Privacy Policy


Purpose:Management of web users and online services Commercial communications related to our services

Legitimation: Express consent and legitimate interest

Recipients: No data is transferred to third parties, except legal obligation. If there is transfer of data with the different laboratories to be able to provide the service.

Rights: Access, rectification, deletion and portability of your data, limitation and opposition to their treatment, as well as not being the subject of decisions based solely on the automated processing of your data.


At ENEVIA HEALTH SL we work to offer you the best possible experience through our products and services. In some cases, it is necessary to collect information to achieve this. We care about your privacy and believe we should be transparent about it.

For this reason, and for the purposes of the provisions of Regulation (EU) 2016/679 of the European Parliament of the Council of April 27, 2016 (hereinafter, "GDPR") regarding the protection of natural persons with regard to the treatment of personal data and the free circulation of these data, and LAW 34/2002, of July 11, on Services of the Information Society and Electronic Commerce (hereinafter, "LSSI"), ENEVIA HEALTH SL informs the user that, as data controller, will incorporate the personal data provided by users in an automated file.

Our commitment begins by explaining the following:

Your data is collected so that the user experience improves, according to your interests and needs.
We are transparent about what data we collect about you and why we do so.


Our intention is to offer you the best possible experience. Therefore, when we are going to use your personal information, we will always do so in compliance with the regulations, and when necessary, we will request your consent.
We understand that your data belongs to you. Therefore, if you decide not to authorize us to process them, you can ask us to stop processing them.

Our priority is to guarantee your security and treat your data in accordance with European regulations.

If you wish to obtain more information about the treatment of your data, consult the different sections of the privacy policy that are found below:

Who is responsible for the processing of your personal data?

Company name: ENEVIA HEALTH SL
Registered office: AV. Diego Martinez Barrio,4 – 41013- Sevilla CIF no: B90477753
Email: [email protected]

What personal data do we collect?

Personal data is information that identifies you or makes you identifiable. Through the web, in the boxes established for this purpose, we collect the personal data that the user communicates to us: Name, surnames, email, telephone, postal address, population, etc. as well as all the data that you voluntarily provide us through any of the social networks of which the user is registered. In this case, privacy will depend on the configuration established by the user, as well as the terms and conditions of the social network itself. The user's visit to the website does not imply that they have to provide any information about their personal data. However, if provided, the data will be processed lawfully subject at all times to the principles and rights contained in the RGPD 2016/679 of April 27, 2016 and the LOPDGDD 3/2018 of December 5.

In this case, it is mandatory to fill in the registration form to access and enjoy the services offered on the web; Likewise, not providing the requested personal data or not accepting this data protection policy means that it is impossible to subscribe to it, will mean that the service is not provided.

Purpose, duration and legitimacy of the treatment:

The data that the user provides us will be treated with the following purposes:


• Address the request or request made by the user through the contact form located on the web. We collect and process the user's personal data in order to process and manage your request, a query or any request you make through said form. We will keep these data for the time necessary to comply with your request and for the time established by law with a minimum duration of 3 years.

The basis of legitimacy of the data treatment will be the consent granted by the user when selecting the acceptance box of our privacy policy before sending the request. The user has the right to revoke their consent at any time without affecting the legality of the treatment based on the consent prior to its withdrawal.

• Attend and manage the purchase made by the user through the purchase form located on the web. We collect and process the user's personal data in order to process the order and subsequent payment of the products and services offered on the web. We will keep these data for the duration of the contractual relationship between the parties and for the time established by law for compliance with tax obligations.

The basis for legitimizing the processing of the data will be the execution of a sales contract in which the interested party is a party. In the event that the user does not provide their personal data, their purchase cannot be managed, and the requested service cannot be provided.

• Register as a subscriber through the registration form located on the web and that will allow the user to access their private area of services and inform them of our activities, being able to send commercial communications by any electronic means of the news of our services. We will keep these data as long as the user does not request their removal from the registry and for the time established by law with a minimum duration of 3 years. The basis of legitimacy of the data processing will be the consent granted by the user when registering through the registration form and selecting the acceptance box of our privacy policy before sending your request. The user has the right to revoke their consent at any time without affecting the legality of the treatment based on the consent prior to its withdrawal.

• Improve your experience when browsing the web. We will keep these data as long as the user does not revoke their consent to the treatment of these by eliminating cookies and for the time established by law with a minimum duration of three years.

The basis of legitimacy to improve your experience when browsing the web is the consent granted by the user when accepting cookies. The user has the right to revoke their consent at any time without affecting the legality of the treatment based on the consent prior to its withdrawal.


• Manage our social networks and send you information about our activities and products. We will keep these data as long as the user does not revoke their consent to their treatment and for the time established by law with a minimum duration of 3 years.

The legitimate basis for managing our social networks and sending you our activities and news is the consent you give us to do so. The user has the right to revoke their consent at any time without affecting the legality of the treatment based on the consent prior to its withdrawal.

Data conservation criteria: In general, the data of the interested party will only be kept for the time strictly necessary for the purpose for which they were collected. And therefore once your subscription ends or unsubscribes. Once the aforementioned period has passed and the care and contractual relationship has ended, the person in charge will keep their data duly blocked and pseudonymised, during the term of the periods corresponding to the legal prescription, later it will proceed to the total destruction of the same with the appropriate security measures.

The personal data provided in order to manage any request for information, complaint, suggestion, claim, exercise of data protection rights, etc., will be kept for the time necessary to process the request, and in any case during the established time. legally, as well as during the period necessary for the formulation, exercise or defense of claims.

The data processed for the sending of advertising or promotional communications will be kept until the interested party revokes the consent and/or exercises their rights of opposition and/or deletion.

To which recipients are your personal data communicated?

For the provision of the service ENEVIA HEALTH SL requires communicating your personal data to third parties in this case, the data will be communicated to the different laboratories with which it collaborates, this being the responsible company that carries out the diagnostic tests to the subscribers of the website. Thus, subscribers are informed that through the form with the personal data provided, they will be communicated to the companies, for the processing of the tests in the laboratory and their subsequent communication of the test result through their website:

ATA MEDICAL, University Hospital La Zarzuela – Sanitas. Madrid Spain);

BIOMEDAL SL, B91045948, Cartuja Technological Science Park in Seville (Spain);

BIOMESIGHT, Kemp House, 160 City Road, London, EC1V 2NX, United Kingdom.

CALDERÓN, CIF: B12829099 Address: C/ COLÓN, 37 – 12001 – Castellón de la Plana, Castellón (Spain);

SINCRONÍA THERAPEUTIC CENTER, Marina de Santiago with NIF/CIF 50105666-M, with address Calle Villaviciosa 2, piso 13 A, 28024, Madrid (Spain);

DOCTOR'S DATA INC with CIF 93-0941625 domiciled in the USA; 3755 Illinois Avenue St.


Charles-USA 60174-2420;
EUROFINS-MEGALABS, CIF A78873973 C/Alfonso Xii,42 28014 Madrid, (Spain);

GENOMIC GENETICS INTERNATIONAL, SL with CIF; B65356792 with address; Av. Diagonal 490, 1o, 1a 08006 Barcelona (Spain);

ILLIAD NEUROSCIENCE Inc., 5110 Campus Drive Suite #190 Plymouth Meeting PA 19462 INBIOMITER P&G SL, Calle La Gitanilla 17


INVITAE CORPORATION, 1400 16th Street, San Francisco, CA 94103

LABORATORIO ECHEVARNE, SA with CIF A08829848 with Address; C/Provenza 312 BJS, 08037 Barcelona (Spain);

LIFESTYLE GENOMICS RESEARCH CENTER LC (MTHFR-Genetics), Registered CN10977872 United Kingdom and Wales;

MICRO TRACE MINERALS, GmnH Röhrenstr. 20 91217 Hersbruck;

SYNLAB DIAGNOSTICOS GLOBALES SAU, CIF A59845875 Carrer de la Verge de Guadalupe, 18, 08950 Esplugues de Llobregat, Barcelona, (Spain);

TELETEST MEDICAL, SL with tax identification number B66225905 and address C/Montseny 11, 08012 Barcelona (Spain);

TEQUIAL, SL with CIF; B28958338 with address; Victor Andres Balaunde 48 0B, 28016 Madrid (Spain);

XENOGENE, SL with cif; B93406692 with address; C/Tampa 2, L7, 29007 Malaga (Spain);

However, your data will never be sold to third parties nor will they use such information for their own purposes.

In some cases, the law may require that personal data be disclosed to public bodies or other parties, only what is strictly necessary for the fulfillment of said legal obligations will be disclosed.

ENEVIA HEALTH SL tries to guarantee the security of personal data when they are sent outside the company and ensures that third-party service providers respect confidentiality and have adequate measures to protect personal data. Said third parties have the obligation to guarantee that the information is treated in accordance with the data privacy regulations as established in Article 28 RGPD.

Where is your data stored?

Your data is stored within the EU. ENEVIA HEALTH SL. However, International Data Transfers can be made to third countries and outside the European Union when the laboratory and provider of the contracted service with which collaborate ENEVIA HEALTH SL is located in the US or in Latin America. However, ENEVIA HEALTH tries and makes every effort to determine that these countries guarantee an adequate level of data protection in accordance with current regulations or equal to that which Regulation (EU) 679/2016 may offer.

What rights do you have and how can you exercise them?

You can direct your communications and exercise your rights by means of a request in the following email: [email protected] or by contacting us at the attention of ENEVIA HEALTH SL with address at AV. Diego Martinez Barrio,4 – 41013- Sevilla indicating in the subject the right that you want to exercise.

By virtue of what the RGPD establishes, you can request:

Right of access: you can request information about the personal data that we have about you.
Right of rectification: you can communicate any change in your personal data.

Right of deletion and to be forgotten: you can request the deletion after blocking personal data.
Right of limitation to treatment: implies the restriction of the treatment of personal data.

Right of opposition: you can withdraw your consent to the processing of the data, opposing their further processing.
Right to portability: in some cases, you can request a copy of the personal data in a structured, commonly used and machine-readable format for transmission to another controller.

Right not to be the subject of individualized decisions: you can request that decisions not be made based solely on automated processing, including profiling, that produces legal effects or significantly affects the interested party.

In some cases, the request may be denied if you request that data necessary to comply with legal obligations be deleted.

Likewise, if you have any complaint about the processing of data, you can file a claim with the data protection authority at the following address

Who is responsible for the accuracy and veracity of the data provided?

The user is solely responsible for the veracity and correctness of the data included, exonerating ENEVIA HEALTH SL from any responsibility in this regard. Users guarantee and are responsible, in any case, for the accuracy, validity and authenticity of the personal data provided, and undertake to keep them duly updated. The user agrees to provide complete and correct information in the registration or subscription form.

ENEVIA HEALTH SL reserves the right to terminate the contracted services that have been held with users, in the event that the data provided is false, incomplete, inaccurate or out of date.

ENEVIA HEALTH SL is not responsible for the veracity of the information that is not of its own elaboration and for which another source is indicated, for which reason it does not assume any responsibility for hypothetical damages that may arise from the use of said information.

ENEVIA HEALTH SL reserves the right to update, modify or delete the information contained in its web pages and may even limit or deny access to said information. ENEVIA HEALTH SL is exonerated from liability for any damage or harm that the user may suffer as a result of errors, defects or omissions, in the information provided by ENEVIA HEALTH SL whenever it comes from sources other than the same.

Likewise, the user certifies that he is over 14 years of age and that he has the necessary legal capacity to provide consent regarding the processing of his personal data.

Third Party Data

If the user provides data from third parties for any purpose to ENEVIA HEALTH, he guarantees that he has obtained this data in a lawful manner, and that he has previously informed those affected, obtaining their consent to communicate them and that the information provided is accurate and truthful.

How do we treat the personal data of minors?

In principle, our services are not specifically aimed at minors. However, in the event that any of them is addressed to children under fourteen years of age, in accordance with article 8 of the RGPD and article 7 of LO3/2018, of December 5 (LOPDGDD), ENEVIA HEALTH SL will demand the valid, free, unequivocal, specific and informed consent of their legal guardians to process the personal data of minors. In this case, the DNI or other form of identification of the person giving the consent will be required.

In the case of people over fourteen years of age, the data may be processed with the consent of the user, except in those cases in which the Law requires the assistance of the holders of parental authority or guardianship.


What security measures do we apply to protect your personal data?

ENEVIA HEALTH SL has adopted the legally required Personal Data protection security levels, and tries to install those other means and additional technical measures within its reach to prevent the loss, misuse, alteration, unauthorized access and theft of Personal Data. provided to ENEVIA HEALTH SL.

ENEVIA HEALTH SL is not responsible for hypothetical damages or losses that may arise from interference, omissions, interruptions, computer viruses, telephone breakdowns or disconnections in the operational functioning of this electronic system, caused by causes beyond ENEVIA HEALTH SL; of delays or blockages in the use of this electronic system caused by deficiencies or overloads of telephone lines or overloads in the Data Processing Center, in the Internet system or in other electronic systems, as well as damages that may be caused by third parties. people through illegitimate interference outside the control of ENEVIA HEALTH SL. However, the user must be aware that security measures on the Internet are not impregnable.

Links to other websites

On the website there may be links to other websites. By clicking on one of these links and accessing an external website, the visit will be subject to the privacy policy of said website, leaving ENEVIA HEALTH SL disassociated from any type of responsibility regarding its privacy policy.

Social media

The object of tools like Facebook, Instagram, etc. or other social networks is to give visibility and dissemination to the activities carried out by our organization. These tools store personal data on the servers of the respective services and are governed by their own privacy policy. It is recommended to review and read the conditions of use and privacy policy of the social network at the time of registration, taking into account the different configuration possibilities in relation to the degree of privacy of the user profile in the social network.

Likewise, ENEVIA HEALTH SL reserves the right to remove from its social networks any information published by third parties that violates the law, incites to do so or contains messages that violate the dignity of people or institutions. As well as the right to block or report the author profile of these messages.

How do we use cookies?

The ENEVIA HEALTH SL website uses cookies for the purpose of optimizing and personalizing your browsing on it. Cookies are physical files of information that are housed in the user's own terminal, the information collected through cookies serves to facilitate the user's navigation through the portal and optimize the browsing experience. The data collected through cookies can be shared with their creators, but in no case will the information obtained by them be associated with personal data or data that can identify the user.

However, if the user does not want cookies to be installed on his hard drive, he has the possibility of configuring the browser in such a way that it prevents the installation of these files. For more information see our Cookies Policy.

Data update

It is important that in order for us to keep the personal data updated, the user informs us whenever there has been any change in them, otherwise, we will not be responsible for their veracity.

The user guarantees that the personal data provided is true, guaranteeing that all the information provided corresponds to the real situation, that it is up-to-date and accurate, and is obliged to communicate any changes.

Can the privacy policy be modified?

This privacy policy can be modified. We recommend that you review the privacy policy from time to time.

Last update; 03/16/2022