Data Protection - Spawellplus

Personal data protection

Until now, the LOPD has been complied with for data privacy issues, a law that as of May 25, 2018 is replaced by the General Data Protection Regulation (RGPD) of the European Union.

This Privacy Policy will only be valid for personal data obtained on the Website, and it is not applicable to information collected by third parties on other web pages, even if they are linked by the Website.

With this, the Website expresses its commitment to maintain and guarantee commercial relations with the User in a safe manner by protecting their personal data and guaranteeing their right to privacy.

Personal data required by the Website

In order to provide our services we need some identifying information according to the service that the Website provides you:

For the blog:

In the event that we enable Users to leave comments and only in that case:

Name: to identify the User
email: to know the email from which the comment was made.

For the online store:

Only the data that is mandatory to be able to manage an order will be requested.

Name and surname: to manage the order.
NIF/tax code: to manage the order.
Address: to manage the order.
Postal Code: to manage the order.
Location: to manage the order.
Province: to manage the order.
Country: to manage the order.
Telephone: to manage the order.
Email: to manage the order, send copies of the order and other communications related to the order.

For the private customer area:

The customer area is a private area. The person in charge of the Website will provide you with a username and password so that as a User you can access this restricted service, understanding that you accept all the legal conditions.

For the contact form:

Name and surname: to be able to respond to the query.
Telephone: to be able to respond to the query
email: to be able to respond to the query

To make payments online:

If you use a credit or debit card or a PayPal account to make an online payment for a service or product, the User's banking or financial data involved in the payment are always managed directly by the providers indicated in the section. Services offered by third partiesThe Website will never have access to the User's banking details.

Additionally, when you visit our Website, certain information is automatically stored for technical reasons, such as the IP address assigned by your Internet access provider.

Legitimation

Thanks to the consent we can process your data, this being a mandatory requirement so that you can correctly access the services of the Website.

The user has his right to be forgotten when he wants all his data to be deleted from our database.

Data Category

The data collected by the Website is not considered sensitive or protected data.

According to article 9.1 of the new general data protection regulation of the European Union (GDPR), sensitive or protected data is considered to be personal data that reveals:

Ethnic or racial origin.
Political opinions.
Religious or philosophical convictions.
Union membership.
The processing of genetic data.
Biometric data intended to uniquely identify a natural person.
Data related to health.
Data relating to the sexual life or sexual orientation of a natural person.

We only work with the minimum identification data To carry out our work: name, surname, address, telephone number, email, NIF/tax code.

Data retention time

Customer data: name, telephone, postal address, email, etc. What is legally and technically required for the normal operation of the Website will remain in our system, unless the User exercises their right to delete or update it.

Application regulations

Since May 25, 2018, the Website is governed by the General Regulation on Data Protection (RGPD) of the European Union.

https://www.boe.es/doue/2016/119/L00001-00088.pdf

Security measures

The website is hosted on systems operated by Hiades Consulting, hereinafter Hiades. The necessary technical and organizational security measures are in place to guarantee the security of the User's personal data and prevent its alteration, loss, and unauthorized processing and/or access. This is taking into account the state of technology, the nature of the data stored, and the risks to which they are exposed, whether arising from human action or from the physical or natural environment. All of this is in accordance with the provisions of the GDPR.

Likewise, Hiades has established additional measures to reinforce the confidentiality and integrity of the information on this Website. It continuously monitors, controls, and evaluates processes to ensure respect for data privacy.

Specifically, the measures adopted by Hiades are:

Connection with SSL certificate on the Website.
Encryption of keys and passwords using standard cryptographic algorithms.
Protecting servers with firewalls, sandboxing, and other standard security measures.
Daily backups distributed geographically to ensure service continuity in the event of an incident.

rights exercises

Those Users who have provided their data to the Website may contact the owner of the website in order to freely exercise their right of access to their data, rectification or deletion, limitation and opposition regarding the data included in their files.

The method that the User must use to communicate with the Website will be through their email account registered in our web service, or in writing.

The User may exercise their rights by means of a written communication addressed to the Website with the reference "Data Protection", specifying their data, proving their identity and the reasons for their request at the following address:

info@spawellplus.es

Any information that we need to store by virtue of a legal, fiscal or contractual obligation will be blocked and only used for said purposes instead of being deleted.

Modification of the privacy policy

Website reserves the right to modify the Privacy Policy, motivated by a legislative, jurisprudential or doctrinal change of the Spanish Agency for Data Protection.

Any modification of the Privacy Policy will be published at least ten days before its effective application.

Responsible for the file and person in charge of the treatment

The person responsible for the data file is the owner of the Website.

Services offered by third parties

To provide services strictly necessary for its proper functioning, the Website uses the following service providers under their corresponding privacy conditions:

Google Analytics, for statistics. https://policies.google.com/privacy?hl=es
Facebook Pixel, for statistics. https://www.facebook.com/privacy/explanation
PayPal for payments. https://www.paypal.com/es/webapps/mpp/ua/privacy-full
MailChimp, email sending. https://mailchimp.com/legal/privacy/

social plugins

On our Website we offer links and services related to different social networks. If the User is a member of a social network and clicks on the corresponding link, the social network provider may link their profile data with the information of their visit to the Website.

Therefore, the User must be informed about the functions and policies on the treatment of their personal data of the respective social network. Whether you access one of our web pages with one of your profiles on social networks or share information through them.

The User can access the privacy policies of the different social networks at any time, as well as configure their profile to guarantee their privacy.

Facebook: https://www.facebook.com/help/323540651073243/
Instagram: https://help.instagram.com/155833707900388
Twitter: https://twitter.com/privacy
Youtube: https://policies.google.com/privacy?hl=es&gl=es

Acceptance, consent and revocability

The User declares to have been informed of these conditions on the protection of personal data, accepting and consenting to their treatment by the Website in the manner and for the purposes indicated in the Legal Notice.

At any time the User may revoke their data, but without affecting actions already carried out in the past, that is, without retroactive character.

Cookie	Duration	Description
cookielawinfo checkbox analytics	11 months	This cookie is set by the GDPR cookie consent plugin. The cookie is used to store the user's consent for cookies in the "Analytics" category.
cookielawinfo checkbox functional	11 months	The cookie is set by GDPR cookie consent to record user consent for cookies in the "Functional" category.
cookielawinfo-checkbox-Necessary	11 months	This cookie is set by the GDPR cookie consent plugin. Cookies are used to store the user's consent for cookies in the "Necessary" category.
cookielawinfo-checkbox-fastrs	11 months	This cookie is set by the GDPR cookie consent plugin. The cookie is used to store the user's consent for cookies in the "Other" category.
cookielawinfo checkbox performance	11 months	This cookie is set by the GDPR cookie consent plugin. The cookie is used to store user consent for cookies in the "Performance" category.
viewed_cookie_policy	11 months	The cookie is set by the GDPR cookie consent plugin and is used to store whether or not the user has consented to the use of cookies. It does not store any personal data.