Privacy Policy
POLTÍTICA DE PRIVACIDAD
In compliance with the provisions of the General Data Protection Regulation 2016/679 (GDPR) and Organic Law 3/2018 on Data Protection and the Guarantee of Digital Rights (LOPDGDD) of December 5, 2018, we hereby inform you:
1. DATA CONTROLLER
- Identity: Skeirrum S. Coop. Galega Xuvenil con CIF F-10836153 hereinafter “the Data Controller”
- Address: C/La Cal nº16-1º CP: 36780 (Pontevedra)
- Phone: 674 314 278
- Contact email: info@escapeo.com
2. PURPOSE OF DATA PROCESSING.
We hereby inform you that the data you provide to us will be processed for the following purposes:
- To manage the services provided through this website.
- To keep you informed about Escapeo’s activities, products, and services.
- To send promotional and advertising information related to our own products and services, or those of third parties with whom Escapeo has partnership agreements, via electronic or physical means (email, SMS, social media, etc.).
- To develop, fulfill, and execute the contract for the sale of goods or provision of services, and to address inquiries related to orders for products or services requested through the website.
- To process reservations made through the provided forms, including the management of partial or full payments related to the contracted activities.
- Customer service.
- To manage the relationship between the parties and maintain your subscription on the WEBSITE as a User.
- Conducting statistical analyses to evaluate and improve the quality of our services, ensuring the anonymization of data whenever possible.
Furthermore, in accordance with the provisions of the GDPR, a record of processing activities is maintained that specifies, according to their purposes, the processing activities carried out and the other circumstances established in the GDPR.
Personal information may not be used for any purpose other than those related to the services contracted or products purchased. No automated decisions will be made based on that profile.
3. LEGAL BASIS FOR DATA PROCESSING
The legal basis for the processing of your data is based on:
- The consent provided by the User by accepting this Policy and checking the corresponding box.
- Legitimate interest in responding to requests or inquiries submitted through the various contact methods.
- The User has provided their personal data within the framework of a contractual or pre-contractual relationship to address their request and/or inquiry, and therefore the processing of such data is necessary for the maintenance of that relationship.
- User consent upon registration
- Applicable legal obligations of the Data Controller that require the processing of personal data in accordance with the services provided or those related to tax matters.
The User may, at any time, revoke their consent to the processing of their personal data. Under no circumstances does the withdrawal of this consent affect the provision of the service and/or the performance of contracts with the Data Controller.
4. PERSONAL DATA PROCESSED AND ITS SOURCE
The personal data we process is of an identifying nature and has been provided by the User themselves by completing the contact form, sending emails or using the features offered on the website.
The use of the contact sections, the completion of forms and/or the features offered on the Portal is voluntary. However, completing certain fields on the form or providing information via other features is necessary to properly address and process your request; therefore, the User’s refusal to provide the required information will prevent the Data Controller from addressing and processing it correctly.
The User guarantees that the data provided to us is true, accurate and complete. Data will be cancelled, deleted or blocked where it is inaccurate, incomplete or is no longer necessary or relevant for its intended purpose, in accordance with current legislation. If the personal data provided relates to a third party, the User guarantees that they have informed that third party of the Privacy Policy and have obtained their authorisation to provide their data for the purposes set out above. The User also guarantees that the data provided is accurate and up to date, and shall be liable for any direct or indirect damage or loss that may arise as a result of a breach of this obligation. The User undertakes to ensure the accuracy and correctness of the data provided to us and accepts responsibility for this, undertaking to keep such data duly up to date.
Translated with DeepL.com (free version)
5. DATA PROTECTION FOR MINORS
In accordance with the provisions of the GDPR and the LOPDGDD, only those aged 14 or over may lawfully give their consent to the processing of their personal data. Only persons aged 14 or over may provide personal data on this website. In the case of children under the age of 14, the consent of their parents or guardians is a mandatory requirement for the processing of their personal data.
6. RETENTION PERIODS FOR PERSONAL DATA
The personal data provided by the User will be retained for as long as they remain registered with the service, for as long as the business relationship continues, for as long as the User does not request its erasure, or for the period established by law. It may also be retained where necessary to comply with a legal obligation or for the establishment, exercise or defence of legal claims.
If the User withdraws their consent or exercises their rights to object or request erasure, their data will be retained in a blocked format and made available to the judicial authorities for the periods established by law to address any potential liabilities arising from the processing of personal data. Under no circumstances will this affect the provision of the service and/or the performance of contracts with the Data Controller.
7. CONFIDENTIALITY AND SECURITY OF PERSONAL DATA
The Data Controller undertakes to adopt the necessary technical and organisational measures, in accordance with the level of security appropriate to the risk posed by the data collected, so as to guarantee the security of personal data and prevent the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or unauthorised disclosure of or access to such data.
Personal data shall be treated as confidential by the Data Controller, who undertakes to inform and ensure, through a legal or contractual obligation, that such confidentiality is respected by its employees, associates and any person to whom it makes the information accessible.
Translated with DeepL.com (free version)
8. DISCLOSURE OF AND RECIPIENTS OF PERSONAL DATA.
Your personal data will be disclosed in the cases provided for by law, for example, to public authorities in order to comply with obligations directly enforceable against the Data Controller, or where necessary to fulfil the purposes of processing set out above, or to provide services strictly necessary for the conduct of the business.
9. USERS’ RIGHTS.
What are your rights when you provide us with your data?
You have the right to obtain confirmation as to whether or not we are processing personal data concerning you. You have the right to access your personal data, as well as to request the rectification of inaccurate data or, where appropriate, to request its erasure when, amongst other reasons, the data is no longer necessary for the purposes for which it was collected. In certain circumstances, you may request that the processing of your data be restricted, in which case we will only retain it for the purpose of exercising or defending legal claims. In certain circumstances and for reasons relating to your particular situation, you may object to the processing of your data, in which case the data controller will cease processing the data, except where there are compelling legitimate grounds, or for the exercise or defence of potential legal claims. Where legally applicable, you have the right to data portability, which means you have the right to receive the personal data relating to you that we are processing and to store it on your own device.
You may exercise the following rights with the Data Controller, where applicable: the rights of access, rectification, objection, erasure, restriction of processing, data portability, and the right to object to being subject to automated individual decision-making. To do so, please send a written request accompanied by a photocopy of your National Identity Card to verify your identity, with the reference “GDPR Rights”, addressed to: C/ La Cal No. 16 - 1st Floor, Postcode: 36780 (Pontevedra) or to the email address:info@escapeo.com
We also inform you that you may submit any complaints regarding the protection of personal data to the Spanish Data Protection Agency (www.agpd.es), the supervisory authority in Spain.