Applicable legislation

The privacy policy is governed by the following rules: the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and the free movement of such data ;
Organic Law 3/2018, of December 5, on Protection of Personal Data and guarantee of digital rights ;
the Royal Decree 1720/2007 of 21 December, which approves the Regulation implementing Law 15/1999 of 13 December on the Protection of Personal Data ;
Law 34/2002, of July 11, on Services of the Information Society and Electronic Commerce (LSSI-CE) .

The privacy policy contains the rules about how the personal data of the users of a page or website is collected and managed, as well as about the cookies used by it. This document is adapted to the European Data Protection Regulation (RGPD) and the new Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights.

This document contains the legal mentions or references that will serve to regulate the conditions in which the site or web page collects, manages and retains (“treats”) the personal data of Internet users who access, browse and use the site or page. Web. It also includes the rights of users and the obligations of the owner of the website in relation to the processing of personal data.

In the event that it is desired to prepare a document that contains all the legal mentions or references that will serve to regulate the conditions in which Internet users access, browse and use the website or web page, including the identifying elements of the owner, it is used a legal notice and general conditions of use. On the other hand, if you want to prepare a document that regulates the conditions in which orders or purchase requests are made on the website, and establish the rights, obligations and responsibilities that correspond to each part of said sale, the general conditions of sale.

How to use this document?

This document contains the privacy and data protection policy of a website; that is, the rules regarding the treatment (collection, management and retention) of personal data. Therefore, its preparation is mandatory for all those websites that collect personal data from their users. All information that refers to an identified or identifiable person (eg name, postal address, email, telephone) is considered personal data.

In respect of current European and Spanish legislation, this privacy and data protection policy will incorporate the following content:

the identity and contact details of the person (s) responsible for the processing of personal data (it may be the owner (s) of the website or different people);

in case a Data Protection Delegate (DPD) has been appointed, their contact details. The appointment of a DPO is mandatory if the data controller carries out the processing of sensitive data (eg health, political orientation) on a large scale or the routine and systematic observation on a large scale of people (eg profiling) as its main activity. ); or if it is a public authority or body;

the categories of personal data that will be processed: only identifying data (eg name, surname, telephone number, email) or also sensitive or specially protected personal data (eg ethnic or racial origin, political opinions, religious or philosophical convictions, union membership, genetic data, biometric data, health data);

the purposes of the treatment to which the personal data are destined;

the retention period of personal data on the website;

the recipients of the personal data collected on the website;

the relative information of the rights derived from the treatment of personal data (access, rectification, deletion, limitation, portability and opposition).

Likewise, in the event that the website has cookies (that is, small information sent by a website and stored in the user’s browser, so that the website can consult, for example, how the user interacts with said site web), this document will also incorporate its cookie policy.

This cookie policy will have the following content:

if used, information about the website’s own cookies;

if used, information about third-party cookies on the website; Y

in case of using social network plugins (eg Facebook, Twitter), information about social network cookies.

The user is considered to accept this privacy policy through access, navigation and use of the website.

Taking the latter into account and, especially, in those cases where cookie technology exists, it is useful to provide a method that catches the user’s attention immediately when accessing the website, for example, with a pop-up window as soon as access and that gives the option to accept and / or consult the privacy policy.