Privacy policy

Introduction

It’s very important for us that you understand that we aren’t snitches. We value your privacy and don’t want to put you in a situation where any state has access to your data. We’ve thus adopted measures to ensure your data are processed securely and confidentially. We’ve even expressly forbidden three-letter-agencies from accessing Continentalis.eu (“Site”) —seriously, CIA, stay off our Site.

Our data Privacy Policy and our security and confidentiality measures are designed to comply with Organic Law 3/2018, of 5 December, on protection of Personal Data and guarantee of digital rights (“LOPD”)  and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April on the protection of natural persons with regard to the processing of personal data (“GDPR”).

By accessing the Site, you expressly agree that you’ve read, understood, and agreed to this Privacy Policy as it pertains to you as a User of this Site in the terms set forth in our Legal Notice.

Responsible Party

Representative: Joanne P. Ortiz, Managing Partner

Name: Continental Immigration Services, S.L., (“Continentalis”)

NIF: B13746680

EUID: ES28065.082161105

Address: Calle de la Princesa 31, 2.º-2, 28008 Madrid, Spain

Phone number: Look at the bottom of the page

Email address: gdpr@continentalis.eu

Types of Personal Data Collected

We collect, store, and process three broad types of data:

  1. Confidential. These data include, but are not limited to, your operating system and version, browser and version, device type, geographic location, IP address, and other similar information provided by your device when accessing our Site. Confidential data are collected, stored, and processed automatically upon accessing or using our Site.
  2. Secret. These data include your name(s), surname(s), ID number(s), date of birth, place of birth, citizenship(s), address(es), email address(es), phone number(s), marital status, civil capacity, place(s) of residence, and other data of similar nature. Secret data are only collected, stored, and processed when you’ve provided these data by means of the forms located on this Site or by any other means of communication with which you’ve communicated with Continentalis.
  3. Top Secret. These data include biometric data as defined in article 4(14) of GDPR —specifically, fingerprints— as well as sensitive legal documents such as civil records, criminal records, judicial records, and other records of similar nature. Top Secret data are collected, stored, and processed as a result of a specific contractual agreement between Continentalis and its clients.

Duration of Storage and Processing

  1. Confidential. These data may be stored and processed for up to five (5) years from the date of collection.
  2. Secret. These data may be stored and processed for up to three (3) years from the date of collection or from the date of conclusion of the corresponding contractual agreement between Continentalis and its client, whichever is later.
  3. Top secret. These data may be stored and processed for up to fifteen months (15 mo) from the date of collection or from the date of conclusion of the corresponding contractual agreement between Continentalis and its client, whichever is later.

At the end of the storage and processing term, we’ll destroy your personal data. Our destruction methods guarantee that a person of above average ability wouldn’t be able to retrieve your personal data. Would the NSA be able to retrieve your personal data if they put together a crack team of forensic data scientists, spies, and supercomputers? Probably —although, not definitely. But if the NSA are after you to this degree, you probably shouldn’t be here in the first place, Mr. Snowden. Basically, if your personal data are stored on paper, we’ll either incinerate or criss-cross shred the paper; if your personal data are stored digitally, we’ll securely delete your personal data.

(Our lawyers want us to remind you that, although not likely, a three-letter-agency may have the technology to reconstitute incinerated documents, for example. We do our best, but we can’t guarantee with 100% certainty that your data will never be retrieved. All we can, and do, guarantee is that we’ll destroy your data such that an above-average person couldn’t retrieve the data using reasonably accessible tools or techniques).

FYI, if you sue us or lodge any kind of claim against us, we’re going to hang onto your personal data as long as necessary for purposes of defense.

Purposes of Processing

  1. Confidential. We use these data to improve our Site for Users, to better understand our current and future clients, and to protect ourselves from bad Users.
  2. Secret. We use these data to be able to communicate with and provide services to our clients.
  3. Top Secret. These data are generally the work product of our services and either are required for performance of our services or are the result of performance of our services.

Basis for Processing

  1. Confidential. As stated in our Legal Notice, by accessing, using, and remaining on this Site, you authorize us to process your Confidential.
  2. Secret. Processing of these data is justified by consent given by the User or a client in forms hosted on this Site or in any communication wherein the User or client provide us with their Secret, as well as by consent given by the User or client in a specific contract.
  3. Top Secret. Processing of these data is justified by explicit consent given by a client in a contract pertaining to the performance of one of our services.

Your Rights

GDPR and LOPD guarantee you certain rights. You should read them in more detail here or here. In summary, you have the right to withdraw your consent to our processing of your personal data, to access your personal data, to rectify inaccurate information in your personal data, to erasure of your personal data, to restriction of processing of your personal data, to porting your personal data elsewhere, and to object to processing of your personal data.

You can exercise these rights by writing to us at gdpr@continentalis.eu. You must provide your full legal name, a copy of valid ID, and an express, unequivocal statement as to the right you wish to exercise. If we aren’t sure who you are or what you’re asking for, we’ll reach out to you to make sure —by lodging a GDPR request of this nature, you expressly authorize us to contact you for this purpose.

Continentalis will respond to your GDPR request, as appropriate, within ten (10) calendar days.

If you feel we haven’t treated your personal data according to GDPR or LOPD, you can also lodge a complaint with the Agencia Española de Protección de Datos (“AEPD”), by any of the means provided by the AEPD, including, but not limited to, snail mail directed to AEPD @ Calle de Jorge Juan 6, 28001 Madrid, Spain.

Whew! All done.

Joanne P. Ortiz, Managing Partner

facebook big
© 2025 Continentalis
facebook big
en_USEnglish
es_ESSpanish en_USEnglish