This is the BERGUEDÀ OFF ROAD Data Protection Policy. It refers to the data it collects and deals with on the Internet, specifically through the website www.indomit.net, and in compliance with the General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council, April 27, 2016).
For the purposes of this Data Protection Policy, "User" must be understood as any natural person interested in the products and services that BERGUEDÀ OFF ROAD offers through its website.
Who is responsible for the processing of personal data?
The person responsible for the processing of personal data is BERGUEDÀ OFF ROAD, with CIF B63597017, registered office at Cap del pla street, no. 1, Gironella, Barcelona (CP 08680), telephone +34 639 98 01 53 and e-mail address email@example.com.
For what purpose do we process the data?
On the BERGUEDÀ OFF ROAD website we process personal data for the following purposes:
Attend to queries from people and entities that contact us through the contact form on our website. We use them only for this purpose and to compile statistics on the number and type of queries we receive, never on personal data.
Supplier data management
We offer the data of the supplier, from whom we have your consent, in order to manage the digital content and requests to purchase publications that users make on our website.
Users of our website
Other data collection channels
We also obtain data through face-to-face relationships and other channels such as receiving emails. In all cases the data is intended only for the explicit purposes that justify the collection and processing.
BERGUEDÀ OFF ROAD may have a presence on social networks. The processing of data carried out on people who become followers on indomitaventura's social networks will be governed by this section.
BERGUEDÀ OFF ROAD does not sell, rent, or transfer personal data that may identify the user to third parties without prior consent. However, in some cases collaborations can be made with other professionals and entities, in these cases, consent will be required to users informing about the identity of the collaborator and the purpose of the collaboration. It will always be carried out to the strictest safety standards.
What is the legal legitimacy for data processing?
The data processing we carry out has different legal bases, depending on the nature of each processing.
In compliance with a contractual relationship. Case of the relations with our subscribers, customers and suppliers and all the actions and uses that these relations entail.
In compliance with legal obligations. The communication of data to the tax administration is established by rules governing trade relations. It may be the case that data have to be communicated to judicial bodies or to security bodies and forces also in compliance with legal regulations that oblige them to collaborate with these public bodies.
Based on consent. When we send information about our products or services, we process the contact details of the recipients with their explicit authorization or consent. The browsing data that we may obtain through cookies are obtained with the consent of the person who visits our website, consent that can be revoked at any time by uninstalling these cookies.
For legitimate interest. Our legitimate interest justifies the processing of the data we obtain from the contact forms and the notice service on the website.
To whom is the data communicated?
As a general criterion, we only communicate data to administrations or public authorities and always in compliance with legal obligations. When issuing invoices to customers, the data can be communicated to banks. In justified cases, we will communicate the data to the security bodies or forces or to the competent judicial bodies. On the other hand, in the event that consent has been given, the data may be communicated to other companies for the purposes indicated above. No data transfers are made outside the scope of the European Union (international transfer).
In another sense, for certain tasks we obtain the services of companies or people who provide us with their experience and specialization. Sometimes these external companies have to access personal data under our responsibility. This is not a data transfer but a processing order. Only company services are contracted to ensure compliance with data protection regulations. At the time of hiring, your confidentiality obligations are formalized and your performance is monitored. This may include hosting services, computer support services, or legal, accounting, or tax advice.
How long do we keep the data?
We comply with the legal obligation to limit the retention period of data to the maximum. For this reason, only the time necessary and justified by the purpose for which it was obtained are kept. In certain cases, such as the data contained in the accounting documentation and invoicing, the tax regulations require them to be kept until they prescribe the responsibilities in this matter. In the case of data that is processed based on the consent of the person concerned, they are kept until that person revokes that consent.
Who is the Data Protection Officer?
The Data Protection Officer (DPD) is the person who supervises compliance with the data protection policy of BERGUEDÀ OFF ROAD, ensuring that personal data is properly processed and the rights of individuals are protected. Its functions include answering any questions, suggestions, complaints or grievances from the data subject. You can contact the Data Protection Officer by writing to BERGUEDÀ OFF ROAD, registered office at Cap del pla Street, no. 1, Gironella, Barcelona (CP 08680), or email firstname.lastname@example.org
What rights do people have in relation to the data we process?
As provided in the General Data Protection Regulations, the persons from whom we process data have the following rights:
To know if they are treated. Anyone has, in the first place, the right to know whether we process your data, regardless of whether there has been a previous relationship.
To be informed at the collection. When the personal data are obtained from the same interested party, at the time of providing them must have clear information of the purposes for which they will be used, who will be responsible for the processing and other aspects arising from this treatment.
To access it. A very broad right that includes knowing exactly what personal data are being processed, what the purpose is for which they are processed, communications to other people that will be made (if any) or the right to obtain them. ne copy or know the expected shelf life.
To request rectification. It is the right to rectify inaccurate data that is processed by us.
To request its deletion. In certain circumstances, there is the right to request the deletion of the data when, among other reasons, they are no longer necessary for the purposes for which they were collected and justified their processing.
Ask for the limitation of treatment. Also in certain circumstances the right to request the limitation of data processing is recognized. In this case, they will no longer be processed and will only be kept for the exercise or defense of claims, in accordance with the General Data Protection Regulations.
To portability. In the cases provided for in the regulations, the right to obtain personal data in a structured format for common machine-readable use is recognized, and to transmit them to another data controller if the person concerned so decides.
To oppose treatment. A person may adduce reasons related to their particular situation, reasons that will lead to the cessation of processing of their data to the extent or to the extent that it may cause them harm, except for legitimate reasons or the exercise or defense against claims.
How can rights be exercised or defended?
The rights we have just listed can be exercised by postal communication to BERGUEDÀ OFF ROAD, with CIF B63597017, registered office at Carrer Cap del pla, no. 1, Gironella, Barcelona (CP 08680), telephone +34 639 98 01 53 and e-mail address email@example.com indicating in all cases “Protection of personal data”.
If a satisfactory response has not been obtained in the exercise of the rights, it is possible to submit a complaint to the Spanish Data Protection Agency, using the forms or other channels accessible from its website www.agpd.es.
In all cases, whether to submit complaints, request clarifications or send suggestions, it is possible to contact the Data Protection Officer by e-mail at firstname.lastname@example.org