top of page

Privacy Policy

The purpose of this Privacy Policy is to publicize the way in which we collect, treat and protect the personal data that is provided through our website or blog (hereinafter Website) and freely decide if you want us to process them.

1. Data of the Responsible / Service Provider of the Information Society

Identity: SUMILAB SL

CIF / NIF: B46140109

Postal address: Av. Musician Maestro Rodrigo, 95 b, CP 46015, Valencia (Valencia)

Telephone: 963475159 - 963462352


Corporate purpose: Sale of medical, surgical and laboratory equipment


Registration data: Registered in the Valencia Mercantile Registry Volume 4334, Book 1646, Folio 116, Section 8, Page 22332

2. Processing of personal data

The personal data that you have provided us will be treated confidentially and will be incorporated into the corresponding processing activity owned by our entity.

We request those essential data to meet your request, invoice if you make a purchase or contract or maintain the relationship with your person if you request it or when we are obliged to be able to provide you services and / or attend to your purchases on this website.

3. Purpose

Your personal data will be processed for the sole purpose of meeting your requests, whether you are a client, supplier, user of our website or job applicant.

We do not send advertising without the prior consent of the user.

4. Legitimation

The treatment of your data is carried out on the following bases:

  • The request for information, job application and / or hiring of our services and / or purchase of products.

  • Free, specific, informed and unequivocal consent, since we inform you of this privacy policy, which after reading it and agreeing, you can accept by checking the boxes provided for this purpose.

At any time you can change your mind and withdraw your consent.

Our entity does not process data of minors.

In the event that the user is under 14 years of age or disabled, it will be necessary to have the consent of the parents, guardians or legal representative.

5. Security Measures

Our entity has implemented all the technical and organizational measures necessary to protect the personal data processed, preventing its loss, theft or unauthorized use.

These measures are periodically verified in our compliance controls with the specific regulations.

6. Data retention

The personal data provided will be kept for the time necessary to fulfill the purpose for which they are collected and to determine the possible responsibilities that may arise from the purpose.

In the case of job applications, they will be kept for a maximum period of 1 year or until the interested party requests us to delete their data.

7. Rights of the interested parties

You have the right to know if our entity is treating your personal data; therefore, you have the right to access your data, rectify it if it is inaccurate or request its deletion when the data is no longer necessary.

You can also exercise your right of limitation or portability if you deem it convenient and for this you can do so in writing to our entity by email to attaching a copy of your ID to identify you.

If you wish to send any suggestions or queries about the processing of your data, you can contact our data protection consultants:


Ronda Guglielmo Marconi, 11, 26, (Technology Park) 46980 Paterna (Valencia).

Tel. 96 131 88 04



If the person who wishes to exercise their rights is under 14 years of age or incapacitated, they may exercise them through their parents, guardians or legal representative.

If you want to make a claim because you understand that your rights have been violated, you can do so before the Spanish Agency for Data Protection, C / Jorge Juan, 6, 28001 Madrid or at

8. Profiling

We do not create profiles using your personal data, but if we do, you will be informed and request permission to do so.

Similarly, you have the right to object to this type of treatment at any time.

9. Transfer of data

Your personal data will not be transferred to other countries or to third parties except in cases where there is a legal obligation.

In the case of purchasing products or contracting services, your personal data may be transferred to those entities necessary to deliver the products purchased or provide our services.

Our bank will know your data for the management of the collection of products or services, as well as those in charge of the treatment necessary for the execution of contracts and / or purchases.

In the event of assignments to other entities or to other countries, we will inform you and request your prior consent.

Corporate Data Protection Commitment

Area of ​​application

This Code of Conduct will be mandatory for all departments, employees of our entity and those who act on our behalf.


We have established protocols of action for the processing of personal data, in accordance with the provisions of Spanish and European data protection regulations, so that their security and confidentiality is guaranteed at all times.


Legality, Loyalty, Transparency, Minimization of data, Accuracy, Limitation of the conservation period, Integrity, Confidentiality and Active responsibility.

Special category of data

The processing of personal data that reveal ethnic or racial origin, political opinions, religious or philosophical convictions, union affiliation, the processing of genetic or biometric data, data related to health or data related to sexual orientation, is prohibited. Except in the exceptions authorized by law and with the prior consent of the interested party.

Rights of the interested parties

The interested parties will enjoy the right of access to their personal data, as well as to rectify them when they are inaccurate, delete them when they are no longer necessary or their treatment is not desired, limit them to certain treatments, have the possibility of receiving their data easily and in formats structured and commonly used by the person in charge, as well as their data being used for profiling and opposing treatment at any time.


Activity Register, Impact Assessment and Security Measures

Our entity will carry out a record of the treatment activities and will analyze the purposes of the treatment, categories of the interested parties and data, recipients, international transfers, conservation periods, etc., to evaluate the risks of the treatment and implement the security measures necessary to safeguard personal data under the principles of confidentiality and secrecy. Likewise, we have analyzed the need to designate a Data Protection Delegate, establishing, if necessary, that the person designated for this position will comply with sufficient knowledge and experience in compliance with the provisions of current regulations.


We have hired the services of an external consultant to carry out a periodic audit to evaluate compliance with this commitment and all legal obligations in this matter.


The direction

Updated July 11, 2020


bottom of page