CAR Cardiology Advanced Register, SL, hereinafter referred to as TerapiaCPAP, collects, processes and stores personal information through its website https://www.terapiacpap.pt/. This information may relate to website users, customers, suppliers, contact persons and other organizations.

In this privacy policy you will find information on how this information will be collected, processed and stored.

Responsible legal entity

Trade name: TerapiaCPAP

Legal name: CAR Cardiology Advanced Register, SL

Tax ID: B60631553

Address: C/ Cerdanya 8, 2a planta – 08173 Sant Cugat del Vallès

Contact email: contacto@terapiacpap.pt

Laws that apply to this website

GDPR (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons).

LOPD (Organic Law 15/1999, of December 13, on the Protection of Personal Data and Royal Decree 1720/2007, of December 21, LOPD Development Regulation)

LSSI (Law 34/2002, of 11 July 2002, on Information Society Services and Electronic Commerce).

Data collected

Only the data strictly necessary to carry out the normal activity of the service will be collected. In accordance with the data minimization principle (Art.5.b GDPR).

The data collected must in all cases come from persons over 16 years of age (art. 8.1 GDPR). TERAPIACPAP reserves the right to take steps to verify age accuracy (Art. 8.2 GDPR).

In any case, this data will be of a personally identifiable nature and will not be sensitive, and may be:

E-mail address


Name and Nickname

Identification Number



Collection methods

Personal data will be collected through the TERAPIACPAP website, https://www.terapiacpap.pt/ , when you enter information in any of the fields provided for this purpose on the website. These fields are duly marked and will not collect any data until you expressly accept the transfer and management in accordance with this privacy policy.

Purpose of data collection and use https://www.terapiacpap.pt/

The collection and use of data is carried out for the sole purpose of contacting the customer in case of problems with the order.

TERAPIACPAP undertakes not to use the data obtained for any purpose other than this.

data recipient

The data collected will be incorporated into a file owned by:


This file will be stored in:

TERAPICPAP stores the personal data you provide us on servers that are in a secure environment, protected from unauthorized access, use or disclosure. When personal information (such as credit card number) is provided on the payment website, it is protected by encryption using the Secure Socket Layer Protocol (SSL) and verified by Digicert.

We adopt the necessary and appropriate technical, electronic and organizational procedures to guarantee the security of your personal data and to prevent its loss, misuse or improper access.

We emphasize that we will only process your data for the purposes for which it was collected, under the terms set out in this Privacy Policy. We frequently review our data collection, storage and processing policies to ensure that we only collect, store and process the information necessary for the provision or improvement of our services.

We take appropriate steps to ensure that your information is accurate, complete and current, but it is up to you to update or correct your personal information when necessary.


The data will be retained until the purpose for which the data were collected is fulfilled (Art.5.e. GDPR) or until the right to erase or modify the data is exercised. As long as this does not conflict with the need, for legal or tax reasons, to store the data.


Your data is transferred and stored securely, for this we have:

SSL encryption.

Server-level firewall.

Security protocols to prevent unauthorized access.

Access control.

TERAPIACPAP cannot guarantee total security in communications via the Internet, but we guarantee to take adequate measures to protect your data.

In addition, TERAPIACPAP undertakes to maintain the confidentiality of the data and will not communicate or allow access to unauthorized third parties.


The law recognizes you as a user who has provided us with your personal data:

Access to personal data.

Rectification or deletion.

Opposition to processing.

Data portability.

Processing limitation.

You can only exercise these rights yourself. Therefore, you can only request them for the data you own.

If you wish to exercise any of these rights, you can do so online through GGG, by sending an email to contato@terapiacpap.pt or by letter to TERAPIACPAP at C/ Cerdanya 8, 2a planta – 08173 Sant Cugat del Vallès (Barcelona) indicating the rights you wish to exercise and proof of identity. We undertake to respond to your request within a maximum period of 30 working days.


The legal basis for the processing of your personal data is your explicit acceptance of the processing of your personal data in accordance with this privacy policy.


If you do not accept the management of your data in accordance with this privacy policy, we will not collect it, which may mean that the service provided by TERAPIACPAP cannot be performed.


If you wish to enforce your data protection rights and consider that we are not respecting them, you can contact the responsible authority in Spain.

Website of the data protection authority: https://www.aepd.es/

Data protection authority email: internacional@agpd.es

Data protection authority phone: +34 91399 6200


The website uses information security techniques generally accepted in the industry, such as firewalls, access control procedures and cryptographic mechanisms, all with the aim of preventing unauthorized access to and possible data theft. To achieve these goals, the user/customer agrees that the provider obtains data for the purpose of authenticating access controls.

We offer 100% secure payment

At TerapiaCPAP we guarantee that every transaction is 100% secure. All purchases you make on our website are guaranteed by the secure server of the Banco BBVA bank, so that your data is protected and encrypted by the most advanced technology, so it is much safer to send your data to the secure server than to pay in a service station, restaurant, etc.

What happens when I send my data online?

When you make the purchase and choose the payment method, when you click on the “Payment by card” button, the website connects to the Secure Server, from that moment onwards you enter the secure area and enter your bank details in the bank’s Secure Server, the which guarantees that the transaction meets the security requirements and carries out the transaction, after which the transaction confirmation appears and the buyer returns to the store again.

Could anyone know the encryption key?

Every time a user connects to a secure server, the server generates a random key for the session it is establishing with the user, while the client’s browser generates another, also random, key that is used to identify itself to the server. .

If, when a secure connection is established, other users connect to the server, new keys are generated again to identify the participants in the connection. Secure Server ensures that generated keys never match while multiple simultaneous connections are established.

How do I know that a secure connection has actually been established?

You can tell if you are connected to a secure server if the URL starts with “https://”. Furthermore, the most frequently used browsers indicate this graphically through an icon that shows the user whether or not there is a secure connection (for example, in the case of Internet Explorer, the yellow closed padlock appears).

What security protocol is used for transmissions?

Connections to the Secure Server use the latest specification of the standard network security protocol: SSL.

Which financial institution guarantees the security of my transactions?

When making a purchase with a debit or credit card in our TerapiaCPAP, a connection is established with the Secure Server of Banco BBVA, which provides all its experience and technological infrastructure to support all electronic purchase transactions made in CPAP/ in a safe and efficient way. When a payment request arrives on Banco BBVA’s secure server, it is responsible for managing the authorization or refusal, in real time, of payment for that purchase after verifying that all the details are correct to make the payment.

Where can you get more information?

If you would like more information on security issues, you can access the information provided by Banco BBVA on its website, BBVA bank – Financial products for people and companies | BBVA.

3D Safe

The BBVA gateway is compatible with the new secure internet payment protocols introduced by the Visa and Mastercard brands.

3D Secure is the most secure credit card payment system because it is able to authenticate the cardholder, ensuring that the customer using a card number is actually the cardholder. This is done using a secret code that your own bank will provide you and that only you will know, in most cases this code can be requested online. For more information, you can consult your bank’s website or contact your bank.

Very important

Our website only accepts payment with credit cards that are secure (3D Secure), so you will need a special key to buy online that must be provided by the financial institution issuing the card, mentioning the need to have the 3D Secure virtual key . We recommend the use of this 3D Secure system, you can be sure that you are the only one who can make purchases with the card, making its fraudulent use on the Internet impossible, guaranteeing the total security of transactions.

How do we protect your credit card payment?

TerapiaCPAP uses a server based on one of the most reliable secure payment systems on the Internet: the SSL (SecureSockedLayer) security protocol. (For more information, visit www.ssl.com).

All your data and personal information that you transmit to us travels in encrypted form over the network, and is protected and encrypted before being sent for processing.

For payment with Visa and Mastercard, only CES (Secure Electronic Commerce) transactions will be accepted. After verifying that the card is a member of the CES system, the system will contact the issuing bank so that the buyer authorizes the purchase. As soon as the bank confirms the authenticity, the card will be debited. Otherwise, the order will be cancelled.

The payment gateway we use for your credit card payment is Banco BBVA, which encrypts your data using the 256-bit SSL protocol. Our system does not store any bank details from your credit card, but goes directly to the bank’s POS (Point of Sale Terminal).

What is SSL?

Recent advances in browser and server technology have made it easier to use web services without worrying about electronic fraud. One example is Secure Sockets Layer (SSL), developed by Netscape, a security protocol submitted to the Internet Engineering Task Force (IETF) as an Internet draft. Basically, the protocol allows the browser and the server of a web session to authenticate each other and protect the information that will later flow between the two points. By using cryptographic techniques such as encryption and digital signature, the protocol:

■ Allows browsers and web servers to authenticate to each other.

■ Allows website owners to control access to certain servers, directories, files or services.

■ Allows the sharing of sensitive information (such as credit card numbers) between the browser and the server, keeping it inaccessible to third parties.

■ Ensures that data exchanged between the browser and the server cannot be corrupted, either accidentally or deliberately, without being detected.


Do you want us to advise you?