 Mataró, Barcelona (España) and contact email  

2.- What are the data protection rights of users?

Users can request the following rights:

  • Right to request access to personal data : you may ask CVR if it is processing your data, and if so, access it.
  • Right to request rectification if the data is inaccurate, or complete the data that we have incomplete .
  • Right to request the deletion of your data.
  • Right to request the limitation of your processing : in this case we will only keep them for the exercise or defense of claims.
  • Right to object to processing : CVR will stop processing personal data, with the exception that it must continue to be processed for legitimate reasons or for the exercise or defense of possible claims.
  • Right to data portability : in the event that the user wants their data to be processed by another data controller, CVR will facilitate the transfer of their data to the new controller.
  • Right not to be subject to a decision based solely on the automated processing of your personal data.

If you have granted consent for a specific purpose, you may withdraw it whenever you wish, without affecting the legality of the treatment based on the consent prior to its withdrawal.

In any case, at the time the user exercises their deletion rights, all personal data linked to their account, as well as the information and content included in their profile, will be cancelled. Likewise, in the event that the user exercises the right of deletion of the data necessary for CVR to provide the services of the website, CVR will be forced to terminate its relationship with the user, proceeding to cancel the user, without right. to any claim on his part.

To exercise their rights, users must send a written communication to the registered office of CVR or to the email address indicated in section 1 of this Privacy Policy, including in both cases a photocopy of their ID or other equivalent identification document.


  1. How can you file a claim with the Spanish Data Protection Agency?

You can use the models and forms on the rights referred to in the previous point  by going to the official website of the Spanish Data Protection Agency . 

Complaint to the Control Authority : If you consider that CVR is handling your personal data inappropriately, you can direct your complaints to CVR or the corresponding Control Authority. In Spain you must contact the   Spanish Data Protection Agency .


  1. In what cases do we collect personal data about you and what type is it?

Based on this Privacy Policy, “ personal data ” is considered to be any information that identifies you or can be used to identify you, such as your name, address, telephone number or email address.

If you decide to provide us with your personal data, CVR may have access to the data that appears in each of the forms that you complete or those that you provide to us in the different email accounts that CVR makes available to you to contact us.

This data is processed when you interact with CVR and our representatives; when you participate or request to be considered for participation in activities related to CVR, such as provision of services; when you interact with the website by asking you to provide personal data, as described in this Privacy Policy and Cookies Policy; by registering on our website or using certain features without registering, such as participating in our interactive services.

  1. a) Personal data that the user voluntarily provides:
  • Name and surname.
  • Telephone.
  • Any information provided through email or online forms.
  1. b) Personal data that our website obtains from your computer or electronic device:
  • Cookies, only for the website

For more information about CVR’s use of cookies, please see our Cookies Policy.


  1. How do we use users’ personal data?

CVR informs the users to whom it applies that the personal data that they provide to us and that we collect will be identified in the Registry of Treatment Activities owned by CVR, being used for the purpose of:

  • Respond to queries or requests for information that users may make;
  • Provide our services in accordance with the Legal Notice;
  • In the event that the user has checked the corresponding box for such purposes, keep them informed by sending notifications/newsletters by email and/or other electronic means, the content of which will mainly deal with our services, activities, projects, website updates and new features.
  • Use them for any other purpose required or permitted by applicable law or for which you have given your consent.
  1. Why do we process your personal data?

CVR may process your personal data based on any of the following legal bases: (A) CVR’s legitimate business purposes; (B) as necessary for the performance of a contract to which you are a party. (C) when you have given your consent; (C) when necessary to comply with CVR’s legal and regulatory obligations


– Promotion and evaluation of CVR services.

– Response to requests for technical and operational information from the Website, as well as related to the services offered by CVR.


– Identify and contact you as a web user or client.

– Sending electronic commercial communications, about services or products similar to those requested/contracted.

To manage our relationship through our Website pursuant to any documents accepted/signed by the user.
Provided by the user himself for the collection and processing of his personal data (e.g. for the sending of newsletters).
Transparency of the applicable regulations in force, where applicable.
Whatever is applicable to them and in force at all times.


  1. Who will be able to access your personal data?

Depending on the purposes for which personal information is collected, the following people may access said information without distinction:

  • Authorized personnel of CVR or its representatives acting on behalf of CVR, subject to applicable data protection laws;
  • Regulatory authorities or other third parties in accordance with applicable laws;
  • Third parties (service providers that process information as processor of personal data, under the instructions of CVR). All this only after carrying out the necessary measures to ensure that we can share said information in compliance with applicable data protection laws and under the subscription of a data processor contract.

We will not sell or disclose to third parties any information or personal data that you have provided on our website that may directly or indirectly identify you.


  1. Where is your personal data processed?

Certain suppliers and service providers, such as email servers, may have personnel or systems located outside the European Economic Area (EEA). Therefore, CVR may carry out international transfers of personal data outside the European Economic Area (EEA). In the event that such transfers are made, CVR will do so in compliance with applicable data protection laws. Regardless of where your personal data is collected or processed, CVR ensures that service providers maintain appropriate administrative, technical and physical security measures to protect information about you.


  1. How do we protect your personal data?

CVR has security measures to prevent accidental unauthorized loss, use or access of your personal information or its inappropriate modification or disclosure. Additionally, we will limit access to your personal information to those who need to process such information for business reasons, who only process your personal information on our instructions and will be subject to a duty of confidentiality.

We have put in place procedures to deal with any potential data security breach and will notify you and any relevant regulatory body of any suspected breach, as appropriate, in accordance with our legal obligations.

If you have a username and password for any features of our Games, you are responsible for keeping your password secret. You must not reveal your password to anyone. Additionally, you must take reasonable precautions when using an electronic device other than your own or in a public setting.

Third parties will only process your personal data on our instructions and where they have agreed to treat the information confidentially and keep it secure.


  1. How long will we keep your personal data?

CVR processes your personal data for the period necessary to fulfill the purposes set out in this Privacy Policy, as well as to retain your personal information in compliance with the provisions of relevant laws and regulations.

The criteria we follow for this is determined by:

  • The purpose of the data collected and the fulfillment of said purpose.
  • The reasons why the data is collected: e.g. e.g., in case of consent, you can revoke it at any time.
  • Mandatory storage periods according to contractual and regulatory requirements.

Please note that in some cases CVR is required to retain certain data about you.


  1. Confidentiality

The professionals who work at CVR and who have some type of intervention in the services provided to the user are committed not to disclose or make use of the information they have accessed. The information provided by the user will, in any case, be considered confidential, and cannot be used for purposes other than those related to the management linked to their requests and the services contracted from CVR, if applicable. In this sense, we undertake not to disclose or reveal information about the user’s claims, the reasons for the advice requested or the duration of your relationship with them.


  1. Special category of personal data

We will not collect or process any especially sensitive personal data or those included in the special category of personal data from users, unless they have explicitly provided it to us. Special categories of personal data refer to information related to race or ethnic origin, political opinions, religious or philosophical beliefs or other beliefs of a similar nature, trade union membership, genetic data, biometric data for the exclusive purposes of identifying a natural person. , health data, sexual life or sexual orientation.


  1. Child Use Policy

This website is not designed or directed to children under eighteen (18) years of age, without parental or legal guardian authorization. In this sense, we do not knowingly collect information from such people. In any case, if parents or legal representatives consider that their children have sent us personal data, without their consent, please contact us by writing to

  1. Direct marketing

We will not use users’ personal data for direct marketing purposes without their express prior consent.

If at any time you decide to stop receiving commercial or promotional information from CVR, you can, free of charge and without having to provide a justification, unsubscribe from direct marketing campaigns and object to the future processing of your personal data for such purposes by sending us a email to  or by clicking “opt-out” in the subject of the email. You may also use the unsubscribe procedure provided in any promotional messages you receive from CVR.

Please note that even if you choose not to subscribe or unsubscribe from promotional emails or newsletters, we may still need to contact you regarding important non-commercial information, such as troubleshooting, error detection and prevention, or in general to comply with the Legal Notice of the website.


  1. Automated decision making

We will not use automated decision-making processes, including profiling , unless you have explicitly authorized us to do so. In that case, we would inform you about the logic used in the decision, as well as the meaning and intended consequences of such processing for you.


  1. Links to other websites

On the CVR websites there are links to other websites that we consider potentially useful and informative to you. However, please note that we do not endorse or recommend the content or services of such websites, nor are we responsible for their privacy policies. We recommend that you be aware of and read the privacy policies of all sites you visit. Remember that what is indicated in this Privacy Policy only applies to the data that CVR collects and/or processes.


  1. Modifications and integrity of our Privacy Policy

We will only use your personal data in accordance with the Privacy Policy that is in force at the time we collect your personal data. CVR reserves the right to modify this Privacy Policy at any time, publishing such modifications on our website, so we recommend that you visit it each time you access the Privacy Policy. If at any time we decide to use personal data in a different way than what was declared at the time it was obtained, we will notify you by email, as long as we have it available. At that time you will be given the option to authorize other uses or disclosures of the personal data that you have provided to us before the modification of our Privacy Policy.

In the event that any clause of this Privacy Policy is annulled or considered null, the rest of the conditions will not be affected, fully preserving their validity and validity, in accordance with the regulations in force applicable at all times.