This website, www.buztinaga.com , (hereinafter referred to as the Website) is owned by: Ms Sonia Martín with NIF 70045157Z (hereinafter Buztinaga.com).
Address: Calle Corral del Cuco, 171, Collado Villalba, Madrid
Contact phone: 684022382
Contact email: buztinaga1@gmail.com
In compliance with current legislation, Buztinaga.com undertakes to adopt the necessary technical and organizational measures, according to the level of security appropriate to the risk of the data collected.
Laws incorporating this privacy policy
This privacy policy is adapted to the current Spanish and European regulations on the protection of personal data on the internet. In particular, it respects the following rules:
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free movement of such data (GDPR).
Law 34/2002 of 11 July on Information Society Services and Electronic Commerce (LSSI-CE).•
Organic Law 3/2018, of 5 December, on Protection of Personal Data and guarantee of digital rights (LOPDGDD).
Identity of the data controller
Ms Sonia Martín with NIF 70045157Z
Address: Calle Corral del Cuco, 171, Collado Villalba, Madrid
Contact phone: 684022382
Contact email: buztinaga1@gmail.com
Registration of Personal Data
The personal data collected by Buztinaga.com, through the forms on its pages, will be entered in an automated file under the responsibility of Buztinaga.com.
Principles applicable to the processing of personal data
The processing of the User’s personal data shall be subject to the following principles set out in Article 5 of the GDPR:
Principle of legality, loyalty and transparency: the consent of the User will be required at all times prior to completely transparent information of the purposes for which the personal data are collected.
Principle of purpose limitation: personal data will be collected for specific, explicit and legitimate purposes.
Principle of data minimization: the personal data collected will only be those strictly necessary in relation to the purposes for which they are processed.
Principle of accuracy: personal data must be accurate and always updated.
Principle of limitation of the retention period: personal data will only be kept in a way that allows the identification of the User for the time necessary for the purposes of its processing.
Principle of integrity and confidentiality: personal data will be processed in a manner that guarantees its security and confidentiality.
Proactive responsibility principle: Buztinaga.com will be responsible for ensuring that the above principles are met.
Examples of personal information we collect on our website:
The Internet IP address you use to connect to the Internet with your computer or other device;
Information about your computer, device, and your internet connection such as the device application or the version and type of your browser, the types and versions of your browser connection, the operating system or time zone settings;
The location of your device or computer;
We may also use device identifiers, cookies and other technologies on devices, applications and our websites to collect browsing, usage or other technical information for fraud prevention purposes. For more information on this point, see Cookie Policy.
Under no circumstances are special categories of personal data processed within the meaning of Article 9 of the GDPR.
Legal basis for the processing of personal data
The legal basis for the processing of personal data is consent. Buztinaga.com undertakes to obtain the express and verifiable consent of the User for the processing of his personal data for one or several specific purposes.
The User shall have the right to withdraw his consent at any time. It will be as easy to withdraw consent as to give it. As a general rule, the withdrawal of consent will not condition the use of the Website.
On occasions when the User must or may provide their data through forms to make queries, request information or for reasons related to the content of the Website, you will be informed if the completion of any of them is mandatory because they are essential for the proper conduct of the operation.
Customer Service : We consider that we have a legitimate interest to attend to requests or queries that arise through the various means of contact. We understand that the processing of this data is also beneficial for you in that it allows us to attend to you properly and resolve the queries raised. When you contact us, in particular, for the management of incidents related to the product purchased through the Platform, the processing is necessary for the execution of the contract of sale. When your query is related to the exercise of the rights we inform you about below, or with claims related to our products or services, what legitimates us to treat your data is the fulfilment of legal obligations on our part.
Marketing : The legitimate basis for processing your data for marketing purposes is your consent. As an example, when you agree to receive personalized information through various means, when you authorize the sending of newsletter, or when you accept the legal basis to participate in a promotional action.
Development, fulfilment and execution of the service contract : The processing of your data is necessary for the execution of the contract of sale that links us with you. We understand that the processing of this data is positive for all parties involved in the payment of a purchase and in particular for you as it allows us to put in place appropriate measures in order to protect you against fraud attempts made by third parties.
Purpose of the processing of personal data
Personal data are collected and managed by Buztinaga.com in order to facilitate, expedite and fulfill the commitments established between the Website and the User or the maintenance of the relationship established in the forms that the latter fills or to respond to a request or query.
Likewise, the data may be used for a commercial purpose of personalization, operational and statistical, and activities specific to the social object of Buztinaga.com, as well as for the extraction, storage of data and marketing studies to adapt the Content offered to the User, as well as improve the quality, operation and navigation of the Website.
At the time the personal data is collected, the User will be informed about the specific purpose or purposes of the processing to which the personal data will be used; that is, the use or uses that will be given to the information collected.
Periods of retention of personal data
Personal data will only be retained for the minimum time necessary for the purposes of its processing and, in any case, only for the following period: 3 years, or until the User requests its deletion.
At the time the personal data is obtained, the User will be informed about the period during which the personal data will be kept or, when this is not possible, the criteria used to determine this period.
Recipients of your personal data
The User’s personal data will be shared with the following recipients or categories of recipients:
- Public bodies, Tax Office, Judges and Courts and, in general, competent authorities, when Buztinaga.com has the legal obligation to provide them.
- Google LLC, with address at 1600 Amphitheatre Parkway, 94043, Mountain View (California), United States, which provides G Suite services, consisting of cloud computing and email services.
- Google participates and has certified its compliance with the framework of the US agreement. and the European Union called Privacy Shield, having undertaken to submit all personal information received from member countries of the European Union to the principles derived from the Privacy Shield.
- Facebook Ireland, Ltd. domiciled in 4 Grand Canal Square Grand Canal Harbour Dublin 2, Ireland. Facebook participates and has certified its compliance with the framework of the US agreement. and the European Union called Privacy Shield, having undertaken to submit all personal information received from European Union member countries to the principles derived from PrivacyShield.
- In addition to previous data reports, Buztinaga.com has the collaboration of some third-party service providers who have access to your personal data and who process the data in name and on behalf of Buztinaga.com as a result of their provision of services.
Buztinaga.com follows strict criteria for selecting service providers in order to comply with its data protection obligations and undertakes to conclude with them the corresponding data processing contract by which they shall impose, among others, the following obligations: to apply appropriate technical and organisational measures; to process personal data for the agreed purposes and only in accordance with the documented instructions of Buztinaga.com; and delete or return the data to Buztinaga.com once the services are finished.
If Buztinaga.com intends to transfer personal data to a third country or international organisation, at the time the personal data is obtained, the User shall be informed of the third country or international organisation to which the data is intended to be transferred, and of the existence or absence of a Commission adequacy decision.
Personal data of minors
In compliance with the provisions of Articles 8 of the GDPR and 13 of the GDPR, only persons over 14 years of age may give their consent to the lawful processing of their personal data by Buztinaga.com. If the child is under 14 years of age, the consent of the parents or guardians will be required for the treatment, and this will only be considered lawful to the extent that they have authorized it.
Secrecy and security of personal data
Buztinaga.com undertakes to adopt the necessary technical and organizational measures, according to the level of security appropriate to the risk of the collected data, in order to guarantee the security of the personal data and to avoid destruction, accidental or unlawful loss or alteration of personal data transmitted, stored or otherwise processed, or unauthorised communication or access to such data.
However, because Buztinaga.com cannot guarantee the impregnability of the internet or the total absence of hackers or others who fraudulently access personal data, Buztinaga.com undertakes to inform the User without undue delay when a breach of the security of personal data that is likely to involve a high risk to the rights and freedoms of natural persons occurs. In accordance with article 4 of the GDPR, breach of the security of personal data means any breach of security that causes the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or unauthorized communication or access to such data.
Personal data will be treated as confidential by Buztinaga.com, which undertakes to inform and ensure by means of a legal or contractual obligation that such confidentiality is respected by its employees, and any person to whom the information is accessible.
Rights arising from the processing of personal data
The User has on Buztinaga.com and may, therefore, exercise against the Data Controller the following rights recognized in the GDPR:
- Right of access: It is the right of the User to obtain confirmation of whether or not Buztinaga.com is processing your personal data and, if so, to obtain information about your specific personal data and the treatment that Buztinaga.com has performed or performs, as well as, inter alia, the information available on the origin of such data and the recipients of the communications made or planned.
- Right of rectification: It is the right of the User to modify his personal data that prove to be inaccurate or, taking into account the purposes of the processing, incomplete.
- Right of deletion (“the right to be forgotten”): This is the right of the User, provided that current legislation does not provide otherwise, to obtain the deletion of his personal data when these are no longer necessary for the purposes for which they were collected or processed; the User has withdrawn his consent to the processing and this has no other legal basis; the User opposes the processing and there is no other legitimate reason to continue with it; the personal data have been processed illegally; the personal data must be deleted in compliance with a legal obligation; or the personal data have been obtained as a result of a direct offer of information society services to a child under 14. Apart from deleting the data, Buztinaga.com, taking into account the available technology and the cost of its application, shall take reasonable steps to inform the controllers who are processing the personal data of the data subject’s request to delete any link to such personal data.
- Right to limitation of processing: It is the right of the User to limit the processing of his personal data. The User has the right to obtain the limitation of the processing when he challenges the accuracy of his personal data; the processing is illegal; Buztinaga.com no longer needs the personal data, but the User needs it to make claims; and when the User has objected to the processing.
- Right to data portability: In case the processing is carried out by automated means, the User will have the right to receive Buztinaga.com his personal data in a structured format, common use and mechanical reading, and pass them on to another controller. Whenever technically possible, Buztinaga.com will transmit the data directly to that other data controller. Right of opposition: It is the right of the User not to carry out the processing of his personal data or cease the processing of them by Buztinaga.com
- Right not to be subject to a decision based solely on automated processing, including profiling: It is the right of the User not to be subject to an individualized decision based solely on the automated processing of his personal data, including profiling, existing unless otherwise provided for by existing legislation.
Thus, the User may exercise their rights by means of written communication addressed to the Data Controller with the reference “RGPD Buztinaga.com”,
- Name, surname of the User and copy of the ID card or passport In cases where the representation is admitted, the identification by the same means of the person representing the User, as well as the document accrediting the representation, will also be necessary. The photocopy of the ID may be replaced by any other valid legal means that proves the identity.
- Request with the specific reasons for the request or information to be accessed.
- Address for notification purposes.
- Date and signature of applicant.
- Any document proving the request.
Links to third party websites
The Website may include hyperlinks or links that allow access to third-party websites other than Buztinaga.com, and therefore are not operated by Buztinaga.com The owners of such websites will have their own data protection policies, being themselves, in each case, responsible for their own files and their own privacy practices.
Complaints to the supervisory authority
In the event that the User considers that there is a problem or infringement of the current regulations in the way in which his personal data are processed, he shall have the right to effective judicial protection and to file a complaint with a supervisory authority, in particular in the State where he has his habitual residence, place of work or place of the alleged offence. In the case of Spain, the supervisory authority is the Spanish Data Protection Agency (http://www.agpd.es).
Acceptance and changes to this privacy policy
The User must have read and comply with the conditions on the protection of personal data contained in this Privacy Policy, and to accept the processing of your personal data so that Buztinaga.com can proceed to the same in the form, during the deadlines and for the purposes indicated. The use of the Website will imply the acceptance of the Privacy Policy of the same.
Buztinaga.com reserves the right to modify its Privacy Policy, in its own discretion, or motivated by a legislative, jurisprudential or doctrinal change of the Spanish Data Protection Agency. Changes or updates to this Privacy Policy will be explicitly notified to the User.