Privacy Policy
Information about how OSIX Tech collects, uses and protects your personal data
Privacy Policy - OSIX Tech Development SL
OSIX Tech Development SL protects and guarantees the fundamental right to data protection and is especially committed to safeguarding individuals’ privacy. Data processing is carried out in accordance with Regulation (EU) 2016/679 (GDPR) and Spanish Organic Law 3/2018 on the Protection of Personal Data and Guarantee of Digital Rights. Such processing adheres to the principles of lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity, confidentiality, and proactive accountability.
OSIX Tech maintains a dynamic understanding of this policy to adapt it to regulatory updates, case law, decisions by supervisory authorities, or industry best practices. Any modification will be announced in advance on our website.
1. Data Controller
OSIX Tech Development SL
- Address: C/ Rosalía de Castro, 44, 15706 Santiago de Compostela, A Coruña, Spain
- Data Protection Officer: David Manuel Raposeiras Canaval
- Informal contact: contact form at https://osix.tech
- Formal contact: dpd@osix.tech
2. Inquiries
For any inquiries regarding data protection, you may contact:
- Email: dpd@osix.tech
- Web form: https://osix.tech
3. Legal Grounds for Processing
- Performance of contracts for software development and technological services
- Consent given by data subjects for communications and optional services
- Legitimate interest for the development and improvement of our products and services
- Compliance with legal obligations including tax and commercial requirements
All these bases are in line with Article 6.1 of the GDPR.
4. Purposes of Processing
OSIX Tech processes personal data for:
- Service delivery: software development, technology consulting, and intelligent automation solutions
- Communication: responding to inquiries, providing technical support, and maintaining contractual relationships
- Product improvement: usage analysis to enhance our AI assistants, automation tools, and applications
- Legal compliance: tax, commercial, and data protection obligations
- Direct marketing: sending information about our products and services (only with consent)
5. Source, Use, and Storage of Data
- Source: directly from data subjects through web forms, contracts, email communications, or mobile applications
- Data Processed: name, email, company, phone number, technical information necessary for service delivery
- Special Categories: we do not process special categories of data unless strictly necessary for the contracted service
- Retention:
- Active clients: during contract validity plus 6 additional years for legal obligations
- Web inquiries: 2 years from last contact
- Marketing: until consent withdrawal
6. Data Subject Rights
Data subjects may exercise their rights to:
- Transparency and information
- Access
- Rectification
- Erasure
- Restriction of processing
- Data portability
- Objection
- Not be subject to solely automated decision-making
- Withdraw consent at any time
- File a complaint with the Spanish Data Protection Agency
Rights may be exercised through the form at https://osix.tech or by emailing dpd@osix.tech.
7. Security Measures
OSIX Tech implements technical and organizational measures pursuant to Article 32 of the GDPR:
- Pseudonymization and data encryption
- Ensuring confidentiality, integrity, availability, and resilience of systems
- Ability to restore data and access in case of an incident
- Regular verification and evaluation of measures
These measures are adapted to the state of the art, costs, nature, context, and purposes of processing.
8. Security Breaches and Incidents
Security breaches will be reported to the supervisory authority and, where appropriate, to affected individuals as per Article 34 of the GDPR.
OSIX Tech provides an incident communication channel via the contact form at https://osix.tech or by emailing dpd@osix.tech.
TAKE Mobile App - Specific Privacy Policy
Click to expand information specific to the TAKE application
About TAKE
TAKE is a digital loyalty mobile application developed by OSIX Tech Development SL that allows users to collect digital loyalty stamps and receive rewards from participating establishments.
Data Collected in TAKE
Identification Data:
- Email address (obtained through Google Sign-In or Apple Sign-In)
- User identifiers (account ID, device token)
- Device information necessary for push notifications
Purposes of Use in TAKE
- Authentication and account management: create and maintain user profile
- Loyalty stamp delivery: record and manage digital rewards
- Push notifications: send information about rewards, offers, and events
No Advertising or Tracking
TAKE does not use collected data for:
- Third-party advertising
- Retargeting or remarketing
- Cross-app tracking
- Selling data to third parties
Third-Party Services in TAKE
TAKE uses the following third-party services:
- Google Sign-In: secure authentication
- Apple Sign-In: secure authentication for iOS devices
- Firebase Cloud Messaging: push notification delivery
Data Storage and Retention in TAKE
- Data is stored securely on encrypted servers
- Retained only as long as necessary to provide the service
- Account data is deleted when the user uninstalls the app and requests deletion
Specific Rights for TAKE
In addition to the general rights mentioned above, TAKE users can:
- Request complete deletion of their account and associated data
- Export their data including loyalty and rewards information
- Revoke permissions for location and notifications at any time
- Contact directly via dpd@osix.tech to exercise their rights
Policy Updates for TAKE
Specific updates to the TAKE policy will be communicated:
- Through push notification (for significant changes)
- Within the mobile application
- On OSIX Tech’s official website