Privacy Policy

1. WHO WILL PROCESS YOUR PERSONAL DATA?

Data controller: J.R.SABATER, S.A. (hereinafter the “Controller” or “J.R.SABATER”).

Registered office: Murcia, 61 – 30110 Cabezo de Torres (Murcia).

CIF: A-30022909

E-mail: comercial@jrsabater.com

J.R. SABATER, as data controller, collects, processes and protects the personal data provided by users through the website https://www.jrsabater.com/ (hereinafter, the “Website”).

2. FOR WHAT PURPOSE AND ON WHAT LEGAL BASIS WILL PERSONAL DATA BE PROCESSED?

The personal data collected will be processed by the Controller in accordance with the purposes and on the basis of legitimacy indicated below:

Purpose Legitimation

Respond to requests for information that users may submit through the form provided for this purpose or through other means (for example, email). Consent

Managing registration as a website user. Consent

Provision of the service of purchase and sale of products and related issues (shipping, returns, etc.). Contractual relationship

User behavioural analysis and usability of the platform and website based on aggregated and anonymised data, with the aim of improving usability and quality and defining future marketing strategies. Consent

Comply with legally established obligations. Legal obligation

Contact for commercial purposes via email and sending of newsletters after the user has registered on the website to inform him/her about the Controller’s products and services, unless otherwise indicated or the user objects at the time of providing his/her data or at a later time. Consent

3. WHAT DATA WILL BE PROCESSED?

In accordance with the purposes listed above, the Controller will process the following types of data, which are provided voluntarily:

Identification data: name, surname.

Contact information: email, telephone, postal address.

Financial data: payment or card data, orders, returns.

Connection, location and navigation data

Others: those data that may be provided voluntarily by the interested party through the open fields of the forms (comments) or through other means.

The user is responsible for the veracity of all the data provided and will keep the information provided up to date so that it reflects his/her real situation.

In the event that the user provides data from a third party, he/she declares that he/she has obtained the consent of said third party and undertakes to transfer to said third party the information contained in this Privacy Policy.

The user will be responsible for any false or inaccurate information provided and for any direct or indirect damages caused by this to the Controller or to third parties.

4. OBLIGATION TO PROVIDE DATA

Unless otherwise stated, the data requested is mandatory to carry out the purposes described, so your refusal to provide it may mean that the Controller is unable to meet these requirements.

5. HOW LONG WILL WE KEEP USER DATA?

The data will be kept for the time strictly necessary to carry out the purposes for which they were collected, unless the user requests the deletion of their data in advance, in which case the Controller will not be able to fulfill the purposes indicated. Specifically, the retention period will vary depending on the purpose of the processing of your data, as indicated below:

Respond to your request for information: the data will be kept for the period necessary to process and respond to your request and, once this has been completed, they will remain blocked for the period of limitation of legal actions arising from said request.

Management and maintenance of the registered user profile: The data will be kept for as long as the user remains a registered user and until the user is deregistered.

Provision of the product purchase and sale service: The data will be kept for the period necessary to process and execute the purchase and sale contract (including possible returns and claims relating to the purchase of the product).

User behavioural analysis and usability of the platform and website: the information will be used in an aggregated and anonymous form to carry out analyses, for the period necessary to process and prepare said analyses, up to a maximum of two years from their collection.

Comply with legally established obligations: the data provided to comply with the obligations arising from the services offered by the Controller will be kept for the legally established periods.

6. WITH WHOM WILL USER DATA BE SHARED?

Unless otherwise indicated, J.R.SABATER will not communicate data to third parties, unless there is a legal obligation enforceable on the Controller.

The Controller works with third-party service providers who may have access to your personal data and who will process the data in its name and on its behalf, as a result of the provision of services.

The Controller follows strict criteria for selecting service providers in order to comply with its obligations regarding data protection and undertakes to sign the corresponding data processing contract with them, which will guarantee that the third parties with whom it contracts comply with the applicable regulations and that, under no circumstances, will they process the data they access for purposes other than those indicated by the Controller.

Likewise, it is possible that certain third parties may access your personal information in the course of the services they may provide to the Controller. For example, in the case of third-party cookies applied on the Website (see cookie policy).

7. EXERCISE OF RIGHTS

The user’s personal data will be treated by the Controller with absolute confidentiality. Notwithstanding the foregoing, in accordance with data protection regulations, the user who provides personal data has the right to:

Revoke your consent at any time, without prejudice to the legality of the processing of data legitimised by the consent prior to its withdrawal.

Access your personal data.

Rectify inaccurate or incomplete data.

Request the deletion of your data when they are no longer necessary for the purposes for which they were collected or when they have been processed unlawfully, among other circumstances.

Obtain from the Controller the limitation of data processing when any of the conditions provided for in the data protection regulations are met.

Request the portability of your data.

Object to the processing of data where appropriate.

In order to exercise the above rights, the interested party has the right to contact the Controller at any time and free of charge, by writing to the address or by email provided for this purpose: comercial@jrsabater.com. In case of doubt about your identity, supporting documentation may be required to process your request.

Likewise, if the interested party considers that the Controller has violated any of the rights conferred by the applicable regulations on data protection, he or she may file a claim with the Spanish Data Protection Agency.

8.SAFETY MEASURES

In order to safeguard the security of your personal data, we inform you that the Controller has adopted all the necessary technical and organisational measures to guarantee the security of the personal data supplied. All of this is to prevent its alteration, loss, and/or unauthorised processing or access, as required by law, although absolute security does not exist.

Likewise, the Controller informs you that all of its staff, regardless of the phase of processing in which they are involved, have undertaken to treat your personal data with the utmost care, secrecy and confidentiality and that their processing will be carried out in accordance with current legislation on the protection of personal data.

9. CHANGES IN THE PRIVACY POLICY

To ensure that the data protection guidelines always comply with current legal requirements, the Controller reserves the right to make changes as necessary to ensure that they comply with current legislation at all times.

© Grupo J.R.SABATER, S.A. All rights reserved.