PRIVACY POLICY
In compliance with Regulation (EU) 2016/679, General Data Protection Regulation (GDPR), and Organic Law 3/2018 on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD), we inform you of the following:
DATA CONTROLLER
Identity: RENOVATE MANAGER SL, Tax ID B70809108 (hereinafter, the “Controller”)
Address: Av. Diagonal, 362, local Izquierda; 08006 – Barcelona
Telephone: 645111666
Email: info@renovatemanager.com
PURPOSE OF DATA PROCESSING
Depending on the commercial and/or professional relationship that is established or intended to be established between the User and the Controller, the personal data provided will be processed for the purpose of:
-
Managing and responding to contact requests, information inquiries, or questions submitted through the contact methods available on the website.
-
Facilitating, expediting, and fulfilling the commitments established between the Controller and the User, and maintaining the resulting relationship.
In accordance with the GDPR, a record of processing activities is kept, specifying processing operations by purpose, along with the circumstances required under the Regulation.
Personal information will not be used for purposes other than those related to the contracted services or purchased products. No automated decisions will be made based on such profiles.
LEGAL BASIS FOR PROCESSING
The legal grounds for processing your data are:
-
Consent, granted through the appropriate checkbox(es).
-
Performance of a contract or service in which the User is a party, or for pre-contractual measures requested by the User.
-
Compliance with legal obligations applicable to the Controller, including tax, commercial, and regulatory obligations related to the services provided.
PERSONAL DATA PROCESSED AND DATA SOURCE
Depending on the User’s interaction with the website, the personal data processed may include:
-
Identification data
-
Contact data
-
Browsing data
Data are provided directly by the User when contacting the Controller, completing forms, or using functionalities available on the website.
Completing certain fields or providing information is necessary for the correct management of requests. Refusal to provide required information will prevent the Controller from properly responding to or managing the User’s request.
The User guarantees that the data provided are truthful, accurate, and complete. Data will be cancelled, deleted, or blocked when inaccurate, incomplete, or no longer necessary for their purpose in accordance with applicable regulations.
If personal data provided belong to a third party, the User guarantees that they have informed said third party of this Privacy Policy and obtained their consent for providing the data for the purposes described. The User is responsible for ensuring that the information provided is accurate and up to date.
LINK POLICY AND SOCIAL MEDIA
The website may include links to third-party sites or social networks on which the Controller has a presence. These third-party websites are not reviewed or monitored by the Controller, who is not responsible for the content published by users.
Users must be aware that their posts on social networks may be visible to others, and they are primarily responsible for their own privacy.
DATA RETENTION PERIODS
Personal data will be retained:
-
As long as the User remains registered on the service
-
While the commercial relationship remains in force
-
Until the User requests erasure
-
For the legally established retention period
Data may also be retained when necessary to comply with legal obligations or for the formulation, exercise, or defence of claims.
If the User withdraws consent or exercises rights of objection or erasure, data will be blocked and kept only for the periods legally required by judicial authorities to address potential liabilities. Withdrawal of consent does not affect the lawfulness of processing based on prior consent.
DATA SECURITY AND CONFIDENTIALITY
The Controller undertakes to adopt the necessary technical and organisational measures to ensure an adequate level of security appropriate to the risk, preventing destruction, loss, alteration, or unauthorised access to personal data.
Personal data will be treated as confidential. The Controller ensures, through legal or contractual obligations, that employees, partners, and any person with access to the information respect confidentiality.
DATA DISCLOSURE AND RECIPIENTS
Personal data may be disclosed:
-
When required by applicable legislation
-
When necessary for compliance with legal obligations of the Controller
-
To third parties strictly necessary for the provision of services, such as banks or payment processors
Some service providers act as Data Processors, with whom the Controller has signed agreements in accordance with Article 28 GDPR, ensuring confidentiality and security.
In some cases, service providers may be located outside the European Economic Area (EEA), which may involve an international data transfer. In such cases, the Controller will ensure that adequate safeguards are in place in accordance with GDPR.
USER RIGHTS
Users have the following rights regarding their personal data:
-
Right of access: To confirm whether personal data concerning them are being processed.
-
Right to rectification: To correct inaccurate data.
-
Right to erasure: To request deletion when data are no longer required for their purpose.
-
Right to restriction: To request limitation of processing in certain circumstances.
-
Right to objection: To oppose processing due to personal circumstances, except where compelling legitimate grounds apply.
-
Right to data portability: To receive personal data in a structured, commonly used, machine-readable format and transmit them to another controller.
-
Right not to be subject to automated individual decision-making, where applicable.
Users may exercise their rights by sending a written request, including a copy of their ID document, with the reference “GDPR Rights”, to:
Users may also file a claim with the Spanish Data Protection Agency (AEPD) at www.agpd.es.