← Back Almar Mascarat Suite

Privacy Policy

Last updated: [fecha de publicación]

At Almar Mascarat Suite we value the trust you place in us when you provide us with your personal data. This Privacy Policy explains what data we collect through almarmascaratsuite.com, for what purpose we process it, what our legal basis is, and what rights you have, in accordance with Regulation (EU) 2016/679 (GDPR) and Organic Law 3/2018 (LOPDGDD).

1. Data controller

You may contact us through any of these means for any matter relating to the processing of your data or to this policy.

2. Data we collect and how

We collect only the data that you voluntarily provide to us through the contact form: name, phone number, email address, and your enquiry or message. All of these are necessary in order to handle your request. When you submit the form, you are asked to actively tick a consent checkbox.

We do not collect special categories of data (sensitive data) or data relating to minors through this form. You are responsible for the accuracy of the data you provide to us.

3. Purpose and legal basis

Purpose: to manage and respond to your enquiry or request for information about our accommodation and services. We do not carry out profiling or make automated decisions.

Legal basis: the consent of the data subject (Art. 6.1.a GDPR), given by ticking the checkbox on the form. You may withdraw it at any time, without retroactive effect.

Commercial communications: we do not send newsletters or promotional communications based on this data. Should we wish to do so in the future, we would ask you for additional, separate, and specific consent.

4. Data retention

We will keep your data for the time strictly necessary to handle your enquiry. Afterwards, it will be kept blocked for the periods legally required to address any potential liabilities, after which it will be securely deleted. If you withdraw your consent or request erasure, we will proceed to delete your data unless there is a legal obligation to retain it.

5. Recipients and data processors

Your data will not be disclosed to third parties, except where legally required. For the operation of the website and the handling of enquiries, we rely on providers acting as data processors (Art. 28 GDPR):

No international data transfers are carried out outside the European Economic Area (EEA).

6. Rights of the data subject

You may exercise, free of charge, your rights of access, rectification, erasure, objection, restriction, portability and withdrawal of consent.

How to exercise them: by writing to the data controller at [email de contacto] or at [dirección], stating the right you wish to exercise and enclosing a copy of a document proving your identity.

Complaint: if you consider that the processing does not comply with the applicable regulations, you may lodge a complaint with the Spanish Data Protection Agency (AEPD — Agencia Española de Protección de Datos) (C/ Jorge Juan, 6, 28001 Madrid · www.aepd.es).

7. Security measures

We adopt appropriate technical and organisational measures to protect your data against loss, misuse, alteration, or unauthorised access. Information travels encrypted (HTTPS/TLS) and access to the database is restricted to authorised personnel. We review these measures periodically.

8. Changes to the privacy policy

We may update this policy to adapt it to legal developments or to changes in our processing activities. Any modification will be published on this page along with its update date. If the changes affect processing based on your consent, we will request it again where necessary.