Privacy Policy

May Business Consulting S.L., with its registered office at Avenida de Diego Martínez Barrio, number 10, 2nd floor, 41013 Seville, and May Business Consulting Ltd., with its registered office at The Pinnacle, 170 Midsummer Blvd., MK9 1BP, Milton Keynes, Buckinghamshire, United Kingdom, hereinafter jointly referred to as May Business Consulting, are committed to protecting and respecting your privacy while you visit our website. We respect and value the privacy of all our candidates and clients and will only collect and use personal data as described here and, in a manner, consistent with our obligations and your rights under the EU General Data Protection Regulation (2016/679, “GDPR”) and the UK DPA of 2018.

Additionally, May Business Consulting is ISO-certified by Bureau Veritas and has been a member of the UK’s Information Commissioner’s Office (ICO) with Registration No: ZA182328, since 2016.

This privacy information explains how we use your personal data: how it is collected, stored, and processed. It also explains your rights under the law regarding your personal data.

If you are a Candidate or Employee, you can consult the details of the Privacy Policy at this link.

INFORMATION WE COLLECT

We collect your personal information in various ways, including through the website and social networks, at our events, by phone, and during interactions with clients and suppliers.

Generally, and depending on the purpose of the relationship, we may collect:

  • Contact information: Name, email, phone number, and postal address.
  • Username and password when registering on our website.
  • Any other information you provide in surveys, forms, or via the “Contact” section.

HOW WE USE THE INFORMATION WE COLLECT

We will use the information, in compliance with applicable law, for the following purposes:

  1. Management of our relationships with clients and suppliers: Maintaining and managing relationships with our clients and suppliers, including the administration of contracts and communications.
  2. Responding to inquiries and specific requests: Using your personal data to answer questions, requests, and complaints, providing customer support.
  3. Managing, evaluating, and improving our business: Includes analyzing, developing, and enhancing our services and products, managing communications, and conducting audits, accounting, and other internal functions.
  4. Protecting against fraud: Implementing measures to identify and prevent fraud, money laundering, and other illegal activities, including managing claims and meeting legal obligations.
  5. Complying with legal and contractual requirements: Processing your personal data to meet our legal obligations, industry regulations, contractual requirements, and internal policies.
  6. Sending promotional materials and job alerts: Only with your explicit consent and in accordance with our cookie policy, using your data to send promotional materials, job alerts, and other relevant information.
  7. Managing participation in events and promotions: Informing you about special events, promotions, programs, offers, surveys, contests, and market research, only with your consent.
  8. Payment processing: Managing payment data necessary to process purchases, subscriptions, or transactions made through our services.

DATA RETENTION

We retain the personal data collected in our systems in a way that allows for the identification of data subjects for as long as necessary to fulfill the purposes for which they were collected or for subsequent related purposes:

  • To provide the services agreed upon with the user.
  • To protect a legitimate interest of the Data Controller, as described in the purposes of processing.
  • To comply with specific legal obligations requiring data processing and storage for a determined period.

DATA STORAGE

We adopt various administrative, technical, and physical measures to protect the personal data provided to us, safeguarding it against destruction, loss, alteration, unauthorized access, disclosure, or use, whether accidental or unlawful. To ensure security and confidentiality, we implement measures such as data encryption during transmission and secure user authentication controls.

DATA TRANSFER

In cases where it is necessary to transfer data outside the EU/EEA, mainly to the U.S. and the UK, we will take all necessary security measures, ensure that recognized GDPR safeguards are used to enable the transfer, such as data encryption, and comply with the UK DPA of 2018.

YOUR RIGHTS

  • Right of access: Request information about the personal data we hold about you.
  • Right of rectification: Request the correction of any incorrect or incomplete personal data.
  • Right of erasure: Request the deletion of your personal data when it is no longer necessary for the purposes for which it was collected.
  • Right to object: Object to the processing of your personal data under certain circumstances.
  • Right to data portability: Request the transfer of your data to another service provider.
  • Right to restrict processing: Request the restriction of the processing of your data under specific conditions.

To exercise any of these rights, you can contact us at alfonso.cruz@mayconsulting.es. We will respond to your request within the timeframes established by law.

This policy may be updated from time to time to reflect changes in our data processing practices. We recommend reviewing it regularly.