Legal Notice – Electronic Billing Service of Nexmart S.L.
1. Identification of the Data Controller
Owner: nexmart S.L. Address: Parque Tecnologico Miramon, Paseo Mikeletegi 56, ES-20009 Donostia, Spain Contact email: administracion@nexmart.com Data Protection Officer (DPO): seguridad@nexmart.com (if applicable)
nexmart S.L. is responsible for the processing of personal data collected and managed within the framework of the electronic billing service provided to its clients, in accordance with Regulation (EU) 2016/679 (GDPR) and the LOPDGDD.
2. Purposes of Processing
The personal data provided by the client will be used exclusively to:
Manage the contractual relationship regarding the electronic billing service.
Issue, receive, validate, digitally sign, and store electronic invoices in compliance with current legislation.
Fulfill legal requirements in tax, accounting, and commercial matters.
Provide technical and functional support during the use of the platform.
Send notifications related to service status, technical incidents, or regulatory updates.
Your data will not be used for purposes other than the above without your explicit consent.
3. Legal Basis for Processing
The processing of data is based on the following legal grounds:
Execution of a contract.
Compliance with legal obligations.
The legitimate interest of the controller.
No unnecessary data or data unrelated to the described purposes will be collected.
4. Data Retention
Data will be retained for the duration of the contractual relationship and subsequently for the legally required periods (generally 5 years, or 10 years if applicable under the country’s tax regulations). Afterwards, secure deletion or irreversible anonymization will be carried out if agreed by the client.
5. Data Recipients
Data may be communicated to:
Public bodies and tax authorities.
Technology providers necessary for system operation, under contract in accordance with Article 28 GDPR.
Auditors or legal advisors, when necessary.
Data will not be transferred to third parties for commercial purposes.
6. International Transfers
nexmart does not transfer personal data outside the European Economic Area (EEA). If any provider delivers services from outside the EEA, an adequate level of protection will be ensured through standard contractual clauses.
7. Data Subject Rights
You may exercise your rights of access, rectification, erasure, restriction, objection, and portability. To do so, you may send an email to seguridad@nexmart.com, providing proof of identity. You may also file a complaint with the Spanish Data Protection Agency (www.aepd.es).
8. Security and Confidentiality
nexmart applies appropriate technical and organizational measures to protect personal data. This includes access controls, encryption, audits, backups, and incident recovery protocols.
9. Updates to this Policy
nexmart may modify this policy to adapt it to new regulatory or technical requirements. In the event of significant changes, users of the service will be notified with reasonable prior notice.
Privacy Policy – Electronic Billing Service
Updated: [02/06/2025]
1. Identification of the Data Controller
Holder: nexmart S.L.
Address: Parque Tecnológico Miramón, Paseo Mikeletegi 56, ES-20009 Donostia, Spain
Contact Email: administracion@nexmart.com
Data Protection Officer (DPO): seguridad@nexmart.com (if applicable)
nexmart S.L. is responsible for processing the personal data collected and managed within the framework of the electronic billing service provided to its clients, in accordance with Regulation (EU) 2016/679 (GDPR) and the Spanish Data Protection Act (LOPDGDD).
2. Purposes of Processing
The personal data provided by the client will be used exclusively to:
Manage the contractual relationship regarding the electronic billing service.
Issue, receive, validate, digitally sign, and store electronic invoices in compliance with current legislation.
Fulfill legal requirements in tax, accounting, and commercial matters.
Provide technical and functional support during use of the platform.
Send notifications regarding service status, technical incidents, or regulatory updates.
Your data will not be used for purposes other than those listed above without your explicit consent.
3. Legal Basis for Processing
Data processing is based on the following legal grounds:
Execution of a contract.
Compliance with legal obligations.
The legitimate interest of the controller.
No unnecessary data or data unrelated to the stated purposes will be collected.
4. Data Retention
Data will be retained for the duration of the contractual relationship and subsequently for the legally required periods (generally 5 years, or 10 years if applicable under national tax regulations). Afterwards, data will be securely deleted or irreversibly anonymized if agreed with the client.
5. Data Recipients
Data may be disclosed to:
Public authorities and tax administrations.
Technology providers necessary for system operation, under contracts compliant with Article 28 GDPR.
Auditors or legal advisors, when required.
Data will not be transferred to third parties for commercial purposes.
6. International Transfers
nexmart does not transfer personal data outside the European Economic Area (EEA). If any provider delivers services from outside the EEA, an adequate level of protection will be ensured through standard contractual clauses.
7. Rights of Data Subjects
You may exercise your rights of access, rectification, erasure, restriction, objection, and portability. To do so, you may send an email to seguridad@nexmart.com, providing proof of identity. You may also file a complaint with the Spanish Data Protection Agency (www.aepd.es).
8. Security and Confidentiality
nexmart applies appropriate technical and organizational measures to protect personal data. These include access controls, encryption, audits, backups, and incident recovery protocols.
9. Updates to this Policy
nexmart may amend this policy to adapt it to new regulatory or technical requirements. In the event of significant changes, users will be notified with reasonable prior notice.