Privacy Policy

DETAILED INFORMATION ON THE PROCESSING OF YOUR PERSONAL DATA IN COMPLIANCE WITH:

REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).
and Organic Law 3/2018, of December 5, on Personal Data Protection and guarantee of digital rights (LOPDGDD)
Law 34/2002, of July 11, on services of the information society and electronic commerce.

CONTROLLER: Who is responsible for processing your data?

Controller’s Contact Details

Identity: NO MÁS VELLO, S.L. (Hereinafter «The Entity»)
Tax ID (CIF): B85228989
Madrid Commercial Registry. Volume 24,827, Folio 90, Section 8, Sheet M-446893, 1st Registration.
Postal address: Calle Navarra 1, 28691-Villanueva de la Cañada (Madrid).
Telephone: 918 117 074
Email: info@nomasvello.com

Contact details of the Data Protection Officer We have a Delegate: CONTROL SAFE AUDITORES INFORMÁTICOS S.L. To help you with whatever you need in data protection. You can write to the indicated email address.

PURPOSE: For what purpose do we process your personal data? We process the information provided to us by interested parties in order to:

COMMERCIAL MANAGEMENT of the online store.
INFORM about the company’s activities and Communication Channel with the different interested parties.

LEGAL BASIS: What is the legal basis for processing your data? Detail of the legal basis for processing, in cases of legal obligation, public interest, or legitimate interest. Before describing the three main purposes described above, we proceed to describe the legitimacy for the use of the processing.

The user guarantees that the personal data provided to the Entity is truthful and is responsible for communicating any modification to it, in order to continue offering them our best service. The information submitted to the Entity, through any of its channels, must be truthful and not violate the rights of third parties or current legislation.

In the case of data of minors under 14 years of age. It will be the parents/guardians or legal representatives who consent to the processing and participation in the different activities of the platform.

Obligation or not to provide data and consequences of not doing so: The requested data are necessary to carry out the activities. In the event that all the required information cannot be obtained, the contractual relationship with the Entity cannot be established.

RETENTION: How long will we keep your data? Data retention periods or criteria The data will be kept until the purpose that originated the processing of your information ends. Once this happens, the data will be kept blocked for the attention of possible legal or administrative requirements until their prescription.

RECIPIENTS: To whom is your data communicated? Recipients or categories of recipients

Collaborating entities.
Public/governmental administrations, courts, competent authorities.
IT provider.
Responsible franchises.

We undertake not to transfer personal data to third parties other than those mentioned above, unless the Interested Parties are informed of this or if required by applicable laws and regulations or by order of a court, government agency, supervisor, or regulator, including tax authorities.

Adequacy decisions, guarantees, binding corporate rules, or specific applicable situations No communications are made outside the European space.

RIGHTS: What are your rights? How to exercise the rights of access, rectification, erasure, and portability of your data, and the limitation or opposition to their processing The rights recognized by the GDPR are:

Right to request access to personal data relating to the data subject,
Right to request their rectification or erasure,
Right to request the limitation of their processing, and
Right to object to the processing,
Right to data portability;

To exercise your rights, you just have to write an email to the address indicated above, requesting your right and attaching your ID (DNI) to the email for identification.

Optionally, the data subject can be redirected to the Spanish Control Authority to obtain additional information about their rights: https://www.aepd.es/reglamento/derechos/index.html

What are your rights when you provide us with your data? Any person has the right to obtain confirmation as to whether the Entity is processing personal data concerning them or not. Interested persons have the right to access their personal data, as well as to request the rectification of inaccurate data or, where appropriate, request its erasure when, among other reasons, the data is no longer necessary for the purposes for which they were collected.

In certain circumstances, data subjects may request the limitation of the processing of their data, in which case we will only retain them for the exercise or defense of claims. In certain circumstances and for reasons related to their particular situation, data subjects may object to the processing of their data. The Entity will stop processing the data, except for compelling legitimate reasons, or the exercise or defense of possible claims.

The Entity’s privacy policy ensures, in any case, that the Owner can exercise their rights by writing to the Entity, at the address indicated above and in the legally established manner.

GDPR RIGHTS: WHAT DO YOUR RIGHTS CONSIST OF? 1) ACCESS You have the right to be informed of the following:

The purposes of the processing, categories of personal data processed, and possible data communications and their recipients.
If possible, the data retention period. If not, the criteria for determining this period.
The right to request the rectification or erasure of the data, the limitation of processing, or to object to it.
The right to file a complaint with the Control Authority.
If an international data transfer occurs, receive information about the appropriate safeguards.
The existence of automated decisions (including profiling), the logic applied, and consequences of this Processing.

2) RECTIFICATION You have the right, in addition to rectifying inaccurate data, to have incomplete personal data completed, including by means of an additional statement.

3) ERASURE (THE «RIGHT TO BE FORGOTTEN») With this right you can request:

The erasure of personal data without undue delay when any of the contemplated circumstances occur. For example, unlawful data processing, or when the purpose that motivated the processing or collection has disappeared. However, a series of exceptions are regulated in which this right will not proceed. For example, when the right to freedom of expression and information must prevail.

4) LIMITATION OF PROCESSING This right allows you to:

Request the controller to suspend data processing when: The accuracy of the data is challenged, while said accuracy is verified by the controller. The data subject has exercised their right to object to data processing, while it is verified whether the controller’s legitimate reasons prevail over the data subject.
Request the controller to retain your personal data when: The data processing is unlawful and the data subject opposes the erasure of their data and requests the limitation of its use instead. The controller no longer needs the data for the purposes of the processing, but the data subject needs them for the formulation, exercise, or defense of claims.

5) DATA PORTABILITY You may receive the personal data you have provided in a structured, commonly used, and machine-readable format, and transmit it to another controller, provided it is technically possible.

Furthermore, the Owner expressly authorizes that, in case of a portability request, their personal data be transferred for data communication, in order to carry out such operations.

6) OBJECTION Through the right to object, you can object to the processing of your personal data:

When for reasons related to your personal situation, the processing of your data must cease unless a legitimate interest is accredited, or it is necessary for the exercise or defense of claims.
When the processing is aimed at direct marketing.

7) NOT TO BE SUBJECT TO INDIVIDUAL DECISION-MAKING You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects on you or significantly affects you. The foregoing is excepted when:

It is necessary for the conclusion or execution of a contract.
It is permitted by EU or Member State law, with appropriate measures to safeguard the rights and freedoms of the data owner.
There is explicit consent from the data owner.

Right to withdraw consent given You can always opt-out, in each communication, of receiving information by email. If you do not consent to the main processing, the relationship with you cannot be carried out.

Right to complain to the Control Authority Request for filing a claim for the protection of rights before the Control Authority: https://sedeagpd.gob.es/sede-electronica-web/vistas/infoSede/tramitesCiudadano.jsf

SOURCES. ORIGIN: How did we obtain your data? Detailed information on the origin of the data, even if they come from publicly accessible sources. To achieve the purposes described above, we collect or receive personal data directly from the Interested Parties. For example: When registering on the website. Or through the use of the different forms within the application that provide us with information. We also inform you that you are not obligated to provide us with personal data that we do not need to register your account.

And How do we use your data? Stay informed We clarify that we use your contact data by email to offer you content suggestions and more relevant experiences around our services, for example: newsletters about our activities.

Communications In the event that users of this digital product must provide their email address to access some of the services offered, they may state that they do not wish to receive any type of communication that the Entity may send, as long as it is not strictly linked to the purpose for which the service was requested, such as, for example, confirmation emails, information about transactions carried out, or notifications of confirmation of cancellation or registration of services. We also add that we may contact you by phone, in addition to by email.

Advertising When you make a visit or action on one of our products, we will associate you with the content viewed or shared through your browser’s cookies, which you can deactivate or delete when you decide.

What data do we process about you? Categories of data processed. We process a series of personal data through the Portal. The information we will have about you as a USER includes the following data related to your person:

Name and surnames.
Phone
Email
Payment data.
Commercial data.
Other data necessary for the fulfillment of the processing purpose.
Information about cookies, e.g., cookies and similar technologies on websites (see also our Cookies Policy).

SECURITY MEASURES: How do we protect the data? The Entity has adopted the necessary technical and organizational measures to guarantee the security and integrity of the data, as well as to prevent its alteration, loss, unauthorized processing, or access.

INTELLECTUAL PROPERTY All accessible content on the Entity’s website and platform is subject to intellectual property rights. The Entity, through its Website, offers content related to its activity and services, which are merely informative. The Entity is not responsible for the products, content, and services of other websites that may be linked, directly or indirectly, through the Entity’s Website, and reserves the right to modify, limit, or cancel access and content of its Website when it deems it appropriate, not being responsible for any discrepancies that may arise between the version of its printed documents and the electronic version thereof. The Entity, unless authorized in writing, prohibits the reproduction, copying, use, distribution, commercialization, or any activity that may be carried out with the contents of its Web pages. Access to this website is the exclusive responsibility of the users. Accessing and browsing this website implies accepting and knowing the legal warnings, conditions, and terms of use contained therein. This website may not be altered, changed, modified, or adapted. However, the Entity reserves the right to make, at any time, all the changes and modifications it deems convenient, being able to make use of this right at any time and without prior notice. Content: The Entity makes the utmost efforts to avoid any error in the contents that may appear on this website. The Entity neither guarantees nor is responsible for the consequences that may arise from errors in the contents that may appear on this website, provided by third parties. The Entity is not responsible for nor does it guarantee that access to this website will be uninterrupted or error-free. Nor is it responsible for or guarantees that the content or software that can be accessed through this website is error-free or causes damage. In no case will the Entity be responsible for losses, damages, or harm of any kind that arise from access to and use of the Website, including but not limited to, those caused to computer systems or those caused by the introduction of viruses. The Entity is not responsible for the damages that may be caused to users by inappropriate use of this website.