Cyberclick Privacy Policy

At CYBERCLICK AGENT, S.L. (hereinafter, “CYBERCLICK”), we work to provide you with the best possible experience through our products and services. In some cases, it is necessary to collect certain information to achieve this. We care about your privacy and believe we should be transparent about it.

Therefore, and in accordance with Regulation (EU) 2016/679, the General Data Protection Regulation (GDPR), and Law 34/2002 (LSSICE), CYBERCLICK will process your personal data as the data controller.

Our commitment includes:

• Collecting your data to improve the user experience, tailored to your interests and needs. We are transparent about the data we collect and the purposes for which we use it, always complying with applicable laws and requesting your consent when necessary.
• Your data belongs to you. If you decide not to allow us to process it, you may request that we stop processing it.
• Our priority is to ensure your security and process your data in accordance with European data protection rules.

For more information about the processing of your data, please see the sections of this privacy policy below.

The Controller of the data collected through this Website is CYBERCLICK with registered office at Moll de Barcelona, s/n, World Trade Center North Building 2nd floor, 08039 - Barcelona and email dpo@cyberclick.net.

The personal data of the user of this Website will be processed for the following purposes, as applicable:

• Access to content available on this Website, either for downloading materials or for registering for and managing webinars/courses. The data processed for this purpose will be kept until the consent given is withdrawn and, thereafter, during the legally established retention periods and statute of limitations. The legal basis for the processing is the user’s consent expressed through the channels made available on this Website.
• Keep the user informed, including by electronic means, about Cyberclick’s products, services, and updates. The data processed for this purpose will be kept until the user withdraws their consent to receive such communications and, thereafter, during the legally established retention periods and statute of limitations. The legal basis for the processing is the user’s consent expressed when registering for a course/webinar or downloading content.
• The user understands and accepts that registering for a webinar/course or downloading materials from this Website is conditional upon acceptance of the purposes described above. As a result of such registration or download, Cyberclick may send commercial communications about similar products or services, based on its legitimate interest as recognized in Article 21.2 of the LSSICE. To receive communications about non-similar products or services, the user’s additional consent will be required via the corresponding checkbox.
• Attend to information requests and/or inquiries made by the user through contact forms, the chatbot, or any other channel available on this Website. The data processed for this purpose will be kept until the information request and/or inquiry has been responded to and, thereafter, during the legally established retention periods and statute of limitations. The legal basis for the processing is: a) the user's consent in the event that they use any contact form, chatbot, or other information request channel available on this Website; or b) CYBERCLICK's legitimate interest in responding to the user in the event that they do not use any available form (sending unsolicited emails, phone calls, or sending written requests by postal mail).
• Management of applications for job openings published on the Website. The data processed for this purpose will be kept until the selection process is completed. Thereafter, if the candidate is not selected, the data will be deleted. The legal basis for the processing is the implementation of pre-contractual measures.
• Management of unsolicited applications received through the Website. The data processed for this purpose will be kept for a maximum period of two years from receipt and, thereafter, during the legally established retention periods and statute of limitations. The legal basis for the processing is the candidate’s consent expressed through the Website.
• Retention of candidates’ CVs after the selection process is completed. The data processed for this purpose will be kept for a maximum period of two years from receipt and, thereafter, during the legally established retention periods and statute of limitations. The legal basis for the processing is the candidate’s consent expressed through the Website.
• Subscription to the newsletter through the form or chatbot provided for this purpose. The data processed for this purpose will be kept until the consent given to receive such communications is withdrawn and, thereafter, during the legally established retention periods and statute of limitations. The legal basis for the processing is the user’s consent expressed through the channels made available on this Website. The user may withdraw their consent at any time.
• Enable the publication of comments by users in the different entries of the Website’s Blog. The data processed for this purpose will be kept until the time the user withdraws their consent given for the publication of such comments and, thereafter, during the legally established retention periods and statute of limitations. The legal basis for the processing is the user’s consent.
• Management of the Internal Information System. The personal data received will be processed exclusively to analyze and investigate the reported facts and, where applicable, to adopt the pertinent disciplinary measures.

The data will be kept in the information system only for the time strictly necessary to decide on the appropriateness of initiating an investigation into the reported facts. In any case, after three months from the receipt of the report, if no investigation actions have been initiated, the data must be deleted, unless the purpose of the retention is to provide evidence of the operation of the system. Reports that have not been acted upon may only be recorded in anonymized form, and the blocking obligation shall not apply. If, once the three-month period has elapsed, it is necessary to keep the data to continue the investigation, the data may continue to be processed in a different environment by the CYBERCLICK body responsible for carrying out such investigation.

The legal basis for carrying out such processing is the performance of a task carried out in the public interest, pursuant to Article 30.2 of Law 2/2023, of February 20, regulating the protection of persons who report regulatory infringements and the fight against corruption.

Additionally, in the event that you provide any data considered a special category, its processing will be covered by Article 9(2)(g) of the GDPR, as the processing is necessary for reasons of substantial public interest.

We inform you of the existence of the external information channel of the Independent Authority for Informant Protection, which may receive information affecting: the General State Administration and entities that make up the state public sector; the remaining public sector entities; constitutional bodies and bodies of constitutional relevance; and private sector entities, when the reported infringement or non-compliance affects, or produces its effects, within the territorial scope of more than one Autonomous Community. Each Autonomous Community may designate an independent authority to receive information affecting the autonomous and local public sector within its respective territory; autonomous institutions; and private sector entities, when the reported non-compliance is limited to the territorial scope of the corresponding Autonomous Community.

In addition, the informant may also contact the institutions, bodies, or agencies of the European Union.

CYBERCLICK may disclose personal data to Public Authorities for compliance with legal obligations; and to law enforcement authorities and/or Courts and Tribunals that require it in the context of an investigation, inquiry, or legal proceedings. CYBERCLICK may also disclose personal data to the following categories of processors: providers of electronic communications services, office productivity tools/services, hosting, data center/colocation services, IT maintenance, administrative services (gestoría), accounting, auditing, advisory services, and legal representation. Some of our providers may be located outside the European Economic Area (EEA), for example, in the United States. In these cases, CYBERCLICK guarantees that such international transfers will be carried out with appropriate safeguards in accordance with Articles 44 to 50 of Regulation (EU) 2016/679 (GDPR), through mechanisms such as the Standard Contractual Clauses adopted by the European Commission or other appropriate safeguards.

Data subjects may exercise their rights of access, rectification, erasure, restriction of processing, data portability, objection, and not to be subject to automated individual decision-making, as well as withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal, by sending their request to CYBERCLICK (Attn: DPO), Moll de Barcelona, s/n, World Trade Center, North Building, 2nd floor, 08039 Barcelona; or to the email address dpo@cyberclick.net In any case, data subjects have the right to lodge a complaint with the relevant supervisory authority if they deem it appropriate. In Spain, this is the Spanish Data Protection Agency (www.agpd.es).

CYBERCLICK has appointed a Data Protection Officer, who can be contacted through the channels mentioned above by addressing your request to the attention of the DPO.

CYBERCLICK has implemented the necessary technical and organizational measures to ensure the security of personal data and prevent its alteration, loss, processing, or unauthorized access, taking into account the state of the art, the nature of the stored data, and the risks to which it is exposed.

CYBERCLICK uses its own cookies and third-party cookies on this Website. You can find detailed information about the use of cookies and how to configure or reject their installation in our Cookies Policy, accessible from the footer of this Website.

Last update: December 2025