PRIVACY POLICY

This privacy policy applies to the processing of the personal data of the customers and/or users of https://bbloquebikes.com, hereinafter, the WEBSITE, owned by Pablo Hervás Daza, hereinafter, the CONTROLLER OF THE PROCESSING.

Our Privacy Policy has been designed in accordance with REGULATION (EU) 2016/679 of the EUROPEAN PARLIAMENT and of the COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter GDPR EU 2016/679, and, insofar as it does not contradict the aforementioned Regulation, by the provisions of Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights, hereinafter LOPDGDD 3/2018.

By providing us with their data, the client and/or user declares that they have read and are aware of this Privacy Policy, giving their unequivocal and express consent to the processing of their personal data in accordance with the purposes and terms expressed herein.

The data controller is:

• Identity: Pablo Hervás Daza
• N.I.F.: 11840473G
• Address: C/ Príncipe de Vergara 275, 3ª – 28016 Madrid (España)
• Phone: (+34) 635612597
• E-mail: info@bbloquebikes.com

The CONTROLLER OF THE PROCESSING processes the personal data provided by its customers and/or users for the following purposes:

• Purpose: Respond to requests for information received, answer queries raised, send quotes, provide the services requested, carry out administrative, commercial, accounting and tax management, as well as send commercial communications about our products and/or services by letter, telephone, email, SMS/MMS, WhatsApp, Telegram or other equivalent means of electronic communication, provided that the interested party has consented to the processing of their personal data for this purpose.
• Legal basis legitimising this processing: Performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures at the request of the data subject. Legitimate interest. The data subject’s consent, which may be withdrawn at any time.

b) Electronic forms WEBSITE

The PERSON RESPONSIBLE FOR THE PROCESSING processes the personal data provided by customers and/or users through the electronic forms for the collection of personal data on the WEBSITE for the purposes identified below:

In relation to the “Contact Form” and other queries (those that may be addressed through the e-mail accounts listed on the WEBSITE):

• Purpose: Contacting the interested party, dealing with requests for information received and answering queries raised, as well as sending commercial communications about our products and/or services by letter, telephone, email, SMS/MMS, WhatsApp, Telegram or other equivalent electronic means of communication, provided that the interested party has consented to the processing of their personal data for this purpose.
• Legal basis legitimising this processing: The consent of the data subject, which may be withdrawn at any time.

When the data requested in the electronic forms are necessary, the CONTROLLER OF THE PROCESSING will indicate this obligatory nature at the time of collecting data from clients and/or users and failure to provide them will mean that the corresponding request cannot be attended to.

1. Data provided directly by the client and/or user: data provided directly by the client and/or user, either at the time of requesting the service through the completion of electronic forms for the collection of personal data or in the paper format provided for this purpose or those provided throughout the contractual relationship through different means such as, for example, requests for information or complaints filed. The customer and/or user is responsible for their accuracy and updating.
2. Data obtained from sources other than the customer and/or user: data obtained from sources other than the customer and/or user, either with their consent or by any other legal authorisation (legitimate interest, compliance with a legal obligation, etc.)..
3. Data derived from the development of the commercial relationship: data provided indirectly by the customer and/or user as they derive from the provision of the contracted service and the maintenance of this activity. This category includes traffic data, browsing data through the public website or access to the private area or others of a similar nature.

• The TREATMENT CONTROLLER’S suppliers as processors, in the framework of the corresponding provision of services (lawyers, accounting, tax and labour consultancy, consultants and IT service providers – website hosting and e-mail service).
• Competent authorities and bodies, to the extent necessary for the fulfilment of legal obligations.

b) In relation to the “Contact Form” and other queries (those that may be addressed through the e-mail accounts listed on the WEBSITE):

• No data will be passed on to third parties, unless legally obliged to do so.

• There are no plans to transfer data to third countries without an adequate level of protection.

• The data will be kept for as long as you do not request their deletion and, in any case, for the years necessary to comply with legal obligations.

b) In relation to the “Contact Form” and other queries (those that may be addressed through the e-mail accounts listed on the WEBSITE):

• The personal data will be kept until the end of the relationship between the CONTROLLER OF THE PROCESSING and the client and/or user, unless the latter requests the deletion of the data beforehand, or until the data subject withdraws the consent given at any time, without this affecting the lawfulness of the processing based on the consent prior to its withdrawal.

For these purposes, the data subject is reminded that he/she must inform the CONTROLLER OF THE PROCESSING as the recipient to whom he/she communicates personal data, of any rectification or deletion of the data of his/her representatives, authorised persons and other contact persons.

Once the relationship has ended, insofar as the personal data of the data subjects are relevant for the purposes of the TREATMENT CONTROLLER’s liability vis-à-vis customers and/or users, such data shall be kept, duly blocked, at the disposal of the competent judicial authorities or public administrations, for the purpose of enforcing any liabilities arising from the processing for the period of limitation of such liabilities.

The clients and/or users of the WEBSITE may exercise the following rights before the CONTROLLER OF THE PROCESSING, insofar as applicable: access to personal data, rectification, erasure (right to be forgotten), limitation of processing, data portability, opposition to processing and the right not to be subject to automated individual decisions and, when the processing is based on consent, the right to withdraw it at any time.

Customers and/or users may exercise these rights by means of a written and signed request sent to the postal address of the CONTROLLER OF THE PROCESSING located at C/ Príncipe de Vergara 275, 3ª – 28016 Madrid (Spain) or through the e-mail address info@bbloquebikes.com,

attaching, in both cases, the interested party, a legally valid proof of identity, such as a photocopy of the DNI/NIE or equivalent document, and clearly indicating the right they wish to exercise.

Customers and/or users will also have the right to lodge a complaint with the competent Control Authority (Spanish Data Protection Agency) if they observe that the processing does not comply with current legislation or if they consider that their rights have been violated with regard to the protection of their personal data, especially when they have not obtained satisfaction in the exercise of their rights, through the WEBSITE https://www.aepd.es

These rights will be met by the CONTROLLER OF THE PROCESSING within 1 month, which may be extended to 2 months if the complexity of the request or the number of requests received so requires. All this without prejudice to the duty to keep certain data under the legal terms and until the possible liabilities arising from a possible processing, or, where appropriate, from a contractual relationship, expire.

In addition to the above, and with regard to data protection regulations, Users who so request, have the possibility of organising the destination of their data after their death.

The client and/or user, who provides his/her contact details to the CONTROLLER OF THE PROCESSING by clicking on the “SEND” button on the electronic forms for collecting personal data on the website and affirmatively checks the two existing consent boxes, “I accept the processing of my data for the purposes indicated in the basic information on data protection” and “I give my consent to receive commercial communications about your products and/or services”, you expressly authorise and give your express, free and unequivocal consent to the CONTROLLER OF THE PROCESSING to process your personal data for the purpose of sending you commercial communications about your products and/or services by letter, telephone, e-mail, SMS/MMS, WhatsApp, Telegram or other equivalent electronic means of communication.

The legal basis for this processing is the consent of the data subject, which may be revoked at any time.

In compliance with the provisions of articles 21 and 22 of Law 34/2002, of 11 July, on information society services and electronic commerce, users may oppose the processing of their data for promotional purposes and revoke their consent to receive commercial communications by e-mail by simply notifying the PROVIDER of their wishes by means of a simple and free procedure, consisting of sending an e-mail to the e-mail address info@bbloquebikes.com, indicating “UNSEND” or “DO NOT SEND” in the subject line of the message.

The data provided will be kept for as long as the business relationship is maintained or for the years necessary to comply with legal obligations.

• Instagram: https://www.instagram.com/bbloque

In this case, it is considered responsible for the processing of the data of its users, including followers, subscribers, fans, or simply people who make comments or queries through these channels.

In this sense, the TREATMENT CONTROLLER may use this profile to inform its users of news that it considers appropriate for the purpose of the services offered, or it may also share information or current articles published by other users of the social networks.

In no case will it use personal information of users without their consent to have relationships other than those expected in the aforementioned social network, requesting, where appropriate, the user’s own consent.

The customer and / or user is responsible for the information provided by completing the electronic forms that are made available on the WEBSITE or by sending emails to the various existing accounts under the Internet domain bbloquebikes.com is true, responding for the accuracy of all data communicated and keep it updated to reflect a real situation, being responsible for false or inaccurate information provided and the damage, inconvenience and problems that may cause the TREATMENT CONTROLLER or third parties.

The CONTROLLER OF THE PROCESSING guarantees that it has implemented on the WEBSITE the appropriate technical and organisational policies to apply the security measures established by the RGPD EU 2016/679 and the LOPDGDD 3/2018 in order to protect the rights and freedoms of customers and/or users and has communicated the appropriate information to them so that they can exercise them.

In order to protect individual rights, in particular in relation to automated processing, and in order to be transparent with customers and/or users, the CONTROLLER has established a policy setting out all such processing, the purposes of such processing, the legitimacy of such processing and also the instruments available to the customer and/or user to enable him/her to exercise his/her rights.

The WEBSITE is created with the WordPress content management system using the Divi builder and has installed an SSL encryption certificate activated for the entire domain and the reCAPTCHA system to detect traffic from automated programmes or bots, allowing users to send their personal data securely through the existing electronic forms for collecting personal data.

The WEBSITE is hosted in the servers that Aire Networks del Mediterráneo, S.L.U., with N.I.F: B-53704599 and registered address at Calle Santiago Ramon y Cajal Numero 11, Elche Parque Empresarial, 03203 Elche (Alicante), Spain, offers to the TREATMENT CONTROLLER, being the assigned IP address of Spanish range.

All information will be stored and managed with due confidentiality, applying the necessary computer security measures to prevent access to or improper use of your data, its manipulation, deterioration or loss.

All information will be stored and managed with due confidentiality, applying the necessary computer security measures to prevent access to or improper use of your data, its manipulation, deterioration or loss.

However, the customer and/or user must bear in mind that the security of computer systems is never absolute. When personal data is provided over the Internet, such information may be collected without your consent and processed by unauthorised third parties. The CONTROLLER OF THE PROCESSING declines any kind of responsibility for the consequences of these acts for the User, if he/she voluntarily published the information.

THE CONTROLLER OF THE PROCESSING reserves the right to modify this Privacy Policy in order to adapt it to new legislation, jurisprudence, interpretation of the Spanish Data Protection Agency, as well as to industry practices.

In such cases, the TREATMENT CONTROLLER will announce on the websites the changes introduced reasonably in advance of their implementation.

This privacy policy may be complemented by the Legal Notice, Cookies Policy and the General Terms and Conditions of Contract which, where appropriate, are included for certain products and/or services, if such access involves any speciality in terms of personal data protection.