Privacy policy

EXENTYS personal data protection policy

If you want to know how we manage your personal data, read below:

We are a tax, accounting and labor consultancy and we offer comprehensive advisory services to companies, freelancers, professionals. In our relationship, we collect personal data from companies, professionals and people who seek our advice as well as whoever comes to us with a query. We need these data to be able to offer the service, answer questions and, in the case of clients, to provide our professional services. Therefore, we comply with the provisions of Regulation (EU) 2016/679 General Data Protection (RGPD), Organic Law 3/2018 of December 5, Protection of Personal Data and guarantee of digital rights (LOPDGDD ) and other applicable regulations in force and we inform you that EXENTYS processes the personal data collected. Therefore, EXENTYS, whose contact information is provided below, will be Responsible for the Treatment of your personal data in the terms provided in the RGPD.

Data of the person in charge of treatment:
EXENTYS is the commercial name of EXENTYS ASESORES, SLU
You can find us in Madrid CALLE DOCTOR ESQUERDO 170 2nd FLOOR CP 28007
NIF B87254587
You can contact us at

What data do we collect?

In order to provide our professional services we are going to need minimal data.
In each case we request some information depending on the requested service.

These are the essential data to carry out the advice and we guarantee that they will only be used for the purposes that we indicate below and with the greatest security.


The personal data collected both through our website and in the provision of our professional services will be processed for the purpose of:

• Manage your request for information and / or inquiry if you contact us either directly or through the forms on our website.
• If you are a client, you will have to provide us with all your tax information, invoices, expenses and, in the case of employment advice, all the information that is relevant to provide the requested service.
• If you are a supplier, we will manage the data you provide us in order to establish a professional / commercial relationship with you.
• We may send you information on our activities if you have a prior contractual relationship with us. That is, if you are a user, client or provider, we will send you information but you can always unsubscribe if you do not want to receive it.

We will keep your data for the necessary time to comply with the stated purposes and with our legal obligations, especially fiscal ones that require specific retention periods. Once this period has elapsed and after blocking, we will proceed to its elimination.

What is the legitimacy to process your data?

If you contact us, you consent to the processing of your data so that we can assist you and provide you with the information you need.

In the case of clients, we need some minimum data to be able to register you as a client and to be able to provide you with the requested service and of course to be able to make the contract you sign with us possible. However, this registration is always done with your consent.

If you are a supplier, the legitimacy is also the contractual relationship that binds us.
To send commercial information by electronic means, we rely on our legitimate interest as provided in article 21.2 of Law 34/2002 on Information Society Services and Electronic Commerce.
If you are neither a customer nor a supplier, we will always ask for your consent.

Who are we going to communicate your data to? In principle nobody

We will not transfer your data to third parties except in those cases in which either due to legal obligations (public administrations that includes the Tax Agency, Social Security, etc.) or for the execution of the contract itself it is necessary to communicate the data to third parties (financial entities, insurance companies and other third parties whose intervention may be necessary for the execution of the contract).

We may use third-party media and tools (hosting, servers, management applications, etc.) but we have ensured that all of them comply with data protection regulations (through the corresponding service agreements and specific conditions) and we have dealt with that all of them are in the territory of the European Union and with the best security.
For your information we work with Google, Trello, Holded, Contasol and Bilky and all of them are in the territory of the EU and comply with the RGPD.

We also work with suppliers with whom we subcontract some services. We have contracts with all of them that guarantee the confidentiality of the information.

Do you know your rights? We guarantee it

You have the right to exercise the rights of access, rectification, deletion and opposition, as well as limitation and portability in relation to your personal data by writing to the registered office of EXENTYS or to the e-mail address attaching in both cases a copy of your ID.

You can also revoke your consent in the event that the processing of your personal data is based on consent.
We inform you that in accordance with the provisions of the RGPD you have the right to file a claim with the Spanish Agency for Data Protection. However, at EXENTYS we take this privacy very seriously and will try to resolve any issue related to your personal data through the email

We have adopted the necessary security measures to protect the information and your personal data and guarantee its confidentiality, integrity and availability, taking into account the risks. In addition, we periodically review our systems and our compliance to make sure we do things right.

Updated October 2020

Subscribe form

Subscribe to our newsletter and stay updated about our latest legal advices, startup funding ideas, due diligences,...