PRIVACY POLICY

This privacy policy (hereinafter, "Privacy Policy"has been drafted by Grupo Unicomer Corp., hereinafter, "UNICOMER" or the "Data Controller") in order to comply with the duty of transparency in the processing of personal data that it may carry out as the data controller, in accordance with the provisions of Law 81 of 2019 on the Protection of Personal Data of the Republic of Panama, published on the twenty-ninth day of March two thousand nineteen, which was sanctioned by the President of the Republic of Panama, Juan Carlos Varela R., and in turn by Executive Decree number 285 of May 18, 2021, which regulates Law 81 of 2019, sanctioned by the President of the Republic of Panama, Laurentino Cortizo Cohen. Both regulatory bodies are currently in force, relating to the protection of natural persons with regard to the processing of personal data and the free movement of such data (hereinafter, "Law 81 of 2019 on the Protection of Personal Data" and "Executive Decree 285 that regulates Law 81 of 2019 on the Protection of Personal Data).

The information contained in this Privacy Policy allows you to consult the details of the different treatments of your personal data that may be carried out by UNICOMER by virtue of the relationship with the holders of personal data. This policy will apply to the processing of personal data contained in any type of support used by the data controller, automated or not, as well as to any subsequent use modality. The scope of application of this policy excludes the literals a), b), d), e), f), g) of art. 3 of Law 81 of 2019.

The purpose and objective of this policy is to guarantee the exercise of the right to the protection of personal data that are in databases within the territory of the Republic of Panama, which includes, among others, access and decision on information and data of this nature, as well as their corresponding protection. This policy regulates, provides for, and develops principles, rights, obligations, and protection mechanisms. The scope of application of this policy will be dictated by art. 2 of Executive Decree 285 that regulates Law 81 of 2019 on the Protection of Personal Data.

The exercise of the rights provided for in this policy will be channeled through the data controller (UNICOMER), likewise, this policy will comply with the criteria issued by the governing and supervisory entity that has been designated by virtue of Law 81 of 2019 on the Protection of Personal Data and Executive Decree 285 that regulates Law 81 of 2019 on the Protection of Personal Data.

Consent for the processing of personal data will exist when there is a manifestation of the will of the holder to do so, it will be considered valid when the manifestation of will is free, specific (concrete determination of the means and purposes of the processing), informed, and unequivocal. Legitimate interest in the processing of personal data by the controller, processor, or a third party cannot be alleged unless the processing is based on the cases listed in art. 17 of Executive Decree 285 that regulates Law 81 of 2019 on the Protection of Personal Data.

NECESSITY TO PROVIDE PERSONAL DATA

We inform you that mere access to the website, or any other platform (digital or in-person) used by UNICOMER does not imply the obligation to provide any personal information.
However, the use of some services or functionalities of the website does require you to provide certain personal data and implies its processing for the purposes and legal bases indicated in this Privacy Policy. The legitimacy and legality of the processing of personal data will be fulfilled if it meets any of the following conditions:

  1. By consent of the holder for one or more specific purposes;

  2. When the processing takes place within the framework of the contractual relationship in which the data holder is a party or is celebrated in their interest;

  3. When the processing is necessary for the fulfillment of a legal obligation by the data controller, having to deliver to the law that collects the obligation as provided in numeral 3 of article 17 of Law 81 on the protection of personal data;

  4. That the processing of personal data is authorized in a special law or the regulations that develop them;

  5. When the processing is necessary to protect the vital interests of the data holder or another natural person;

  6. When required by a public entity in the exercise of its legal functions, for the safeguarding of a public interest or by court order;

  7. When the processing is necessary to satisfy the legitimate interest pursued by the data controller or by a third party, provided that the interests or fundamental rights and freedoms of the data holder prevail, especially when it is a minor;

  8. When it comes to sensitive data, the conditions provided in article 13 of Law 81 of 2019 will be attended to proceed with its transfer to third parties.

The refusal to provide the required data in these cases may mean the impossibility of providing you with some services or functionalities, or of processing the requests or contracts made, especially in those cases where they are identified as mandatory completion.

As the holder of personal data, you will be responsible for ensuring that the data you provide to us through the website or any other platform (digital or in-person) used or made available to you by UNICOMER are accurate, complete, precise, verifiable, clear; and, if applicable, duly updated; in such a way that their veracity is not altered.For these purposes, you will be responsible for the veracity of all the data you communicate and must keep the information provided duly updated, so that it responds to your real situation.

Likewise, you will be responsible for the false or inaccurate information you provide and for the damages, direct or indirect, that this causes to the data controller or third parties.

In no case may personal data corresponding to third parties be included in the form, unless you have previously obtained their consent, personally responding to the breach of this obligation. You may be required to provide supporting documentation of this authorization at any time, which may be collected verbally if in any of the processes carried out by UNICOMER third parties are contacted to give reference to another. Likewise, if necessary, when the information related to know your client is outdated, it may be updated through the information provided by third parties who have served as a reference for the credit holder, or by a person who makes a payment on behalf of another, in this last case, if the consent of this is not available, it may be obtained physically at the cashier, or, at the place of delivery of the products acquired by the account holder.

 

Below we inform you of the details of the personal data processing that can be carried out once the data holder approves the processing:

  • Sending commercial communications,
  • User service,
  • Employee hiring,
  • Candidate selection,
  • Fraud prevention,
  • Customer registration,
  • Contractual management,
  • Human resources management,
  • Customer profiling or scoring,
  • Collection,
  • Compilation,
  • Obtaining,
  • Registration,
  • Organization,
  • Structuring,
  • Conservation,
  • Custody,
  • Adaptation,
  • Modification,
  • Elimination,
  • Indexing,
  • Extraction,
  • Consultation,
  • Elaboration,
  • Use,
  • Possession,
  • Utilization,
  • Distribution,
  • Transfer,
  • Communication or transfer, or,
  • Any other form of enabling access, comparison, interconnection, limitation, suppression, destruction of the personal data that have been processed.

 

In any case, you can request more information about the treatments carried out by writing to the data protection officer of UNICOMER at the email dpo@unicomer.com, responsible for ensuring the fair and transparent processing of your personal data.

 

USER SERVICE
In the event that you provide your personal data through the form, telephone, or contact email made available to you on the website or any other platform (digital or in-person) used by UNICOMER, your data will be processed for the purpose of managing your information requests, resolving your doubts, answering your queries, or processing your claims. 

The legitimacy of the processing is the consent, expressly given by completing the contact form, calling us, or writing to us. In this way, the processing is necessary to allow the proper processing of your information requests, resolution of your doubts, answering your queries, or processing your claims communicated and verifying the operation of the service according to the established procedures, as well as to obtain evidence of the content of the requests received and the reason for the processing of the personal data you may provide. 

You have the right to rectify or cancel your personal data by withdrawing your consent at any time by sending an email to dpo@unicomer.com .
Finally, we inform you that the withdrawal of consent will not affect the legality of the processing based on the consent prior to its withdrawal.

CV MANAGEMENT
In case you provide your resume through the form or contact email made available to you on the website or any other platform (digital or in-person) used by UNICOMER to participate in selection processes, your data will be processed for the purpose of evaluating and managing the job application and, if applicable, carrying out the necessary actions for selection and hiring when UNICOMER has a vacancy that fits your profile. Likewise, the data will be processed for the realization of those communications related to said selection processes and, if applicable, for your incorporation into the pool of candidates in order to consider the application in future processes.

The legitimacy of the processing is the consent, expressly given when you send your job application, either through the employment section enabled on the website or any other platform (digital or in-person) used by UNICOMER, including through email.

You have the right to rectify or cancel your personal data by withdrawing your consent at any time by sending an email to dpo@unicomer.com . Finally, we inform you that the withdrawal of consent will not affect the legality of the processing based on the consent prior to its withdrawal.

COMMERCIAL PROMOTION
In case you give consent for the processing of your data for commercial purposes through the form or contact email made available to you on the website or any other platform (digital or in-person) used by UNICOMER, the personal data collected will be processed for the purpose of sending you, by any communication channel: postal, telephone, or electronic (including WhatsApp, email, SMS, etc.), offers and commercial information related to the products and services offered on the website, digital platforms, or physically in own stores or authorized distributors, which may include the preparation and sending of a budget according to the information provided for its calculation, follow-up of the same and any communication related to the sent budget. The legitimacy of the described treatments is the consent, which you have the right to withdraw at any time or, to request the modification of your personal data by sending an email to dpo@unicomer.com . Likewise, we inform you that the withdrawal of consent will not affect the legality of the processing based on the consent prior to its withdrawal.

Additionally, if you are already a customer, UNICOMER may send you commercial communications about products or services similar to those previously contracted, basing the legitimacy of the processing on the legitimate interest of UNICOMER, in promoting its image through commercial communications, always in accordance with the provisions of the Organic Law on the Protection of Personal Data, its regulations, and this personal data protection policy. In any case, we remind you that you can oppose at any time to the treatments covered by the legitimate interest, in accordance with the provisions of the "Rights of the data holder" section of this Privacy Policy.

CUSTOMER MANAGEMENT
When you sign a contract with UNICOMER, your personal data will be processed for the purpose of formalizing, managing, maintaining, developing, supervising, and controlling the provision of services and the operation of the contracted products, including, where appropriate, technical assistance and/or maintenance services. Likewise, UNICOMER may process your personal data for the purpose of analyzing your credit behavior if you request a credit with UNICOMER, likewise, your personal data may be processed if you give your consent by accessing the different social networks used by UNICOMER.

Additionally, to satisfy the legitimate interests of UNICOMER, your data may be processed to evaluate your satisfaction, so you may be asked for your opinion on their products and services. This processing also contributes to the improvement of the quality of the products and services offered by the data controller. Although opinions will be collected individually, their analysis will be carried out generally, through statistics, without identifying specific users. In any case, you can refuse to give your opinion, as well as communicate your opposition to being contacted for this purpose, in accordance with the provisions of the "Rights of the data holder" section of this Privacy Policy.

However, the use of some services or functionalities of the website does require you to provide certain personal data and implies its processing for the purposes and legal bases indicated in this Privacy Policy.

In each form, you will be informed which fields are mandatory. The refusal to provide these data implies the impossibility of processing the requests made.

As a general rule, the categories of data subject to processing for suppliers, customers (users), job applicants, and employees will be the following:

  1. Identifying or personal data (name, surname, official personal documents), generally referring to any data that identifies or makes a natural person identifiable, directly or indirectly. Academic data are also processed, as well as any other data included in the resume.
  2. Contact data (Email, phone, residence address), including the subjects and messages of emails, blog, social media account, etc.
  3. Economic or credit data, those that integrate the economic behavior of natural persons, to analyze their financial capacity. In these cases, the rights and the exercise of the same precepted in art. 29 of the Organic Law on the Protection of Personal Data are recognized.
  4. Personal characteristics data (biometric and/or genetic), any data by which a person can be identified or identified by their physical, physiological, or behavioral characteristics; as well as inherited or acquired genetic characteristics that provide unique information about the person's physiology or health, leading to the confirmation of the unique identification of a person.
  5. Employment data, including previous jobs.
  6. Health data, related to the physical or mental health of a natural person, including the provision of health care services, revealing information about their health status. Health data will be requested from patients of the optics owned by UNICOMER. The company provides medical services to its employees, who will be asked for their general health data (medical records) to complete their medical record, which may be constantly updated according to the need indicated by the treating physician. UNICOMER may use anonymization methods for these medical records.
  7. Commercial information, behavior, and commercial references of credit applicants, job candidates, employees, and suppliers.
  8. Customer profile, through which it is possible to evaluate, analyze, predict aspects of a natural person to determine behaviors or standards related to: professional performance, economic situation, health, personal preferences, interests, reliability, location, physical movement of a person, among others.
  9. Other data (if applicable): any information you provide for the processing of your request.
  10. COMPLIANCE WITH SPECIAL REGULATIONS UNICOMER is obliged to comply with Law 41 of 2000 of the Republic of Panama regarding the Prevention of Money Laundering, acts of terrorism, and arms acquisition, so it may, in accordance with the obligations derived from it, collect data, share them with government institutions, and integrate said data and results into the risk matrices that as a company it must prepare, maintain, and report. The above, being by imperative mandate of the law and a matter of public interest, may process data for this purpose without the consent of their holders.

COMMERCIAL PROMOTION

The data processed for sending commercial communications are:

  • Identifying data: name and surname.
  • Contact data: email address.
  • Data related to commercial information: products you are interested in.

CUSTOMER MANAGEMENT 

By virtue of the contractual relationship, UNICOMER may process the following types of personal data:

  • Identifying data: name, surname, tax identification number, signature.
  • Contact data: postal address, email address, phone number.
  • Contract data: contract number, billing, payments, general and particular conditions, user and/or customer identification.
  • Financial/banking data: current account number

The following are considered special categories of personal data: Sensitive data, Data of children, adolescents, Data of health; and, Data of people with disabilities and their substitutes, related to disability.

UNICOMER will not process sensitive personal data unless any of the circumstances established in art. 18 of Law 81 on the Protection of Personal Data occur, such as:

  1. The holder has given their explicit consent for the processing of their personal data, for which they must have a clear understanding of its purpose,
  2. The processing is necessary for the fulfillment of obligations and the exercise of specific rights of the data controller or the holder in the labor and social security field.
  3. The processing is necessary to protect the vital interests of the holder or another natural person, in case the holder is not physically or legally capable of giving their consent.
  4. The processing refers to personal data that the holder has made public.
  5. It is carried out by court order.
  6. It is necessary for archival purposes in the public interest, scientific or historical research purposes, or statistical purposes, and is proportionate to the objective pursued.
  7. When the processing of health data, as well as other sensitive data, requires according to the law that regulates it, irrefutable and express consent.
  8. In the case of processing data of minors and persons with disabilities, the processing must be given with prior authorization from the person exercising guardianship or custody of the minor or person with disabilities, demonstrating the data controller that they made all reasonable efforts to verify such authorization, taking into account the state of the technology available at each moment.
  9. The personal data of minors and persons with disabilities can be collected without consent when the processing is necessary to contact the parents, guardian, or person exercising guardianship or custody of the minor or person with disabilities and only for this purpose.

In the case of processing data of minors and persons with disabilities, it will be the parents, guardians, or those exercising guardianship and custody of these who will exercise on their behalf and representation the rights of access, rectification, cancellation, opposition, portability, or any other that corresponds to them under Law 81 of 2019 and the decree on the protection of personal data.

In compliance with the provisions of article 28 of Law 81 of 2019 on the Protection of Personal Data, the personal data subject to processing will be retained for the time provided and communicated to users to fulfill the informed purposes, obliging the data controller not to transfer or communicate identifiable personal data of a person after SEVEN YEARS have elapsed since the legal obligation to retain the information was extinguished.
In case of deletion, the data controller will communicate any cancellation to each of the recipients to whom the personal data have been communicated, unless it is impossible or requires a disproportionate effort.

USER SERVICE
The personal data provided through the contact form will be retained for the time necessary for the proper management of your information request, resolution of your doubts, answering your queries, or processing your claim, or until you withdraw your consent.

CV MANAGEMENT
The personal data you provide as a result of sending your resume for a vacancy will be processed until you revoke your consent, for a maximum period of 1 year from the date you applied for the vacancy.

COMMERCIAL PROMOTION
The personal data provided for sending commercial communications will be kept until you withdraw your consent or object to receiving such commercial communications, provided that the data controller has not decided to delete them earlier for any other reason.

CUSTOMER MANAGEMENT
Personal data related to customers will be kept for the duration of the contractual relationship and, at most, for the statute of limitations for the corresponding legal actions, unless you authorize their processing for a longer period.
In the case of processing based on legitimate interest, they will be kept for the time necessary to fulfill the informed purpose or until you object to their processing (unless the interests of the data controller prevail).

As a general rule, the personal data processed will not be communicated to third parties, except in the case of third parties involved in the provision of services and to the extent that such communication is necessary to fulfill the aforementioned purposes or, where appropriate, to the relevant Organizations and Authorities, when legally required.
Likewise, the personal data processed may be communicated or shared with third parties for reasons of compliance with information security policies (SI), for the following purposes:

  1. Keeping the country's IT services operational.
  2. Maintenance and development of local applications.
  3. Attention and resolution of incidents with IT services.
  4. Coordination with the technology area of UNICOMER offices in Latin America for the implementation of corporate projects or stabilization of services that may report news.

 

When it is essential to hire a third party, UNICOMER will ensure that they comply with the applicable regulations and will sign the corresponding database custodian contract, complying with the provisions of Article 47 of Executive Decree 285, which regulates Law 81 of 2019 regarding the Transfer or Communication and Access to Personal Data by Third Parties. Data may be shared with third parties that provide a derivative or after-sales service of products purchased in stores, platforms, or authorized distributors of UNICOMER.

In the event that the involvement of any of the data controller's suppliers involved in the provision of services may involve an international data transfer, it will be adequately regularized and informed in this Privacy Policy, adopting the appropriate guarantees for its realization, and in accordance with the provisions of the fourth section of Executive Decree 285, which regulates Law 81 of 2019 on the Protection of Personal Data.

Personal data may be transferred or communicated to countries, organizations, and legal entities in general that provide adequate levels of protection and comply with the obligation to comply with and guarantee internationally recognized standards in accordance with the criteria or resolutions issued by the competent authority and established in Law 81 of 2019 and Executive Decree 285, which regulates said law on data protection.

For notifications to data subjects, when the breach may constitute a risk to their fundamental rights, the Data Controller must notify the data subject of the breach within a maximum of seventy-two hours from becoming aware of the risk, in compliance with the provisions of Articles 37 and 38 of Executive Decree 285 regulating Law 81 of 2019 on Personal Data Protection.If the international data transfer is made to a country, organization, or economic territory that has not been qualified by the Data Protection Authority as having an adequate level of protection, the data controller or processor must offer protection guarantees in the processing included in Article 53 of Executive Decree 285, which regulates Law 81 of 2019 on the Protection of Personal Data.

The Data Controller must conduct an impact assessment on the processing at the request of the control authority when the conditions established in Article 41 of Executive Decree 285 regulating Law 81 of 2019 on Personal Data Protection are met. The Personal Data Protection Directorate may also establish other types of operations that require impact studies, but in any case, these must be carried out at the beginning of the personal data processing.

As the data subject, you have the right to contact the data controller at any time and free of charge, by writing to the addresses indicated in this Privacy Policy, to exercise the following rights:

  • Right of Access
    You have the right to be informed by the Data Controller whether or not your personal data is being processed and, if so, to access such data and receive information about the purposes for which they are processed, the categories of data affected by the processing, the recipients to whom your personal data has been communicated, and the expected retention period of the data, among other information. The Data Controller must establish reasonable methods to enable the exercise of this right, which must be addressed within fifteen days.
  • Right to Information
    The data subject has the right to be informed in accordance with the principles of fairness and transparency by any means about the purposes, legal basis, types, retention time, existence of an automated database or not, origin, other purposes or further processing, contact details and identity of the Data Controller, where applicable, contact details and identity of the Data Protection Officer, national or international transfer, and other exercise of their rights.
  • Right to Rectification and Updating
    At any time, you may request the Data Controller to rectify and update, without undue delay, inaccurate personal data concerning you, as well as to complete the data being processed. The Data Controller must establish reasonable methods to enable the exercise of this right, which must be addressed within fifteen days, and within this same period, must inform the recipient of the data, if applicable, about the rectification, so that it can be updated.
  • Right to Withdraw Consent
    You may withdraw the consents granted at any time without the need for any justification. The withdrawal will not affect the legality of the treatments carried out previously.
  • Right to Total or Partial Objection to Processing
    You have the right to object to the processing of your personal data in certain circumstances and for reasons related to your particular situation, when the cases listed in Article 16 of the Organic Law on Personal Data Protection are met. In these cases, the Data Controller will stop processing the personal data, and this request must be addressed within fifteen days. The Data Controller will stop processing the personal data unless they can demonstrate legitimate reasons for the processing that prevail over your interests, rights, and freedoms, or for the formulation, exercise, or defense of claims.
  • Right to Data Portability
    You have the right to receive the personal data you have provided to the Data Controller in a structured, commonly used, and machine-readable format, and to transmit them to another Data Controller without the Data Controller to whom you provided them preventing you from doing so, in the legally provided cases for these purposes, all in accordance with the regulations issued by the personal data protection authority. The data subject may request that the Data Controller carry out the transfer or communication of their personal data to another Data Controller as soon as technically possible and without the Data Controller being able to claim any impediment of any kind to slow down the access, transmission, or reuse of data by the data subject or another Data Controller. After the data transfer is completed, the Data Controller will proceed to delete them, unless the data subject requests their retention. For the right to portability to proceed, at least one of the conditions expressed in Article 30 of Executive Decree 285 regulating Law 81 of 2019 on Personal Data Protection must be met.
    This right will not apply to inferred, derived, created, generated, or obtained information from the analysis or processing carried out by the Data Controller based on the personal data originally provided by the data subject.
  • Right to Suspend Processing
    In certain circumstances (for example, if you contest the accuracy of your data while verifying its accuracy), you can request that the processing of your personal data be limited, with these being processed only for the exercise or defense of claims. The right will proceed when one of the conditions expressed in paragraphs 1) to 4) of Article 19 of the Organic Law on Personal Data Protection is met. If there is a refusal by the Data Controller or Processor, and the data subject appeals to the corresponding authority, the suspension will extend until the resolution of the respective procedure issued by said authority. The Data Controller may process the personal data, subject to the exercise by its data subject, only: for the formulation, exercise, or defense of claims; to protect the rights of another natural or legal person; or for important public interest reasons.
  • Right to Deletion or Erasure
    You have the right to request the deletion or erasure of your personal data whenever the legal application requirements contemplated in Article 27 of Executive Decree 285 regulating Law 81 of 2019 on Personal Data Protection are met, among other reasons, that they are no longer necessary for the purposes for which they were collected. The Data Controller will implement methods and techniques aimed at permanently and securely deleting, making illegible, or rendering personal data unrecognizable. This must be done within fifteen days of receiving the request from the data subject and will be free of charge.

All exceptions expressed in Article 31 of Executive Decree 285 regulating Law 81 of 2019 on Personal Data Protection apply regarding the rights of rectification, updating, deletion, objection, cancellation, and portability.

In any case, for any questions or additional issues about exercising your rights or, in general, about the processing of your personal data, you can contact our Data Protection Officer at dpo@unicomer.com.
Additionally, if you believe any of your rights in personal data protection have been violated, you can file a complaint with the personal data protection authority.

Your personal data will be treated with absolute confidentiality and maintaining the necessary duty of secrecy regarding it, in accordance with the provisions of Articles 34 and 36 of Executive Decree 285 regulating Law 81 of 2019 on Personal Data Protection, adopting the necessary technical and organizational measures from the conception and design of the project to ensure the security of the data and prevent their alteration, loss, processing, or unauthorized access, considering the state of technology, the nature of the stored data, and the risks to which they are exposed.

The Data Controller or Processor must implement a continuous and permanent process of verification, evaluation, and assessment of the efficiency, effectiveness, and effectiveness of the technical, organizational, and any other measures implemented to ensure and improve the security of personal data processing, to demonstrate compliance with the principles and obligations established in Law 81 of 2019 and its decree.

The Data Controller or Processor must demonstrate that the adopted and implemented measures adequately mitigate the identified risks.

The Data Controller must notify the Personal Data Protection Directorate and the affected data subjects of any personal data security breach immediately, and no later than seventy-two hours after becoming aware of the incident.

Para el caso de las notificaciones a los titulares de los datos, cuando la vulneración pueda constituir un riesgo a sus derechos fundamentales el responsable del tratamiento deberá de notificar al titular sobre la vulneración en un plazo máximo de setenta y dos horas contados a partir de que se haya tenido conocimiento del riesgo, cumpliendo con lo establecido en el art. 37 y 38 del decreto ejecutivo 285 que reglamenta la ley 81 del 2019 sobre la Protección de Datos Personales.

Personal data may be transferred or communicated to countries, organizations, and legal entities in general that provide adequate levels of protection and comply with the obligation to comply with and guarantee internationally recognized standards in accordance with the criteria or resolutions issued by the competent authority and established in Law 81 of 2019 and Executive Decree 285, which regulates said law on data protection.

For notifications to data subjects, when the breach may constitute a risk to their fundamental rights, the Data Controller must notify the data subject of the breach within a maximum of seventy-two hours from becoming aware of the risk, in compliance with the provisions of Articles 37 and 38 of Executive Decree 285 regulating Law 81 of 2019 on Personal Data Protection.If the international data transfer is made to a country, organization, or economic territory that has not been qualified by the Data Protection Authority as having an adequate level of protection, the data controller or processor must offer protection guarantees in the processing included in Article 53 of Executive Decree 285, which regulates Law 81 of 2019 on the Protection of Personal Data.

Personal Data Processing Impact Assessment

The Data Controller must conduct an impact assessment on the processing at the request of the control authority when the conditions established in Article 41 of Executive Decree 285 regulating Law 81 of 2019 on Personal Data Protection are met. The Personal Data Protection Directorate may also establish other types of operations that require impact studies, but in any case, these must be carried out at the beginning of the personal data processing.

The Data Controller must conduct an impact assessment on the processing at the request of the control authority when the conditions established in Article 41 of Executive Decree 285 regulating Law 81 of 2019 on Personal Data Protection are met. The Personal Data Protection Directorate may also establish other types of operations that require impact studies, but in any case, these must be carried out at the beginning of the personal data processing.

The Data Controller reserves the right to modify this Privacy Policy to adapt it to its needs or to any applicable legislative changes. In such cases, it will announce the changes made and publish them on this website, so you can access them at any time and easily.

Register here to receive more information!

Connect with us

© 2019-2024 Grupo Unicomer.

Todos los derechos reservados. / All rights reserved.

Register here to receive more information!

  • Connect with us

© 2019-2024 Grupo Unicomer.
Todos los derechos reservados.
All rights reserved.