Privacy Policy

Last update 03-Jul-2026
Effective date 03-Jul-2026

This Privacy Policy describes how SIXE Soluciones SL, CIF B21784111, Calle de la Alameda 22, 28014, Madrid, Spain, email: privacidad@sixe.es, phone: 911980243, collects, uses and discloses your personal information when you use our websites (https://sixe.es, https://sixe.eu, https://sixe.be) (the “Service”).

We process your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the Spanish Organic Law 3/2018 on Personal Data Protection and Digital Rights Guarantee (LOPDGDD), and other applicable data protection legislation. We encourage you to read this Privacy Policy carefully to understand how we handle your personal data.

We may update this Privacy Policy to reflect changes in our practices or applicable legislation. When we make significant changes, we will notify you through visible notice on our websites or by other appropriate means before the changes take effect. The date of the latest revision is always indicated at the top of this page.

INFORMATION WE COLLECT:

We may collect and process the following categories of personal data:

Identifying and contact data: name, surname, email address, phone number, postal address, provided through our contact forms or direct communications.
Professional data: company name, job title, sector of activity.
Billing and tax data: necessary for invoicing contracted services.
Training data: course enrolment and attendance records when you register for our training services.
Browsing data: IP address, browser type, operating system, pages visited, visit duration, collected through cookies and similar technologies as described in our Cookie Policy.
Any additional information you voluntarily provide through forms, emails or direct communications.

We do not process special categories of data (Article 9 GDPR) unless we have obtained your explicit and specific consent.

HOW WE USE YOUR INFORMATION:

We will use the information we collect about you for the following purposes and on the following legal bases:

Managing and responding to contact requests and queries — legal basis: your consent (Art. 6.1.a GDPR).
Delivery of contracted services, including training courses — legal basis: performance of a contract (Art. 6.1.b GDPR).
Administrative, accounting and tax management — legal basis: compliance with a legal obligation (Art. 6.1.c GDPR).
Sending commercial communications and newsletters — legal basis: your prior consent (Art. 6.1.a GDPR). You may withdraw this consent at any time.
Improving our services and user experience — legal basis: our legitimate interest (Art. 6.1.f GDPR). You have the right to object to this processing at any time.

We will not use your personal data for purposes other than those described above. If we need to process your data for a new purpose, we will inform you and, where required, seek your consent before doing so.

RETENTION OF YOUR INFORMATION:

We will retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. Specific retention periods include:

Client and billing data: 6 years (Article 30, Spanish Commercial Code) and 4 years (Spanish General Tax Act).
Commercial contact data: until you withdraw your consent or request deletion.
Browsing and cookie data: as detailed in our Cookie Policy.

After the applicable retention period, your data will be securely deleted or anonymised. Residual anonymous and aggregated information that does not identify you (directly or indirectly) may be stored indefinitely.

DATA RECIPIENTS:

Your personal data may be shared with the following categories of recipients:

Public authorities: when required by a legal obligation.
Service providers acting as data processors: necessary for the provision of our services (web hosting, email platforms, management tools, payment gateways). These providers have signed data processing agreements in accordance with Article 28 GDPR and process your data solely on our documented instructions.
Banking entities: for the management of payments and collections.

We do not transfer personal data outside the European Economic Area (EEA) unless the recipient country has an adequacy decision from the European Commission, or appropriate safeguards are in place as provided by Articles 46 and 47 GDPR (standard contractual clauses, binding corporate rules, etc.). Should any international transfer take place, you will be specifically informed.

YOUR RIGHTS:

In accordance with Articles 15 to 22 of the GDPR, you have the following rights regarding your personal data:

Right of access (Art. 15): to obtain confirmation of whether your personal data is being processed and to access such data.
Right to rectification (Art. 16): to request the correction of inaccurate or incomplete data.
Right to erasure (Art. 17): to request the deletion of your data when, among other reasons, they are no longer necessary for the purpose for which they were collected.
Right to restriction of processing (Art. 18): to request the restriction of processing under certain circumstances.
Right to data portability (Art. 20): to receive your data in a structured, commonly used and machine-readable format, and to transmit it to another controller.
Right to object (Art. 21): to object to the processing of your data, including profiling.
Right not to be subject to automated individual decision-making (Art. 22): not to be subject to a decision based solely on automated processing that produces legal effects or significantly affects you.
Right to withdraw consent: where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of processing carried out prior to withdrawal.

To exercise any of these rights, please contact us at privacidad@sixe.es or by postal mail at: SIXE Soluciones SL, Calle de la Alameda 22, 28014, Madrid, Spain. Your request must include proof of your identity. We will respond within one month from receipt of the request, extendable by two additional months for complex or numerous requests, in which case we will inform you of the extension.

COOKIES:

For more information on how we use cookies and similar tracking technologies and your choices regarding them, please see our Cookie Policy.

SECURITY:

We have implemented appropriate technical and organisational measures in accordance with Article 32 of the GDPR to ensure a level of security appropriate to the risk, including:

Encryption of data in transit (TLS/SSL) and, where appropriate, at rest.
Role-based access controls and the principle of least privilege.
Regular backups.
Security incident monitoring and detection procedures.
Staff training and awareness on data protection.

However, no method of transmission over the Internet or electronic storage is completely secure. While we strive to protect your personal data, we cannot guarantee its absolute security.

LINKS TO THIRD PARTIES:

Our websites may contain links to third-party websites. SIXE Soluciones SL is not responsible for the privacy practices or the content of such websites. We recommend that you review the privacy policies of any third-party website you visit.

CONTACT AND COMPLAINTS:

If you have any questions or concerns about the processing of your personal data, you can contact us at:

Email: privacidad@sixe.es
Postal mail: SIXE Soluciones SL, Calle de la Alameda 22, 28014, Madrid, Spain
Phone: 911980243

If you believe that the processing of your personal data infringes the GDPR or applicable data protection legislation, you have the right to lodge a complaint with a supervisory authority. In particular:

If you are located in Spain: Agencia Española de Protección de Datos (AEPD) — www.aepd.es, C/ Jorge Juan 6, 28001, Madrid, Spain.
If you are located in Belgium: Autorité de protection des données (APD) — www.autoriteprotectiondonnees.be, Rue de la Presse 35, 1000 Bruxelles, Belgium.
If you are located in another EU/EEA Member State: you may lodge a complaint with the supervisory authority of your country of habitual residence, place of work, or place of the alleged infringement. A list of supervisory authorities is available at edpb.europa.eu.

APPLICABLE LAW:

This Privacy Policy is governed by the General Data Protection Regulation (EU) 2016/679 and applicable national data protection legislation. Nothing in this policy limits your rights under applicable consumer protection or data protection law, including your right to bring proceedings before the courts of your habitual residence.