DATA PRIVACY POLICY
This privacy policy sets out the way in which the personal data provided by the DATA SUBJECT will be managed. This policy is expressly and fully accepted by the INTERESTED PARTY from the moment that, in order to use the site or the services offered by THE DATA CONTROLLER, he/she communicates his/her personal data to the DATA CONTROLLER, since such communication is always voluntary and will imply an explicit act of acceptance of the conditions of processing of his/her personal data for the purpose informed by THE DATA CONTROLLER.
For the purposes of the provisions of Article 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council, on the protection of natural persons with regard to the processing of personal data, and Organic Law 3/2018, of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights, the data of the DATA CONTROLLER is clearly and transparently reported.
1.- IDENTIFICATION AND CONTACT DETAILS OF THE DATA CONTROLLER.
CORPORATE NAME: BROTHERS A&A INTERNATIONAL SHOES, S.L.
C.I.F.: B-54797824
ADDRESS: C/ TALES DE MILETTO, NÚMERO 5 – 03203 ELCHE (ALICANTE)
E-MAIL: info@azarey.es
THE DATA CONTROLLER has adopted the appropriate security measures in its facilities, systems and treatments. It has established all the technical means at its disposal to prevent the loss, misuse, alteration, unauthorised access and theft of the data provided by the INTERESTED PARTY, thus ensuring its integrity and confidentiality.
Failure to provide the requested personal data or failure to accept this data protection policy means that it will be impossible for the INTERESTED PARTY to provide the services requested.
The data provided by the User will be kept as long as there is a mutual interest to maintain the purpose of the processing and for the period for which legal responsibilities for the services provided could arise. When it is no longer necessary for this purpose, they will be deleted with appropriate security measures to ensure the pseudonymisation of the data or their total destruction
2º-WHAT PERSONAL DATA DO WE PROCESS AND HOW HAVE WE OBTAINED IT?
The personal data we process have been provided by the interested party when filling in the forms on our website, or through the telephone number and/or email account listed on our main homepage.
The categories of data processed are identification data. Categories of specially protected data are not processed.
It is the responsibility of the interested party to ensure the veracity and accuracy of the data provided and to communicate any changes that occur in order to enable them to be updated.
ONLINE STORE USER REGISTRATION: The site has a public area, accessible to anyone who accesses it, and has private areas, accessible only when the USER has registered in the online store; in this case, the USER must keep the access code strictly confidential. To do this:
- The access profiles and passwords used must be confidential, personal and non-transferable. It is the responsibility of the password holder to use it.
- The user must not save his/her access code in a readable form in files on disk, paper or any other type of medium where it can be accessed.
- The user will change the password in the following circumstances:
- Whenever there is a suspicion that their security may have been violated.
- As long as it is known to another user or suspected to be known.
By virtue of the above, it is the USER's obligation to immediately notify the DATA CONTROLLER of any event that allows the improper use of the identifiers and/or passwords, such as theft, loss, or unauthorized access to them, in order to proceed with their immediate cancellation. As long as such facts are not communicated, the DATA CONTROLLER will be exempt from any liability that may arise from the improper use of the identifiers or passwords by unauthorized third parties.
3º-FOR WHAT PURPOSE DO WE PROCESS YOUR DATA?
We process your data for the following purposes:
• Provision of requested services: we process your personal data in order to provide you with the requested services (online order submission).
• Contact forms: attention to requests for information.
• Sending e-mails: commercial communications with third parties (customers, suppliers, contact persons).
• Sending commercial communications through any means, whether electronic (WhatsApp, email, SMS, MMS, etc.) or non-electronic (ordinary mail, etc.) including our newsletter, provided that its purpose is to maintain the relationship between the User and the DATA CONTROLLER, as well as the performance of information tasks, and other activities related to the services provided.
• Participation in promotions to receive discounts on future purchases.
4º-HOW LONG DO WE PROCESS YOUR DATA?
We keep the personal data provided for the time necessary to carry out the purposes for which they were collected, as well as for the legal period in which some type of liability may be demanded.
• Provision of requested services (online order delivery): the personal data provided will be kept for as long as the contractual relationship is maintained, or for the time necessary to comply with legal obligations and provided that they are adequate, pertinent and limited to what is necessary for the purposes for which they are processed.
• Contact forms: once your request has been answered, the data will be deleted unless the user has a contractual relationship with the Data Controller.
• Sending emails: personal data will be kept for the appropriate time in each case, in accordance with professional and legal criteria.
• Sending commercial communications, including our newsletter: personal data will be kept as long as you do not request your removal or deletion from our database.
• Participation in promotions: personal data will be kept until you request your removal or deletion from our database.
5º-WHAT IS THE LEGITIMACY FOR THE PROCESSING OF YOUR DATA?
• Provision of requested services (online order delivery): the legal basis for the processing of your data is the contractual relationship with the customer in the fulfillment of online orders, as well as the user's consent to accept our privacy policy.
• Contact forms: the legal basis for the processing of your data is the user's consent to accept our privacy policy.
• Sending emails: the legal basis for processing your data is the user's consent when requesting information from us through the email address.
• Sending commercial communications: the legal basis for the processing of your data is the user's consent to accept our privacy policy.
• Participation in promotions: the legal basis for the processing of your data is the user's consent to accept our privacy policy.
6º-TRANSFER OF THE USER'S PERSONAL DATA TO THIRD PARTIES.
The DATA CONTROLLER will not transfer or communicate your data to any third party, except in the cases provided for by law or when the provision of a service implies the need for a contractual relationship with a Data Processor.
Thus, the INTERESTED PARTY accepts that some of the personal data collected will be provided to these Data Processors, such as transport and courier companies for the delivery of the purchased product. The User also accepts that, in the event of the provision of services, these may be, totally or partially, subcontracted to other persons or companies, which will be considered as Data Processors, with whom the corresponding confidentiality agreement has been agreed, or adhered to their privacy policies, established on their respective websites. The User may refuse to transfer his/her data to the Data Processors, by written request, by any of the means previously referred to in section 9 of this Privacy Policy.
7º-INTERNATIONAL DATA TRANSFERS
We may use social media as a means of communication and promotion of our services. We do not use the data for purposes that are not permitted. We are not responsible for the content, comments, opinions or information, our own or those of third parties, that users publish on our social accounts. Social networks have their own privacy policies, we recommend that you review them carefully before using these social networks.
We also inform you that we use MailChimp and Klaviyo as marketing automation and advertising delivery platforms. By agreeing to our privacy policy, you understand that the information you provide will be transferred to both companies' servers located in territory outside the E.U. For more information, we recommend that you read their privacy policies https://mailchimp.com/legal/terms and https://www.klaviyo.com/legal/privacy/privacy-notice.
8º-MINORS
Minors must refrain from providing any data through https://www.azarey.es. In any case, the DATA CONTROLLER is not responsible for the veracity and accuracy of the data filled in by the User and therefore cannot verify the age of the same
9º-EXERCISE OF RIGHTS OF ACCESS, RECTIFICATION, CANCELLATION OR DELETION, OPPOSITION, LIMITATION OF PROCESSING AND PORTABILITY.
We inform you that the rights of access, rectification, deletion, limitation of processing, or opposition to processing, as well as the right to data portability may be exercised before the DATA CONTROLLER by any means subject to law, accompanied by a copy of an official document that identifies you by contacting: BROTHERS A&A INTERNATIONAL SHOES, S.L., with postal address C/ TALES DE MILETO, NUMERO 5 – 03203 ELCHE (ALICANTE), or by sending an email to info@azarey.es, indicating in the subject: DATA PROTECTION RIGHTS, and attaching a photocopy of your ID card. If you consider that the processing does not comply with the regulations in force, you may lodge a complaint with the supervisory authority in agpd.es.
The application must contain the name and surname of the INTERESTED PARTY, a copy of the DNI/NIF and, where admitted, of the person representing him/her, as well as a document accrediting the representation, the request in which the request is specified, the address for the purposes of notifications, the date and signature of the applicant and documents accrediting the request made. If the application does not meet the specified requirements, it will be required to be corrected. With regard to the right of access, it will only be refused when the request is made by a person other than the person concerned. No consideration shall be required for the exercise of rights.
In the event that consent has been given for a specific purpose, the right to withdraw such consent may be exercised at any time, without affecting the lawfulness of the processing based on consent prior to its withdrawal.
The INTERESTED PARTY is informed of his/her right to file a complaint with the Spanish Data Protection Agency (AEPD) and/or request its protection, in particular, when he/she considers that he/she has not obtained satisfaction from the DATA CONTROLLER, in the exercise of his/her rights, through the electronic office of his/her website (www.agpd.es), or by writing to their postal address (C/Jorge Juan, 6, 28001-Madrid).
The INTERESTED PARTY declares to have been informed of the conditions on the Protection of Personal Data in the terms established in Article 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council, on the protection of natural persons with regard to the processing of personal data, granting their consent for the processing of their personal data in relation to the purposes described above, in the manner and for the purposes indicated in this Privacy Policy.
THE DATA CONTROLLER reserves the right to modify its data protection policy at its discretion, or due to a change in legislation, jurisprudence or business practice.
If the Data Controller includes any modification, the new text will be published on this website, where the INTERESTED PARTY may be informed of the current data protection policy.