ETERNA Diagnostics
Access App →

Privacy Policy

At ETERNA DX we are committed to protecting your privacy and your personal data. Here we explain how we collect, use and safeguard your information.

Table of contents

Information for usersData controllerCategories of dataPurposes of processingWeb analytics toolsData protectionHealth dataRetention periodSharing of dataModification and erasureYour rightsContact detailsMandatory vs optional informationSecurity measures

Information for users

This Privacy Policy explains what personal data is collected when you use our mobile applications, websites and the services provided through them (together, the “Application” or “Service”), and how such personal data will be processed.

By using the Service, you represent that: (i) you have read, understand and accept this Privacy Policy; and (ii) you are over 18 (or your parents or guardians have read and accepted this Privacy Policy on your behalf). If you do not agree or cannot make this representation, you must not use the Service.

Important: This site is protected by reCAPTCHA and Google’s Privacy Policy and Terms of Service apply.

Who is the controller of your personal data?

STARTQUAKE S.L. is the CONTROLLER of the personal data of the USER obtained through www.eternadx.com and the Eterna Diagnostics App and informs you that such data will be processed in accordance with Regulation (EU) 2016/679 of 27 April (GDPR) and Organic Law 3/2018 of 5 December (LOPDGDD).

Categories of data we process

We collect data you voluntarily provide to us; we may also receive data about you from third parties; and we automatically collect certain data. We process two main categories:

1. Personal data

Name and surname, email, phone, sex, date of birth, height or weight. We also collect demographic and lifestyle data through an optional onboarding questionnaire to better understand our customers’ habits.

2. Health data

Used to provide biological age measurement services. It is collected only after you purchase the service and accept the terms and conditions. It includes wearable data and protein analysis data.

Specific data collected:

  • ActivAge: calories burned, distance, steps, heart rate, heart rate variability, etc.
  • Biological age test: protein data via dry blood spot testing
  • Important: All data is anonymised and cannot be linked back to an identifiable individual

Why we process your personal data

Depending on the form through which we obtained your personal data, we will process it confidentially for the following purposes:

Contact form

  • Respond to enquiries or requests from the user
  • Carry out statistical analysis and market research

Legal basis: legitimate interests of the controller (Art. 6(1)(f) GDPR).

App user registration

  • Manage the user account for personalised access
  • Provide interactive Eterna Diagnostics services

Legal basis: consent of the data subject (Art. 6(1)(a) GDPR).

E-commerce

  • Manage online purchases and orders
  • Process payments and shipments
  • Maintain and improve the services provided
  • Conduct satisfaction and quality surveys

Legal bases: performance of a contract or pre-contract (Art. 6(1)(b) GDPR) for purchase, payment, shipping and service management; and legitimate interests of the controller (Art. 6(1)(f) GDPR) for satisfaction and quality surveys.

Newsletter

  • Send newsletters, news and offers

Legal basis: consent of the data subject (Art. 6(1)(a) GDPR).

Web analytics and experience improvement

To continuously improve our services and optimise the user experience, we use web analytics tools that collect information about how users interact with our website. These tools are activated only after we obtain your explicit consent.

Full transparency:We commit to using these tools solely to improve your experience. Data is processed in aggregate form and is never used to identify you personally or shared with third parties for commercial purposes.

Data protection

The security of your information is our top priority. We implement rigorous data protection mechanisms to safeguard the confidentiality and integrity of the information collected.

Security and encryption

  • Secure communications: All communications use encrypted HTTPS connections
  • Strong authentication: Token-based authentication to control access
  • Data encryption: Encrypted database using Google Cloud encryption keys
  • Password protection: Hashing methods to protect user passwords

Additional security measures

  • Authorised access: Access limited to authorised personnel only
  • Loss prevention: Regular backups and integrity controls
  • Continuous monitoring: Ongoing monitoring to detect suspicious activity

Processing of health data

Special protection

No transfer to third parties: Health data is not transferred to third parties except where necessary to improve application capabilities.

Research and development: The company may conduct studies subject to ethics committee approval and the user’s express authorisation.

Anonymisation: Health data remains anonymised so that personal data cannot be associated with health data.

How long do we keep your personal data?

We will retain data for no longer than necessary for the purposes of processing or as required by law. When no longer needed, data will be erased using appropriate security measures to ensure anonymisation or complete destruction.

Who do we share your personal data with?

Your anonymised data may be shared with API TERRA (https://tryterra.co/) and stored on Google Cloud.

Confidential processing:These transfers use appropriate security measures and are carried out to provide, maintain or improve the contracted services.

Modification and erasure of data

Full control: You can update your personal data at any time in the App.

Cancellation: You may cancel your subscription whenever you wish.

Full erasure: You may request deletion of all your data (personal and health) from our database.

How: Through the form in our app or by contacting info@eternadx.com

What are your rights?

You have the right to:

  • Withdraw consent at any time
  • Access, rectify, port and erase your data
  • Restrict or object to processing
  • Lodge a complaint with a supervisory authority (in Spain: www.aepd.es)

Contact details to exercise your rights

STARTQUAKE S.L.

CALLE LOS PRADOS-PARQUE TECNOLÓGICO DE GIJÓN, N.º 166 – 33203 GIJÓN (Asturias), Spain

E-mail: info@eternadx.com

Mandatory or optional nature of the information provided

By ticking the relevant boxes and entering data in fields marked with an asterisk (*), USERS expressly and freely accept that their data is necessary to handle their request.

The USER warrants that personal data provided to the CONTROLLER is accurate and undertakes to notify any changes.

Important: All data requested through the website is mandatory, as it is required to provide an optimal service. If you do not provide all required data, we cannot guarantee that the information and services will fully meet your needs.

Security measures

In accordance with applicable data protection law, the CONTROLLER complies with all GDPR and LOPDGDD requirements for processing personal data for which it is responsible.

Specifically, the CONTROLLER applies the principles of Article 5 GDPR: data are processed lawfully, fairly and transparently in relation to the data subject and are adequate, relevant and limited to what is necessary for the purposes of processing.

The CONTROLLER confirms that it has implemented appropriate technical and organisational policies to apply the security measures required by the GDPR and LOPDGDD in order to protect USERS’ rights and freedoms.

For more information on privacy safeguards, you may contact the CONTROLLER using the contact details provided above.

ETERNA Diagnostics – Science and longevity at the service of your health