WHO IS RESPONSIBLE FOR THE PROCESSING OF PERSONAL DATA?
In accordance with the provisions of current legislation, art. 24 of Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 (hereinafter, RGPD) we inform you that the personal data that you may provide during the use of the website www.galeriarafaelortiz.com (hereinafter “the WEBSITE”) will be processed as Data Controller by GALERIA RAFAEL ORTIZ, S.L., with CIF B91071183 and address at C/ MÁRMOLES, 12 – 41004, SEVILLA.
Likewise, in compliance with the requirements of Article 13 of the RGPD concerning the information that must be provided when personal data is collected from the interested party, we will provide you with this information in the following sections.
ARE YOU OBLIGED TO PROVIDE PERSONAL DATA?
Visiting the WEBSITE does not imply that the USER is obliged to provide any information about himself/herself. However, the use of some of the services available on the WEBSITE depends on the completion of personal information forms.
The data requested in the different forms of the WEBSITE are those necessary to provide the requested services. The refusal to provide the data indicated as necessary may result in the impossibility of adequately providing such services. Likewise, you may provide data on a voluntary basis in order to provide these services in an optimal way.
Likewise, certain functionalities of the web depend on your authorization for the processing of your personal data. Therefore, according to art. 7 of the European Regulation 2016/679 (hereinafter, RGPD) the user from the moment in which incorporates the personal data and accepts the incorporation of the same consent to the use of the same for the stated purpose.
FOR WHAT PURPOSE WILL THE COMPANY PROCESS THE USER’S PERSONAL DATA AND FOR HOW LONG?
The personal data you provide for the provision of the various services made available through the WEB site will be processed by the COMPANY, according to the following purposes:
In the case of online registration, the purpose is to manage the creation of a USER account for the attention of the different services offered by COMPANY that allow the telematic processing of the different registry services.
In the case of including a contact email provided, the purpose will be to answer the request made.
In the case of telephone services, the calls made to the COMPANY’s Customer Service Department may be recorded for reasons of quality of service.
At the time of requesting any of the services or making use of the functionalities indicated, you will be offered more detailed information about the specific treatments.
FOR HOW LONG WILL THE COMPANY PROCESS PERSONAL DATA?
The USER’S data will be kept as long as they are necessary for the provision of the requested services and, once such provision is completed, your data will be kept for the time strictly necessary, or for the legally established time for possible liabilities arising from the service provided.
In the case of registered USERS, the processing of data will also be kept for the time strictly necessary, or until the request for cancellation of the account created on the basis of their right of deletion.
In the case of recording telephone calls for quality reasons, the maximum retention period will be six months.
WHAT CATEGORIES OF USER DATA WILL THE COMPANY PROCESS?
The personal data necessary for the provision of the different services available on the WEB will be those indicated in the corresponding form provided for this purpose.
WHAT IS THE LEGITIMACY OF THE PROCESSING OF USER DATA?
The processing of the USER’S data by the COMPANY is based on the USER’S request for the services made available through the WEBSITE or, where appropriate, on the consent requested for specific purposes, which may be withdrawn at any time. However, in the event of withdrawal of consent, this shall not affect the lawfulness of the processing previously carried out.
TO WHICH RECIPIENTS WILL THE USER’S DATA BE COMMUNICATED?
The personal data provided by the USER will not be communicated to third parties, unless it is necessary for the provision of the requested services, or when the USER has expressly accepted its communication. In both cases, the USER will be duly informed of this possibility before proceeding with the communication of his/her personal data.
WHAT IS THE RESPONSIBILITY OF THE USER?
The USER will be responsible that the data provided to the COMPANY are true, accurate, complete and updated. To these effects, the USER will be responsible for the veracity of all the data that he/she communicates and must keep the information provided duly updated, in such a way that it corresponds to his/her real situation.
Likewise, he/she will be responsible for any false or inaccurate information provided through the WEB site and for any damages -direct or indirect- that this may cause to the COMPANY or third parties.
WHAT RIGHTS DOES THE USER HAVE?
The USER can send a letter to the address of the COMPANY or via email email@example.com, with the Reference “Data Protection”, attaching a photocopy of his identity document, at any time and free of charge, to:
Revoke the consents granted.
Access to your personal data.
Rectify inaccurate or incomplete data.
Request the deletion of your data when, among other reasons, the data are no longer necessary for the purposes for which they were collected.
Obtain from the COMPANY the limitation of data processing when any of the conditions provided for in the data protection regulations are met.
Request the portability of your data.
Claim before the Spanish Data Protection Agency when the interested party considers that the COMPANY has violated the rights that are recognized by the applicable regulations on data protection.
IS IT SAFE TO PROVIDE PERSONAL DATA?
The COMPANY will treat the USER’s data at all times in an absolutely confidential manner and keeping the mandatory duty of secrecy regarding them, in accordance with the provisions of the applicable regulations, adopting for this purpose the necessary technical and organizational measures to ensure the security of your data and avoid its alteration, loss, treatment or unauthorized access, taking into account the state of technology, the nature of the data stored and the risks to which they are exposed.