Privacy Policy

LEGAL INFORMATION AND ACCEPTANCE

In this space, the user will be able to find all the information related to the processing of personal data collected through the website of Demo Flats SL (hereinafter, the “Controller”) as responsible for this Internet portal (hereinafter, the “Portal” or the “Website”).

The use of the Portal confers the condition of user (hereinafter, the “User”) and implies full acceptance of all the terms included in this Privacy Policy.

 

APPLICABLE REGULATIONS

The Data Controller undertakes to process the Users’ personal data in accordance with current regulations, in particular by complying with the provisions of:

  • Organic Law 3/2018, of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD), and
  • Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR).

 

DATA PROTECTION

    • Data of the Data Controller
  • Address: Calle Callosa d’En Sarria 2D, pta 2, 46007, Valencia, Spain
  • Email for communications regarding Data Protection: administration@mimood.es


  • Purpose of processing personal data

The processing we carry out of the Users’ personal data responds to the following purposes:

  • To offer our services, which includes accommodation offers in Valencia, as well as other possible Spanish cities, and our products such as wellness services, as a supplier of products related to the stay in the aparthotel.
  • Understand how you use our Services and use the feedback you send us to improve them, identify industry trends, and develop new products and features to improve your experience.
  • Send you direct marketing communications about our services, activities or events offered and/or developed by us, offer you advertising on our services, as well as on third-party websites (whether personalized or not), and administer promotional activities (such as sweepstakes and similar giveaways).
  • Communicate with you, respond to your questions and comments, conduct quality surveys, and provide you with customer service.
  • To comply with legal obligations that are directly applicable to us and regulate our activity, and to comply with legal obligations and requests from law enforcement authorities, to prevent fraud and to establish, exercise or defend legal claims.
  • Verify your identity, or the information you provide to us when you register on our website.
  • To improve our services and the experience in browsing and using the website.
  • To protect our rights by responding to claims of any kind.
    • Retention period of your data

We will keep your personal data from the time you give us your consent until you revoke it or request the restriction of processing. Otherwise, the personal data provided will be kept for the time necessary to fulfil the purposes for which they were initially collected.

Once the data is no longer necessary for the processing in question, they will be kept duly blocked, so that they can be made available to the competent Public Administrations, Judges and Courts or the Public Prosecutor’s Office during the limitation period for actions that may arise from the relationship with the client and/or the storage periods provided for by law.

  • Legitimacy and data collected

The legitimacy for the processing of Users’ personal data is the express consent granted by means of a positive and affirmative act (fill in the corresponding form and tick the box of acceptance of this policy) at the time of providing us with their personal data.

  • Consent to process your data

By filling in the forms, ticking the corresponding box, or by sending emails to the Company through the accounts enabled for this purpose, the User declares that they have read and expressly accepted this Privacy Policy, and grants their unequivocal and express consent to the processing of their personal data in accordance with the purposes indicated.

Users certify that they are over 14 years of age and that, therefore, they have the necessary legal capacity to provide consent regarding the processing of their personal data and all this, in accordance with the provisions of this Privacy Policy.

  • Data categories

The personal data that is collected from Users when they use our services falls under the category of identifying data. In particular, these are the following:

  1. User Data: This is the personal data that is collected to create a member account such as first and last name, telephone, email, postal address. This category also includes data or other information that you may share with us such as age, gender, country of residence, social networks, messages sent to our team, opinions, surveys, etc.
  2. Usage Data: This is data that tells us about how you use our services, the data you enter when you perform a search, and the offers or links you access.
  3. Bank details: Although we are not directly involved in the payment process, in the event of a refund or similar operation, we may ask you to share your bank details.
  4. Technical data: This is data such as IP address, cookies, browser, language, as well as other configuration settings.
    • Security measures

As part of our commitment to guarantee the security and confidentiality of Users’ personal data, we inform you that the necessary technical and organisational measures have been adopted to guarantee the security of personal data and prevent its alteration, loss, processing or unauthorised access, taking into account the state of technology.  the nature of the data stored and the risks to which they are exposed, according to Article 32 of the GDPR.

  • Data transfer

No data transfers or international transfers of User data are foreseen, except for those authorized by tax, commercial and telecommunications legislation, as well as in those cases in which a judicial authority requires us to do so.

  • User Rights

Users whose data is subject to any processing may exercise, at any time and completely free of charge, the following rights: rights to information (Article 13 GDPR), access (Article 15 GDPR), rectification (Article 16 GDPR) and deletion (Article 17 GDPR), as well as to request that the processing of their personal data be restricted (Article 18 GDPR),  to oppose it (Article 21 GDPR), to request the portability of these (whenever technically possible) (Article 20 GDPR) or to withdraw the consent given and, where appropriate, where appropriate, not to be subject to a decision based solely on automated processing, including profiling (Article 22 GDPR).

To do this, you can use the forms provided by the company, or send a letter to the postal address or email address of the organization indicated above.

In this sense, the letter must contain, at least, the following information:

  • Photocopy of your ID card or equivalent document in order to prove your identity.
  • Object of your request, that is, the right you are going to exercise.

In the event that you feel that your rights regarding the protection of your personal data have been violated, especially when you have not been satisfied in the exercise of your rights, you can file a complaint with the competent Data Protection Supervisory Authority, through its website: www.agpd.es.

The data controller will stop processing the data, except for compelling legitimate reasons, or the exercise or defence of possible claims.

 

 

DISCLAIMER: This document is an automatic translation of the original text written in Spanish. In the event of any legal dispute, only the original document shall be considered valid.