IzzonLab

PRIVACY POLICY

1. Purpose

This Privacy Policy is intended to inform individuals (hereinafter “users” or “data subjects”) who visit our website (hereinafter “website” or “site”) how we collect, process, and protect the personal data they may provide through any means (forms, emails, phone calls, contracts, etc.), so that they can freely decide whether they want us to process them.

Additionally, this policy expands on the information previously provided in the legal clauses included in our data collection processes.

It is also intended to comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 (GDPR) and Spanish Organic Law 3/2018 of December 5 on the Protection of Personal Data and the Guarantee of Digital Rights (LOPDGDD).

 

2. Who is responsible for processing your personal data?

Entity: IZZON LAB, S.L.

CIF/NIF: B75446872

Postal Address: C/ Sierra de Gata, 2, CP 28830 San Fernando de Henares (Madrid)

Phone: 916 75 11 39

Email: lopd@izzonlab.com

Business Purpose: Manufacturing and sale of perfumes and cosmetics

Website: https://izzonlab.com/

Registration Data: Registered in the Madrid Commercial Registry, Volume: 1, Page: 1, Section: 8, Sheet: 837232

3. How can you contact the Data Protection Officer?

We have appointed a Data Protection Officer before the Spanish Data ProtectionAgency, who can be contacted for complaints or questions regarding how your data is processed:

BUSINESS ADAPTER, S.L.
Ronda Guglielmo Marconi, 11, 26, (Parque Tecnológico) 46980 Paterna (Valencia).

Email: info@businessadapter.es (ref. izzonlab) or through this Data Subject Request Form.

4. What personal data do we process and how do we collect it?

We collect data through digital means, physical documents, or conversations (in-person or by phone). All data is processed fairly, lawfully, and transparently.
 
Categories of data may include:
 
•     Identifying data (name, ID, image, voice, signature)
•     Contact information (email, phone, address)
•     Commercial data (quotes, service records, communications)
•     Accounting data (billing, income/expenses)
•     Bank data (account and card info)
•     Curriculum data (education, professional experience)
•     Transaction data (transfers, direct debits)
•     Web browsing data (time spent, pages visited, demographics)
•     We do not collect special categories of personal data, unless necessary and with prior, express consent.
 
We do not collect special categories of personal data (e.g., health data, ethnic origin, political opinions or religious beliefs). If it ever becomes necessary to process this type of data, we will inform you and request your prior and explicit
consent.
 
Accordingly, the data collected will always be adequate, relevant, and limited to what is strictly necessary. These data will only be processed by authorized personnel and/or collaborators who have signed a confidentiality agreement and who comply with the necessary security measures to guarantee confidentiality, integrity, availability, and other requirements established under GDPR.
 
The data processed are provided by the data subject or their legal representative. In some cases, certain functions may be delegated to collaborators who may collect your data, always with your prior and explicit consent.
 
If a data subject does not provide the data requested or provides incomplete or incorrect information, we may be unable to maintain the relationship or provide the requested service.
 
The categories of personal data we may process depend on the type of relationship you have with our company, as described below:

5. What is the purpose of processing your data?

In general, the processing of personal data carried out by our entity aims to fulfill and maintain the relationship with the various groups of people with whom we interact. Depending on the type of relationship, the purpose of processing varies. The following is a non-exhaustive list: 

5.1. Clients

Data will be processed to identify you, establish and maintain the pre-contractual and contractual relationship, send commercial communications, respond to inquiries, perform quality controls and commercial statistics, manage accounting, process transactions, manage payments, handle incidents, complaints, and rights requests, and comply with legal obligations or legitimate interests.

5.2. Information Requesters

We process your data to handle information requests, identify you, provide quotations and information on goods and services, and perform follow-up contacts regarding commercial proposals.

5.3. Job Applicants

We process your data to include you in recruitment processes and job pools, identify you, contact you about vacancies, coordinate interviews, and manage matters related to your application. More information: Job Applicants Policy.

5.4. Suppliers

We process data to maintain the pre-contractual and contractual relationship, request quotations, purchase goods or services, identify you, manage accounting, process transactions, and comply with legal obligations or legitimate interests.

5.5. Social Media Users

We process your data to maintain the relationship as users of the same platform, identify you, contact you, share news or advertising, and process other personal data you allow to be shared. More information: Social Media Policy.

5.6. Claimants

We process data to identify you, handle your claim, and contact you regarding its status, in addition to fulfilling legal obligations and legitimate interests.

5.7. Whistleblowers

We process the data provided to register and manage your report, identify and contact you (unless the report is anonymous), acknowledge receipt, and inform you about investigative steps within legal deadlines under Law 2/2023.

5.8. Visitors

Visitor data is processed to identify you, comply with occupational risk prevention obligations, and ensure security and access control.

5.9. Website Users

We do not use cookies to collect personal information. Only technical session cookies are used. See our Cookie Policy.

5.10. Additional Information

Required legal information will be included in forms, scripts, contracts, etc., so you may decide freely and expressly whether to allow processing. If you do not provide data or provide incomplete or incorrect information, we may be unable to provide services or respond to requests.

6. What is the legal basis for processing your data?

We process your data based on:

  • Your express, informed, and voluntary consent
  • The performance of a contract or pre-contractual measures
  • Legal obligations
  • Our legitimate interests, provided they do not override your fundamental rights

If the user is under 14, parental or legal guardian consent is required.

7. How long do we keep your data?

We retain data as long as necessary to fulfill the intended purposes. Afterward, it will be blocked and stored only as needed for legal claims or obligations.

8. Do we create profiles or use automated decisions?

No. If we ever do, you’ll be informed and your consent will be requested. You may oppose automated decisions at any time by writing to: lopd@izzonlab.com.

9. Data Disclosure

We do not generally disclose personal data to third parties without prior consent. However, disclosure may be necessary in certain cases, such as:

  • For clients or suppliers: data may be disclosed to third parties due to legal obligations (e.g., Tax Agency), payment processing (e.g., banks), or delivery of goods (e.g., logistics companies).
  • Third-party processors (e.g., accounting advisors) may process data under strict confidentiality and GDPR obligations.
  • Job applicants: data will only be disclosed if legally required or if the applicant authorizes sharing with group companies.
  • Information requesters or website users: data will only be shared with explicit consent, unless legitimate interest or legal obligation applies.
  • Whistleblowers: data may be processed by authorized personnel and shared with third parties when necessary for corrective measures or legal/legal procedures under Law 2/2023.

 

In general, data may be disclosed to courts, prosecutors, or competent public administrations when required by law.

10. International Data Transfers

If we transfer your data outside the European Economic Area, we will inform you and request your express, prior consent.

11. Security Measures

We have implemented technical and organizational measures to prevent unauthorized access, loss, or misuse of data. These are regularly reviewed through audits and internal controls.

 

12. Your Rights

You may exercise the following rights at any time:

12.1. Right of Access

To know what data we process, for what purpose, and how.

12.2. Right of Rectification

To correct inaccurate or incomplete data.

12.3. Right to Object

To object to data processing under certain conditions.

12.4. Right to Erasure

To request deletion of your data under specific circumstances.

12.5. Right to Restriction of Processing

To limit how your data is used, e.g., during a dispute.

12.6. Right to Data Portability

To receive your data in a readable format and transfer it elsewhere.

12.7. Right Not to Be Subject to Automated Decisions

To oppose profiling or automated decisions with legal or significant effects.

To exercise these rights, contact IZZON LAB, S.L. at the address or email provided, attaching ID or legal representation proof if necessary.

You may also contact the Data Protection Officer or file a complaint with the Spanish Data Protection Agency:

C/ Jorge Juan, 6, 28001 Madrid or www.aepd.es

13. Commitment to Data Protection

Scope: Applies to all departments and personnel, including third parties acting on our behalf.

Principles: Lawfulness, fairness, transparency, data minimization, accuracy, confidentiality, and accountability.

Special Categories: Processing of sensitive data is prohibited unless legally required and consented.

Rights: We respond promptly and diligently to all data protection requests.

Records & Impact Assessments: All processing activities are documented and assessed for risks, with appropriate security measures in place.

Control: We receive external advice and stay updated on regulatory developments.

 

14. Updates to this Policy

We reserve the right to modify this Privacy Policy without prior notice. We recommend reviewing it regularly.

Last updated: March 27, 2025