Privacy Policy

Welcome, and thank you for choosing Nexu Ring!

This privacy policy (the "Privacy Policy") is intended to inform, in a clear and precise manner, users (hereinafter, the "End Users") who browse and use the created platform (the "Platform"), as well as to inform those professionals who have contracted or wish to contract the services of Nexu Ring (the "Services"), about the processing of personal data collected by the company MH CASA TECHNOLOGY SPAIN S.L.U. ("Nexu Ring" or the "Company") through the aforementioned Platform. Henceforth, this Privacy Policy will refer to the End Users, jointly, as "Users" or, individually, as "User".

This Privacy Policy applies only to the Platform that Nexu Ring makes available to Users, and the Company declines any responsibility for the different privacy policies and personal data protection that may be contained on the websites to which the User may access through the hyperlinks located on the Platform and not directly managed by Nexu Ring.

In accordance with the provisions of applicable regulations, the Company informs Users that the data they provide through the Platform will be incorporated into their data files, for which it is responsible.

The completion of the registration form by Users, as well as the data provided by the User during the provision of services, necessarily implies, without reservation, the knowledge and acceptance of this Privacy Policy. Therefore, Users are recommended to read this Privacy Policy carefully beforehand.

Identity and Contact Details of the Data Controller

The owner of this Platform is MH CASA TECHNOLOGY SPAIN S.L.U., with registered office in Marbella (Málaga), Urbanización Parra Palomeras, Villa la Perla, number 1, CP 29602, provided with the NIF number B01600998 and registered in the Mercantile Registry of Málaga, Volume 5944, folio 6, Sheet MA-155938. Its contact email: [email protected]

Data Necessary for Certain Treatments

The provision of data by Users through the registration form or the contact form, as well as during navigation on the Platform is voluntary, although not providing certain data may make it impossible to access certain services provided by the Company.

Users will be responsible, in any case, for the veracity, accuracy, validity and authenticity of the personal data provided, reserving the Company the right to exclude from the services Users who have provided false data, without prejudice to the other actions that may be taken at law.

Information Collected from Users

The Company processes the following personal data of Users:

  • Personal Information: Name, email address, date of birth, weight, height, gender, and any other information you voluntarily provide.
  • Contact data, such as email address, telephone number, and postal address.
  • Health Data: Heart rate, sleep patterns, activity levels, blood oxygen, stress, temperature, and other biometric data collected by the Nexu Ring.
  • Device Information: Type of device, operating system, device identifiers, and mobile network information.
  • Usage Data: Information about how you use the Nexu Ring and app, such as features accessed, time spent on the app, interactions with the device, and geolocation data (with your consent).
  • Financial Information: Payment information if you make purchases through the app.
  • Other personal data that may appear in messages, suggestions and/or opinions sent by the User to Nexu Ring.

Purposes and Legal Basis for Data Processing

The Company aims to process all received data lawfully and, therefore, must base the processing of your data on a sufficient legal basis. In accordance with the foregoing, below we indicate the purposes for which the Company processes the data and the legal basis on which each one is based:

  • Service Provision: Nexu Ring uses this data to provide its services, creating professional profiles for Professionals within the Platform, among others. This data processing is necessary for the Company to provide its services and carry out the execution of the contract between the Company and Users who have contracted Nexu Ring's services. If the User does not provide some of this data, the Company would not be able to provide some of its services.
  • Data Verification: Nexu Ring uses this data to verify the User's data. The Company considers that it has a legitimate interest in carrying out such data processing insofar as it allows it to verify that the data provided by Users is truthful and owned by them.
  • Managing Inquiries and Suggestions: Nexu Ring may also use the data to process, manage, and resolve any complaints or suggestions or inquiries from the User. The Company considers that it has a legitimate interest in carrying out such data processing insofar as it allows it to improve its services and the User experience.
  • Marketing Communications: The Company may use the Users' data to contact them and inform them of the latest news about the services provided by the Company. These communications will be made only and exclusively after obtaining the consent of the User, except in the case that the User is already a Nexu Ring client, in which case commercial communications regarding products and services similar to those contracted may be sent.
  • Payment Processing: Nexu Ring may process the bank details of its Users in order to manage the collection of the services provided by it. The legal basis for such processing will be the execution of the contractual relationship between Nexu Ring and its Users.
  • Service Evaluation: The Company may use User data to evaluate the operation and know the opinion of Users about the Platform, Professionals, and End Users. The Company considers that it has a legitimate interest in carrying out such data processing insofar as it allows it to improve the quality of its services and the User experience.

User Acceptance

By accepting the Platform's Legal Notice and this Privacy Policy, the User acknowledges having read and understood the terms of use and the legal terms established in this Privacy Policy, and expressly and unequivocally accepts the application thereof to the use made of the Platform during its navigation and the provision of the corresponding services.   

Users are expressly informed and authorize the Company to collect and process their data for the purposes indicated in this Privacy Policy as described therein.

Users must notify the Company of any modifications that occur in the data provided, being responsible, in any case, for the veracity and accuracy of the data provided at all times. Likewise, Users must refrain from uploading any false or inadmissible content according to the Law, morality, good faith and public order or that may, in any way, infringe the rights of third parties.   

The Company reserves the right, in its case and without prejudice to other actions that may correspond to it, to not provide the services, to cancel or remove content from those Users who provide false or incomplete data. All of this does not imply, in any case, the assumption by the Company of any responsibility for damages or losses that may arise from the falsity or inaccuracy of the data provided or inadequate content, for which the User shall be solely responsible.

Nexu Ring as a Data Processor

Data protection regulations distinguish between the "controller" and the "processor" of users' personal data. Therefore, we inform you that the User is the controller of their personal data and Nexu Ring will be the processor of said personal data. Furthermore, the End User is informed that the personal data provided through the Platform, in particular, medical data, will be processed and will be the responsibility of the Professionals.

Data Communication and International Transfers

The personal data collected through the Platform will not be transferred to any third party to be used for their own purposes other than those for which the User has consented to its processing. However, at the time that the End User registers on the Platform and/or proceeds with the request for the provision of the Services, the Company will share the personal data of the End Users with the third-party recipients mentioned below:  

  • Authorities or public bodies: The Company may disclose the personal data collected in specific cases where such communication is established and is required by applicable regulations; or when so required by the competent authorities.
  • Sub-processors: Nexu Ring also has third-party companies that help it to provide Services to Users. Therefore, these third-party companies act as sub-processors of User data. Users can check the list of these sub-processors at the following link. In this regard, Nexu Ring ensures that all its sub-processors act confidentially, loyally and in compliance with applicable data protection regulations. The aforementioned recipients could host some of their data outside the European Union and the European Economic Area. The foregoing could imply an international data transfer. In this sense, the Company is concerned that such resulting international transfers are subject to any of the adequate safeguards described in the applicable regulations such as the signing of standard data protection clauses.

Data Retention Periods

The Company stores the Users' personal data to the extent necessary to be able to use the data according to the purpose for which it was collected, and according to the legal basis for its processing. The Company will keep the User's personal data while there is a contractual and/or commercial relationship with the User and as long as the User does not exercise their rights of opposition and/or deletion of the processing of personal data. In these cases, the Company will keep the data duly blocked, without giving it any use, as long as they may be necessary for the exercise or defense of claims or if any type of judicial, legal or contractual responsibility may arise from its processing, which must be addressed and for which its recovery is necessary.   

Users’ Rights

At any time, and/or whenever they deem it convenient, Users may exercise their rights of Access, Rectification, Cancellation, Opposition, Portability, and Deletion by writing to the contact email that we have enabled for this purpose: [email protected]; attaching a copy of their passport or ID (data owner) and indicating in the subject line expressly the request they wish to make:

  • Access: By exercising this right, you can find out what personal data of yours is being processed by the Company; its purpose, origin, or its possible transfer to third parties.
  • Rectification: This allows you to modify your personal data that is inaccurate or incomplete, specifying in the request which data you want to modify.
  • Cancellation: Allows the cancellation of your personal data due to being inadequate or excessive.
  • Opposition: With the right of opposition, you can oppose the processing in certain cases or for a specific purpose, such as in the hypothetical case that your data is used for advertising and commercial prospecting activities or if the processing were for the purpose of making a decision concerning you based solely on an automated processing of your personal data.  
  • Portability: You may receive your personal data provided in a structured, commonly used and machine-readable format, and be able to transmit it to another controller, as long as it is technically possible.  
  • Deletion: You may request the deletion of personal data without undue delay when any of the assumptions contemplated occur. For example, unlawful data processing, or when the purpose that motivated the processing or collection has disappeared.

Modifications to the Privacy Policy

The Company reserves the right to modify this Privacy Policy to adapt it to new legislation or case law, as well as to industry and/or commercial practices. Any modification to this Privacy Policy will be notified to the User and, if necessary, their acceptance will be requested. If the User does not accept the new terms of the contract policy, they may not continue to enjoy the provision of services by the Company.   

Security Measures

The Company will treat your personal data in an absolutely confidential manner. Likewise, it has implemented appropriate technical and organizational measures, according to the type of data collected, to guarantee the security of your personal data and prevent its destruction, loss, unauthorized access or unlawful alteration. When determining these measures, criteria such as the scope, context, and purposes of the processing have been taken into account; the state of the art and the risks involved.

If you have any questions about our Privacy Policy, please contact us by sending an email at [email protected]. Also, if you consider that your rights are not being adequately addressed, you have the right to file a complaint with the Spanish Data Protection Agency, whose contact details are: Telephones: 901 100 099 91.266.35.17; Postal Address: C/ Jorge Juan, 6 28001-Madrid; Electronic Headquarters: https://sedeagpd.gob.es/sede-electronica-web/ and website: www.agpd.es 

Last Updated: 20th of October, 2024