MURPHY PLATFORM PRIVACY POLICY
In compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, concerning the protection of individuals regarding the processing of personal data and the free movement of such data (“GDPR”) and Organic Law 3/2018 of December 5 on the Protection of Personal Data and Guarantee of Digital Rights (“LOPDGDD”), MURPHY VENTURES, S.L. (hereinafter, “MURPHY”), as the developer and responsible entity for the operation of the Murphy web platform, provides users with information about the processing of their personal data carried out on the Murphy web platform (hereinafter, the “Platform”).
This policy applies to any person designated by the entity that contracts the services of the Platform to access it in the role of employer or employee (hereinafter, "Users"). As long as Users have permission to use the Platform, they can access and configure debt collection processes linked to the Platform.
Who is responsible for data processing?
The data controller (hereinafter, the "Controller") is the entity that contracts the services of the Platform. The employer will grant permission to the employee to access the Platform (hereinafter, the “Employee” or “Employees”), who must register and log in to the Platform. Employees must have an employment, service provision, or collaboration relationship with the Controller.
In this scenario, MURPHY will process the Users' data as the data processor. The identification details of the data processor are as follows:
- Identity: MURPHY VENTURES, S.L.
- Tax ID (NIF): B-75.511.485
- Postal Address: Calle Aribau, number 263, 3rd, 2nd, 08021, Barcelona, Spain
- Email: hello@getmurphy.ai
For what purpose and on what legal basis do we process personal data?
The Controller may process data for the following purposes and legal bases:
Employee registration and management on the Platform
To allow the Employee to access the Platform, certain required data must be provided for registration. Once the Employee’s profile is created, the data will be used to manage the profile, including utilizing active functionalities according to the profile and adding, modifying, or deleting profile data.
Legal Basis: The processing for the Employee’s registration management will be carried out for the execution of a contract in which the Employee is a party (Article 6.1.b) of the GDPR).
Handling Platform inquiries
If you contact us with a query or complaint related to the Platform, your personal data will be used to respond and manage, if applicable, the inquiry or complaint.
Legal Basis: Any processing of personal data related to an inquiry or complaint will be carried out based on the Employee's consent (Article 6.1.a) of the GDPR) given when submitting the inquiry, complaint, or claim, or based on the execution of a contract (Article 6.1.b) of the GDPR) if related to the received service.
Compliance with legal obligations
The processing of the Employee’s personal data may be carried out to comply with legal obligations imposed on the Controller, including, if applicable, communication with competent authorities.
Legal Basis: The processing of the Employee’s personal data will be carried out based on a legal obligation imposed on the Controller.
How long will we retain personal data?
Personal data will be processed for as long as necessary to fulfill the purposes described in this Privacy Policy and comply with applicable legal obligations, legal prescription periods, and for the establishment, exercise, or defense of claims. In such cases, personal data will be properly blocked.
To whom may your data be disclosed?
Without prejudice to the obligation to disclose personal data to competent authorities due to legal requirements, the Controller may share personal data with third parties acting as data processors.
Source of the data
The collected data is provided by the Controller to manage the Platform invitation upon registration, as well as data that may be provided by the employer or collected during the use of the account by employees.
What are your rights?
- Right to access personal data: You can inquire whether we are processing your data and, if so, access it.
- Right to rectification: You can request the correction of inaccurate data or completion of incomplete data.
- Right to erasure: You can request the deletion of your data.
- Right to restrict processing: In this case, we will only retain your information for the establishment or defense of claims.
- Right to object to processing: We will stop processing your personal data unless it must continue to be processed for legitimate reasons or for the exercise or defense of possible claims.
- Right to data portability: If you wish your data to be transferred to another data controller, we will facilitate the transfer whenever technically possible.
- Right not to be subject to automated decision-making: You have the right not to be subject to a decision based solely on automated processing of your personal data.
If the Controller processes data based on consent, the Employee may withdraw their consent at any time. The withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.
To exercise your rights, you may contact the Controller at hello@getmurphy.ai or by writing to the following postal address: Aribau 263, 3rd, 2nd, 08021, Barcelona, Spain. You may also contact us through the contact details provided in section 1 of this Privacy Policy. Additionally, the Employee may file a complaint with the competent authority, in this case, the Spanish Data Protection Agency (https://www.aepd.es), particularly if they are not satisfied with the response to their request.
Additional Information
Child Protection Policy
Our services are exclusively intended for adults. We do not knowingly collect information from minors. If you are a parent or legal guardian and believe that a minor has provided personal data through the Platform, please contact us via email at hello@getmurphy.ai.
Links
The Platform may contain links to other websites that MURPHY considers of interest to the Controller. Please note that the Controller is not responsible for the processing of personal data carried out by third parties who own the domains of these links.
Updates
The processing of Users' personal data will be carried out in accordance with this Privacy Policy. If the Platform makes changes to its policies, Users will be duly informed.
Last updated: 07/02/2025