L’OLIVERA, S.C.C.L. informs users of the website about its policy regarding the treatment and protection of personal data of users and customers.
It guarantees at all times the complete and full compliance with the obligations set forth by the regulations on data protection and service of the information society: Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016 , regarding the protection of persons with regard to the processing of personal data and the free circulation of these data (RGPD), the Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD) and Law 34/2002, of July 11, on Services of the Information Society and Electronic Commerce (LSSIce).
DATA CONTROLLER
L’OLIVERA, S.C.C.L.
CIF: F25014176
C/ LA PLANA, S/N – 25268 – VALLBONA DE LES MONGES (LLEIDA)
Registered in the Registry of Cooperatives number 755
Telephone: 973 33 02 76
E-mail: olivera@olivera.org
DATA CONTROLLER
L’OLIVERA S.C.C.L., in accordance with article 37.1.a of the General Data Protection Regulation (EU) 2016/679, has appointed a Data Protection Officer (DPO). The contact email is: dpd@olivera.org.
PURPOSES OF DATA PROCESSING
The data provided by the User is used for different purposes that are listed below:
Purpose of the data processing | Managing the queries raised through the query form. |
---|---|
Managing the queries raised through the query form. | Legitimate interest of the Company to meet the information requirements through the website. Consent given expressly at the time of collecting the data from the web forms. |
Sending newsletters, commercial communications and promotion. | Consent given expressly at the time of collecting the data from the web forms. |
Creating and managing your registration as a User. | Consent given expressly at the time of collecting the data from the web forms. |
For the development, fulfilment and execution of the contract of sale or services that you have contracted through our website. | Consent given expressly at the time of collecting the data from the web forms. |
Performing accounting management. | Execution of a contract. |
Complying with current tax obligations. | Compliance with legal obligations that are applicable to us. |
Managing incidents and website maintenance. | Legitimate interest of the Company. |
DATA CONSERVATION PERIOD
Purpose of the data processing | Data conservation period |
---|---|
Managing the queries raised through the query form. | We will store your data for as long as is necessary to meet your request or request.. |
Sending newsletters, commercial communications and promotion. | We will store your data until you unsubscribe. |
Creating and managing your registration as a User. | We will process your data for as long as you remain a registered user (that is, until you decide to unsubscribe). |
For the development, fulfilment and execution of the contract of sale or services that you have contracted through our website. | We will process your data for the time necessary to manage the purchase of the products or services you have purchased, including possible returns, complaints or claims associated with the purchase of a particular product or service. |
Performing accounting management. | We will store your data for the time necessary to comply with the applicable statutory limitation periods. |
Complying with current tax obligations. | We will store your data for the time necessary to comply with the applicable statutory limitation periods. |
Managing incidents and website maintenance. | We will store your data for the time necessary to comply with the applicable statutory limitation periods. |
RECIPIENTS OF THE DATA
To fulfil the purposes indicated in this Privacy Policy, your data will be processed by L’OLIVERA. S.C.C.L. and it is also necessary that we give access to your personal data to third parties that support us in the services we offer you (Treatment Managers), namely:
- Financial entities
- Technological service providers
- Suppliers and collaborators of logistics, transport and delivery services.
- Suppliers and collaborators of services related to marketing and advertising.
Those in charge of the treatment for the execution of a contract or provision of a service to the party responsible, therefore following their instructions at all times and ensuring the same levels of security.
RIGHTS OF USERS
The user has the right to:
- Request access to their personal data being processed and receive this information in writing through the requested channel.
- Request the rectification of inaccurate personal data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purpose for which it was collected.
- Request the limitation of the processing of their data.
- Oppose the processing of their personal data when appropriate, in this case the data will no longer be processed except for legitimate reasons.
- Right to data portability. The interested party has the right to receive personal data if they have been provided in a structured, commonly used and machine-readable format, and to transmit them to another person in charge, if the following requirements are met:
- The data processing is based on consent or a contract.
- The data processing is done by automated means:
- Right to withdraw the consent given.
- Right to claim before the Spanish Data Protection Agency.
The User can exercise the rights indicated above at the postal or electronic mail address of the Responsible Party, proving their identity with a scanned copy of their DNI or equivalent document, and specifying the right they wish to exercise.
DATA ORIGIN
The personal data must be provided by the interested party on an absolutely voluntary basis. The lack of some data or the non-response of questions that may be asked of the person interested in the registration processes or through electronic forms may prevent access to certain services for the provision of which it is essential to have these data of a personal nature. In this case, the Data Controller must inform the interested party of the mandatory or necessary nature of providing personal data for the operation of the service.
The party responsible ensures the confidentiality of your personal data and guarantees their security, adopting the necessary measures to prevent their alteration, loss, treatment or unauthorized access.
INFORMATION PROVIDED BY THE INTERESTED PARTY
Children under 14 years of age cannot transfer their personal data without the prior consent of their father/mother and/or legal guardians.
The interested party entering their data in the contact forms or presented in download forms, expressly and freely and unequivocally accepts that their data is necessary for the Responsible Party to fulfil their request, and the inclusion of data in the fields is voluntary.
The interested party guarantees that the personal data provided to the provider is true and is responsible for communicating any changes to them.
All the data requested through the website is necessary for the provision of an optimal service to the interested party. In the event that all the data is not provided, it is not guaranteed that the information and services that the Responsible Party provides will be completely adjusted to your needs.
SECURITY MEASURES
In accordance with the provisions of current regulations regarding the protection of personal data, the Responsible Party is complying with all the provisions of the RGPD and LOPDGDD regulations for the treatment of personal data for which it is responsible, and manifestly with the principles described in article 5 of the RGPD and in article 4 of the LOPDGDD, by which they are treated in a lawful, loyal and transparent manner in relation to the interested party and adequate, pertinent and limited to what is necessary in relation to the purposes for which they are treated.
The Responsible Party guarantees that it has implemented appropriate technical and organizational policies to apply the security measures established by the RGPD and the LOPDGDD to protect the rights and freedoms of the interested party and has communicated the appropriate information so that they can exercise them.
SECURITY BREACHES
The Responsible Party will report any security breach that affects the database used by this website, or that affects any of our third-party services, to each and every person whose data may have been affected, and authorities, within 72 hours of detecting the breach.
APPLICABLE LAW AND JURISDICTION
For the resolution of all disputes or issues related to this website or the activities developed therein, Spanish legislation will apply, to which the parties expressly submit, being competent to resolve all disputes arising or related to its use the Courts and Tribunals of Lleida.