Privacy Policy

smartsowing.com

I. PRIVACY POLICY AND DATA PROTECTION

In compliance with current legislation, smartsowing.com (hereinafter also referred to as the “Website”) undertakes to implement the technical and organizational measures necessary, according to the appropriate level of security for the risk associated with the data collected.

Legislation incorporated into this Privacy Policy

This Privacy Policy is adapted to current Spanish and European legislation regarding the protection of personal data on the internet. Specifically, it complies with the following regulations:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).
  • Organic Law 3/2018, of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights (LOPD-GDD).
  • Royal Decree 1720/2007, of 21 December, approving the regulations implementing Organic Law 15/1999, of 13 December, on the Protection of Personal Data (RDLOPD).
  • Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI-CE).

Identity of the data controller

The data controller for the personal data collected via the website is Smart Sowing Systems S.L., with Tax Identification Number (NIF): B66895137 (hereinafter, the “Data Controller”).
Contact details:

Address: C/ Olof Palme, 10 Baixos, 08840 VILADECANS, Barcelona, SPAIN
Phone: +34 936 096 837
Email: administracio@smartsowing.com

Personal Data Registration

In accordance with the GDPR and the LOPD-GDD, you are hereby informed that any personal data collected through the Website forms will be included and processed in our database in order to facilitate, expedite and fulfill the commitments established between the Website and the User, or to maintain the relationship established in the forms, or to respond to requests and inquiries.

Likewise, in accordance with the GDPR and LOPD-GDD, and unless the exception under Article 30.5 of the GDPR applies, a record of processing activities is maintained, specifying the processing activities and other required details.

Principles applicable to personal data processing

The processing of the User’s personal data will be subject to the following principles, as set forth in Article 5 of the GDPR and Article 4 et seq. of Organic Law 3/2018:

  • Lawfulness, fairness and transparency: The User’s consent will be required after being clearly informed of the purposes of the data collection.
  • Purpose limitation: Data will be collected for specific, explicit, and legitimate purposes.
  • Data minimization: Only data that is strictly necessary for the stated purposes will be collected.
  • Accuracy: The data must be accurate and kept up to date.
  • Storage limitation: Data will be kept only as long as necessary for the purposes of processing.
  • Integrity and confidentiality: Data will be processed securely and confidentially.
  • Accountability: The Data Controller is responsible for ensuring compliance with all the above principles.

Categories of personal data

Only identifying data is collected through the Website. No special categories of personal data, as defined in Article 9 of the GDPR, are processed.

Legal basis for processing personal data

The legal basis for processing personal data is the User’s consent. The Website undertakes to obtain express and verifiable consent for the processing of personal data for one or more specific purposes.

The User has the right to withdraw consent at any time. Withdrawal of consent shall be as simple as giving it. As a general rule, withdrawal shall not affect the use of the Website.

Where data is collected via forms for inquiries or content-related requests, it will be indicated if any fields are mandatory because they are essential for proper service provision.

Purposes of personal data processing

Personal data is collected and managed by the Website in order to facilitate, expedite and fulfill the commitments established between the Website and the User, or to maintain the relationship established in the forms filled out by the User, or to respond to a request or inquiry.

Additionally, the data may be used for commercial purposes, customization, operational and statistical purposes, and activities related to the Website’s core purpose. It may also be used for data extraction and marketing research to better tailor the content offered to Users and improve the Website’s quality, functionality, and navigation.

When personal data is collected, the User will be informed of the specific purpose(s) for which the data will be processed — that is, the intended use of the information collected.

Retention periods for personal data

Personal data will only be retained for the minimum time necessary for the purposes of its processing and, in all cases, only for the following period: as required by law or until the User requests its deletion.

When personal data is obtained, the User will be informed about the period during which the data will be retained or, where that is not possible, the criteria used to determine that period.

Recipients of personal data

User personal data may be shared with the following recipients or categories of recipients:

Loading, web hosting.

https://loading.es

Calle Gabriel Sijé 14 Bajo

03300 Orihuela (Alicante)

España

In the event that the Data Controller intends to transfer personal data to a third country or international organization, the User will be informed at the time of data collection about the third country or organization to which the data is to be transferred, as well as the existence or absence of an adequacy decision by the European Commission.

Personal data of minors

In accordance with Articles 8 of the GDPR and 7 of Organic Law 3/2018, only persons over the age of 14 may lawfully give consent for the processing of their personal data by the Website. In the case of children under the age of 14, the consent of parents or legal guardians will be required, and processing will only be considered lawful if such consent has been provided.

Confidentiality and security of personal data

The Website undertakes to implement the technical and organizational measures necessary to ensure an appropriate level of security based on the risk, to guarantee the security of personal data and prevent its accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access.

The Website is equipped with an SSL (Secure Socket Layer) certificate that ensures that data is transmitted securely and confidentially between the server and the User, as the information is fully encrypted.

However, since the Website cannot guarantee the absolute invulnerability of the internet or the complete absence of hackers or other individuals who fraudulently access personal data, the Data Controller agrees to notify the User without undue delay when a data security breach is likely to result in a high risk to the rights and freedoms of natural persons.

According to Article 4 of the GDPR, a personal data breach means any breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data.

Personal data will be treated as confidential by the Data Controller, who undertakes to ensure that such confidentiality is respected by any employees, partners, or other individuals who may have access to the information.

User Rights Regarding Personal Data

The User may exercise the following rights recognized in the GDPR and Organic Law 3/2018:

  • Right of access: To confirm whether the Website is processing their personal data and to obtain details about such processing.
  • Right to rectification: To request the correction of inaccurate or incomplete data.
  • Right to erasure (“right to be forgotten”): To request the deletion of personal data under certain circumstances.
  • Right to restriction of processing: To request that data processing be restricted in certain cases.
  • Right to data portability: To receive personal data in a structured, commonly used and machine-readable format and transmit it to another data controller.
  • Right to object: To object to the processing of their data.
  • Right not to be subject to automated individual decision-making, including profiling.

The User may exercise these rights by sending a written request to the Data Controller with the reference “GDPR-www.[your-website-name]”, and including the following:

  • Full name and copy of a valid identification document.
  • A clear description of the request and the specific right exercised.
  • Notification address.
  • Date and signature of the applicant.
  • Supporting documents, if any.

This request may be submitted by post or email to:

Address: C/ Olof Palme, 10 Baixos, 08840 VILADECANS, Barcelona, SPAIN
Email: administracio@smartsowing.com

Links to Third-Party Websites

The Website may include hyperlinks or links to third-party websites that are not operated by the Website. The owners of such websites have their own data protection and privacy policies and are responsible for their own practices and files.

Complaints to the Supervisory Authority

If the User believes there is a problem or a breach of current regulations regarding the processing of their personal data, they are entitled to lodge a complaint with a supervisory authority — particularly in the Member State of their habitual residence, place of work, or place of the alleged infringement.

In the case of Spain, the supervisory authority is the Spanish Data Protection Agency (Agencia Española de Protección de Datos – AEPD): https://www.aepd.es/

II. ACCEPTANCE AND CHANGES TO THIS PRIVACY POLICY

The User must have read and accepted the conditions on personal data protection contained in this Privacy Policy, and must expressly accept the processing of their personal data for the Data Controller to carry out such processing.

Use of the Website implies acceptance of this Privacy Policy.

Smartsowing.com reserves the right to modify this Privacy Policy at any time, at its sole discretion or in response to changes in legislation, case law, or guidelines from the Spanish Data Protection Agency.

Changes or updates will not be specifically notified to Users. It is recommended that Users consult this page periodically to stay informed of the latest changes or updates.

This Privacy Policy was last updated in compliance with Regulation (EU) 2016/679 of the European Parliament and Council, of 27 April 2016 (GDPR), and Organic Law 3/2018, of 5 December, on Personal Data Protection and Guarantee of Digital Rights.