Maria Garcia


Reading these Conditions of Use and Privacy is a necessary condition for the using the services of the website (hereinafter, «Website»).

In compliance with Regulation (EU) 2016/679, of the European Parliament and of the Council, of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/CE (from now on, «the RGPD») and Organic Law 3/2018, of December 5, on Data Protection and guarantee of digital rights («LOPDGDD» ), we inform you of the Privacy Policy, and we guarantee you full compliance by the owner of the Website with the obligations derived from said regulations.

Person responsible of the treatment and owners of the Website

The owner and person responsible for the treatment of personal data on the Website is María Asunción García Rancaño, provided with DNI 7642776D, (from now on, the «Person responsible for the Treatment»).

María García Rancaño is a member of the Bar Association of the Balearic Islands under number 6,456.

Contact email:

Purpose for which we process your personal data

The main purpose for which we will treat your information is to provide you with the legal advice and legal defense services requested by you, either through the Website or in our office and adapt them to your needs.

Legal basis for the processing of your personal data

Execution of a contract: Corresponds to those services expressly requested by you, the main services identified are legal advice and legal defense.
Consent of the interested party: Sending of advertising of the products offered by the company of which you are a client, satisfaction and loyalty surveys.
Legitimate Interest of the Person Responsible: Corresponds to those data processing strictly necessary for a legitimate purpose.

Category of personal data processed

Contact information can be collected from the Website, through the form on the Website or by contact via email. Through the form, the full name and email of the User are collected.
However, both by email and in the form itself, both in the subject and in the body of the message, the User, occasionally or potentially, could transfer more categories of personal information, categories that are difficult to list or inventory in this previous step. Said information, where appropriate, is protected by professional secrecy, and the Person Responsible for the Treatment will impose rigorous security measures on its treatment, and will keep the data only as long as they are appropriate to the purpose for which the contact was made. Certain cookies could provide data such as the IP address or the geolocation of certain devices, but said information will arrive in aggregate or statistical form, without the Person Responsible being able to individualize or identify specific Users.

Personal and non-personal data collected

The Person Responsible for the Ttreatment only processes the personal data obtained from the forms voluntarily filled out by the User and given by the User via email, under the principles of legality, loyalty and transparency, purpose limitation, data minimization, accuracy, limitation of the conservation period, integrity and confidentiality and proactive responsibility.

Personal data collected will change depending on the use that the User makes of the Website and its characteristics.

For the purpose of obtaining analytical and statistical data from the web, although they will be mostly anonymized and therefore it will not be possible to identify the owners of said data, we will try to obtain the express consent of the User, through some technical functionality (notice or cookie sheet) that allows you to be informed in advance and decide whether or not to grant said consent to the treatment.

This information can be expanded in the Cookies Policy.

Data storing

We will keep your personal data to the extent that we need it in order to use it for the purpose for which it was obtained and according to the legal basis of the treatment that applies to it. We will store them as long as there is a contractual and/or commercial relationship, or you do not exercise your right to suppress, oppose and/or limit the treatment of your data or as required by law.

If you exercise any of your rights, we will keep the information duly blocked, as long as it may be necessary for the exercise or defense of claims or some type of judicial, legal or contractual responsibility may arise from your treatment, which must be attended to and for which will be necessary its recovery.

Communication of personal data

Your personal data will only be communicated to third parties when necessary or you have given your consent:

  • If you have previously authorized it.
  • To third parties (responsible of the processing) that provide us with services which are only given access to the personal information necessary to provide the service assigned. Likewise, they are required to maintain the confidentiality of your personal information and cannot use it in any other way than for the provision of the service assigned.

Outside of these situations, the Person Responsible for the Treatment will not transfer the User’s personal data to any third party without their express and unequivocal consent, except by legal obligation.

International transfers

International transfers are not made


You can exercise your rights of access, rectification, deletion and opposition, treatment limitation, data portability and not be subject to individualized decisions, as well as withdraw the consent given, through the postal and electronic addresses indicated in the Person Responsible section.

In order to process the request, the User must identify himself with his full name, in addition to providing a copy of his DNI, NIE or passport, as appropriate.

In addition, if the User considers that there is a problem with the way in which we are treating their personal data, they can direct their claims to the competent control authority, being the Spanish Agency for Data Protection the one indicated in the case of Spain:

Security measures

The User’s privacy, professional secrecy and the security of personal data are key principles and firm commitments in acting and interacting as a legal professional by the Person Responsible for the Treatment, with personal data.

So, considering the state of the art, application costs, and the nature, scope, context and purposes of the treatment, as well as the risks of variable probability and severity for the rights and freedoms of natural persons, the Person Responsible for the Treatment will apply appropriate technical and organizational measures to guarantee a level of security appropriate to the risk. Said technical and organizational measures will be aimed at reducing and minimizing the risks of loss, improper use, alteration, unauthorized access, or disclosure of said personal information that concerns you, adopting the necessary measures to protect the confidentiality, integrity and availability of personal data.

Modification of the Privacy Policy

The principle of proactive and constant compliance with data protection regulations, as well as the duties of the Person Responsible for the Treatment regarding transparency derived from the GDPR make it likely that this Privacy Policy will be modified from time to time.

Therefore, the Person responsible for the Treatment will make the most diligent efforts to notify the data holders of any significant changes to this Privacy Policy with repercussions