Privacy Policy
In order to guarantee and protect the privacy and confidentiality of the personal data of the Users of our website and in order to protect their intimacy and privacy, we have drafted, in accordance with current legislation, this Privacy Policy. Privacy.
The terms set out below and especially the duty of confidentiality will be mandatory for all internal or external personnel who work or could work with us and who have access to the data you provide us, either while browsing our website, by the use of our forms or during the hiring or provision of services.
We reserve the right to modify the content of this Privacy Policy, in order to adapt it to new legislation or jurisprudence, as well as to the reports or opinions issued by the Spanish Data Protection Agency or the Article Working Group. 29.
In the event that we are going to use the personal data of Users, Potential Clients or Clients, in a manner different from that established in the Privacy Policy in force at the time of providing us with the data; or in the event that we are going to treat them for purposes other than those indicated at the time you provide us with your data, we will make every effort to contact you as affected, to inform you and obtain your consent again. Otherwise, we will not use the data for different purposes.
We advise Users that, each time they access our website, they review this text to ensure the purposes and uses that we can make of their data.
This Privacy Policy will form part of and will be permanently linked to the provisions of our Legal Notice, in the Legal Conditions of the contracted service and in our Cookies Policy, these texts are available to users on our website and which we recommend its reading.
At all times we will indicate the date of the last update of the Privacy Policy so that Users know the effective content that applies to them and the date of the last revision.
Leonor y Sofía S.L, states that this Privacy Policy is adapted to Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation of these data (hereinafter RGPD).
1. RESPONSIBLE FOR THE TREATMENT.
The person responsible for processing the data that is collected, processed and stored through this website and on the occasion of the services provided and contracted through it, is:
- Name: Leonor & Sofía – María Luisa del Yerro Paniagua
- CIF/NIF: B86735669
- Address: Plaza Mariano de Cavia nº1, escalera izquierda 1º, 28007 Madrid
- Country: España
- Phone: 691 479 779
- Email: info@leonorysofia.com
2. DATA TREATMENT.
The personal data that is requested in your case will consist of those that are essential to identify and attend to the request of the owner of the data, resolve issues raised and provide the contracted services, said data being collected for specific explicit and legitimate purposes and not said data being treated in a manner incompatible with the indicated purposes.
The owner of the data will be informed by Leonor y Sofía S.L, before the collection of their data, of the points established in this Privacy Policy, so that they can give express, precise and unequivocal consent for the processing of their data.
3. DATA SOURCE.
First, it is important for Users to be aware that when personal information is provided online (for example, through email or over the Internet), it can be collected and used by others. For this reason, Leonor y Sofía S.L is not responsible for said information being collected, stored and/or processed by an unauthorized third party, as it has adopted the security measures available to it so that this does not happen.
The origin of the data that we process and store in Leonor y Sofía S.L can come from different places:
Through our website we collect personal data from those Users who voluntarily decide to fill in the mandatory fields that we have incorporated in each of the forms on our website.
With these forms, Users can make a query or provide us with a suggestion, request a quote for a specific product from those offered on our Website / request a product from those offered on our Website. Through these forms, Users provide us with their data and consent to their processing in accordance with the purposes indicated at the time of completing the form.
Users will be responsible for the veracity and authenticity of the data they provide us through our forms, being their obligation to keep them updated at all times to avoid errors on our part. Any false or inaccurate statement that occurs as a result of the information and data provided through said forms will be the responsibility of the User.
- Information may also come through the emails we receive at www.leonorysofia.com. Since we make the website available to our users through the domain www.leonorysofia.com, we inform that it is hosted on the servers of the CDMON company hosted in Europe, who establish the corresponding security measures and guarantee compliance with the RGPD .
- Users should be informed that, in the event that the user or potential client wishes, a meeting may be established that will take place by telephone. The User must provide his name and telephone number.
- Lastly, we also give Users the possibility of making inquiries and comments on topics and products that Leonor y Sofía S.L, will publish where appropriate (it may moderate them based on criteria of legal and moral compliance, as well as good practices). use and ethics). It is essential to read the web policies of this page before proceeding to comment.
The purpose of processing all this data will be that indicated at the time of collection and detailed in the section “Purposes of processing and retention periods” of this Privacy Policy.
4. LEGITIMATION FOR DATA PROCESSING.
The legal basis for the treatment of User data will depend on the moment in which the personal data of the User, Potential Client or Client are collected or processed:
- The legal basis for the treatment of the data collected through the form to participate as queries/comments to be published on the web is consent. At the time of filling out the aforementioned form, the participant will accept the provisions of this Privacy Policy or specific clause.
- The legal basis for the treatment of the data collected through the consultation and information form will be to respond to queries or requests. These requests do not imply any contractual relationship.
- The legal basis for the treatment of the data collected through the form for sending newsletters is consent. At the time of filling out the aforementioned form, the interested party will accept the provisions of this Privacy Policy or specific clause.
5. PURPOSES OF TREATMENT AND DATA CONSERVATION PERIODS.
The purposes for which each of the treatments will be carried out by Leonor y Sofía S.L, are established in the different informative clauses incorporated in each of the data collection channels -web forms, etc.-.
Notwithstanding the foregoing, we detail them in full below, along with the data retention period, carried out by Leonor y Sofía S.L:
Contact form / query and/or comment publication form: To be able to contact the User to resolve the query, doubt or suggestion, as well as send him, if he had requested it, a username and password to access his private area .
These data will be kept on the server of the email provider without a deletion period and as long as the affected party does not express his opposition. However, in the event that the preserved emails have to do with the provision of services, they will be kept for as long as obligations may arise from the contractual relationship. (5 years – article 1964 of the Civil Code).
Information request form: These data will be used by Leonor y Sofía S.L, to provide you with information and contact you in relation to the interest expressed regarding our organization or our products/services.
- Data collected through Cookies: Through the Cookies that we inform you of in our Cookies Policy, which we recommend you read, we collect data to personalize your experience and better serve your individual needs, improve our website, allow share comments on social networks, etc. These data will be kept in accordance with the provisions of our Cookies Policy to which we refer.
6. OBLIGATION TO FACILITATE THE REQUESTED DATA.
In order to optimally execute the services, Users must provide us with the information and personal data requested in our forms. In case of not providing all the information requested and marked as mandatory, Leonor y Sofía S.L will not be able to offer its services / products or send, where appropriate, the requested information and therefore the services / products on which the User is interested.
7. MINORS.
At Leonor y Sofía S.L, we scrupulously comply with the requirements stipulated in the RGPD regarding the protection of data of minors, so we do not intentionally collect any information from minors under 14 years of age. In addition, we inform Users that this website is directed only to people over 18 years of age.
8. HOW WE PROTECT THE INFORMATION OF USERS, POTENTIAL CLIENTS OR CUSTOMERS.
Leonor y Sofía S.L implements physical, technical and organizational measures to maintain the security of personal data and try to minimize the possibility of accidental or illegal destruction, accidental loss, unauthorized use, alteration, unauthorized modification, disclosure and/or or access, as well as any other illegal form of processing your data, in accordance with the provisions of article 32 of the RGPD.
In this sense, and taking into account the state of the art, the costs of application and the nature, scope, context and purposes of the treatment, as well as the risks of probability and seriousness that may affect the rights and freedoms of natural persons, appropriate measures have been established to guarantee the level of security appropriate to the existing risk.
In any case, Leonor y Sofía S.L has implemented sufficient mechanisms to:
- Guarantee the confidentiality, integrity, availability and permanent resilience of treatment systems and services. Restore the availability and access to personal data quickly, in the event of a physical or technical incident.
- Verify, evaluate and assess, on a regular basis, the effectiveness of the technical and organizational measures implemented to guarantee the safety of the treatment.
- Pseudonymize and encrypt personal data, where appropriate.
Guarantee the confidentiality, integrity, availability and permanent resilience of treatment systems and services. Restore the availability and access to personal data quickly, in the event of a physical or technical incident.
Verify, evaluate and assess, on a regular basis, the effectiveness of the technical and organizational measures implemented to guarantee the safety of the treatment.
Pseudonymize and encrypt personal data, where appropriate.
9. NOTICE OF PERSONAL DATA BREACH OR SECURITY BREACHES.
The violation of personal data supposes a breach of the security of the information systems of Leonor y Sofía S.L that causes or may cause the destruction, alteration, loss, unauthorized disclosure or access, accidental or not, to the personal data transmitted, stored or processed related to the provision of our services. In the event that the personal data that we store and/or process at Leonor y Sofía S.L are compromised in any way, we will proceed to promptly notify those affected, and in accordance with the provisions of Article 33 of the GDPR.
10. COMMUNICATION OF DATA TO THIRD PARTIES.
The personal data that users or potential clients have been able to provide us through our website, or during the provision of services, will not be sold, transferred and/or exchanged with unauthorized third parties, except by legal obligation, or in the cases established below in relation to international data transfers that we carry out from Leonor y Sofía S.L.
On the other hand, the data of the Clients, may be transferred to the Tax Administration and other Bodies of the Public Administration, if required to do so.
11. INTERNATIONAL DATA TRANSFERS.
At Leonor y Sofía S.L, we use Facebook. This social network is located in the United States. For this reason, any information that we upload to said social network means that we carry out an international transfer of data to the US, since the data uploaded to our profiles is stored on the servers of said company, also located in the US. Facebook, Inc. has been certified under the EU-US Privacy Shield Frameworks. USA and Switzerland-USA. Likewise, Leonor y Sofía S.L, installs Facebook pixels on its website in order to interrelate it with user profiles, as well as to know the conversions produced with it.
As has been said, Facebook adheres to the Privacy Shield and states in its Privacy Policy, linked above, that it complies with the aforementioned protection framework of the European Union and the United States. More information on how Facebook transfers data hosted on its platform can be found here. For complaints or claims regarding data protection, we provide the following information:
Facebook, Inc. 1 Hacker Way 94025 Menlo Park California 94025, USA Phone: (1)-(650)-543-4800
At Leonor y Sofía S.L, we use Instagram. This social network is located in the United States. For this reason, any information that we upload to said social network means that we carry out an international transfer of data to the US, since the data uploaded to our profiles is stored on the servers of said company, also located in the US. Instagram complies with the EU-US and Swiss-US privacy shields. However, Leonor y Sofía S.L, does not upload or process personal data of users through said platform, these being the ones who voluntarily decide to follow our page.
As has been said, Instagram is adhered to the Privacy Shield and states in its Privacy Policy, linked above, that it complies with the aforementioned protection framework of the European Union and the United States. More information on how Instagram transfers data hosted on its platform can be found here. For complaints or claims regarding data protection, we provide the following information:
Attn: Law Enforcement Response Team 1601 Willow Road Menlo Park, CA 94025 United States
12. DATA PROTECTION RIGHTS.
Any person may exercise the rights of access, rectification, deletion, limitation of treatment, the right to portability, not to be subject to automated treatment, including the preparation of profiles and the right to opposition of the personal data that work in any of the files for which Leonor y Sofía S.L is responsible, requesting it by any means that leaves a record of its sending and receiving, clearly expressing your wish and accompanying a photocopy of your ID and as many documents as necessary to prove your identity. Do not forget to indicate the reasons justifying the exercise of the right. To do this, a letter may be sent, either to the email address info@leonorysofia.com, or to the address Plaza Mariano de Cavia nº1, 1st left staircase, 28007 Madrid. We have forms available to Users for the exercise of these rights, you can request them in our contact form. What exactly can you request?
- Right of access: You can request information on whether Leonor y Sofía S.L is processing your personal data.
- Right of rectification: You can request the rectification of the data, in case they are incorrect, as well as the deletion of the same.
- Right of cancellation: You can request the cancellation of the data; and in the event that there is any limitation, Leonor y Sofía S.L will keep the data duly blocked, solely for the exercise or defense of claims.
- Right of opposition: You can request that we stop treating the data in the manner stated, unless for legitimate reasons we must continue treating them, a circumstance that we will expressly state.
- Right to request the limitation of your treatment: You can request at any time that we limit the treatment of the data when any of the following cases occur:
- When you challenge the accuracy of the data processed and for a period that allows Leonor y Sofía S.L to verify the accuracy of the same.
- When the processing of the data is illegal in accordance with current legislation and the affected party opts for the restriction of its use instead of its elimination.
- When the affected party requires their data for the establishment, exercise or defense of legal claims.
- Right to data portability: So that, in the event that the data is processed in an automated manner, they are returned or transferred to another company indicated by the User in a structured, automated and commonly used format.
- Right of deletion: You may request the deletion of your personal data and Leonor y Sofía S.L must delete them without undue delay when:
- The data is no longer necessary in relation to the purposes for which it was collected or processed.
- The affected party withdraws the consent on which the data processing is based, and there is no other legal basis for it.
- The affected person opposes the treatment because the purpose of the treatment is the direct marketing of products.
- The data has been illegally processed.
- The data must be erased to comply with a legal obligation at the community and/or national level.
In addition, Users have other rights, namely:
- Right to withdraw the consent given: The User can withdraw the consent given for the processing of personal data for a specific purpose, when they wish, they just have to contact us exercising this right.
- Right to claim before the Control Authority: Any User may contact the Control Authority, in case they consider that Leonor y Sofía S.L is treating their data in an erroneous manner. In the case of Spain, the control authority is the Spanish Data Protection Agency, domiciled at C/ Jorge Juan, 6, 28001-Madrid and contact telephone numbers: 901 100 099 / 91 266 35 17.
We strongly recommend that Users also visit the Legal Conditions, Legal Notice and Cookies Policy sections that regulate, among many other aspects, the use, disclaimers and limitations of liability that govern this website.