Privacy Policy of the Website
www.mallorcaoysterevents.com
I. PRIVACY POLICY AND DATA PROTECTION
Respecting the provisions of current legislation, Mallorca Oyster Events (hereinafter, also the Website) undertakes to adopt the necessary technical and organizational measures, according to the appropriate security level for the risk of the data collected.
Laws incorporated into this privacy policy
This privacy policy is adapted to the current Spanish and European regulations on the protection of personal data on the internet. Specifically, it respects the following rules:
-
- Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of individuals concerning the processing of personal data and the free movement of such data (GDPR).
-
- Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights (LOPD-GDD).
-
- Royal Decree 1720/2007, of December 21, which approves the Regulations for the development of Organic Law 15/1999, of December 13, on the Protection of Personal Data (RDLOPD).
-
- Law 34/2002, of July 11, on Information Society Services and Electronic Commerce (LSSI-CE).
Identity of the controller of personal data processing
The controller of the personal data collected onMallorca Oyster Events is: Paella Chef Mallorca SL, provided with NIF: B70674833 and registered in: Commercial Register of Palma de Mallorca with the following registration data: [data], whose representative is: Paella Chef Mallorca (hereinafter, Controller). Their contact details are as follows:
-
- Address: Calle Mare de Deu de la Soledat 16 07630 Campos
-
- Contact phone: 684 41 09 16
-
- Contact email: info@mallorcaoysterevents.com
Registration of Personal Data
In compliance with the GDPR and the LOPD-GDD, we inform you that the personal data collected by Mallorca Oyster Events, through the forms on its pages, will be incorporated and processed in our file in order to facilitate, expedite, and fulfill the commitments established between Mallorca Oyster Events and the User, or the maintenance of the relationship established in the forms that the latter fills out, or to respond to a request or query from them. Likewise, in accordance with the provisions of the GDPR and the LOPD-GDD, unless the exception provided for in article 30.5 of the GDPR applies, a record of processing activities is maintained that specifies, according to their purposes, the processing activities carried out and the other circumstances established in the GDPR.
Principles applicable to the processing of personal data
The processing of User’s personal data shall be subject to the following principles set out in article 5 of the GDPR and in article 4 and following of Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights:
-
- Principle of lawfulness, fairness, and transparency: User consent will be required at all times after providing completely transparent information about the purposes for which personal data is collected.
-
- Principle of purpose limitation: Personal data will be collected for specific, explicit, and legitimate purposes.
-
- Principle of data minimization: The personal data collected will be only those strictly necessary in relation to the purposes for which they are processed.
-
- Principle of accuracy: Personal data must be accurate and kept up to date.
-
- Principle of storage limitation: Personal data will only be retained for as long as necessary for the purposes of their processing.
-
- Principle of integrity and confidentiality: Personal data will be processed in a way that ensures its security and confidentiality.
-
- Principle of proactive responsibility: The Controller shall be responsible for ensuring that the above principles are complied with.
Categories of personal data
The categories of data processed in Mallorca Oyster Events are solely identifying data. Under no circumstances are special categories of personal data processed within the meaning of Article 9 of the GDPR.
Legal basis for the processing of personal data
The legal basis for the processing of personal data is consent. Mallorca Oyster Events undertakes to obtain the express and verifiable consent of the User for the processing of their personal data for one or more specific purposes. The User shall have the right to withdraw their consent at any time. Withdrawing consent shall be as easy as giving it. As a general rule, withdrawal of consent shall not condition the use of the Website.
Purposes of processing personal data
Personal data is collected and managed by Mallorca Oyster Events for the purpose of facilitating, expediting, and fulfilling the commitments established between the Website and the User or the maintenance of the relationship established in the forms filled out by the latter or to respond to a request or query. Likewise, the data may be used for commercial purposes of personalization, operation, and statistics, and activities inherent to the corporate purpose of Mallorca Oyster Events, as well as for the extraction, storage of data, and marketing studies to adapt the Content offered to the User, as well as to improve the quality, operation, and navigation of the Website. At the time of collecting personal data, the User shall be informed of the specific purpose(s) of the processing to which the personal data will be destined; that is, the use or uses that will be given to the collected information.
Retention periods of personal data
Personal data shall only be retained for the minimum time necessary for the purposes of their processing and, in any case, only for the following period: 24 months, or until the User requests their deletion. At the time of collecting personal data, the User shall be informed of the period during which the personal data will be retained or, when this is not possible, the criteria used to determine this period.
Recipients of personal data
The User’s personal data shall not be shared with third parties. In any case, at the time of collecting personal data, the User shall be informed about the recipients or categories of recipients of the personal data.
Personal data of minors
Respecting the provisions of articles 8 of the GDPR and 7 of Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights, only individuals over 14 years of age may consent to the processing of their personal data lawfully by Mallorca Oyster Events. If the individual is under 14 years of age, consent from parents or guardians for processing will be necessary, and it will only be considered lawful to the extent that they have authorized it.
Confidentiality and security of personal data
Mallorca Oyster Events undertakes to adopt the necessary technical and organizational measures, according to the appropriate security level for the risk of the data collected, to ensure the security of personal data and prevent their destruction, loss, alteration, or unauthorized access to personal data transmitted, stored, or otherwise processed. The Website has an SSL certificate (Secure Socket Layer), which ensures that personal data is transmitted securely and confidentially, as the transmission of data between the server and the User, and in feedback, is fully encrypted.
However, since Mallorca Oyster Events cannot guarantee the impregnability of the internet or the total absence of hackers or others who access personal data fraudulently, the Controller undertakes to promptly notify the User when a breach of the security of personal data occurs that is likely to result