On this page we would like to inform you about all the details concerning your personal data: who collects it, why it is collected, what is done with it and where it is stored.
We agree with the need to reinforce transparency in the use of personal data, websites must be 100% transparent on this issue and illegal and unethical conduct must be penalised, it is in everyone’s interest.
What will you find here?
- Identity of the person in charge
- Applicable legal framework
- Processing of personal data
- What are personal data?
- Why are these data collected?
- What types of data are collected? Purpose and legitimacy
- Automations
- Where is your personal data stored on this website?
- How long does this data last?
- Anti-spam policy
- Security measures
- User rights and how to exercise them
- Access
- Rectification
- Cancellation
- Opposition
- Portability and non-limitation of processing
- Right to be forgotten
With this page, together with our legal notice and cookie policy pages, we are trying to comply with you as best we can in this regard.
Identity of the person responsible
La actividad de esta web está articulada de la siguiente manera:
- Nombre: este sitio web está gestionado por por Don Almohadon SL, B97181978 que es el responsable del fichero.
- Sede social: la sede social de se encuentra en POLIGONO INDUSTRIAL SANT JOSEP, SEC. 1, 11, 46812, AIELO DE MALFERIT
- Contacto: cualquiera puede contactar con nosotros en la página de contacto de nuestra web.
Applicable legal framework
The activity of this website is subject to the Spanish and European legal framework, specifically to the following regulations:
The General Data Protection Regulation (GDPR). This is the European Union regulation, which unifies the regulation of the processing of personal data in the different EU countries.
The Organic Law on Data Protection (LOPD) and its Development Regulation. These are the Spanish regulations relating to the processing of personal data and the obligations to be assumed by those responsible for any website in the management of this information.
The Law on Information Society Services and Electronic Commerce (LSSI). This regulation affects those websites that, in some way, carry out economic activities by electronic means, as is the case of this website.
Processing of personal data
What are personal data?
Article 3 of the LOPD defines personal data as ‘any information concerning identified or identifiable natural persons’.
To this must be added the various pieces of information which, when collected, can lead to the identification of a specific person. This also constitutes personal data.
The most obvious examples are a person’s name or ID card number, but an email address or even an IP address used at a certain point in time are also considered personal data.
Why are these data collected?
The collection of personal data on the Internet is simply unavoidable on any interactive site (with comments, contact forms, etc.).
The purposes for which these data are usually collected are fivefold:
- Enable a blog commenting system.
- Allow you to contact us through our contact forms.
- Create a list of email subscribers (the members to whom we provide you with exclusive content and notify you of new blog posts and commercial promotions. In other words, a list with which we carry out email marketing activities.
- Profiling (which consists of recording your purchases on the website and analysing them together with the information you have provided us with in order to offer you personalised advice on the products and services that best suit your interests).
- Performing statistics and analysis for internal use on our customers’ preferences, products and activities.
What types of data are collected? Purpose and legitimacy
In general terms, the personal data collected are stored in a file for the sole purpose of sending electronic communications relating to the activity of the website.
The data collected are identifiable and correspond to a reasonable minimum in order to be able to carry out the activity carried out.
This means that they will be used for issues such as sending newsletters, notices of new articles and new comments on the blog, commercial offers, events and, in general, any information that we consider may be of interest to users.
The legitimacy for the collection of this data arises from the express consent that the user gives at any time by checking the box of acceptance of this privacy policy that appears in all places where personal data is collected.
This box is unchecked and until it is checked with an express action by the user, it is not possible to carry out the action in question (registration as a subscriber, sending comments, etc.).
We can collect six different types of personal data:
Name: in comments, contact forms or in purchases or subscriptions.
Address: required for physical delivery of products.
Email: in comments, contact forms and email list. Simply essential for us to be able to communicate with you.
IP address: the collection of this data is done intrinsically by the web structure. It is also a useful data to combat spam.
Specific interests: in our email list we try to segment the members as much as possible to know the specific interests within our subject matter.
Automations:
There are three types of automated treatments on this website:
Subscriber registration process through different mailing tools.
Segmentation of the mailing list, according to areas of interest based on statistics relating to openings and clicks on the emails received.
Intelligent’ sending of emails on our professional services platform, based on user responses.
Where is your personal data stored on this website?
Due to the nature of this activity, personal data on this website is stored in three places:
Web server: our hosting provider.
Our email marketing provider:
Second web server: another web provider for backup purposes.
All three companies operate under the personal data protection laws of the European Union and in the performance of their duties they act as data processors.
How long is this data kept for?
There is no predetermined expiry date for the data collected. Personal data are deleted at the request of the data subjects.
Anti-spam policy
We would also like to express our absolute rejection of the sending of unsolicited commercial communications or any type of conduct or manifestation known as ‘spam’ and we declare our commitment to the fight against this type of practice.
Therefore, we guarantee the user that under no circumstances will the personal data collected on the website be assigned, shared, transferred or sold to any third party, except at the express wish of the interested party (see rights below).
In the event that a user still receives communications from this website without having registered, or without having given their express consent to such registration, you can unsubscribe with a simple click from any email received or by contacting through the website itself.
Security measures
Our suppliers have adopted the technical, organisational and security measures that guarantee the confidentiality, integrity and quality of the information contained therein, in accordance with the provisions of current data protection legislation.
User rights and how to exercise them
In accordance with the provisions of the European RGPD and the Spanish LOPD, the user may at any time exercise their rights of access, rectification, cancellation and opposition to the provider.
To facilitate the exercise of these rights, an unsubscribe button is provided in all communications, which will result in the immediate removal of the user’s personal data from the email marketing provider’s database.
Both the unsubscription and all other actions can be requested through the contact form that is maintained on the website, both to communicate what happened and to request the immediate removal of your data from our system.
We do not undertake to execute all these rights within the maximum legal deadline of 10 working days. In practice we will do so much sooner, as we have no interest in disposing of your data if you do not want us to.
- Access
The right of access is the right of the data subject to obtain information on whether his or her own personal data are being processed, the purpose of the processing which, if any, is being carried out, as well as the information available on the origin of such data and the communications made or planned for such data.
- Rectification
The right of rectification consists of the data subject being able to request the modification of data that prove to be inaccurate or incomplete.
3. Cancellation
This is the right of the data subject to have data deleted if it is found to be inappropriate or excessive and is closely related to the so-called ‘right to be forgotten’ (see below).
- Opposition
The right to object refers to the data subject’s right not to have his or her personal data processed or to cease processing in cases where the data subject’s consent to the processing is not required, where the data are used for commercial prospecting or for the purpose of making decisions concerning the data subject based solely on the automated processing of his or her data.
- Portability and non-restriction of processing
This right means that you can ask us for your data in a structured, commonly used and machine-readable format, provided that it is technically possible to comply with your request.
In short, this means that you can ask us for your data in common office formats such as Excel or CSV, for example.
- Right to be forgotten
The right to be forgotten is a new, somewhat more complex GDPR concept that mainly affects websites that publicly display your data, i.e. websites such as social networks and various Google platforms.
Applied to our case, this means the right to have your data deleted (in the case of the mailing list) and the deletion of your comments in the comments area if you wish to do so.