Política de Privacidad

Owner and Data Controller

Charles Beuken – Casa Buil. 14, Calle Santa Barbara, 22394 La Pardina – Castejon de Sobrarbe, Aínsa – Huesca, Spain Owner contact email: info@casabuil.com

Types of Data collected

The Owner does not provide a list of Personal Data types collected.

Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or by specific explanation texts displayed prior to the Data collection. Personal Data may be freely provided by the User, or, in case of Usage Data, collected automatically when using this Application. Unless specified otherwise, all Data requested by this Application is mandatory and failure to provide this Data may make it impossible for this Application to provide its services. In cases where this Application specifically states that some Data is not mandatory, Users are free not to communicate this Data without consequences to the availability or the functioning of the Service. Users who are uncertain about which Data is mandatory are welcome to contact the Owner. Any use of Cookies – or of other tracking tools — by this Application or by the owners of third-party services used by this Application serves the purpose of providing the Service required by the User, in addition to any other purposes described in the present document and in the Cookie Policy. The User assumes responsibility for any third-party Personal Data obtained, published or shared through this Application.

Mode and place of processing the Data collected

Methods of Processing

The Owner will treat the Users’ Data in an appropriate manner and will adopt the appropriate security measures to prevent unauthorized access, disclosure, alteration, or unauthorized destruction of the Data. Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Owner, in some cases, the Data may be accessible to certain categories of authorized persons, involved with the operation of this Application (administration, sales, marketing, legal, and system administration department) or external contractors providing services to the Owner (such as external providers of technical services, mail carriers, hosting providers, IT companies, communications agencies) who will be appointed by the Owner as Data Processors, if necessary. An updated list of these parties may be requested from the Owner at any time.

Place

The Data is processed at the Owner’s operating offices and in any other places where the parties involved in the processing are located. Depending on the User’s location, data transfers may involve transferring the User’s Data to a country other than their own. To find out more about the place of processing of such transferred Data, Users can check the section containing details about the processing of Personal Data.

Retention period

Unless otherwise specified in this document, Personal Data shall be processed and stored for as long as required by the purpose they have been collected for and may be kept for a longer period due to a relevant legal obligation or based on the Users’ consent.

Cookie Policy

This Application uses Trackers. To learn more, Users may consult the Cookie Policy.

Further Information for Users in the European Union

Legal basis of processing

The Owner may process the User’s Personal Data, if one of the following conditions is met:

  • When Users have given their consent for one or more specific purposes.
  • When obtaining the Data is necessary for the performance of a contract with the User and/or any other pre-contractual obligations thereof;
  • When processing is necessary for compliance with a legal obligation to which the User is subject;
  • When processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Owner;
  • When processing is necessary for the purposes of a legitimate interest pursued by the Owner or a third party.

In any case, the Owner is available to define the specific legal bases that apply to the processing and, in particular, whether the obtaining of Personal Data is a contractual or statutory requirement or a necessary requirement to enter into a contract.

Further information about retention time

Unless otherwise specified in this document, Personal Data shall be processed and stored for as long as required by the purpose they have been collected for and may be kept for a longer period due to a relevant legal obligation or based on the Users’ consent.

Therefore:

  • Personal Data collected for the purpose of formalizing a contract between the Owner and the User shall be retained as such until such contract has been fully performed.
  • Personal Data collected for the Owner’s legitimate interest shall be retained for the time necessary to fulfill such purpose. Users can find specific information related to the Owner’s legitimate interest by consulting the relevant sections of this document or by contacting the Owner.
  • The Owner may retain Personal Data for an additional period when the User provides their consent to such processing, provided that such consent remains valid. Furthermore, the Owner may be obliged to retain Personal Data for an additional period whenever required for compliance with a legal obligation or by order of an authority.

Once the retention period is over, Personal Data shall be deleted. Therefore, the rights of access, erasure, rectification, and data portability cannot be exercised once said retention period has expired.

The rights of Users based on the General Data Protection Regulation (GDPR)

Users may exercise certain rights regarding their Data processed by the Owner. In particular, Users have the right to do the following, to the extent permitted by law:

  • Withdraw their consent at any time. Users have the right to withdraw their consent where they have previously given it for the processing of their Personal Data.
  • Object to processing of their Data. Users have the right to object to the processing of their Data if such processing is carried out pursuant to a legal basis other than consent.
  • Access their Data. Users have the right to know whether their Data is being processed by the Owner, to obtain information about certain aspects of the processing, as well as to obtain a copy of the Data undergoing processing.
  • Verify and seek rectification. Users have the right to verify the accuracy of their Data and request that it be updated or corrected.
  • Restrict the processing of their Data. Users have the right to restrict the processing of their Data. In that event, the Owner will only process their Data for storage purposes.
  • Erase or delete Personal Data. Users have the right to obtain the deletion of their Data by the Owner.
  • Receive their Data and transfer it to another controller. Users have the right to receive their Data in a structured, commonly used and machine-readable format and, if technically feasible, to have it transmitted to another controller without any hindrance.
  • Lodge a complaint. Users have the right to lodge a complaint with the competent data protection authority.

Users will also have the right to know the legal bases for Data transfers abroad, including to any international organization governed by Public International Law or formed by two or more countries, such as the UN, and to know the security measures taken by the Owner to safeguard their Data.

Information about the right to object to processing

Where the processing of Personal Data is carried out in the public interest, in the exercise of official powers conferred on the Owner or by reason of a legitimate interest pursued by the Owner, Users may object to such processing by citing a ground related to their particular situation to justify their objection. Users must know, however, that in case their Personal Data is processed for direct marketing purposes, they can object to such processing at any time, free of charge and without needing justification. When the User objects to processing for direct marketing purposes, the Personal Data may no longer be processed for such purposes. To know whether the Users’ Personal Data is being processed by the Owner for direct marketing purposes, Users should consult the relevant sections of this document.

How to exercise these rights

Any request to exercise the User’s rights can be directed to the Owner through the contact details provided in this document. Such requests are free of charge and the Owner will respond to them as soon as possible and always within one month, providing Users with the information required by law. The Owner will communicate any rectification or erasure of Personal Data or restriction of processing to each recipient, if any, to whom the Personal Data has been communicated, unless this is impossible or requires disproportionate effort. At the Users’ request, the Owner will inform them about those recipients.

Additional information about Data collection and processing

Legal defense

The User’s Personal Data may be used for the Owner’s legal defense before a court or in the judicial phases prior to a possible lawsuit arising from the inappropriate use of this Application or related Services. The User declares to be aware that the Owner may be required by public authorities to disclose Personal Data.

Additional information about the User’s Personal Data

In addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information regarding specific Services or the collection and processing of Personal Data upon request.

System log and maintenance

For reasons related to operation and maintenance, this Application and any other service, provided by third parties, that is used, may collect a system log; that is, files that record interaction with this Application and may contain Personal Data, such as the User’s IP address.

Information not contained in this privacy policy

Additional information regarding the collection and processing of Personal Data may be requested from the Owner at any time. Contact information is indicated at the beginning of this document.

Modification of this privacy policy

The Owner reserves the right to modify this privacy policy at any time, notifying Users through this page and, if possible, through this Application and/or if technically and legally possible, directly notifying Users, in case the Owner has the necessary contact information for this purpose. It is strongly recommended to check this page frequently, taking as a reference the date of the last update indicated at the end of the page.

In case the changes affect processing activities carried out based on the User’s consent, the Owner must obtain, if necessary, the User’s new consent.

Definitions and legal references

  • Personal Data (or Data): Personal data constitutes any information that, directly, indirectly or in relation to other information – including a personal identification number – allows for the identification of a natural person.
  • Usage Data: Information collected automatically by this Application (or by third-party services used by this Application), may include: the IP addresses or domain names of the computers used by the User who connects to this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method used to make the request to the server, the dimensions of the file obtained in response, the numerical code indicating the status of the server’s response (successful outcome, error, etc.), the country of origin, the characteristics of the browser and the operating system used by the visitor, the various temporal coordinates of the visit (for example, the time spent on each of the pages) and the details relating to the itinerary followed within the Application, with special reference to the sequence of pages consulted, the parameters relating to the operating system and the User’s IT environment.
  • User: The individual using this Application, who, unless otherwise specified, must coincide with the Data Subject.
  • Data Subject: The natural person to whom the Personal Data refers.
  • Data Processor (or Processor): The natural or legal person, public authority, agency or any other institution, that processes Personal Data on behalf of the Data Controller, described in this privacy policy.
  • Data Controller (or Owner): The natural or legal person, public authority, agency or any other institution, that acting alone or jointly with others, determines the purposes and measures of the processing of Personal Data, including the security measures relating to the operation and use of this Application. Unless otherwise specified, the Data Controller is the Owner of this Application.
  • This Application: The means through which the User’s Personal Data has been collected and processed.
  • Service: The service provided by this Application, as described in the definitions and legal references (if available) and on this page or application.
  • European Union (or EU): Unless otherwise specified, all references made to the European Union in this document include all current Member States of the European Union and the European Economic Area.
  • Legal information: This privacy policy refers only to this Application, unless otherwise specified in this document.