Español
WEBSITE PRIVACY POLICY
www.anpertechnology.com
1. PRIVACY AND DATA PROTECTION POLICY
Respecting the provisions of current legislation, ANA ISABEL ANDÚJAR PÉREZ, hereinafter also ANPER TECHNOLOGY, undertakes to adopt the necessary technical and organizational measures, according to the security level appropriate to the risk of the data collected on this Website, hereinafter also www.anpertechnology.com.
Identity of the person responsible for the processing of personal data
The person responsible for the processing of personal data collected at www.anpertechnology.com is: ANA ISABEL ANDÚJAR PÉREZ, provided with NIF: 77487886N, (hereinafter, Data Controller). Her contact details are as follows:
Address:
ANA ISABEL ANDÚJAR PÉREZ
AVENIDA DEL TEATRO, 55, 04007, ALMERÍA
Contact telephone: +34 636 35 67 49
Contact Email: info@anpertechnology.com
1.1. Access data and hosting
You can visit our web pages without the need to identify yourself. Each time a web page is accessed, the web server only automatically saves a file called Server-Logfile, which contains, for example, the name of the requested file, your IP address, the date and time of access, the amount of data transmitted, and the provider making the access (access data) and documenting the access. These access data are analyzed exclusively for the purpose of ensuring the proper functioning of the page, as well as improving our offer. This serves, according to Art. 6, para. 1, letter f), GDPR to safeguard, within the framework of a balancing of interests, our overriding legitimate interest in the correct representation of our offer. All access data is deleted at the latest seven days after your access to the page.
1.2. Data collection and use for contract execution and when creating a customer account
We collect personal data when you voluntarily provide this information to us as part of your order, when you contact us (e.g., via the contact form or email), or when opening a customer account. Mandatory fields are marked as such, since in those cases we strictly need the data for contract processing, for handling your contact, or for opening your customer account, and without which you will not be able to complete the order and/or account opening or send the desired message. The data collected can be seen from the corresponding data entry forms. We use the data provided by you according to Art. 6, para. 1, letter b), GDPR for contract processing and to handle your requests. You will find more information on the processing of your data, in particular on the transfer of data to our service providers for processing orders, payments, and shipments, in the following sections of this privacy policy. After the complete processing of the contract or the deletion of your customer account, your data will be restricted for further processing and deleted after the expiration of the retention periods under tax and commercial law in accordance with Art. 6 Para. 1 letter b) GDPR, unless you have expressly consented to the further use of your data in accordance with Art. 6 Para. 1 letter a) GDPR or we reserve the right to use your data for other purposes that are permitted by law and about which we inform you in this statement. The deletion of your customer account is possible at any time and can be done by sending a message to the contact option described in this privacy policy or by using a function in the customer account provided for this purpose.
1.3. Data transmission for shipment processing purposes
For the fulfillment of the contract in accordance with Art. 6, para. 1, letter b), GDPR, we transmit your data to the postal delivery company in charge of transport, provided that this is necessary for the delivery of the ordered goods.
1.4. Data processing for payment processing
We work together with these partners to process payments in our online store: technical service providers, credit institutions, payment service providers.
1.4.1 Data processing for the handling of payment transactions
Depending on the selected payment method, we transmit the data necessary for the processing of the payment transaction to our payment service providers who work for us in the field of order processing, or to the assigned credit institutions or the selected payment service provider to the extent necessary for the processing of the payment. This serves the fulfillment of the contract according to Art. 6, para. 1, letter b), GDPR. In some cases, the payment service providers collect the data necessary to process the payment themselves, for example, on their own website or through technical integration in the ordering process. In this regard, the privacy statement of the respective payment service provider applies. If you have any questions about our payment processing partners and the basis of our cooperation with them, please use the contact option described in this privacy policy.
1.4.2 Data processing for fraud prevention and the optimization of our payment processes
We will also provide our service providers with additional information that they may use, along with the information necessary to process the payment, as our processors for the purposes of fraud prevention and to optimize our payment processes (e.g., billing, handling of disputed payments, accounting support). Pursuant to Art. 6, para. 1, letter f), GDPR, this serves to safeguard our legitimate interests in protection against fraud or in the effective management of payments, which prevail in the event of a balancing of rights.
1.5. Sending commercial communications
1.5.1. Newsletter
In accordance with Art. 6, section 1, paragraph 1, letter a of the GDPR, having previously obtained your express consent to subscribe to our newsletter, we will use the data necessary for this purpose to send commercial communications according to said consent. You can unsubscribe from the newsletter at any time by sending a message to our contact address described here or by clicking on the link provided for this purpose in the email with said commercial communication. After unsubscribing, we block your email address for this use, provided that you have not given your express consent for the data to continue to be used, or we reserve the right to continue using your data in cases permitted by law and about which we inform you in this document.
1.5.2. Sending commercial information about products similar to those contracted
In accordance with article 21.2 of Law 34/2002, of July 11, on information society services and electronic commerce, if we receive your email address in the context of the sale of goods or provision of services and you have not objected to it, we reserve the right to regularly send you offers for products from our company by email, similar to those already contracted. This is intended to ensure the satisfaction of our legitimate interests, in the context of a balancing of interests, in a commercial communication with the customer in accordance with art. 6, section 1, subsection 1, letter f, GDPR. At any time you may object to this use of your email address via the corresponding link in the advertising email or by sending a message to our email address described here without this causing additional costs beyond the transmission costs according to basic rates.
1.6. Other technologies
1.6.1. Integration of the Trusted Shops Trustbadge
This is necessary for the satisfaction of our legitimate interests when marketing our offer and to guarantee the security of a purchase, in accordance with Art. 6, para. 1, letter f) of the GDPR. The Trustbadge, and the services advertised with it, are part of the offer of Trusted Shops GmbH, Subbelrather Str. 15C, Cologne C.P. 50823, Germany. A content delivery network (CDN) provider provides the Trustbadge as part of a commissioned data processing. Trusted Shops GmbH uses service providers from the USA. An adequate level of data protection is guaranteed. You can find more information about the data security of Trusted Shops GmbH here. Each time the Trustbadge is consulted, the web server automatically saves a server log file, which contains the IP address, the date and time of the visit, the amount of data transmitted, and the requesting provider (access data), while recording the visit. Individual access data is stored in a security database for the analysis of security problems. Log files are automatically deleted, at the latest, 90 days after their creation. Additional personal data will be transferred to Trusted Shops GmbH to the extent that, once an order has been formalized, you have opted for the use of Trusted Shops products or have already registered for their use. In this case, the contractual agreement established between you and Trusted Shops will apply. To this end, personal data is automatically collected from the order data. Regardless of whether or not you are registered as a Trusted Shops customer, the customer is registered through a neutral parameter, the email address encrypted using a one-way encryption function. The email address is converted to this hash value, which Trusted Shops cannot decrypt before transmission. After checking for a match, the parameter is automatically deleted. This is necessary for the fulfillment of our legitimate interests and those of Trusted Shops in the provision of buyer protection linked to the specific order and transactional review services pursuant to Article 6 paragraph f of the GDPR. You can find more details, including the right to file an objection, in the Trusted Shops Privacy Policy linked above and within the Trustbadge.
1.7 Other Recipients of personal data
The User's personal data will be shared with the following recipients or categories of recipients:
Hosting: INTERIBÉRICA, with address in Spain: C/ DAMA, 68, ALMERÍA. More information at:
https://www.interiberica.com/ INTERIBÉRICA processes the data for the purpose of performing its hosting services for ANPER TECHNOLOGY.
In the event that the Data Controller intends to transfer personal data to a third country or international organization, at the time the personal data is obtained, the User will be informed about the third country or international organization to which the data is intended to be transferred, as well as the existence or absence of an adequacy decision by the Commission.
1.8. Personal data of minors
Respecting the provisions of articles 8 of the GDPR and 7 of Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights, only those over 14 years of age may grant their consent for the processing of their personal data lawfully by ANPER TECHNOLOGY. If it is a minor under 14 years of age, the consent of the parents or guardians will be required for the processing, and this will only be considered lawful to the extent that they have authorized it.
1.9. Secrecy and security of personal data
ANA ISABEL ANDÚJAR PÉREZ undertakes to adopt the necessary technical and organizational measures, according to the security level appropriate to the risk of the data collected, in such a way as to guarantee the security of personal data and prevent the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or unauthorized communication or access to such data.
The Website has an SSL (Secure Socket Layer) certificate, which ensures that personal data is transmitted securely and confidentially, as the transmission of data between the server and the User, and in feedback, is fully encrypted.
However, because ANPER TECHNOLOGY cannot guarantee the invulnerability of the internet or the total absence of hackers or others who access personal data fraudulently, the Data Controller undertakes to notify the User without undue delay when a violation of the security of personal data occurs that is likely to entail a high risk to the rights and freedoms of natural persons. Following the provisions of article 4 of the GDPR, a personal data security breach is understood as any security breach resulting in the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or unauthorized communication or access to such data.
Personal data will be treated as confidential by the Data Controller, who undertakes to inform of and guarantee by means of a legal or contractual obligation that such confidentiality is respected by its employees, associates, and any person to whom the information is made accessible.
1.10. Social networks
1.10.1 Social Plugins from Facebook, Instagram
Social buttons of social networks are used on our website. These are only integrated into the page as HTML links, so that no connection is established with the servers of the respective provider when calling up our website. If you click on one of the buttons, the website of the respective social network will open in a new window of your browser. There you can press the "Like" or "Share" button, for example.
1.10.2 Our online presence on Facebook
Provided that you have given your consent to the social media operator in accordance with Art. 6, para. 1, letter a), GDPR, the data you generate when you visit our online social media presences will be automatically collected and stored for market research and advertising purposes, from which user profiles are created using pseudonyms. These can be used, for example, to place advertisements within and outside the platforms of interest to you. Cookies are generally used for this purpose. For detailed information on the processing and use of data by the social media operator, as well as a contact option and your rights and configuration options for the protection of your privacy, please consult the provider's data protection information found below via a link. If you still need help in this regard, please contact us. Facebook is an offer of Facebook Ireland Ltd, 4 Grand Canal Square, Dublin 2, Ireland ("Facebook Ireland"). The information automatically collected by Facebook Ireland about the use of our online presence on Facebook is generally sent to and stored on a server of Facebook, Inc, 1601 Willow Road, Menlo Park, California 94025, USA. The European Commission has not found anything adequate for the USA. Our cooperation is based on the standard data protection clauses of the European Commission. The data processing of a visit to a fan page on Facebook is based on an agreement between the responsible parties in accordance with Art. 26 of the GDPR. You can find more information here.
1.11. How long do we store your personal information?
We only store your personal information to the extent that we need it in order to use it according to the purpose for which it was collected, and according to the legal basis for processing it in accordance with applicable law. We will maintain your personal information as long as there is a contractual and/or commercial relationship with you, or as long as you do not exercise your right of deletion and/or limitation of the processing of your data.
In these cases, we will keep the information duly blocked, without giving it any use, as long as it may be necessary for the exercise or defense of claims or any type of judicial, legal or contractual responsibility may derive from its processing, which must be attended to and for which its recovery is necessary.
1.12. Rights of interested parties
As an interested party you have the following rights, in accordance with the General Data Protection Regulation (GDPR):
• pursuant to art. 15 GDPR, the right, to the extent indicated therein, to obtain information about the personal data concerning you that we process;
• pursuant to art. 16 GDPR, the right to obtain without undue delay the rectification or completion of personal data concerning you;
• pursuant to art. 17 GDPR, the right to obtain the deletion of personal data concerning you, provided that the processing is not necessary:
- to exercise the right to freedom of expression and information,
- for the fulfillment of a legal obligation,
- for reasons of public interest, or
- for the formulation, exercise or defense of claims;
• pursuant to art. 18 GDPR, the right to obtain the limitation of the processing of your data when
- the interested party disputes the accuracy of the data,
- the processing is unlawful and you object to the deletion of the data,
- we no longer need the data but you need it for the formulation, exercise or defense of claims, or
- you have objected to the processing under article 21 GDPR;
• pursuant to art. 20 GDPR, the right to receive the personal data concerning you and which you have provided to us, in a structured, commonly used and machine-readable format, or to request that it be transmitted to another person responsible;
• pursuant to art. 77 GDPR, the right to file a complaint with a supervisory authority. As a general rule, you can contact the supervisory authority of your usual place of residence or work or of our company's headquarters for this purpose.
In case of doubts relating to the collection, processing or use of your personal data, as well as to obtain information, rectify, block or cancel data, revoke consents granted or object to a specific use of the data, please contact us directly at the address appearing in the legal notice.
Right of objection
Provided that we process personal data as set out above to safeguard, within the framework of a balancing of interests, our overriding legitimate interest, you may object to this processing with effect for the future. If the processing is carried out for direct marketing purposes, you may exercise this right at any time, as indicated above. If the processing is carried out for other purposes, you will only have a right of objection if there are reasons resulting from your particular case.
Once you have exercised your right of objection, we will no longer process your personal data for those purposes, unless we can prove compelling legitimate reasons for the processing that prevail over your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
This does not apply if the processing is carried out for direct marketing purposes. In that case, your personal data will no longer be processed for that purpose.
1.13. Complaints to the supervisory authority
In the event that the User considers that there is a problem or violation of the current regulations in the way in which their personal data is being processed, they will have the right to effective judicial protection and to file a complaint with a supervisory authority, in particular, in the State in which they have their usual residence, place of work or place of the alleged violation. In the case of Spain, the supervisory authority is the Spanish Data Protection Agency (http://www.agpd.es).
II. COOKIE POLICY
Cookies are small amounts of information that are stored in the browser used by each User —on the different devices they may use to browse— so that the server remembers certain information that only the server that implemented it will subsequently read. Cookies facilitate navigation, make it more user-friendly, and do not damage the browsing device.
The use of the Website will imply the acceptance of its Privacy and Cookie Policy. Read the Cookie Policy Here: Cookie Policy
III. ACCEPTANCE AND CHANGES TO THIS PRIVACY POLICY
It is necessary for the User to have read and agree with the conditions on the protection of personal data contained in this Privacy and Cookie Policy, as well as to accept the processing of their personal data so that the Data Controller can proceed with it in the form, during the periods and for the purposes indicated. The use of the Website will imply the acceptance of its Privacy and Cookie Policy.
ANPER TECHNOLOGY reserves the right to modify its Privacy and Cookie Policy, according to its own criteria, or motivated by a legislative, jurisprudencial or doctrinal change of the Spanish Data Protection Agency. Changes or updates to this Privacy and Cookie Policy will not be explicitly notified to the User. The User is recommended to consult this page periodically to be aware of the latest changes or updates.