Privacy Policy
In compliance with the General Data Protection Regulation (GDPR) and the Spanish Organic Law 3/2018 on the Protection of Personal Data, we inform you about the processing of your personal data.
Data Controller
Rafael Miret Romaguera
Lawyer registered with the Valencia Bar Association (ICAV) No. 15972
Camí Nou de Picanya nº 1 - 17, 46014 Valencia, Spain
Phone: +34 680 20 26 00
Email: info@rafaelmiret.com
Web: rafaelmiret.com
What do we use your data for?
Your personal data will be used to:
- Manage the enquiries and requests you send us through the contact form or email.
- Provide our professional legal advisory and representation services.
- Comply with applicable legal obligations.
Why do we need your data?
The legal basis for processing your data is the consent you give us when contacting us, as well as the performance of the contractual relationship when you engage our professional services. In certain cases, processing may be necessary to comply with legal obligations.
Who has access to your data?
Only duly authorised personnel of this firm will have access to your personal data. Your data will not be disclosed to third parties, except where required by law (for example, to the Tax Agency or competent judicial bodies) or when necessary for the provision of the contracted service.
Service providers (data processors)
The following service providers are used for the operation of this website and may process data in an auxiliary capacity:
- Cloudflare, Inc. (San Francisco, USA) — web hosting, content delivery network (CDN), anti-spam protection (Turnstile) and cookieless aggregated web analytics. Cloudflare acts as a data processor and complies with the Standard Contractual Clauses approved by the European Commission. More information: Cloudflare Privacy Policy.
- Google LLC (Mountain View, USA) — Google Maps embedded to display the office location. Google may process browser data when loading the map. More information: Google Privacy Policy.
How do we protect your data?
We apply appropriate technical and organisational security measures to ensure the confidentiality, integrity and availability of your personal information, based on the risks involved in its processing.
Is data transferred outside the EU?
Some service providers (Cloudflare and Google) are based in the United States. Both comply with the Standard Contractual Clauses (SCCs) approved by the European Commission, ensuring an adequate level of protection. No other international data transfers are made outside the European Economic Area.
How long do we keep your data?
We will retain your data for the duration of our professional relationship and, subsequently, for the legally required periods. Once that period has ended, they will be securely deleted.
What are your rights?
You may exercise the following rights at any time:
- Access: know what personal data we hold about you.
- Rectification: correct inaccurate or incomplete data.
- Erasure: request the deletion of your data when they are no longer necessary.
- Objection: object to the processing of your data in certain circumstances.
- Portability: request the transfer of your data to another entity.
- Restriction: request that the processing of your data be restricted.
To exercise these rights, send your request to info@rafaelmiret.com accompanied by a copy of your ID document.
Can you withdraw your consent?
You may withdraw your consent at any time, without affecting the lawfulness of prior processing. To do so, contact us through any of the means indicated.
Where to file a complaint?
If you believe your rights have not been properly addressed, you may file a complaint with the Spanish Data Protection Agency:
- Web: www.aepd.es
- Address: C/ Jorge Juan, 6 — 28001 Madrid, Spain
- Phone: +34 91 266 35 17
Filing a complaint with the AEPD is free of charge and does not require a lawyer or solicitor.
