In compliance with the Federal Law for the Protection of Personal Data in Possession of Individuals and its Regulations (hereinafter the Law), and in order to ensure the protection and privacy of personal data, as well as regulate the rights of access, rectification, cancellation and opposition to the treatment of them, Daniel Moreno and Associates, S.C. communicates this Notice.

Responsible Daniel Moreno and Associates, S.C. (hereinafter the Responsible) is responsible for protecting the confidentiality of personal data, sensitive personal data, and financial or patrimonial personal data of its clients, prospects, or former clients, as well as ensuring their privacy and their right to informational self-determination. The exercise of the rights of access, rectification, cancellation, opposition, limitation of use or revocation of consent may be requested in writing to the Privacy Department at the email address web@dma.com.mx.

Privacy Policy This Notice aims to ensure the privacy of the data provided by students, teachers, government personnel, clients, prospects and former clients, in order to become linked to the services provided by the Responsible.

By providing their personal data, the owner agrees to its treatment, as this term is understood in fraction XVIII of article 3 of the Law. If the owner does not agree, he or she should not provide any data.

Purposes The Responsible may collect personal data, sensitive personal data, and financial or patrimonial personal data, for some of the following purposes: Provision of tax editorial services; integration of the administrative file; contact information to send communications; deciding on discounts or surcharges; evaluating service quality, performing statistics on services provided; fulfilling requirements of federal, state and municipal government agencies, and in general, for marketing, advertising or commercial prospecting purposes. Personal Data The following personal data, sensitive personal data, and financial or patrimonial personal data may be subject to treatment, presented in an enumerative but not limiting manner: Identification data: full name, age, date and place of birth, gender, marital status, address, nationality, email, contact phone numbers, Unique Population Registry Key (optional), Federal Taxpayers Registry key, tax ID or equivalent.

It is also informed that in order to fulfill the purposes set forth in this Notice, sensitive personal data described in the preceding paragraph will be collected and treated. This is why the Responsible commits to treating the same under strict security measures, ensuring its confidentiality.

Principles The Responsible observes the principles of confidentiality, legality, consent, information, quality, purpose, loyalty, proportionality, and responsibility in the protection of personal data.

Data Transfer The Responsible may carry out national or international data transfers without the consent of the owner in the cases provided for by the Law and its Regulations. It may also transfer data to service provider entities for the fulfillment of the contractual obligations agreed upon. The third parties and recipient entities of personal data will assume the same obligations and/or responsibilities that the Responsible has assumed with the owner in this Notice.

Options and Means to Limit the Use or Disclosure of Personal Data The processing of your personal data will be that which is necessary, appropriate, and relevant in relation to the purposes set forth in this Privacy Notice. The Responsible Party has the necessary and sufficient administrative, technical, and physical security measures to protect your personal data against damage, loss, alteration, destruction, unauthorized use, access, or processing. Personal data is safeguarded in databases and computer equipment that have the necessary security to prevent information leaks. Physical and logical access controls, environmental controls, intrusion protection systems (IPS, Firewall), antivirus protection tools, and web filtering are some of the tools used to maintain the security of data in the Responsible Party’s systems. If the data owner wishes to request the limitation of the use or disclosure of their personal data, they may do so in the Privacy Department at email web@dma.com.mx

Rights of Data Owners Any owner or, where applicable, their legal representative may exercise the rights of access, rectification, cancellation, and opposition with respect to their personal data, and the Responsible Party will provide the means that allow them to exercise their rights in a timely manner. The exercise of the rights of access, rectification, cancellation, opposition, limitation of use, or revocation of consent must be requested in writing only before the Privacy Department at email web@dma.com.mx.

Procedure for the Exercise of Rights The written request, via email, for access, rectification, cancellation, opposition, limitation of use, or revocation of consent must contain and accompany the following:

  1. The name of the owner and address or other means to communicate the response to their request,
  2. The documents that accredit their identity or, where applicable, the legal representation of the owner,
  3. A clear and precise description of the personal data with respect to which one of the aforementioned rights is sought to be exercised, and
  4. Any other element or document that facilitates the location of personal data.
  5. In the case of rectification requests, the owner must indicate the modifications to be made and provide the documentation that supports their request. The Responsible Party shall notify the owner, within twenty working days from the date the request for access, rectification, cancellation, or opposition was received, of the decision taken so that, if it is appropriate, the same will be made effective within fifteen working days from the date the response is communicated. The aforementioned periods may be extended once for an equal period, as long as the circumstances of the case justify it.

Access The obligation to access information will be considered fulfilled when the personal data is made available to the owner.

Revocation The owner of the personal data may revoke their consent for the processing of personal data at any time, and for this purpose, they must only send a written request to the Privacy Department at email web@dma.com.mx. Within the following twenty working days from the date the revocation request was received, the Responsible Party will inform the owner of the outcome or inadmissibility of the same.