PRIVACY POLICY
Protection of personal data according to the LOPD
MARIO HERNÁNDEZ GARCÍA, in application of current regulations on the protection of personal data, informs that the personal data collected through the forms on the Website: mad-elegance.com, are included in the specific automated files of users of the services.
The collection and automated processing of personal data is intended to maintain the business relationship, perform information and advice tasks.
These data will only be transferred to those entities that are necessary for the sole purpose of fulfilling the aforementioned purpose.
MARIO HERNÁNDEZ GARCÍA adopts the necessary measures to guarantee the security, integrity and confidentiality of the data in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and their free circulation.
The user may at any time exercise the rights of access, opposition, rectification and cancellation recognized in the aforementioned Regulation (EU). The exercise of these rights can be carried out by the user himself by email to: info@mad-elegance.com or at the postal address: MARIO HERNÁNDEZ C / BECQUER, 8 BAJO, 41840 PILAS (SEVILLA).
The user declares that all the data provided by him are true and correct, and undertakes to keep them updated, communicating the changes to MARIO HERNÁNDEZ GARCÍA
Purpose of the processing of personal data:
For what purpose will we treat your personal data?
At MARIO HERNÁNDEZ GARCÍA, we will treat your personal data collected through the Website: mad-elegance.com, with the following purposes:
- In the case of contracting the goods and services offered through MARIO HERNÁNDEZ GARCÍA, to maintain the contractual relationship, as well as the management, administration, information, provision and improvement of the service.
- Sending requested information through the forms provided for this purpose.
- Send bulletins (newsletters), as well as commercial communications of promotions and / or advertising of MARIO HERNÁNDEZ GARCÍA and the sector.
We remind you that you can oppose the sending of commercial communications by any means and at any time, by sending an email to the address indicated inside.
The fields of these records are mandatory, and it is impossible to carry out the stated purposes if these data are not provided.
For how long is the personal data collected kept?
The personal data provided will be kept as long as the commercial relationship is maintained or you do not request its deletion and during the period for which legal responsibilities may arise for the services provided.
Legitimation:
The treatment of your data is carried out with the following legal bases that legitimize it:
1. The request for information and / or the contracting of the services of MARIO HERNÁNDEZ GARCÍA, whose terms and conditions will be made available to you in any case, of form prior to a possible hiring.
- Free, specific, informed and unequivocal consent, while we inform you by making this privacy policy available to you, which, after reading it, if you agree, you can accept by means of a statement or a clear affirmative action , like the marking of a box arranged for this purpose.
In the event that you do not provide us with your data or do so in an erroneous or incomplete way, we will not be able to meet your request, making it completely impossible to provide you with the requested information or to carry out the contracting of services.
Recipients:
The data will not be communicated to any third party outside of MARIO HERNÁNDEZ GARCÍA, except legal obligation.
Data collected by users of the services
In cases where the user includes files with personal data on the shared hosting servers, MARIO HERNÁNDEZ GARCÍA is not responsible for the breach by the user of the RGPD.
Service Companies
Contracts :
- A) Clauses for service providers with access to information systems.
- Purpose of the processing order
Through these clauses, GRUPO AVANZA FORMACIÓN CONTÍNUA SL, as the data controller, is empowered to process on behalf of Mario HERNÁNDEZ GARCÍA, as the data controller, the personal data necessary to provide the service specified hereinafter.
The treatment will consist of CREATION OF A VIRTUAL STORE.
- Identification of the affected information
For the execution of the services derived from the fulfillment of the object of this order, the entity Mario HERNÁNDEZ GARCÍA, as the data controller, makes the information available on the computer equipment that supports the processing of data made by the person in charge.
- Duration
This agreement has a duration of_, being automatically renewed unless otherwise decided by one of the parties.
Once this contract ends, the person in charge of the treatment must return the personal data processed to the person in charge and delete any copies that they keep in their possession. However, you may keep the data blocked for the minimum time necessary to attend to possible responsibilities that may arise from your relationship with Mario HERNÁNDEZ GARCÍA, destroying it safely and definitively at the end of said period.
- Obligations of the data controller
The person in charge of the treatment and all his personnel are obliged to:
✓ Use the personal data to which you have access as a result of the provision of the service only for the purpose of this order. In no case may you use the data for your own purposes.
✓ Treat the data in accordance with the documented instructions of the data controller. If the person in charge of the treatment considers that any of the instructions provided violates the General Data Protection Regulation or
any other provision regarding data protection, the person in charge will immediately inform the person in charge.
✓ Do not communicate or disseminate the data to third parties, unless you have the express authorization of the person responsible for the treatment or in legally admissible cases. If the person in charge wants to subcontract, totally or partially, the services object of this contract, he must inform the person in charge and request his prior authorization.
✓ Maintain the duty of secrecy regarding the personal data to which you have had access by virtue of this order, even after the contract ends.
✓ Guarantee that the persons authorized to process personal data commit, expressly and in writing, to respect confidentiality and to comply with the corresponding security measures, of which the person in charge must inform them appropriately.
✓ Maintain at the disposal of the person in charge the supporting documentation of compliance with the obligation established in the previous section.
✓ Guarantee the necessary training on the protection of personal data of the persons authorized to process personal data.
✓ Notification of data security violations:
The person in charge of the treatment will notify the person in charge of the treatment, without undue delay and through the email address indicated by the person in charge, of the violations of the security of the personal data in his charge of which he has knowledge, together with all the information relevant for the documentation and communication of the incident. Likewise, it will notify any failure that it has suffered in its information treatment and management systems and that may endanger the security of the personal data processed, its integrity or availability, as well as any possible violation of confidentiality as a result of the placing In the knowledge of third parties of the data and information accessed during the execution of the contract.
The following information will be provided, as a minimum:
- a) Description of the nature of the personal data security breach, including, when possible, the categories and approximate number of affected interested parties, and the categories and approximate number of affected personal data records.
- b) Data of the contact person for more information.
- c) Description of the possible consequences of the violation of the security of personal data.
- d) Description of the measures adopted or proposed to remedy the violation of the security of personal data, including, if applicable, the measures adopted to mitigate the possible negative effects.
If it is not possible to provide the information simultaneously, and to the extent that it is not, the information will be provided gradually without undue delay.
✓ Make available to the person in charge all the information necessary to demonstrate compliance with their obligations, as well as to allow and contribute to the performance of audits or inspections carried out by the manager or another auditor authorized by him.
✓ Help the data controller to implement the necessary security measures to:
- a) Guarantee the permanent confidentiality, integrity, availability and resilience of the treatment systems and services.
- b) Restore the availability and access to personal data quickly, in the event of a physical or technical incident.
- c) Verify, evaluate and assess, on a regular basis, the effectiveness of the technical and organizational measures implemented to guarantee the security of the treatment.
✓ Destination of the data:
The person in charge of the treatment will not keep personal data related to the treatments carried out unless it is strictly necessary for the provision of the service object of the contract and only for the minimum essential time.
Once the provision of the service object of the contract has been completed, the person in charge of the treatment will delete, return to the person in charge or deliver, where appropriate, to a new manager, as determined by Mario HERNÁNDEZ GARCÍA, all the personal data.
The destruction of the data does not proceed when there is a legal provision that requires its conservation, in which case it must be returned to the person in charge who will guarantee its conservation, duly blocked, while such obligation persists.
The return must entail the total erasure of the existing data on the computer equipment used by the person in charge. However, the person in charge may keep a copy of the data, duly blocked, while responsibilities may arise from the execution of the services provided to the person responsible for the treatment.
- Obligations of the data controller
Corresponds to the data controller:
- a) Provide the manager with access to the equipment so that he can provide the contracted service.
- b) Ensure, previously and throughout the treatment, compliance with current provisions on data protection by the person in charge of the treatment.
- c) Supervise the treatment, including the possibility of requesting information to verify compliance with the obligations established in this contract.
- B) Confidentiality clauses for service providers with accidental access to data.
- Duty of confidentiality
- The provision of the service that is the object of this contract does not include the processing of personal data.
- However, in the event that the staff of GRUPO AVANZA FORMACIÓN CONTÍNUA SL, accidentally or incidentally, were aware of personal data information related to the processing activities of Mario HERNÁNDEZ GARCÍA, they will be obliged to strictly observe their duty of secrecy and confidentiality, both during the course of the contractual relationship and once it has expired,
- a) following at all times the instructions of Mario HERNÁNDEZ GARCÍA’s staff
- b) not being able to use the information to which they could have access for any purpose other than that derived from the provision of service and
- c) not being able to disclose, make known or use for their own benefit or that of third parties the information that they may have known during the provision of the service that is the object of this contract.
- A) Clauses for service providers with access to information systems.
- Purpose of the processing order
Through these clauses, BANAHOSTING, as data controller, is empowered to process on behalf of Mario HERNÁNDEZ GARCÍA, as data controller, the personal data necessary to provide the service specified hereinafter.
The treatment will consist of HOSTING.
- Identification of the affected information
- For the execution of the services derived from the fulfillment of the object of this order, the entity Mario HERNÁNDEZ GARCÍA, as the data controller, makes available to the entity BANAHOSTING the information available on the computer equipment that supports the data processing carried out by the responsable.
- Duration
- This agreement has a duration of_, being automatically renewed unless otherwise decided by one of the parties.
- Once this contract ends, the person in charge of the treatment must return the personal data processed to the person in charge and delete any copies that they keep in their possession. However, you may keep the data blocked for the minimum time necessary to attend to possible responsibilities that may arise from your relationship with Mario HERNÁNDEZ GARCÍA, destroying it safely and definitively at the end of said period.
- Obligations of the data controller
- The person in charge of the treatment and all his personnel are obliged to:
- ✓ Use the personal data to which you have access as a result of the provision of the service only for the purpose of this order. In no case may you use the data for your own purposes.
- ✓ Treat the data in accordance with the documented instructions of the data controller. If the person in charge of the treatment considers that any of the instructions provided infringes the General Data Protection Regulation or any other provision regarding data protection, the person in charge will immediately inform the person in charge.
- ✓ Do not communicate or disseminate the data to third parties, unless you have the express authorization of the person responsible for the treatment or in legally admissible cases. If the person in charge wants to subcontract, totally or partially, the services object of this contract, he must inform the person in charge and request his prior authorization.
- ✓ Maintain the duty of secrecy regarding the personal data to which you have had access by virtue of this order, even after the contract ends.
✓ Guarantee that the persons authorized to process personal data commit, expressly and in writing, to respect confidentiality and to comply with the corresponding security measures, of which the person in charge must inform them appropriately.
✓ Maintain at the disposal of the person in charge the supporting documentation of compliance with the obligation established in the previous section.
✓ Guarantee the necessary training on the protection of personal data of the persons authorized to process personal data.
✓ Notification of data security violations:
The person in charge of the treatment will notify the person in charge of the treatment, without undue delay and through the email address indicated by the person in charge, of the violations of the security of the personal data in his charge of which he has knowledge, together with all the information relevant for the documentation and communication of the incident. Likewise, it will notify any failure that it has suffered in its information treatment and management systems and that may endanger the security of the personal data processed, its integrity or availability, as well as any possible violation of confidentiality as a result of the placing In the knowledge of third parties of the data and information accessed during the execution of the contract.
The following information will be provided, as a minimum:
- a) Description of the nature of the personal data security breach, including, when possible, the categories and approximate number of affected interested parties, and the categories and approximate number of affected personal data records.
- b) Data of the contact person for more information.
- c) Description of the possible consequences of the violation of the security of personal data.
- d) Description of the measures adopted or proposed to remedy the violation of the security of personal data, including, if applicable, the measures adopted to mitigate the possible negative effects.
If it is not possible to provide the information simultaneously, and to the extent that it is not, the information will be provided gradually without undue delay.
✓ Make available to the person in charge all the information necessary to demonstrate compliance with their obligations, as well as to allow and contribute to the performance of audits or inspections carried out by the manager or another auditor authorized by him.
✓ Help the data controller to implement the necessary security measures to:
- a) Guarantee the permanent confidentiality, integrity, availability and resilience of the treatment systems and services.
- b) Restore the availability and access to personal data quickly, in the event of a physical or technical incident.
- c) Verify, evaluate and assess, on a regular basis, the effectiveness of the technical and organizational measures implemented to guarantee the security of the treatment.
- ✓ Destination of the data:
- The person in charge of the treatment will not keep personal data related to the treatments carried out unless it is strictly necessary for the provision of the service object of the contract and only for the minimum essential time.
- Once the provision of the service object of the contract has been completed, the person in charge of the treatment will delete, return to the person in charge or deliver, where appropriate, to a new manager, as determined by Mario HERNÁNDEZ GARCÍA, all the personal data.
- The destruction of the data does not proceed when there is a legal provision that requires its conservation, in which case it must be returned to the person in charge who will guarantee its conservation, duly blocked, while such obligation persists.
- The return must entail the total erasure of the existing data on the computer equipment used by the person in charge. However, the person in charge may keep a copy of the data, duly blocked, while responsibilities may arise from the execution of the services provided to the person responsible for the treatment.
- Obligations of the data controller
- Corresponds to the data controller:
- a) Provide the manager with access to the equipment so that he can provide the contracted service.
- b) Ensure, previously and throughout the treatment, compliance with current provisions on data protection by the person in charge of the treatment.
- c) Supervise the treatment, including the possibility of requesting information to verify compliance with the obligations established in this contract.
- B) Confidentiality clauses for service providers with accidental access to data.
- Duty of confidentiality
The provision of the service that is the object of this contract does not include the processing of personal data.
However, in the event that the staff of Tesys Internet SLU, accidentally or incidentally, were aware of personal data information related to the processing activities of Mario HERNÁNDEZ GARCÍA, they will be obliged to strictly observe the duty of secrecy and confidentiality, both during the course of the contractual relationship and once it has expired,
- a) following at all times the instructions of Mario HERNÁNDEZ GARCÍA’s staff
- b) not being able to use the information to which they could have access for any purpose other than that derived from the provision of service and
- c) not being able to disclose, make known or use for their own benefit or that of third parties the information that they may have known during the provision of the service that is the object of this contract.
Data retention in accordance with the LSSI
MARIO HERNÁNDEZ GARCÍA informs that, as a data hosting service provider and by virtue of the provisions of Law 34/2002 of July 11, Services of the Information Society and Electronic Commerce (LSSI), it retains for a maximum period of 12 months the essential information to identify the origin of the data hosted and the moment in which the provision of the service began. The retention of these data does not affect the secrecy of communications and they may only be used in the framework of a criminal investigation or for the safeguarding of public safety, making themselves available to the judges and / or courts or the Ministry that so requires. . The communication of data to the Forces and Bodies of the State will be made by virtue of the provisions of the regulations on personal data protection.
Intellectual property rights
MARIO HERNÁNDEZ GARCÍA is the owner of all copyrights, intellectual and industrial property, “know how” and any other rights related to the contents of the mad-elegance.com website and the services offered therein, as well as the programs necessary for its implementation and related information.
The reproduction, publication and / or non-strictly private use of the contents, total or partial, of the mad-elegance.com website is not allowed without prior written consent.
Intellectual property of the software
The user must respect the third-party programs made available by MARIO HERNÁNDEZ GARCÍA, even though they are free and / or publicly available.
The user does not acquire any right or license for the contracted service, on the software necessary for the provision of the service, nor on the technical information for monitoring the service, except for the rights and licenses necessary for the fulfillment of the contracted services and only for the duration of the same.
For any action that exceeds the fulfillment of the contract, the user will need written authorization from MARIO HERNÁNDEZ GARCÍA, the user being prohibited from accessing, modifying, viewing the configuration, structure and files of the servers owned by MARIO HERNÁNDEZ GARCÍA, assuming responsibility civil and criminal derived from any incident that may occur in the servers and security systems as a direct consequence of a negligent or malicious action on your part.
Intellectual property of the content hosted
The use contrary to the legislation on intellectual property of the services provided by MARIO HERNÁNDEZ GARCÍA and, in particular, of:
- The use that is contrary to Spanish laws or that infringes the rights of third parties.
- The publication or transmission of any content that, in the opinion of MARIO HERNÁNDEZ GARCÍA, is violent, obscene, abusive, illegal, racial, xenophobic or defamatory.
- The cracks, serial numbers of programs or any other content that violates the intellectual property rights of third parties.
- The collection and / or use of personal data of other users without their express consent or in contravention of the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation thereof.
- The use of the domain’s mail server and email addresses to send spam.
The user has full responsibility for the content of its website, the information transmitted and stored, the hypertext links, the claims of third parties and legal actions in reference to intellectual property, third party rights and protection of minors.
The user is responsible for the laws and regulations in force and the rules that have to do with the operation of the online service, electronic commerce, copyright, maintenance of public order, as well as universal principles of Internet use.
The user will indemnify MARIO HERNÁNDEZ GARCÍA for the expenses generated by the imputation in any cause whose responsibility was attributable to the user, including legal defense fees and expenses, even in the case of a non-final judicial decision.
Treatment Activities Record
- Identity: Mario HERNÁNDEZ GARCÍA – NIF: 488118337
- Postal address: Calle Bécquer, 8 Bajo -41840 PILAS (Seville) –
- Email: marioh692@gmail.com
- Phone: 622508758
Ownership of the information hosted
MARIO HERNÁNDEZ GARCÍA makes backup copies of the content hosted on its servers, however, it is not responsible for the loss or accidental deletion of data by users. In the same way, it does not guarantee the total replacement of the data deleted by the users, since the aforementioned data could have been deleted and / or modified during the period of time that has elapsed since the last backup copy.
The services offered, except the specific backup services, do not include the replacement of the contents conserved in the backup copies made by MARIO HERNÁNDEZ GARCÍA, when this loss is attributable to the user; in this case, a rate will be determined according to the complexity and volume of the recovery, always with the prior acceptance of the user.
The replacement of deleted data is only included in the price of the service when the loss of content is due to causes attributable to MARIO HERNÁNDEZ GARCÍA
Commercial communications
In application of the LSSI. MARIO HERNÁNDEZ GARCÍA will not send advertising or promotional communications by email or other equivalent electronic means of communication that have not previously been requested or expressly authorized by the recipients of the same.
In the case of users with whom there is a prior contractual relationship, MARIO HERNÁNDEZ GARCÍA is authorized to send commercial communications regarding MARIO HERNÁNDEZ GARCÍA products or services that are similar to those that were initially contracted with the client.
In any case, the user, after proving their identity, may request that no more commercial information be sent to them through the Customer Service channels.