Personal data protection
Who manages this website and what does it do?
This website address is: https://continentalstone.es
Continentalstone.es complies with the European regulations for the protection of personal data, and guarantees full compliance with the obligations set out therein, and ensures the correct use and treatment of your personal data as a user. In addition, it has been updated to the new General Data Protection Regulation of the European Union (GDPR UE 2016/679) that came into force on May 24, 2016, applicable mandatory as of May 25, 2018 taking all necessary measures for this. From now on in this document I will name the General Data Protection Regulation as GDPR.
All the information I collect depends on the nature of the interaction you have with me on this website, but none of that information is considered sensitive, as you will see later. For example, I ask visitors who want to leave a comment, to provide a username and an email address. You as a visitor can always refuse to provide personally identifiable information, but you may not be able to leave a comment or request a purchase invoice this is an example. I explain all this introduction in detail and clearly in the following paragraphs.
Which obligations do I have for saving your data
I comply with the requirements that GDPR demands
- Legality, loyalty and transparency in all my actions. I will never give, sell or do business with your personal information.
- Personal data are only used for the specific, legitimate and explicit purpose for which they were collected, as stated on this page.
- The personal data collected are adequate, relevant and limited to what is necessary.
- The personal data that I possess, at all times, are accurate and updated.
- I keep your personal data only for the right and necessary time for the purpose they have been collected, as explained on this page.
- The personal data is processed guaranteeing your security, for this reason I have a service signed and subcontracted with the external company STRATO AG, specialized in this purpose, which acts as the data processing manager. To see the data of this company you just have to follow the link. It is a leader company in the hosting service, whose servers are safe from brute force attacks, all anti-malware, accounts are protected and offers the web with Transfer security Protocol Hyper-Text (HTTPS). If you wish, you can see the Agreement of Data Processing Manager with STRATO AG. This company is the sole recipient of the personal data I collect.
- The person in charge of the data processing that I keep is me as the owner, showing my data at the end of this page; for that reason I will respond and demonstrate when I am required by the competent authority, the measures taken and that I am carrying out for the fulfillment of the GDPR.
- In case of violation of data security, I will notify, without undue delay and within 72 hours, to the relevant control authorities, in addition to developing a full report, fulfilling all the conditions that are required from the GDPR.
- I am obliged to transfer personal data in exceptional cases as a requirement by law, and I will do so. Also, and only if you give me permission to do so, I can assign your personal data to interested third parties, but in this case, as it is not a legal requirement, I will always ask for your consent.
This principle obliges me to analyze which data I am dealing with, for what purpose I am doing it and what kind of treatment operations I carry out. All this is fully stated in this document.
Therefore, it is clear to me that the measures I’ve applied, are those provided by the GDPR for this case and I am sure that they are appropriate to comply with it. Also, at any time, I can prove it at the request of any interested party and before the supervisory authorities.
What personal information do I collect and why?
Whenever I need any of your personal data, I’ll ask for your consent, by checking a box indicated for that purpose, so you can allow me to save them. On my WEB I do not need to obtain your data from another source that is not you directly, since I do not ask for information to anyone except you the one who are interested. The sources from which I obtain the personal data that I keep in my database are:
When you as a visitor leave comments on the web, I collect the data shown in the comments form, as well your IP address and the list of agents in your browser that help to detect spam. These collected data have the sole purpose of your identification for security, both yours and mine. I will not give them any other use of the indicated and I will keep them as long as you do not withdraw the consent you gave me when entering them. These data are stored in the Hosting contracted with STRATO AG.
An anonymous chain created from your email address (also called a hash) can be provided to the Gravatar service to see if you are using it. The Gravatar service privacy police is available here: https://automattic.com/privacy/. After the approval of your comment, the image of your profile is visible to the public in the context of your comment.
If you leave a comment on my website you can choose to save your name, email address and web in cookies. You have done this by accepting the cookie pop-up bar when you first entered the site.
This is for your convenience, so you do not have to re-fill your data when you leave another comment. These cookies will last one year.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie does not include personal data and simply indicates the ID of the article that you just edited. Expires after 1 day
At the moment I do not allow users to register but, if necessary, the conditions will be as follows:
- If you have an account and you connect to this site, a temporary cookie will be installed to determine if your browser accepts cookies. This cookie does not contain personal data and is deleted when the browser is closed.
- When you log in, several cookies will also be installed to save your login information and your screen viewing options. The cookies are two days old, and the screen options cookies last one year. If you select «Remember me», your login will last for two weeks. If you leave your account, the sign-in cookies will be deleted.
You can refuse to accept cookies by activating the settings in your browser that reject cookies. However, if you select this configuration, you may not be able to access certain parts of the website or you cannot take advantage of any of the services.
Unless you have adjusted your browser settings to reject cookies, the system will produce cookies when you connect to my website.
If you read the Cookies Policy you will understand in detail, how and where these cookies are stored and for how long. You can also manage which cookies you want to be used when you interact on this website on More Information About Cookies page.
3. Embedded content from other websites
The articles on this site may include embedded content (for example, videos, images, articles, etc.). The embedded content of other websites behaves exactly the same way as if you as a visitor had visited this other website.
If this is the case and you need an invoice, I will ask you to send me only the necessary information to make it, your consent, and I will keep it for the legal period required and for these cases is for 6 years.
When you send me your data by email, they are stored in the STRATO AG. as a copy in my GMAIL email account, which as you already know is owned by GOOGLE.
For the first case I have already indicated that I signed a contract with this company for compliance with the GDPR, which you can consult above in the section of my obligations for saving your data.
In GOOGLE case, they have their own Privacy Policies that you can consult completely in the link and ask me about all the information you need. It should not be said that GOOGLE is the first to comply with all the regulations and obligations required by the GDPR.
Third party links
In my site there may be links from other websites managed by third parties, which are obviously not under my control.
If you follow a link and/or provide your personal information or any information to the web of a third party, keep in mind that I am not responsible for the data that you have given to that third party.
What rights do you have about your data?
You as a user registered or not, if you have made any comments or have simply browsed this website, you have the following rights over your data (which you can exercise at any time), which are explained below each one of them. And so that they are understood, they are described in a simple and transparent way:
Right to be informed
As a user you have the right to be informed in a concise, transparent and timely manner, as I am doing now. Any request for information from me will be handled with diligence and transparency without any opposition.
Right of Access
As a user you must know and obtain all the information about your personal data that will be treated on my website when you require it and for free.
Right of Opposition
As a user you have the right to oppose that this website makes a treatment of your data for another service than the one I indicated when I asked for your consent. For example, I will not use the data in a comment to send you advertising. First of all, you would be informed and it would only be done in the case of giving your written consent.
Right of Rectification
Consists of the right you have as a user to correct or modify your personal information data that are erroneous, inaccurate or incomplete.
Right to Suppression («Right to Oblivion»)
This is the right you have as a user to remove, from the database that I own, all the information you have given me or those data that you understand are inadequate or excessive (this does not include any data that is required to be kept for administrative, legal or security purposes, or what is the same, my duty of blockage contained in the LOPD and the GDPR).
Right of Portability
As a user you have the right to request, free of charge, all your data that is in my possession, which I will deliver to you in a standard format and easily readable, if you ask, to export or send this file to other company.
Right to limit the processing of your data.
As a user you have the right to limit the treatment of your data, by this website, in a precautionary way, for example, if you are not sure of the data you gave me and you want to check them. So, in the period of time that you require, I will keep all your information in the database, but I will not make any use of it. Once you have done the pertinent checks you can either keep your data in my database, modifying them if you ask me, or request the total suppression of them, if that is what you prefer.
Right not to be subject to individualized or automated decisions.
As a user you have the right to not use the information I have of your data to make a decision, which may affect you directly, based solely on them, or even for an elaboration of Profiles.
You can claim your rights at the time you decide by simply sending an email to email@example.com with whatever you need me to do.
I will respond to your initial registration email so you can correctly identify yourself with your national identity document or passport. Once this step is done I will do what you tell me about your personal data immediately.
If you have not been clear about all your rights or simply want to expand the information, only and as an example you can consult the legal document Guide for the citizen of the Spanish Agency for Data Protection.
If you have claimed any of these rights and I have not replied within the maximum legal period allowed by the GDPR that is 1 month, or the response you have received has been unsatisfactory, you can file a claim in the Spanish Agency for Data Protection, following the link.
Also, in the hypothetical case, to receive a request for complex rights or when you have many applications at the same time, I have the right to an extension of 3 months to answer you, but in less than 1 month I will inform you that I need more time to answer you, that’s for sure.
Where do I send your data
Your comments as a visitor may be reviewed by an automatic spam detection service.
In compliance with the provisions of the new General Regulation of Data Protection of the European Union (GDPR UE 2016/679) of May 24, 2016, I inform you that your personal data and information that you provide me when completing any electronic form, will be incorporated into a file of personal data of my ownership.
In this regard, I inform you that the collection and processing of your data are intended to resolve any questions raised about the content of this website. The fields marked with an asterisk are mandatory, being impossible to realize the expressed purpose if you do not provide this information.
In order to use the consultation form, it is essential to check the acceptance box of the use of your data, this implies that you express your consent so that the data provided are incorporated into an automated file of my ownership.
Also, please do not include in any consultation form (as they are not necessary in any case), data related to your health, racial or ethnic origin, religious or philosophical beliefs, political opinions, union affiliation, sexual life, sexual orientation, genetic data, biometric data or data related to the commission of criminal or administrative infractions. In case it has been done by mistake, please, I beg you to contact me immediately to remove them from the database.
In any case, you can exercise the rights of Access, Opposition, Rectification, Deletion, Portability, Limitation and not be subject to individualized decisions, provided by law, by sending me an email at the address firstname.lastname@example.org, indicating your name and last name, and including as subject of the «Rights GDPR» email.
How long will I keep your data
If you leave a comment, the comment and its metadata are kept indefinitely. This is so that you can recognize and approve successive comments automatically instead of keeping them in a moderation queue.
If this is the case, and as a user you register on my website, I will also store the personal information you provide in your user profile. As a user you can view, edit or delete your personal information at any time (except that you cannot change your username). The administrators of the web, if there was another apart from me, can also see and edit that information.
The data collected to complete an invoice will be kept for 6 years after the closing of the annual audit, by legal instructions of my financial advisors. If you request its removal, I will anonymize your data and / or proceed to remove your information from public access sites.
Owner: Continental Stone and Marble, S.L.
Address: Highway Novelda-Monóvar, Km. 0,2 03660 Novelda (Alicante) Spain