Legal

Privacy Policy

Last updated: April 20, 2026

1. Data controller

The data controller for personal data collected through this website is ATYUM, with registered address at Edifici Eland, Carrer del Ferner 11, 3-5, AD500 Andorra la Vella. You can contact us by email at hola@atyum.com.

We have appointed a Data Protection Officer (DPO) whom you can contact for any questions regarding the processing of your personal data or the exercise of your rights at dpo@atyum.com.

2. Data we collect

Through the contact and demo request forms, we collect the following data: name, company, email address, phone number (optional) and the content of your message. Additionally, when you browse our website, technical data is collected through cookies and similar technologies (see section 8).

3. Purposes of processing

Your data is processed for the following purposes:

  • Managing requests for information, demonstrations or contact made through the website forms.
  • Sending commercial communications about ATYUM products, services and events, provided you have given your express consent or there is a prior contractual or pre-contractual relationship.
  • Conducting aggregated statistical analysis on website usage to improve our offering and user experience.
  • Complying with applicable legal, accounting and tax obligations.

4. Legal basis for processing

The processing of your data is based on the following legal grounds provided for in Regulation (EU) 2016/679 (GDPR):

  • Consent of the data subject (Art. 6.1.a GDPR) for sending commercial communications and using non-strictly necessary cookies.
  • Performance of a contract or implementation of pre-contractual measures (Art. 6.1.b GDPR) in the case of demo requests and commercial contact.
  • Legitimate interest of the controller (Art. 6.1.f GDPR) for improving our services and website security.
  • Compliance with legal obligations (Art. 6.1.c GDPR) applicable to the controller.

5. Recipients and data processors

Your data will not be transferred to third parties except by legal obligation. However, some of our service providers act as data processors and may access your data to provide us with services (hosting, email sending, analytics, CRM management, payment processors). All of them are contractually obligated to comply with data protection regulations.

6. International transfers

Some of our providers may be located outside the European Economic Area. In these cases, we ensure the lawfulness of the transfer through the mechanisms provided for in Chapter V of the GDPR: adequacy decisions of the European Commission, standard contractual clauses or other appropriate safeguards. You can request a copy of these safeguards by contacting our DPO.

7. Retention period

We will retain your data for as long as necessary for the purposes for which it was collected and, where applicable, for the legally established periods to address any liabilities arising from the processing. Data collected through the contact form will be retained for a maximum of 24 months from the last interaction, unless there is an active commercial relationship or legal requirement that requires a longer period.

8. Cookies

This website uses first-party and third-party cookies for analytical and functional purposes. For detailed information about the cookies we use, their purpose and how you can manage them, please refer to our Cookie Policy.

9. Rights of data subjects

You may exercise the following rights over your personal data at any time:

  • Access: know what data we process about you.
  • Rectification: correct inaccurate or incomplete data.
  • Erasure (right to be forgotten): delete data when no longer necessary.
  • Objection: object to processing in certain circumstances.
  • Restriction of processing: request that processing be restricted.
  • Portability: receive your data in a structured, commonly used format.
  • Withdrawal of consent at any time, without retroactive effect.

To exercise these rights, you can write to us at dpo@atyum.com with proof of your identity. You also have the right to file a complaint with the competent supervisory authority if you believe that the processing of your data violates applicable regulations.

10. Security measures

We have adopted the necessary technical and organizational measures to guarantee the security, confidentiality and integrity of your personal data, as well as to prevent its alteration, loss, unauthorized processing or access, taking into account the state of the art and the nature of the data processed.

11. Modifications

ATYUM reserves the right to modify this Privacy Policy to adapt it to legislative or case law developments, as well as industry practices. Any relevant modification will be duly notified to users.