Privacy Policy

 

In the context of the provision of services under Organic Law 3/2018, of December 5, on Data Protection and Digital Rights Guarantee (hereinafter referred to as LOPD-GDD), as well as Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, regarding the protection of individuals with regard to the processing of personal data and the free movement of such data, repealing Directive 95/46/EC (hereinafter referred to as GDPR), and Law 34/2002, of July 11, on Information Society Services and Electronic Commerce (hereinafter referred to as LSSI-CE), …………………… guarantees the protection and confidentiality of personal data of any kind provided by our clients, in accordance with the provisions of the General Data Protection Regulation.

The Data Protection Policy of …………………… is based on the principle of proactive responsibility, according to which the data controller is responsible for compliance with the legal and jurisprudential framework, being able to demonstrate it to the corresponding control authorities.

The data provided will be processed in accordance with the provisions of the GDPR. In this regard, …………………… has adopted the protection levels that are legally required, and has installed all the technical measures at its disposal to prevent the loss, misuse, alteration, unauthorized access by third parties, as explained below. However, users should be aware that Internet security measures are not impregnable.

 

Data Controller: Who are we?

 

• Identity of the data controller: ……………………
• Trade name: ……………………
• CIF (Tax ID): …………………
• Address: …………………
• Contact Phone: (+34) …………………

 

Purpose of Processing: Why do we use your data?

 

All data provided by our clients and/or visitors to the …………………… website (hereinafter referred to as the website) or to its personnel will be included in the register of personal data processing activities, created and maintained under the responsibility of the website owner, and are necessary to provide the services requested by users or to answer questions or issues raised by our visitors.

As the controller of this website, …………………… is committed to processing user and client information with full guarantees and complying with the national and European requirements that regulate the collection and use of personal data by my users.

 

Legitimacy of Processing: Why do we need your data?

a) Contractual relationship: This applies when you contract any of our services.

b) Legitimate interest: To address queries and complaints raised by you and to manage the collection of outstanding amounts.

c) Your consent: If you are a user of our website, by ticking the box on the contact form, you authorize us to send you the necessary communications to respond to the query or request for information.

 

Recipients: Who do we share your data with?

 

We do not transfer your personal data to anyone, except for those public or private entities to which we are required to provide your personal data in compliance with the law. For example, tax law requires us to provide certain information about economic transactions exceeding a certain amount to the Tax Agency.

In cases other than those mentioned, where we may need to disclose your personal information to other entities, we will request your permission through clear options that will allow you to decide in this regard.

Transmission: Where might we send your data?

We will not make international transfers of your personal data for any of the purposes indicated.

 

Transmission: Where might we send your data?

We will not make international transfers of your personal data for any of the purposes indicated.

 

Retention: How long will we keep your data?

We will only retain your personal data for as long as necessary to fulfill the purposes for which it was collected. When determining the appropriate retention period, we consider the risks involved in the processing, as well as our contractual, legal, and regulatory obligations, internal data retention policies, and our legitimate business interests described in this Privacy and Cookie Policy.

In this regard, the website will retain personal data once the relationship with you has ended, properly blocked, for the limitation period for actions that may arise from the relationship maintained with the data subject.

Once blocked, your data will be inaccessible to the website, and will not be processed except for making it available to the Public Administration, Judges and Courts, for the attention of possible responsibilities arising from the processing, as well as for the exercise and defense of claims before the Spanish Data Protection Agency.

 

Security: How will we protect your data?

 

We make every effort to maintain the confidentiality of personal information processed in our systems. We maintain strict security levels to protect personal data from accidental loss and from unauthorized access, processing, or disclosure, taking into account the state of the art, the nature of the data, and the risks to which it is exposed. However, we cannot be held responsible for the use you make of the data (including username and password) that you use on our website. Our staff follows strict privacy rules, and in the event that we hire third parties to provide support services, we require them to follow the same rules and allow us to audit them to verify compliance.

 

Your Rights: What rights can you exercise as a data subject?

 

Le informamos que podrá ejercer los siguientes derechos:

 

1. Right to access your personal data, to know which ones are being processed and the processing operations carried out with them;
2. Right to rectification of any inaccurate personal data;
3. Right to erasure of your personal data, where possible (for example, by legal obligation);
4. Right to restrict the processing of your personal data when the accuracy, legality, or necessity of processing the data is doubtful, in which case we may retain them for the exercise or defense of claims.
5. Right to object to the processing of your personal data, when the legal basis for processing is our legitimate interest. The website will cease processing your data unless it has a legitimate interest or it is necessary for the defense of claims.
6. Right to data portability, when the legal basis for processing is the existence of a contractual relationship or your consent.
7. Right to withdraw the consent given to the website

   To exercise your rights, you can do so for free and at any time by contacting us at the following address: ……………………………, attaching a copy of your ID or by sending an email to ……………………………

    

    

For what purpose do we process your personal data?

When a user connects to this website, for example, to make a purchase, they are providing personal information for which the website is responsible. This information may include personal data such as your IP address, name, physical address, email address, telephone number, and other information. By providing this information, the user gives their consent for their information to be collected, used, managed, and stored by the website, only as described in the Legal Notice and in this Privacy Policy.

On this website, there are different systems for capturing personal information, and we process the information provided by interested persons for the following purpose for each capture system (forms):

There are other purposes for which we process your personal data:

• To ensure compliance with the terms of use and applicable law. This may include developing tools and algorithms that help this website ensure the confidentiality of personal data it collects.
• To support and improve the services offered by this website. Non-identifying data obtained through certain cookies that are downloaded to the user’s computer when browsing this website, as detailed in the cookie policy.
• To manage social networks. The website may have a presence on social networks. The processing of data from people who become followers on the official pages of the website on social networks will be governed by this section. As well as by those conditions of use, privacy policies, and access regulations that belong to the social network in each case and previously accepted by the user.
• The website will process the data for the purposes of correctly managing its presence on the social network, informing of activities, products, or services of the website. As well as for any other purpose that social network regulations allow. In no case will we use the profiles of followers on social networks to send individual advertising.

In accordance with the provisions of the European General Data Protection Regulation (GDPR) 2016/679, the website is responsible for processing the data corresponding to Users of the website.

The owner of the website does not sell, rent, or transfer personal data that can identify the user, nor will it do so in the future, to third parties without prior consent. However, in some cases, collaborations with other professionals may be made, in such cases, consent will be required from users, informing them of the identity of the collaborator and the purpose of the collaboration. It will always be done with the strictest security standards.

Secrecy and Security of Data

The website is committed to using and processing the personal data of users, respecting their confidentiality and using them in accordance with the purpose thereof, as well as to comply with its obligation to save them and adapt all measures to prevent alteration, loss, processing, or unauthorized access, in accordance with the provisions of current data protection regulations.

The website cannot guarantee the absolute impregnability of the Internet network and, therefore, the violation of data through fraudulent access to them by third parties.

With regard to the confidentiality of the processing, the website will ensure that any person authorized by the website owner to process customer data (including their staff, collaborators, and providers) will be under the appropriate obligation of confidentiality (whether a contractual or legal duty).

In the event of a security incident, upon becoming aware of it, the website owner shall notify the Client without undue delay and shall provide timely information related to the Security Incident as it is known or when the Client reasonably requests it.

Accuracy and Truthfulness of Data

As a user, you are solely responsible for the accuracy and correctness of the data you submit to the website, exonerating it from any liability in this regard.

ensuring that the personal data provided is accurate, up-to-date, and authentic, and they commit to keeping it properly updated. The user agrees to provide complete and correct information in the contact or subscription form.

Acceptance and Consent

The user declares to have been informed of the conditions on the protection of personal data, accepting and consenting to their processing by the website in the manner and for the purposes indicated in this privacy policy.

Revocability

The consent given, both for the processing and for the transfer of the data of the interested parties, is revocable at any time by notifying the website owner, in the terms established in this Policy for the exercise of ARCO rights. This revocation will not have retroactive effect under any circumstances.

 

Rights Protection: Where can you file a complaint?

 

If you believe that your rights have been disregarded by our entity, you can file a complaint with the Spanish Data Protection Agency through one of the following means:

• Electronic headquarters: https://www.aepd.es
• Postal address: Spanish Data Protection Agency, C/ Jorge Juan, 6, 28001, Madrid
• Telephone: 901.100.099 and 912.663.517

Filing a complaint with the Spanish Data Protection Agency is free of charge, and the assistance of a lawyer or solicitor is not required.

 

Updates: What changes can be made to this privacy policy?

 

The website reserves the right to modify this policy to adapt it to legislative or jurisprudential developments that may affect compliance with it.