Privacy Policy

The privacy of people and transparency in the processing of personal data is important to us. Therefore, at Pilsa, we have a privacy policy so that the owners of personal data are informed about how the data they provide us with is treated and the protection established to guarantee their security.

We inform you that these data will be treated in accordance with the provisions of Regulation (EU) 2016/679 of April 27 (GDPR) and Organic Law 3/2018 of December 5 on Protection of Personal Data and Guarantee of Digital Rights ( LOPDGDD) .

Who is responsible for the processing of your data?

Pilsa Hostelería Técnica SL (hereinafter Pilsa)
NIF: B-18283580
Address: Road under No. 10, 18100, Armilla (Granada).
E-mail: lopd@pilsa.com

For what purpose do we treat your personal data?

In Pilsa we treat the information you provide us with the purpose of responding to your requests for information and resolving the queries that you raise through the contact forms and spaces enabled on the web to send us your data and inquiries.

In addition we treat your data to send you our newsletter of information about our company if you have given us authorization for it.

Pilsa has available on its website a blog with information and news about our activity, so that the data that is treated in this regard are data that the user can provide through the user making comments on it.

Regarding the use of email, in the signature that we incorporate in all the accounts or domains linked to Pilsa, the purpose will be to send information about the products or services that we offer as well as respond to the queries that are made to us.

How long will we keep your data?

The data will be kept as long as the contractual or pre-contractual relationship is maintained and, where appropriate, during the years necessary to comply with the legal obligations that may apply. When the preservation of your data is no longer necessary, they will be deleted by applying the appropriate security measures to guarantee the pseudonymization or total destruction of your data where appropriate. In the event that users have provided their authorization so that we can send them the newsletter, they can withdraw it at any time in the means indicated by Pilsa to exercise these rights, specifically by sending an email to: lopd@pilsa.com .

If Pilsa receives a request for opposition or cancellation of your personal data, your request will be processed, proceeding to the corresponding actions regarding the technical organization and processing of your personal data that will be communicated to you.

What is the legitimacy for the processing of your data?

The legal basis for the processing of your data may be any of the following:

-Execution of a pre-contract: for example, if you ask us for information to send you a budget.

– For legitimate interest: for example, we will send our newsletter or commercial emails to our customers via email.

– Consent: sending information about our services or products or subscription to our newsletter, as well as the acceptance of cookies.

To which recipients will your data be communicated?

Your data will only be transferred to third parties for the reception, accommodation and custody of the information, specifically to the entity that gives us the support of our portal, as well as, the tools with which we send our newsletter, with them, previously This treatment has been regulated through a contract for the provision of services with access to data, as well as, to comply with certain legal obligations.

Data transfers to third countries

No data transfers to third countries are planned.

What are your rights when you provide us with your data?

Anyone has the right to obtain information about the processing of their personal data in Pilsa.

Interested persons have the following rights:

  • Right to withdraw consent at any time. Right to object and the portability of personal data . It is established as the right of the interested party to receive all those personal data that concern him and that he has provided to a person in charge, as long as the treatment is based on the consent or is necessary for the execution of a contract and the same is carried out by automated means .
  • Right of access : The interested party will have the right to request and obtain for free the information of their personal data subject to processing, the origin of said data, as well as, the communications made or that are expected to be made of them. When the interested party submits the request electronically, and unless he requests that it be provided otherwise, the information will be provided in a common electronic format. The right to obtain a copy will not adversely affect the rights and freedoms of others.
  • Right of rectification and deletion : the person responsible for the treatment will have the obligation to enforce the right of rectification or deletion of the interested party within ten days. The personal data whose treatment does not comply with the provisions of the law and in particular, when such data is inaccurate and incomplete, will be entitled to obtain, without undue delay, the rectification of personal data will be rectified or deleted. inexact that concern you. The interested party will have the right to complete personal data that is incomplete, including through an additional declaration.
  • Right to the limitation of the processing : the interested party will have the right to obtain from the data controller the limitation of the processing of the data. When the processing of personal data has been limited, they may only be subject to processing for their conservation, with the consent of the interested party, for the formulation, exercise or defense of claims, with a view to the protection of the rights of another natural person or legal or for reasons of public interest. Any interested party that has obtained the limitation of the treatment will be informed by the person in charge before the lifting of said limitation.
  • Right to object: the interested party shall have the right to object at any time, for reasons related to his or her particular situation, to the fact that personal data concerning him (public interest and legitimate interest) are subject to processing, including the elaboration of profiles on the basis of these provisions. The person responsible will stop processing personal data, unless it proves compelling legitimate reasons for the treatment that prevail over the interests, rights and freedoms of the interested party, or for the formulation, exercise or defense of claims.
  • Right to file a claim with the Control Authority if you have not obtained satisfaction in the exercise of your rights, in this case, before the Spanish Agency for data protection http://www.aepd.es

 

Contact information to exercise your rights:

Postal address: Camino Bajo 10, 18100, Armilla (Granada)

E-mail address : lopd@pilsa.com

Data Protection Delegate : delegadodeprotecciondedatos@dataevalua.com

You can exercise your rights by contacting the email address lopd@pilsa.com

How have we obtained your data?

Los datos personales que tratamos en este portal o bien vinculados a nuestros tratamientos comerciales o de marketing, han sido directamente proporcionados por el interesado/a.

he personal data that we process in this portal or linked to our commercial or marketing treatments, have been directly provided by the interested party.

The categories of data that are processed are:

– Identification data: name and surname.

– Email addresses: email.

– Commercial information.

What security measures have we implemented?

Pilsa will treat the personal data of users at all times in a confidential manner in accordance with the provisions of the applicable regulations, adopting the technical and organizational measures to guarantee the security of their data and avoid any alteration, loss, or treatment Not authorized. The measures are as follows:

– Access to database, emails and computer equipment or software controlled by authorized personnel.

– The transfer of data made with the data controllers is regulated through a contract of the data controller and ensuring that they comply with the security measures indicated in the Data Protection regulations to guarantee the confidentiality of personal data, as well as , will only process the data provided for the specific purpose of providing the services requested by Pilsa.

– There is a Pilsa action protocol to guarantee recovery in the event of a security breach, as well as for communication to the supervisory authority or in the event that it is necessary for the affected persons.