1. IDENTIFICATION AND CONTACT INFORMATION OF THE CONTROLLER
nombre-de-empresa (hereinafter, the “Controller”), with registered address at domicilio-empresa, Tax Identification Number (NIF): nif-empresa, and telephone number teléfono-empresa, is responsible for the processing of your personal data.
This Privacy Policy provides information about how the Controller will use your personal data as a user of the website (url-web).
The purpose of this Privacy Policy is to provide information about your rights under the General Data Protection Regulation (GDPR) and the Organic Law on Personal Data Protection and the guarantee of digital rights (LOPDGDD). If you have any questions regarding the processing of your personal data, please contact the Controller at the following address: email-empresa.
2. NECESSARY AND UPDATED INFORMATION
All fields marked with an asterisk (*) on the forms available on the Website are mandatory. Failure to complete any of them may make it impossible to provide the requested services or information.
The User guarantees the authenticity of all the data provided and will ensure that the information is permanently updated to reflect their real situation at all times. In any case, the User is solely responsible for any false or inaccurate information provided and for the damages caused to the Controller or third parties as a result.
The data collected will be stored in a file managed by the Controller, solely for the purpose of managing the relationship with Users, as well as providing the services offered on the Website and, in general, managing, developing, and fulfilling the relationship established between the Controller and those who provide their personal data through the Website. Additionally, if the User has given their consent, the Controller will process the data to send advertising or promotional communications.
During the data collection process, the User will be informed, either via a hyperlink or directly in the relevant Website form, about whether completing such data is mandatory or optional.
3. PURPOSES OF DATA PROCESSING
The Controller collects your personal data to manage your requests and provide you with services that may interest you. Specifically, the Controller processes your personal data for the following purposes:
Responding to your inquiries, questions, or requests made through the communication channels identified on the Website and contacting you to resolve them.
Improving the Website, as well as its services and products, to provide better service and content.
Conducting studies for statistical purposes.
Keeping your data updated.
Complying with the applicable legal framework.
Managing your data to send you commercial information.
4. LEGAL BASIS FOR PROCESSING YOUR PERSONAL DATA
The Controller will only collect personal data that you voluntarily provide. In accordance with applicable data protection laws and regulations on information society services and electronic commerce, the Controller informs you that the personal data provided at the time of registration or any other data provided for access to certain Website services will be included in files owned by the Controller.
The data that the Controller may request includes:
Identification data: Information that allows a person to be distinguished from others in a group, such as name, surname, tax identification number, date of birth, and age.
Contact data: Information used to maintain or establish contact, such as address, email, landline, or mobile phone number.
Processing your personal data may sometimes be necessary to fulfill legal obligations or in connection with any contractual relationship that the Controller may have with you.
In other cases, and whenever appropriate, the Controller will seek your consent to process your personal data.
5. COMMERCIAL COMMUNICATIONS
In the context of its promotional activity, the Controller may provide resources for registration or subscription to news or commercial information related to updates, offers, and/or new products included on the Website. Such resources will always be subject to your express consent to receive them.
If you have authorized it, the Controller may send you information about updates, offers, and new products included on the Website and/or personalized services based on your preferences.
You may revoke your consent to receive commercial communications at any time via the link or button included in each communication, or by directly expressing your desire to revoke consent through the following channels:
By email, sent to the following address: email-empresa.
6. AUTOMATED DECISIONS AND PROFILING
The Controller will obtain your express consent for the processing of your personal data when adopting automated decisions and/or creating profiles.
For some services, the Controller may process your personal data using automated means, which means that certain decisions are made automatically without human intervention.
Another possible processing involves profiling to predict your behavior on the Website. As a result, products of interest to you may be displayed on the homepage based on your navigation preferences or information obtained through cookies.
You can review the applicable Cookie Policy via the following link. You can also contact the Controller for any questions or inquiries related to the processing of your personal data through the following address: email-empresa.
7. DATA RETENTION PERIOD
The Controller commits to processing your personal data for as long as they are truly useful and necessary to provide you with quality service. Thus, the Controller will make all reasonable efforts to minimize the duration of data processing and retention.
In this regard, the Controller will inform you of the expected duration of data processing and/or retention in each data collection form.
In any case, even if you request the deletion of your personal data, the Controller has the right to retain and maintain them under proper blocking conditions for the necessary period to comply with applicable legal obligations and to make them available to the competent Authorities when required.
8. EXERCISING YOUR RIGHTS AND COMPLAINTS TO THE AEPD
As a result of processing your personal data, the applicable legislation grants you a series of rights. The Controller provides a summary explanation of each right to facilitate their exercise:
Right of Access: You have the right to know what personal data the Controller is processing, as well as the purposes of such processing.
Right of Rectification: You may request corrections to your data if the Controller’s records are inaccurate.
Right of Erasure: You can request, at any time, that your personal data be deleted from the Controller’s files. However, compliance with current legislation may prevent the effective exercise of this right.
Right to Object: You may object to the processing of your personal data for any purpose, as described in the applicable privacy policies.
Right to Restriction of Processing: You may request a restriction on processing your data when its accuracy, legality, or necessity is in doubt. In this case, the Controller may keep your data for the defense of claims.
Right to Data Portability: You have the right to request, when technically possible, that the personal data you provided be transferred to another data controller.
You can exercise your rights by contacting the Controller via the following means and providing a copy of your ID or equivalent identification document:
By email to the following address: email-empresa.
If you wish to make a general inquiry or suggestion about personal data processing, you may also contact the Controller at the same addresses provided.
In any case, you may file a complaint with the Competent Authority for Data Protection in Spain if you believe the Controller has not processed your data lawfully or has not addressed your requests or rights appropriately. In Spain, the Competent Authority is the Spanish Data Protection Agency (AEPD).
9. CONFIDENTIALITY AND SECURITY IN DATA PROCESSING
The Controller treats your personal data as highly confidential and commits to handling it with the utmost discretion. The Controller has implemented all reasonable and appropriate security measures to prevent the loss, misuse, alteration, unauthorized access, or theft of the data provided by users.
The Controller regularly reviews its security measures to ensure they are up-to-date.
10. SOCIAL NETWORKS
The Controller has created profiles on various social networks to allow users to interact. However, unless the Controller directly requests your data through marketing actions, contests, or promotions, your data will belong to the corresponding Social Network.
It is recommended that you carefully read the terms of use and privacy policies of each social network and adjust your preferences regarding the processing of your data.
11. COOKIES
The Website will only use data storage and retrieval devices (“Cookies”) if the user has given prior consent, as specified in the pop-up browser window displayed when accessing the Website for the first time and under the terms outlined in the Cookie Policy, which all users should review.
