1. MAIN ASSUMPTIONS REGARDING USER PRIVACY AND DATA PROTECTION
We consider the privacy of users and the protection of their data to be human rights.
We have a duty to treat the persons within our data with care.
Data is a liability and only has to be collected and processed when absolutely necessary.
We do not like spam. Therefore, we will never sell, rent, distribute or publish your personal information.
2. DATA CONTROLLER
Identity: Géneros de Punto Juper S.L.
Postal address: Avenida Manresa, 68 08711 Òdena
Data protection and privacy contact: Josep Bernades
3.1 For what purpose do we process your personal data?
At Géneros de Punto Juper S.L. we process the information provided by interested parties for the following purposes:
3.2 How long will we keep your data for?
The personal data provided will be kept until the interested party requests its suspension, exercising their rights over the data.
In accordance with our business and IT systems, this website is designed to comply with the following national and international laws regarding data protection and user privacy:
5. TARGET AUDIENCE
We use a third party service (Amazon Web Services, Inc. through its subsidiaries and affiliates in the European Union) to process or store data on our behalf. This third-party service acts in these cases as a data processor.
6.1 What are your rights when you provide us with your data?
Any person has the right to obtain confirmation as to whether or not Géneros de Punto Juper S.L. is processing personal data concerning them.
Interested parties have the right to access their personal data, as well as to request the rectification of inaccurate data or, if necessary, request its suspension when, among other reasons, the data are no longer necessary for the purposes for which they were collected.
In certain circumstances, data subjects may request that we restrict the processing of their data. In this case, we will only retain the data for the exercise or defence of claims.
In certain circumstances and for reasons related to their particular situation, data subjects may object to the processing of their data. Géneros de punto Juper S.L. will stop processing the data, except for compelling legitimate reasons, or the exercise or defence of possible claims.
6.2 How can you contact us to exercise your rights?
There are several methods of contact for a user to exercise their rights regarding Géneros de Punto Juper S.L.’s processing of their personal data. A request can be made in writing, in person or by e-mail to email@example.com.
You can also make a request to exercise your rights of access, rectification, cancellation or opposition (ARCO) using the contact form that Géneros de Punto Juper S.L. has at the disposal of the interested parties. In order to exercise the rights of access, rectification, cancellation or opposition (ARCO), the interested party who contacts Géneros de Punto Juper S.L. will have to be able to prove their identity so that the data controller can verify them according to the stored data. As the party responsible for the processing of the data provided in forms on this website, in the event of any notification by the user with the aim of exercising any of the rights of access, rectification, cancellation or opposition regarding their personal data, Géneros de Punto Juper S.L. will inform the interested party of the actions derived from their request within a maximum period of one month (this may be extended for a further two months in the case of particularly complex requests and inform the interested party of this extension within the first month).
All data are collected directly from the website and always after the interested party provides them through the forms provided for such use. They are not acquired by any other means.
8. SECURITY BREACHES
Géneros de Punto Juper S.L. will inform any security breach affecting the database used by this website, or affecting any of our third party services, to each and every person, data which may have been affected, and authorities, within 72 hours following the detection of the breach.
9. SECURITY MEASURES
In accordance with the provisions of the regulations in force on personal data protection, the RESPONSIBLE is complying with all provisions of the regulations for the processing of personal data under its responsibility, and manifestly with the principles described in Article 5 of the GDPR, whereby they are processed lawfully, fairly and transparently in relation to the data subject and in a manner that is adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
The RESPONSIBLE guarantees that it has implemented appropriate technical and organisational policies to apply the security measures established by the GDPR to protect the rights and freedoms of users and that it has communicated appropriate information to them so that they can exercise them.