Legals
Privacy Policy
INTRODUCTION
At CAS GALGO, we are committed to ensuring that your personal information is protected and not misused.
In this document, we explain who is the data controller, the purpose for which your personal information will be processed, the legal basis for processing, how we collect it, why we collect it, how we use it, your rights, and the processes we have in place to protect your privacy.
By providing us with your personal information and using our websites, we understand that you have read and understood the terms related to personal data protection information set forth herein. CAS GALGO assumes the responsibility to comply with current national and European data protection legislation and aims to process your data lawfully, fairly, and transparently.
SCOPE OF APPLICATION
This document applies to CAS GALGO.f
CONSIDERATIONS TO TAKE INTO ACCOUNT
WHO IS RESPONSIBLE FOR THE PROCESSING?
The definition of a data controller is described in the General Data Protection Regulation and is as follows:
“Controller” or “controller”: the natural or legal person, public authority, agency, or other body that, alone or jointly with others, determines the purposes and means of processing.
If you have any questions, comments, or concerns, or if you would like to make any suggestions about how we use personal information, you can send an email to: reservas@casgalgo.com.
FOR WHAT PURPOSE DO WE COLLECT YOUR PERSONAL INFORMATION?
The main reason we collect your personal information is to facilitate and improve the service you, as a user, expect from us.
We collect your personal information to process your requests.
Below are the main purposes we have identified at CAS GALGO:
Comply with legal obligations, including, but not limited to, Law 10/2010 on the prevention of money laundering and terrorist financing.
Manage the contracting of products or services offered by CAS GALGO.
Channel user requests for information, suggestions, and complaints for management and resolution.
Inform you about our latest services, products, offers, opportunities, etc. The channels we use are:
Email:
Phone:
WhatsApp:
SMS:
But only if you give us your EXPLICIT consent.
HOW DO WE COLLECT INFORMATION ABOUT YOU?
We collect personal information about you through various means. In some cases, you will contact us to share your personal information, and in other cases, we collect your personal information through other means. Below, we’ll explain the different ways we collect personal information about you and some examples of how we use that information.
INFORMATION YOU PROVIDE US
We collect personal information that you provide to us through the CAS GALGO website, email, mobile phone, when you purchase a service, when you fill out a form, or other means. In any case, at the time of collection, CAS GALGO will inform you of the purpose of the collection, the recipients of the information, as well as how to exercise the rights granted to you by current data protection legislation.
If you have never requested that we send you commercial communications, you can subscribe to the various newsletters we make available to you or by sending us an email to reservas@casgalgo.com
INFORMATION WE COLLECT FROM YOUR VISITS TO OUR WEBSITES
We collect and store limited personal information and anonymous aggregate statistics from all users who visit our website, whether you actively provide such information or are simply browsing our websites. The information we collect includes the Internet Protocol (IP) address of the device you are using, the browser you are using, your operating system, the date and time of access, the Internet address of the website from which you accessed our websites, and also information about how you use our websites.
We use this information to determine the loading time of our websites, how they are used, the number of visits to different sections, and the type of information that most appeals to visitors.
It also helps us identify whether the website is functioning correctly and, if we detect errors or bugs, resolve them and improve the performance of our websites, so we can provide better service to all users.
SOCIAL MEDIA
They are not used.
WHAT IS THE LEGITIMATION FOR THE PROCESSING OF PERSONAL INFORMATION?
We rely on several legitimate grounds for processing your personal information:
To fulfill a contract and/or business relationship.
To comply with various legal obligations.
For legitimate interest, for example, for security reasons, fraud prevention, to improve our services and products through market research, or to manage requests, inquiries, or potential complaints that may arise.
With your consent, for example, to send personalized offers from CAS GALGO.
TO WHOM CAN WE COMMUNICATE YOUR PERSONAL INFORMATION?
If you have given us your express consent, the information you provide will be provided to third parties only if necessary to perform these services.
Likewise, these third parties are required to keep your personal information confidential and may not use it in any way other than that which we have requested.
In all cases, CAS GALGO assumes responsibility for the personal information you provide to us, and we require those companies with which we share your personal information to apply the same level of information protection as we do.
Likewise, your personal information will be available to public authorities, judges, and courts to address any potential liabilities arising from its processing.
INTERNATIONAL TRANSFER
The personal information we collect resides in Spain.
LINKS TO THIRD PARTY WEBSITES
They are not carried out.
HOW LONG DO WE STORE YOUR PERSONAL INFORMATION?
HOW LONG DO WE STORE YOUR PERSONAL INFORMATION?
HOW CAN YOU EXERCISE YOUR RIGHTS?
Data protection regulations allow you to exercise your rights of access, rectification, objection, erasure, restriction of processing, portability, and the right not to be subject to individualized decisions before the data controller.
These rights are characterized by the following:
Their exercise is free of charge.
If the requests are manifestly unfounded or excessive (for example, repetitive in nature), the data controller may:
Charge a fee proportional to the administrative costs incurred.
Refuse to act.
Requests must be responded to within one month, although, taking into account the complexity and number of requests, the deadline may be extended for another two months.
The data controller is obliged to inform you of the means to exercise these rights. These means must be accessible, and this right cannot be denied solely because you choose another method.
If the request is submitted electronically, the information will be provided by these means whenever possible, unless the data subject requests otherwise.
If the data controller fails to respond to the request, they will inform you within one month of the reasons for their failure and the possibility of filing a complaint with a Supervisory Authority.
You may exercise your rights directly or through your legal representative.
The data processor may be the one to respond to your request on behalf of the data controller if both parties have established this in the contract or legal document that binds them.
RIGHT OF ACCESS
The right of access allows you to contact the data controller to find out whether or not your personal data is being processed.
RIGHT OF RECTIFICATION
The right to rectification allows you to obtain rectification of your inaccurate personal data without undue delay from the data controller.
Taking into account the purposes of the processing, you have the right to have incomplete personal data completed, including through a supplementary declaration.
In your request, you must indicate which data you are referring to and the correction to be made. Furthermore, where necessary, you must accompany your request with documentation justifying the inaccuracy or incompleteness of your data.
RIGHT OF OPPOSITION
The right to object, as its name suggests, means that you can object to the data controller processing your personal data in the following cases:
When the data is processed based on a mission of public interest or legitimate interest, including profiling.
When the processing is for direct marketing purposes, including the aforementioned profiling.
RIGHT OF ERASURE
The right to erasure may be exercised before the data controller by requesting the deletion of your personal data when any of the following circumstances apply:
If your personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed.
If the processing of your personal data was based on the consent you gave to the data controller, and you withdraw that consent, provided that such processing is not based on another legitimate reason.
The data controller’s processing was based on legitimate interest or the fulfillment of a mission of public interest, and no other legitimate reasons prevailed for processing your data.
If your personal data is subject to direct marketing, including profiling related to such marketing.
If your personal data has been unlawfully processed.
However, this right is not unlimited, so it may be feasible not to proceed with erasure when processing is necessary for the exercise of freedom of expression and information, for compliance with a legal obligation, for the performance of a task carried out in the public interest or in the exercise of public powers conferred on the controller, for reasons of public interest, in the field of public health, for archiving purposes of public interest, scientific or historical research, or statistical purposes, or for the formulation, exercise, or defense of legal claims.
The data controller shall be obliged to block data when rectification or erasure is required.
Data blocking consists of identifying and reserving the data, adopting technical and organizational measures to prevent its processing, including its visualization, except for making the data available to judges and courts, the Public Prosecutor’s Office, or the competent Public Administrations, in particular data protection authorities, to enforce potential liability arising from the processing and only for the statute of limitations. After this period, the data must be destroyed.
RIGHT TO LIMITATION OF PROCESSING
This new right consists of obtaining restriction on the processing of your data by the data controller, although exercising it has two aspects:
You can request the suspension of the processing of your data:
When you contest the accuracy of your personal data, for a period that allows the data controller to verify it.
When you have objected to the processing of your personal data by the data controller based on legitimate interest or a mission of public interest, while the data controller verifies whether these reasons prevail over yours.
You can request the data controller to retain your data:
When the processing is unlawful and you have objected to the deletion of your data and instead request a restriction on its use.
When the data controller no longer needs the personal data for the purposes of the processing, but the data subject needs them to formulate, exercise, or defend legal claims.
RIGHT TO PORTABILITY
The purpose of this new right is to further strengthen control over your personal data, so that when processing is carried out by automated means, you receive your personal data in a structured, commonly used, machine-readable, and interoperable format, and can transmit it to another data controller, provided that the processing is legitimized by consent or within the framework of the performance of a contract.
However, this right, by its very nature, cannot be applied when processing is necessary for the fulfillment of a task carried out in the public interest or in the exercise of official authority vested in the controller.
WHERE CAN YOU EXERCISE YOUR RIGHTS?
To exercise your rights, CAS GALGO provides the following means:
Owner: SALVADOR GÓMEZ BENÍTEZ
Tax ID: 40943050Z
Registered office: C/ ALZINES I PINS 2, C.P. 07170 VALLDEMOSSA, MALLORCA
Email: reservas@casgalgo.com
Telephone: 651819005
You may file a complaint with the Spanish Data Protection Agency, especially if you are not satisfied with the response to your exercise of rights. For more details, please visit the website. www.agpd.es
HOW DO WE PROTECT YOUR PERSONAL INFORMATION?
We are committed to protecting your personal information. We use appropriate technical and organizational measures to protect your personal information and privacy, and we review these measures periodically. We protect your personal information by using a combination of physical, computer, or logical security controls, including access controls that restrict and manage how your personal information and personal data are processed, managed, and handled.
We also ensure that our employees are properly trained to protect your personal information. Our procedures indicate that we may request proof of identity before sharing your personal information with you.
In accordance with our guarantee of security and confidentiality, we are particularly interested in offering you the highest level of security and protecting the confidentiality of the personal information you provide to us.
If at any time you have problems accessing any part of our website, this may be due to the model or version of your browser, or the settings within your browser. If you need help finding a solution or if you have any questions about how our system works, please contact us.
The Internet is a medium that enables online commercial transactions. Therefore, one of the main concerns of Internet users is data security.
ARE MINORS’ DATA PROCESSED?
The CAS GALGO website and products are not generally directed to minors.
If you are a minor, please do not attempt to register as a user of our websites, applications, or products. If we discover that we have mistakenly obtained personal information from a minor, we will delete that information as soon as possible.
MODIFICATIONS TO THIS DATA PROTECTION INFORMATION
We will review and update the data protection information when there are changes in the legislation or in any of the procedures for processing your personal information.