tensormedical

Leveraging brain image analysis through machine intelligence

Website Privacy Policy

INTRODUCTION

At TENSORMEDICAL SL we work to offer you the best possible experience through our products and services. In some cases, it is necessary to collect information to achieve this. We are concerned about your privacy and we believe that we must be transparent about it.

If you are reading this document (“Website Privacy Policy”), it is because you are visiting this website (“Website”) and we want to inform you, pursuant to art.13 of EU Regulation 679/2016 (hereinafter “GDPR”) on how we process your Personal Data.

The information and Data provided by you or otherwise acquired will be processed in compliance with the provisions of the GDPR and solely for the purposes described in this Policy.

DATA CONTROLLER

TENSORMEDICAL, S.L. (hereinafter referred to as "TENSORMEDICAL" or the "Organization") is the company that created this website and is responsible for the processing of the personal data you share with us. The following is general information about the Organization:

  • Identity: TENSORMEDICAL SL
  • Address: Calle Pic de Peguera, 11, Girona, 17003 , Girona
  • TAX ID: B01760784
  • Email: info@tensormedical.ai

DATA PROTECTION OFFICER

TENSORMEDICAL has appointed a Data Protection Officer (“DPO”) in the organization. If you want to make a query regarding the processing of your personal data, you can contact our DPO by sending an email to dpo@tensormedical.ai.

PERSONAL DATA PROCESSED

We will process different categories of Personal Data grouped as follows:

  1. Browsing data: Country, type of device, IP address, domain name, Uniform Resource Identifier, addresses of the requested resources, the time of such requests, the method used for submitting a given request to the server, returned file size, a numerical code relating to server response status, errors, and other parameters related to the user's operating system and computer environment.
  2. Contact details: Name, surname, email address.
  3. Inquiries, requests: Your inquiries, requests for information.
  4. Job application data: Data contained in the Curriculum Vitae that may include:
    • Contact details (Name, Surname, Email address, Address)
    • Education and employment data (Education background and employment history)
    • Other data that you may spontaneously insert in your CV (Picture, driving license, etc.)

WHY DO WE PROCESS YOUR PERSONAL DATA AND UNDER WHAT LEGAL BASIS?

  • Browsing data. We process this information to provide you with our web-based services (navigating our website).

    The legal basis for processing these personal data is the performance of a contract - art. 6(1)(b) GDPR; These data are collected automatically when you land and navigate on this Website from your device(s). These data are necessary to use web-based services and are also processed in order to check if our services are functioning correctly.

  • Contact details, inquiries and requests. We process these data to manage your request for information and answer your inquiries when you contact us through our email available on the website.

    The legal basis for processing this information is the performance of a contract or the adoption of pre-contractual measures taken at your request prior to entering a contract - Art. 6(1)(b) GDPR. The provision of this data is not mandatory. We will process your data and respond to your inquiries only If you send us an e-mail message.

  • Job application data. We process this information to manage your job application (communicate with you, assess your suitability for the job, organize interviews) when you send us a spontaneous application or apply to an open position via our email published on the website.

    The legal basis for such processing is:

    • Art.6(1)(b) - Performance of the contract / pre-contractual measures when you send us a spontaneous application or you apply to an open position. The provision of this data is mandatory to manage your job application.

    • Art. 9(2)(a) - Explicit consent for any (unrequired) sensitive data which you have shared with us. When applying for a position and sending documents such as your CV or cover letter on this Website, you may (inadvertently) share information that is not required by us and may be regarded as sensitive under data protection laws. Sensitive Personal Data typically include information relating to your health, ethnicity, political opinions, religious beliefs, trade union membership, sexual orientation or criminal record. We ask you to refrain from sharing any sensitive Personal Data as part of your application, unless it is required by law. If you voluntarily decide to share sensitive Personal Data with us, we will consider having obtained your explicit consent to collect and process such data when handling your application.

RETENTION PERIOD

We only keep your Personal Data for as long as necessary for the purposes for which they were collected or, in case consent was the legal basis, until you withdraw your consent.

To determine how long we keep your Personal Data, we use the following criteria:

  • the purposes for which we process the personal data, and whether we can achieve those purposes by other means. For example, when you contact us because you have an inquiry or a specific request, we will keep your data for the time necessary to resolve your inquiry. When you send to us your job application, we will keep your data for the whole selection process and for a maximum of 2 years (24 months).
  • the amount, nature and sensitivity of the data processed;
  • the potential risk of harm to individuals derived from unauthorized use or disclosure;

We may retain some of your Personal Data to comply with our legal or regulatory obligations, as well as to administer our rights (for example, to pursue our claims in court).

If we no longer need to use your Personal Data, it will be deleted from our systems and records or anonymized so that you can no longer be identified.

For further information, please contact us by e-mail at dpo@tensormedical.ai

RECIPIENTS TO WHOM WE COMMUNICATE YOUR DATA

In some cases, only when necessary to carry out some processing activities, TENSORMEDICAL will provide your data to third parties. However, the data will never be sold to third parties. The external service providers that TENSORMEDICAL relies on to provide auxiliary services for the processing of your data may have access to your data in accordance with the instructions given by TENSORMEDICAL and for the sole purpose of properly performing the contractual relationship that exists between TENSORMEDICAL and its providers.

TENSORMEDICAL seeks to ensure the security of Personal Data when it is sent outside the company and ensures that third party service providers respect confidentiality and have adequate measures in place to protect personal data. These third parties have an obligation to ensure that the information is handled in accordance with data privacy regulations. In order to comply with these safeguards, TENSORMEDICAL enters into data processor agreements with these providers in accordance with Article 28 of the GDPR.

In some cases, the law may require that personal data be disclosed to public administrations or other parties; only what is strictly necessary for the fulfillment of such legal obligations will be disclosed.

TRANSFER OF PERSONAL DATA OUTSIDE THE EUROPEAN ECONOMIC AREA

In general, your data is processed within the EU. However, in the event that the processing of your data involves a transfer outside the European Economic Area (EEA) TENSORMEDICAL such data transfers will take place only to third countries with an Adequacy Decision in place approved by the European Commission or, in case of no Adequacy Decision, based on Standard Contractual Clauses provided by the European Commission and additional security measures to ensure data security.

DATA SUBJECT'S RIGHTS

You can address your communications and exercise your rights by sending a request to the following e-mail address dpo@tensormedical.ai

Under the GDPR you can request:

  • Right of access: you can request information about those personal data we have about you.
  • Right of rectification: you can communicate any change in your personal data or ask us to rectify/complete information you think is inaccurate.
  • Right to erasure and to be forgotten: you can request to erase your personal data in certain circumstances.
  • Right to restrict the processing: this is to limit the way we process your personal data.
  • Right to data portability: in some cases, you may request a copy of the personal data in a structured, commonly used, and machine-readable format for transmission to another data controller.
  • Right not to be subject to automated decision-making, including profiling.
  • Right to object to the processing: you can oppose, under certain circumstances, to the processing of personal data, for reasons relating to your specific situations.
  • Right to lodge a complaint with a Data Protection Authority.
  • Right to withdraw your consent at any moment.

The exercise of rights is not subject to any formal constraints and is free of charge. You can also ask us for further information related to these rights.

You can exercise your rights by contacting us and our DPO at the following address dpo@tensormedical.ai.

In some cases, the request may be denied due to specific circumstances (i.e. data must be kept to comply with legal obligations).

SECURITY MEASURES IMPLEMENTED TO PROTECT YOUR PERSONAL INFORMATION

TENSORMEDICAL has adopted the legally required levels of security for the protection of personal data, and endeavors to install other additional technical means and measures within its reach to prevent the loss, misuse, alteration, unauthorized access and theft of personal data provided to TENSORMEDICAL.

In particular, the website is secured with a TLS certificate with RSA encryption, which means that all information sent to the website is encrypted with an HTTPS protocol.

MODIFICATION OF THE PRIVACY POLICY

This privacy policy may be modified. All personal data processed is subject to the policy effective at the time it is collected. We recommend that you review the privacy policy from time to time since any changes will be posted on this website and, if necessary, notified to you.

This Policy was last updated on August 30, 2024.