Your privacy is important. It is a priority for us to know how we treat your personal data, the categories of personal data we process and for what purposes. In addition, it is important that you know what rights you have before Cal Piu as the person responsible for the processing of your personal data and how you can exercise it.
WHAT IS PERSONAL DATA?
Personal data is any information that may be linked to an identified or identifiable individual, directly or indirectly, such as name, mailing address, email address, IP address, and cell phone number.
We may process personal data linked to the following categories of interested parties:
- Web users: visitors to the website www.calpiu.com (hereinafter, ‘the website’).
- Clients: individuals or representatives of legal entities who make reservations in Cal Piu.
- Contact persons: natural persons who are representatives of our customers, partners, suppliers or public authorities.
In all cases, your data will be processed as the Data Controller by Cal Piu as the owner of this website.
The Data Controller must ensure that your personal data is processed securely and legally in accordance with EU Regulation 2016/679 (hereinafter ‘RGPD’), national data protection laws.
WHAT ARE THE LEGAL BASIS FOR THE PROCESSING OF YOUR PERSONAL DATA?
According to the RGPD, Cal Piu must base the processing of personal data on a legal basis. Our processing of your personal data will be based on one or more of the following points, as explained later in this policy:
The processing of personal data is necessary for the execution and management of a contract in which you are a party or to take action at your request before entering into a contract.
The processing of personal data is necessary for the fulfillment of a legal obligation, among others, the obligation to keep the information in accordance with the current legislation on accounting / tax or any other related to rural rentals.
The treatment is necessary for the performance of a task of public interest or in the exercise of official authority.
The processing is necessary for the purposes of our legitimate interest, insofar as this interest is not exceeded by their interests or by the fundamental rights and freedoms that require the protection of personal data.
You have given your consent to the treatment for one or more specific purposes.
WHY DO WE HAVE ACCESS TO YOUR DATA AND WHY DO WE PROCESS IT?
Visiting the Web site does not imply that the user is required to provide any information about themselves. However, the use of some of the functionalities of the website and the services available through it depend on you facilitating or allowing the processing of certain personal information as indicated in the ‘Cookies Policy’, under protection. this treatment in your consent. In the event that you make use of any of the services offered through the website, the personal data you provide will be processed for the proper provision of the same, being the legitimizing basis of the treatment the correct management of your application. , which makes it necessary to process your personal data.
Your data will be processed for the management of the collection of your reservation, payment of bail, registration and compliance with regulatory obligations, etc. This means that there is a contractual relationship and the execution requires the processing of your personal data, without the need for prior consent.
In accordance with our legitimate interest, we may also carry out advertising, commercial and statistical activities for the purpose of informing about promotions or meeting the users and customers of Cal Piu.
In the case of individuals or representatives and contact persons of other entities with whom we maintain commercial or legal relations, your data will be processed to comply with the agreement we have with you or the company you represent. Therefore, the processing of your personal data is necessary for the correct execution of the contract.
In accordance with our legitimate interest, we may also use your data in order to maintain any kind of relationship with the legal entity in which you provide your services or to provide commercial information by any means, including electronic, about our services, perspectives, analysis, events, workouts that are likely to be of interest to you.
WHAT CATEGORIES OF PERSONAL DATA DO WE PROCESS?
The categories of personal data we process vary depending on the data subject and the purpose.
Personal identification and contact details: including name, address, zip code, city / town, date of birth, gender, email address, phone number, etc. for the management of your reservation and to be able to communicate with you, either to act on your behalf or on behalf of a legal entity.
Identification document number (DNI or NIE): such as social security number, passport number, unique identifier or other, issued by a public body to ensure a secure and true identification, for example, to comply with our legal obligation to provide your personal data to the Mossos d’Esquadra in the obligation to register tenants.
Voice and image: For the security of our employees and to keep their personal data safe, we can also use surveillance cameras in our centers.
Personal identification and contact details: We have the necessary information for the management of the contractual or prospective business relationship. In order to communicate with you and ensure a secure and true identification, we need your name, position and contact details such as address, telephone number and email.
The processing of anonymous data, that is, data that cannot be linked directly or indirectly to an individual, is not subject to the restrictions described in this policy.
DO WE PROCESS SENSITIVE PERSONAL DATA?
Sensitive personal data means personal data that reveal racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, the processing of genetic data, biometric data in order to identify unequivocal to a natural person and data relating to the health or sexual life or sexual orientation of a natural person. As a general rule, and unless you give us your express or necessary consent to the establishment, exercise or defense of legal claims, we will not include special categories of personal data.
TO WHOM CAN WE COMMUNICATE PERSONAL DATA?
Your personal data will not be communicated to third parties, unless the specific management that you can request through the website implies, for its correct execution, the need to carry out this communication.
We may also share personal data with our contracted external partners (such as the booking management company, etc.). The providers who process data on our behalf do so on the basis of an Agreement that regulates the responsibilities of these providers as Data Controller in relation to the processing of personal data to which they access to provide the respective contracted service.
We may also share personal data with the authorities in cases where we are required by law to do so, this may include regulators, law enforcement authorities, social welfare authorities and fraud prevention authorities. We also have a legal obligation to provide your personal data when we are audited by the authorities and to prevent, control and evidence fraud, money laundering and other criminal activities.
DO WE TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE THE EU / EEA ZONE?
We may transfer your data to another country. If we do, we will ensure that there are adequate safeguards in place to comply with the RGPD. In general, your personal data will not be transferred outside the European Economic Area (EEA), unless it is necessary for the management of your reservation, to collect a debt and / or to make a legal claim in a country outside of the EU / EEA.
HOW LONG DO WE STORE YOUR PERSONAL DATA?
Your personal data will be kept for the time necessary to properly respond to your request.
Personal data will be kept for as long as the commercial or contractual relationship that motivates its processing persists, and until the legal responsibilities deriving from them expire.
If you are a job seeker, we will retain your data in the application process and delete it once 12 months have elapsed from the date of your application / profile creation. If we have selected you to occupy the position, we will retain your personal data in your personal file in accordance with our HR privacy guidelines (during the term of the employment relationship and subsequently for as long as legal disputes may arise) .
DO WE KEEP YOUR PERSONAL DATA INSURED?
In order to ensure the security of your personal data, we establish the relevant security measures to prevent unlawful or malicious circumstances, events or actions that compromise the availability, authenticity, integrity and confidentiality of the personal data we process. .
WHAT ARE YOUR RIGHTS AND HOW CAN YOU EXERCISE THEM?
Your rights are so regulated by regulations and correspond to access, rectification, forgetting, limitation, opposition, data portability, revocation of consent; and, you can exercise the same by submitting one via email firstname.lastname@example.org
USE OF THIRD PARTY WEBSITES