At Conalba Pogres SL, we understand that it is essential to maintain a transparent relationship with you. Therefore, we present our Privacy Policy below, so that you are always duly informed about how we collect and securely process any data you provide to us.
Your data will be processed in accordance with current legislation and, specifically, in accordance with the provisions of Regulation (EU) 2016/679 of 27 April 2016 (GDPR) concerning the protection of natural persons with regard to the processing of personal data and the free movement of such data. This also applies to the Organic Law 3/2018 of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights.
A careful reading of our Privacy Policy will provide you with the necessary information to understand the use we will make of the data you provide us.
Who is responsible for processing your data?
If you, or an authorised person, have provided us with your data, we inform you that Conalba Pogres SL, with CIF: B53072500, is the data controller. This data will be processed in accordance with the provisions of the current regulations on personal data protection.
There may be other controllers in the data processing we carry out. In such cases, we will always inform you of who the data controller is, as well as their identification details.
The Website may include hyperlinks or links that allow access to third-party websites different from https://atouchofclasscabaret.com/, which are not operated by Conalba Pogres SL. The owners of such websites will have their own data protection policies, and they will be responsible for their own data processing and privacy practices.
At Conalba Pogres SL, we are committed to fulfilling the obligation of secrecy regarding personal data and the duty to protect them. To this end, we have adopted the necessary measures to prevent their alteration, loss, unauthorised processing, or access, in accordance with the Regulation.
Where do we provide information?
At Conalba Pogres SL, we provide information through the website https://atouchofclasscabaret.com/ in the section corresponding to the privacy policy. More information is available in the “Legal Notice.”
What personal data do we process?
The personal data we process are:
- Those you voluntarily choose to provide us with.
- Data derived from communications you have with us.
- Information related to your browsing on our online services (IP address or information derived from cookies or similar devices, as you can see in our Cookie Policy on the website).
- Information that is available from public sources, which we can legitimately access.
- Data derived from the contractual or pre-contractual relationship you maintain with us, including your image, always informing you in such cases about the possibility of capturing your image.
- Data that third parties provide us about you, provided there is a legitimate basis for this or we have obtained your consent.
- Data from third parties that you provide to us, with the prior consent of the third party in question.
You can find more information in the activity log section of this privacy policy.
How do we process the data?
At Conalba Pogres SL, we process your personal data always in strict compliance with current legislation. Furthermore, we inform you that we have the appropriate technical and organisational measures to guarantee an optimal level of security, ensuring that only authorised persons have access, that we maintain data integrity, preventing any intentional or accidental loss, and that we have strengthened data processing systems and services.
However, since Conalba Pogres SL cannot guarantee the invulnerability of the internet or the total absence of hackers or others who may fraudulently access personal data, we commit to notifying you without undue delay when a personal data breach occurs that is likely to result in a high risk to the rights and freedoms of natural persons. According to Article 4 of the GDPR, a personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored, or otherwise processed.
The operations, management, and technical procedures that we carry out in an automated or non-automated way, enabling the collection, storage, modification, transfer, and other actions on personal data, are considered data processing.
What is the legal basis for processing?
The legal basis for processing Personal Data will be derived from the contractual or pre-contractual relationship, employment relationship, or any other that may require data processing, such as explicit consent.
How do we manage electronic communications?
In accordance with the provisions of Law 34/2002 of 11 July, on Information Society Services and Electronic Commerce, and Directive 2002/58/EC, we inform you that you may receive communications and information of a commercial nature through this electronic communication system (emails, automated response messages from forms, and other communication systems) when you have given us your consent, or if it concerns commercial communications related to products or services similar to those previously provided by the data controller.
If you do not wish to receive such communications and information, you can notify us through the same means, indicating in the subject line “UNSUBSCRIBE COMMERCIAL COMMUNICATIONS” so that your personal data is removed from our database. Your request will be processed within one month of its submission. If we do not receive an explicit response from you, we will understand that you accept and authorise our entity to continue with the aforementioned communications.
If you receive such communications through these means, please note that the messages are intended exclusively for the recipient and may contain privileged or confidential information. If you are not the intended recipient, you are hereby notified that any use, disclosure, or copying without authorisation is prohibited by applicable law.
How long do we retain your data?
The personal data relating to natural persons that we collect at Conalba Pogres SL by any means will be retained as long as the data subject does not request its deletion. Likewise, it will be retained as long as the relationship that originated the data processing is maintained, always respecting the legally established retention periods. After this period, the personal data will be deleted from all systems at Conalba Pogres SL.
Will your data be shared with third parties?
There will be no transfer, transmission, or sharing of personal data, except those previously informed and not resulting from a legal obligation. If your data is requested by the Public Administration or Autonomous Institutions within the scope of their legally assigned functions, this data will be transmitted.
If there is a transfer, transmission, or sharing of personal data beyond the cases previously mentioned, you will be informed in advance so that, if applicable, you can provide your consent.
However, to organise ourselves correctly, ensure efficient operations, and procedures that guarantee proper management, at Conalba Pogres SL, it may be necessary to hire the services of consultants, professionals, or other service companies to process data under our instructions. This processing by third parties is regulated in a contract, which is documented in writing or by any other legally accepted form, and allows for the verification of its execution and content, explicitly specifying that the data processor will process the data according to our instructions and will not apply or use it for any purpose other than that stated in the contract, nor will they disclose it, not even for storage, to other persons.
What are your rights?
The data protection regulations grant you the following rights:
- Right of access: The right of the user to obtain confirmation of whether Conalba Pogres SL is processing their personal data, and if so, to obtain information about the specific personal data and the processing that Conalba Pogres SL has carried out or is carrying out, as well as, among other things, the available information on the origin of such data and the recipients of the communications made or planned for the same.
- Right to rectification: The right of the user to have their inaccurate personal data modified or completed, considering the purposes of the processing.
- Right to erasure (“the right to be forgotten”): The right of the user, provided that current legislation does not establish otherwise, to obtain the erasure of their personal data when it is no longer necessary for the purposes for which it was collected or processed; when the user has withdrawn their consent to the processing and there is no other legal basis; when the user objects to the processing and there is no other legitimate reason to continue with it; when the personal data has been unlawfully processed; when the personal data must be erased in compliance with a legal obligation; or when the personal data has been obtained as a result of an offer of information society services directly to a child under 14 years of age. In addition to erasing the data, the data controller must, considering the available technology and the cost of implementation, take reasonable steps to inform other data controllers processing the personal data of the data subject’s request for the erasure of any links to those personal data.
- Right to restriction of processing: The right of the user to limit the processing of their personal data. The user has the right to obtain the restriction of processing when they contest the accuracy of their personal data; when the processing is unlawful; when the data controller no longer needs the personal data, but the user requires it for making claims; and when the user has objected to the processing.
- Right to data portability: If the processing is carried out by automated means, the user has the right to receive their personal data from the data controller in a structured, commonly used, and machine-readable format, and to transmit it to another data controller. Where technically feasible, the data controller will transmit the data directly to the other data controller.
- Right to object: The right of the user to object to the processing of their personal data or to request that Conalba Pogres SL cease the processing of their data.
- Right not to be subject to a decision based solely on automated processing, including profiling: The right of the user not to be subject to an individualised decision based solely on automated processing of their personal data, including profiling, unless otherwise provided by current legislation.
If you would like more information about the processing of your data, to rectify inaccurate data, to object to and/or restrict processing that you consider unnecessary, or to request the cancellation of processing when the data is no longer necessary, you can write to Conalba Pogres SL at Calle Gerona, 30, Benidorm, 03503, Alicante, or via email at info@atouchofclasscabaret.com.
This communication should include the following information: User’s name and surname, request for application, address, and proof of identity.
The exercise of rights must be carried out by the user themselves. However, they may be executed by an authorised person as the legal representative of the authorised party. In such cases, documentation must be provided to prove this representation of the data subject.
We also want to inform you that you can withdraw the consent given without affecting the lawfulness of the processing already carried out, by sending your request to the same address indicated in the previous paragraph. In this case, you must accompany your request with a copy of your ID or a document proving your identity.
If you believe that there is a problem or breach of current regulations in the way your personal data is being processed, you have the right to effective judicial protection and to file a complaint with a supervisory authority, particularly in the state where you have your habitual residence, workplace, or the place of the alleged breach. In the case of Spain, the supervisory authority is the Spanish Data Protection Agency (https://www.aepd.es/) – C/ Jorge Juan, 6 28001-Madrid – FAX: 914483680- TEL: 901 100 099- Email: ciudadano@agpd.es
What is the purpose and legal basis for data processing, and how long will the data be retained?
Below, we detail the purposes of the data processing carried out by any or all of the Data Controllers mentioned above.
Processing activity | Purpose of processing | Legal basis | Retention period |
---|---|---|---|
Advertising | Sending commercial information, notifications about events and activities of interest, offers, product and service information to clients and/or potential clients. | Explicit consent of the data subject | Until the data subject requests cancellation and/or opposes, or until it is no longer relevant for use |
E-commerce | Creation and management of orders and purchases made through web platforms. | Contractual relationship | 5 years from the end of the contract, or the legally established period according to specific regulations |
Website management | Managing queries, contacts, and complaints received through the website | Explicit consent of the data subject | Until the data subject requests cancellation and/or opposes, or until it is no longer relevant for use |
Acceptance and changes to this privacy policy
It is necessary for the User to have read and agreed with the conditions regarding the protection of personal data contained in this Privacy Policy, as well as to accept the processing of their personal data so that the Data Controller can proceed with it in the manner, during the periods, and for the purposes stated. The use of the Website implies acceptance of its Privacy Policy.
Conalba Pogres SL reserves the right to modify its Privacy Policy, according to its own criteria, or motivated by a legislative, jurisprudential, or doctrinal change of the Spanish Data Protection Agency. Changes or updates to this Privacy Policy will not be explicitly notified to the User. It is recommended that the User consult this page periodically to stay informed about the latest changes or updates.
This Privacy Policy was updated to comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, concerning the protection of natural persons with regard to the processing of personal data and the free movement of such data (GDPR) and the Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights.
This Privacy Policy document was reviewed on 10-08-2024.