Privacy Notice

Mosaic Biomedicals SLU and affiliate companies (Mosaic, us, we or our) respect the privacy of visitors to its website, The purpose of this Privacy Notice is to provide you with information on how we will use and protect the personally identifiable information you share with us. This Privacy Notice will be continuously assessed against new technologies, business practices and the needs of persons with whom we communicate. By using Mosaic’s website, you agree to the practices described in this Privacy Notice. If you have any concerns or would like to contact us about any aspect of this Privacy Notice, please get in touch with us through the online form at the contact section on our website. As the controller of the personal information as defined by the General Data Protection Regulation n° 2016/679 EU (GDPR), Mosaic has committed to comply with the GDPR. Mosaic wants to make sure that European Union (EU) data subjects understand what personal information is collected about them, how their personal information is used and how it is kept safe by Mosaic when they use Mosaic’s website.
  • Information We Gather
    Mosaic will only collect personally identifiable information you voluntarily submit through the online contact form in our website . This information includes, but is not limited to, your last and first name, and e-mail address, address or telephone number, company name and position and health information, particularly medical conditions and medication
  • Uses of Information
    We only use your personal information to help us improve our services and to inform you about additional products, services or developments that may be of interest to you and for which you have given us your consent. We do not share this information with outside parties without your explicit consent.
    The information we collect will be used for the following purposes:
    The reasons we process your personal informationHow we justify the processing
    To respond to your requests or inquiriesWe will ask your consent on the application form before you send it to us.
    To respond to your employment applicationWe will ask for your consent on the application form before you send it to us.
    Improve the accessibility and user experience of our websiteWe don’t collect any cookies except for the functional ones that are necessary to run the website.

    We do not sell, trade or rent your personal information to others. We may release information when we believe, in good faith, that such release is reasonably necessary to (a) comply with law, (b) enforce or apply the terms of any of our user agreements, or (c) protect the rights, property or safety of Mosaic, our users or others. We will not share or transfer your personally identifiable data to any third party without your explicit consent defining an appropriate legal basis and without providing you with required information about he data processing.
  • Location of Your Personal Data
    Mosaic is a company based in Spain, and inquiries made through our website will be processed in Spain.

    The personal data you provide will be accessible to our affiliates and may also be shared with third parties. These third parties may include (i) external third party outsourced service providers, vendors or business partners that assist us in carrying out our business activities (“third party agents”) and (ii) other unaffiliated third parties which do not act as agents or service providers and are not performing functions on our behalf (e.g. purchasers and prospective purchasers or other parties in any proposed reorganization, sale, joint-venture, merger, transfer or other transaction relating to our business, assets, companies or stock).

    Mosaic will release the minimal amount of data that is necessary for these third parties to perform their contractual obligations. Mosaic takes reasonable and appropriate steps to ensure that third-party agents process personal data in accordance with this Privacy Notice and to stop and remediate any unauthorized processing.

    These third parties may be located in countries that do not provide the same standard of legal protection as in the EU.

    In these cases, either the third country recipient is recognized as having an adequate level of data protection, or appropriate safeguards will be put in place by us to ensure the protection of your personal data.

    Mosaic is committed to ensuring the security of personal data in order to protect it from unauthorized access, unlawful processing or disclosure or accidental loss, modification or destruction. To this end, Mosaic uses technical, administrative and procedural measures in an attempt to safeguard your personal data. While we will make reasonable efforts to protect personal and/or health-related personal data, you should be aware that there is always some risk that an unauthorized third party could intercept an internet transmission, and we do not guarantee that your personal data will be secure from accidental loss, unauthorized access, improper use or disclosure.
  • Your rights as an EU data subject
    GDPR provides EU data subjects with rights over their personal data. These rights include:

    1. Information:The right to be informed about the processing of your personal data.

    2. Access: The right of access to your personal data. You have the right to obtain confirmation as to whether or not your data are being processed. If yes, you have the right to access your data, to receive information related to the processing and also to receive a copy of the data undergoing processing.

    3. Rectification: You are entitled to have your personal data rectified if it is inaccurate or incomplete.

    4. Erasure: This right enables you to request the deletion or removal of your personal data in certain circumstances.

    5. Restriction: The right to restrict processing of your personal data.

    6. Portability: The right to portability of your data in a re-usable format, such as spreadsheets. This right enables you to reuse your personal data for your own purposes across different services.

    7. Opposition: The right to object to processing for certain purposes.

    8. Withdraw consent: The right to withdraw your consent at any time and without justification when you have given your consent for the data processing. The withdrawal of your consent doesn’t affect the lawfulness on the processing of your personal data based on your consent before the withdrawal.
  • Our Data Protection Officer
    If you have any questions about this notice or how we process your personal data, please contact our Data Protection Officer at

    You also have the right to raise a complaint about how your personal data is handled to the National Data Protection Authority located in the Member State in which you have your main residence or place of work, or located in the Member State the alleged violation took place. To obtain contact details of all Member States Data Protection Authorities, click here.
  • For US data subjects - Mosaic Protection of Children’s Information
    Mosaic’s dedication to protecting your privacy also extends to children, and our website is not designed or intended to attract children 15 years old or younger, based on the country you are in. We do not knowingly collect personal information from any person we actually know is defined to be a child in a given country. If you have questions or concerns about the Internet and privacy for children, we encourage you to visit
  • For Residents of the State of California- California Consumer Privacy Act (CCPA)
    This section addresses the California Consumer Privacy Act (CCPA), to be effective as of January 1, 2020 which provides additional rights and protections related to personal information of California residents.

    A. “Do Not Sell My Data”. The CCPA requires companies that sell personal information to provide California residents a “Do Not Sell My Data” opt-out option, as well as an opt-in option for minors under 16 years of age. Mosaic does not and will not sell the personal information we collect and therefore we do not include these options on our website.

    B. Request to Know & Request to Delete. B. If you are a California resident covered by the CCPA, you are permitted to: (1) request that Mosaic disclose to you your Personal Information that we process, and (2) request that we delete your Personal Information. You also have the option to designate an authorized agent to make a request on your behalf. You may submit a request to Mosaic by contacting us: (1) via e-mail  usig our online contact form or (2) via post to the address Barcelona Science Park, Baldiri Reixac 4-8, Barclona 08028, Spain. After you submit your request, we will be in touch with you to verify your identity (and also your authority to make the request on another’s behalf, if applicable), including information that will enable us to confirm that you are a California resident. Our Data Privacy Office will consider various factors when deciding the steps needed to verify your identity (and also your authority to make the request, if your request is made regarding someone other than yourself).  Factors may include, among other things, (a) type, sensitivity and value of the Personal Information about which the request relates; (b) risk of harm posed by any unauthorized access or deletion; (c) likelihood that fraudulent or malicious actors would seek the Personal Information; (d) whether the Personal Information to be provided to verify identity is sufficiently robust to protect against fraudulent requests or being spoofed or fabricated; (e) manner in which the business interacts with the person(s) about the whom the request relates; and (f) available technology for verification. If verification has been successful, we will then respond within legally mandated timeframes (typically within forty-five (45) days). Our response may be to provide the information requested, or to make the requested deletion. In some instances, our response may advise that a legal exemption applies and we are not able to comply with the request (such as for a request to delete). You have a right not to receive discriminatory treatment by Mosaic for the exercise of the privacy rights conferred by the CCPA. If you have any concerns or would like more information regarding these rights, please contact Data Privacy Officer by email at
  • External Links
    As a convenience to our visitors, Mosaic’s website provides links to a number of sites that we believe may offer useful information. The policies and procedures we described here do not apply to those sites. We suggest contacting those sites directly for information on their privacy, security and data collection and distribution policies.
  • Changes to the Privacy Notice
    Personal data privacy is a new and evolving area, and Mosaic is evolving to meet these demands. Mistakes are possible and miscommunications are possible. If you have any comments or questions regarding this Privacy Notice, please contact us by using our online contact form. We will address any issue to the best of our abilities.
  • European Economic Area
    Provisions of this Privacy Notice that apply to EU data subjects shall also apply to European Economic Area data subjects.
  • What Are Cookies?
    Cookies are small pieces of text sent by your web browser by a website you visit. A cookie file is stored in your web browser and allows website to recognize you and make your next visit easier and the website more useful to you.

    Cookies can be “persistent” or “session” cookies. Persistent cookies remain on your personal computer or mobile device when you go offline, while session cookies are deleted as soon as you close your web browser.
  • Usage Tracking & Cookies Policy
    We track IP addresses and statistics cookies; how visitors use the website, and the visitor’s device and behavior on our website. We will use your information only to respond to your requests and to aid us in making our website services more accessible and friendly to you. You can delete and disable cookies in your browser (see below).
  • What Are Your Rights and Choices Regarding Cookies
    You have certain individual rights under GDPR. You can learn more about these rights in the GDPR or by reading the above “Your rights as an EU data subject” section.


    If you would like to delete cookies or instruct your web browser to delete or refuse cookies, please visit the help pages of your web browser.