Privacy policy

POLÍTICA DE PRIVACIDAD

    1. GENERAL INFORMATION

    The purpose of this “Privacy and Data Protection Policy” is to set forth the conditions governing the collection and processing of your personal data by our entity or corporate group to safeguard your fundamental rights, honor, and freedoms, all in compliance with current regulations, specifically Organic Law 3/2018 of December 5 on the Protection of Personal Data and the Guarantee of Digital Rights. Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).

    In accordance with these regulations, we require your authorization and consent to collect and process your personal data. Therefore, we provide below all relevant details regarding how we carry out these processes, for what purposes, which other entities may have access to your data, and what your rights are.

    2.- DATA CONTROLLER

    Who collects and processes your data?

    The Data Controller is any natural or legal person, public or private, or administrative body that, alone or jointly with others, determines the purposes and means of the processing of personal data; in cases where the purposes and means of the processing are determined by European Union law or the law of the Spanish Member State. In this case, our identifying details as the Data Controller are as follows: CANUSSA EUROPE, S.L.U. - B87882452 How can you contact us?

    Our office address:

    C/ VELAZQUEZ, 15 - 1D 28001 Madrid (Madrid) 650925207 - maria.cano@canussa.com canussa.com

    3.- SECURITY MEASURES

    What do we do to ensure the privacy of your data?

    Our organization or corporate group implements the necessary organizational and technical measures to ensure the security and privacy of your data and to prevent its alteration, loss, or unauthorized processing or access, taking into account the state of technology, the nature of the stored data, and the risks to which it is exposed. Among others, the following measures are noteworthy:

    Ensuring the ongoing confidentiality, integrity, availability, and resilience of processing systems and services.

    Restoring the availability of and access to personal data quickly in the event of a physical or technical incident.

    Regularly verifying, evaluating, and assessing the effectiveness of the technical and organizational measures implemented to ensure the security of processing.

    Pseudonymize and encrypt personal data in cases involving sensitive data.

    4. PURPOSE OF DATA PROCESSING

    Why do we process your data?

    Below, we detail the intended uses and purposes. However, we will only carry out those for which you have given your consent by accepting the

    Management and processing of information requests and orders through our online store: management, provision, expansion, and improvement of the services requested by the user at any given time, as well as the tracking of inquiries and orders.

    Customer service: Managing customer service requests arising from product orders or the tracking of such orders

    Legal Obligations: Management of all actions arising from the execution of the contract between the parties at the time of purchase, billing obligations, and payment processing, as well as all those required by current legislation.

    Communications via Instant Messaging: Use of instant messaging to keep you informed of the status of your order and information requests.

    Marketing and Advertising: Sending informational and commercial communications: We inform you that we will use your email address and phone number to send you, based on your needs, offers and promotions for products that may be of interest to you. This communication is subject to your acceptance of the relevant checkbox for this purpose.

    How long do we retain your data?

    We use your data for as long as is strictly necessary to fulfill the purposes indicated above. Unless there is a legal obligation or requirement, the retention periods are as follows:

    Management and processing of information requests and orders: For a period of 5 years from the last confirmation of interest.

    Sending informational and commercial communications: Until the data subject requests their deletion.

    5. LEGAL BASIS FOR PROCESSING Why do we process your data?

    The collection and processing of your data is always based on one or more legal grounds, which are detailed below:

    Maintaining a business relationship and contract performance (based on the controller’s legitimate interest, Art. 6.1.f GDPR) Marketing and advertising activities, sending communications about products or services, based on the data subject’s consent, Art. 6.1.a GDPR, through acceptance of the privacy policies located in the forms provided for these purposes.

    6. RECIPIENTS OF YOUR DATA

    To whom do we disclose your data within the European Union?

    On occasion, in order to comply with our legal obligations and our contractual commitment to you, we are required and need to disclose some of your data to certain categories of recipients, provided that such disclosure is related to the obligation to provide the requested services

    Your data will be shared with package delivery companies for the purpose of delivering your products to you. Data may be shared with public bodies and entities that request it or as required by law.

    Do we transfer your data internationally outside the European Union?

    In the data processing carried out by our organization, we may need to engage external service providers, which could involve your data being stored and/or processed by organizations established or operating outside the European Union, implying that we would be transferring your data internationally. In this case, no international data transfers are made.

    7.- PROCEDENCIA Y TIPOS DE DATOS TRATADOS ¿De dónde hemos obtenido sus datos?

    Sus datos los hemos obtenido directamente del interesado rellenado los formularios habilitados para ello y/o telefónicamente cuando se ha puesto en contacto con nosotros para realizar solicitud de información o procesos de compra de productos. También podemos haberlos obtenido a través de su representante legal.

    ¿Qué tipos de datos suyos hemos recabado y tratamos?

    Solicitamos los datos necesarios para poder prestarle el servicio solicitado y nunca solicitaremos datos que pudieran considerarse como excesivos.


    8. RIGHTS OF DATA SUBJECTS: What rights do you have?

    Current data protection regulations grant you a series of rights regarding how we use your data. Each and every one of these rights is personal and non-transferable; that is, they can only be exercised by the data subject, following verification of their identity. Below, we outline the rights to which you are entitled.