Privacy & Data Protection Policy

1. Introduction

We, Nefer Sanz and Carlos Garcia (Digital Nomad Visa in Spain), are committed to protecting the privacy and confidentiality of our clients’ data. This Data Protection Policy outlines how we collect, use, store, and protect personal and professional data in compliance with the General Data Protection Regulation (GDPR) and other applicable European laws.

2. Data Collection & Purpose

Our law firm collects and processes personal and case-related data exclusively for the purpose of providing legal services. This includes but is not limited to:

  • Identification and contact details (e.g., name, email, phone number, address)
  • Case-related documents and information provided by the client
  • Payment details necessary for invoicing

We do not use personal data for marketing purposes unless explicitly consented to by the client.

3. Legal Basis for Processing

The legal basis for processing personal data is:

  • Performance of a contract: Necessary for the execution of legal services
  • Legal obligation: Required for compliance with legal or regulatory requirements
  • Legitimate interest: Necessary for managing client relationships effectively

4. Data Confidentiality & Security

All personal and case-related data is treated with strict confidentiality. We implement appropriate security measures to prevent unauthorized access, disclosure, or loss of data, including:

  • Secure storage of documents (physical and digital)
  • Restricted access to case files (only authorized personnel)
  • Encryption and secure communication for electronic data

5. Data Sharing & Third Parties

We do not share, sell, or distribute client data to third parties, except in the following cases:

  • When legally required by courts or regulatory authorities
  • When explicitly authorized by the client
  • With service providers (e.g., cloud storage providers) who are GDPR-compliant and solely assist in processing client data securely
  • With collaborators, when necessary, to process other procedures associated with the client’s case that are handled by those collaborators, provided the client has given authorization

6. Data Retention

We retain personal and case-related data only for as long as necessary to fulfill legal obligations or as required by professional regulations. After this period, data is securely deleted or anonymized.

7. Client Rights

Under GDPR, clients have the following rights regarding their data:

  • Right to access: Obtain a copy of their personal data
  • Right to rectification: Request corrections to inaccurate or incomplete data
  • Right to erasure (“right to be forgotten”): Request data deletion when legally applicable
  • Right to data portability: Receive their data in a structured format
  • Right to object: Object to processing under specific circumstances

To exercise these rights, clients may contact us at [your email/contact details].

8. Compliance with Google Policies

As our firm may use Google services (e.g., email, cloud storage), we ensure that data processing aligns with Google’s security and privacy policies. We use secure Google services that comply with GDPR standards.

9. Contact Information

For any inquiries regarding this Data Protection Policy, please contact:
Nefer Sanz & Carlos Garcia – Digital Nomad Visa in Spain

info@digitalnomadvisainspain.com
Frontó 39-41
Esplugues del Llobregat
08950 Barcelona

10. Updates to This Policy

This policy may be updated periodically to reflect changes in regulations or business practices. Clients will be notified of significant updates.