a
BOOKING
M
M

CHILLI

Privacy Policy

1. USER INFORMATION

Who is responsible for the processing of your personal data?

CHILLI JET SKI, S.Lis heresponsibleof the processing of the personal data of theuserand informs you that these data will be processed in accordance with the provisions of Regulation (EU) 2016/679, of April 27 (GDPR), and Organic Law 3/2018, of December 5 (LOPDGDD).

Why do we treat your personal data and why do we do it?

According to the form where we have obtained your personal data, we will treat it confidentially to achieve the following purposes:

In the formContact

  • Respond to queries or any type of request that is made by the user through any of the contact forms that are made available on the website of the person in charge.
    (for the legitimate interest of the person in charge, art. 6.1.f GDPR)
  • Send commercial advertising communications by e-mail, fax, SMS, MMS, social networks or any other electronic or physical means, present or future, that makes it possible to carry out commercial communications. These communications will be made by the person in charge and will be related to their products and services, or those of their collaborators or suppliers, with whom they have reached a promotion agreement. In this case, third parties will never have access to personal data. (by the consent of the interested party, 6.1.a GDPR)
  • Carry out statistical analyzes and market studies. (for the legitimate interest of the person in charge, art. 6.1.f GDPR)

In the formResume

  • Involve the interested party in the personnel selection processes and analyze the profile of the applicant with the aim of selecting a candidate for the vacant position of the person in charge.
    (by the consent of the interested party, 6.1.a GDPR)

In the formTestimony

  • Moderate and publish on the website the experiences, opinions and suggestions of the user about a product or service.
    (by the consent of the interested party, 6.1.a GDPR)
  • In the Comments form
     Moderate and post opinions on a publication on the website. (by the consent of the interested party, 6.1.a GDPR)
  • In the User Registration form

Manage the user's account to provide personalized access to the website and the interactive services it offers.
(by the consent of the interested party, 6.1.a GDPR)

In the formE-commerce

  • Manage your online purchase or order, process the payment and proceed to send it, based on the general contracting conditions.
    (for the execution of a contract or preliminary contract, 6.1.b GDPR)
  • Manage, maintain, improve or develop the services provided. (for the execution of a contract or preliminary contract, 6.1.b GDPR)
  • Conduct satisfaction and quality surveys. (for the legitimate interest of the person in charge, art. 6.1.f GDPR)

In the formloyalty card

  • Manage the loyalty card if requested.
    (by the consent of the interested party, 6.1.a GDPR)
  • Send commercial advertising communications by e-mail, fax, SMS, MMS, social networks or any other electronic or physical means, present or future, that makes it possible to carry out commercial communications. These communications will be made by the person in charge and will be related to their products and services, or those of their collaborators or suppliers, with whom they have reached a promotion agreement. In this case, third parties will never have access to personal data.
    (by the consent of the interested party, 6.1.a GDPR)
  • Carry out statistical analyzes and market studies.
    (for the legitimate interest of the person in charge, art. 6.1.f GDPR)

In the formBookings

  • Formalize reservations in the establishment of the person in charge.
    (for the execution of a contract or preliminary contract, 6.1.b GDPR)
  • Send commercial advertising communications by e-mail, fax, SMS, MMS, social networks or any other electronic or physical means, present or future, to customers, which makes it possible to carry out commercial communications regarding products or services that are similar to those that were initially the object of contracting with the client (art. 21.2 LSSI). (for the legitimate interest of the person in charge, art. 6.1.f GDPR)
  • In the Appointments form
    Schedule appointments and meetings with the person in charge.

(for the legitimate interest of the person in charge, art. 6.1.f GDPR)

Social networks

  • Contact through Social Networks in order to maintain a relationship between the User and the Responsible Party that may include the following operations: – Process your requests and queries. – Inform about activities and events. – Inform about products and/or services. – Interact through official profiles. The user has a profile on the same social network and has decided to join the Responsible Party's social network, thus showing their interest in the information published on it, therefore at the time of requesting to follow our official page, they provide us with your consent to the processing of your data. The User can access the privacy policies of the social network itself at any time, as well as configure their profile to guarantee their privacy. Once the User is a follower or has joined the Responsible Party's social network, they may post comments, links, images, photographs or any other type of content supported by it. The User, in all cases, must be the owner of the published content, enjoy the copyright and intellectual property rights or have the consent of the affected third parties. – Sending commercial communications related to the activities of the Group companies, as well as companies outside the Group, with which commercial collaboration or intermediation agreements have been established.

Instant messaging

  • Schedule appointments and meetings with the person in charge.
    (for the legitimate interest of the person in charge, art. 6.1.f GDPR)
  • Send commercial advertising communications by e-mail, fax, SMS, MMS, social networks or any other electronic or physical means, present or future, to customers, which makes it possible to carry out commercial communications regarding products or services that are similar to those that were initially the object of contracting with the client (art. 21.2 LSSI).
    (for the legitimate interest of the person in charge, art. 6.1.f GDPR)
  • Manage, maintain, improve or develop the services provided. (for the execution of a contract or preliminary contract, 6.1.b GDPR)
  • Manage your online purchase or order, process the payment and proceed to send it, based on the general contracting conditions. (for the execution of a contract or preliminary contract, 6.1.b GDPR)
  • Send commercial quotes on products and services. (for the execution of a contract or preliminary contract, 6.1.b GDPR)
  • Send commercial advertising communications by e-mail, fax, SMS, MMS, social networks or any other electronic or physical means, present or future, that makes it possible to carry out commercial communications. These communications will be made by the person in charge and will be related to their products and services, or those of their collaborators or suppliers, with whom they have reached a promotion agreement. In this case, third parties will never have access to personal data. (by the consent of the interested party, 6.1.a GDPR)
  • Respond to queries or any type of request that is made by the user through any of the contact forms that are made available on the website of the person in charge. (for the legitimate interest of the person in charge, art. 6.1.f GDPR)

Video surveillance

  • Purpose Security and access control, labor control and internal activity Legitimation Public interest in security and access control and legitimate Interest of the Responsible based on Art. 20.3 of the Workers' Statute Conservation A maximum of 30 days
    (by the consent of the interested party, 6.1.a GDPR)

Images and recordings

  • File with static and/or dynamic images. It includes the publication in the media of the data controller or third parties.
    (by the consent of the interested party, 6.1.a GDPR)

Clients and suppliers

  • Commercial management with customers and suppliers
    (for the legitimate interest of the person in charge, art. 6.1.f GDPR)

Advertising exclusion

  • Data management to avoid sending commercial communications to those who have expressed their refusal or opposition to receiving them.
    (for compliance with a legal obligation, 6.1.c GDPR)

Commercial advertising

  • Advertising management and commercial prospecting. Includes data from legitimate publicly accessible sources. (for the legitimate interest of the person in charge, art. 6.1.f GDPR)

Right of the interested parties

  • Respond to requests from citizens in the exercise of the rights established by the GDPR (for compliance with a legal obligation, 6.1.c GDPR)

Web users, app and other platforms of the responsa

  • Identification data of the users who access the corporate website. (for the legitimate interest of the person in charge, art. 6.1.f GDPR)

Training, courses, workshops, activities or similar

  • Management of the conditions of access and use. (for the legitimate interest of the person in charge, art. 6.1.f GDPR)

How long will we keep your personal data?

  • They will be kept for no longer than necessary to maintain the end of the treatment or there are legal requirements that dictate their custody and when it is no longer necessary for it, they will be deleted with adequate security measures to guarantee the anonymization of the data or the total destruction of the same.

To whom do we provide your personal data?

  • No communication of personal data to third parties is planned except, if necessary for the development and execution of the purposes of the treatment, to our service providers related to communications, with whom theresponsiblehas signed the confidentiality and treatment manager contracts required by current privacy regulations.

Do we make international transfers?

  • In accordance with the provisions of article 44 of the RGPD, the authorization for the international transfer of data to a country that has not been declared as a country with an adequate level of protection may only be granted if sufficient guarantees are obtained. Thus, it may be granted if theresponsibleof the treatment provides a written contract, concluded between the exporter and the imported data, in which the necessary guarantees of respect for the protection of the interested parties are stated and the exercise of their rights is guaranteed.
  • It is possible that the person in charge has services from providers that have servers or offices in other places and, therefore, these transfers are made. To consult the updated list of suppliers, consult the person in charge or through info@chillijetski.com

What are your rights?

The rights that attenduserhis:

  • Right to withdraw consent at any time.
  • Right of access, rectification, portability and deletion of your data, and limitation or opposition to its treatment.
  • Right to file a claim with the control authority (www.aepd.es) if you consider that the treatment does not comply with current regulations.

Contact information to exercise your rights:

CHILLI JET SKI, SL C / San Bartomeu, 6, - 07300 Inca (Illes Balears). E-mail: info@chillijetski.com

2. MANDATORY OR OPTIONAL CHARACTER OF THE INFORMATION PROVIDED BY THE USER

Theusers, by marking the corresponding boxes and entering data in the fields, marked with an asterisk (*) in the contact form or presented in download forms, they expressly and freely and unequivocally accept that their data is necessary to meet your request, by the provider, the inclusion of data in the remaining fields being voluntary. The user guarantees that the personal data provided to theresponsibleare truthful and is responsible for communicating any changes to them.

Heresponsibleinforms that all the data requested through the website are mandatory, since they are necessary for the provision of an optimal service to theuser. In the event that all the data is not provided, it is not guaranteed that the information and services provided will be completely adjusted to your needs.

3. SECURITY MEASURES

That in accordance with the provisions of current regulations on personal data protection,rIt isIt islsponsableis complying with all the provisions of the GDPR and LOPDGDD regulations for the treatment of personal data of its responsibility, and manifestly with the principles described in article 5 of the GDPR, by which they are treated in a lawful, loyal and transparent manner in relation with the interested party and adequate, pertinent and limited to what is necessary in relation to the purposes for which they are processed.

Heresponsibleguarantees that it has implemented appropriate technical and organizational policies to apply the security measures established by the GDPR and the LOPDGDD in order to protect the rights and freedoms of the users.usersand has communicated the appropriate information so that they can exercise them.

For more information on privacy guarantees, you can go toresponsiblethrough CHILLI JET SKI, SL C / San Bartomeu, 6, - 07300 Inca (Balearic Islands). E-mail: info@chillijetski.com

4. VALIDITY

This privacy policy is valid from 03/07/2022

Heresponsiblereserves the right to modify this policy to adapt it to future legislative or jurisprudential updates that may be applicable, or for other technical, operational, commercial, corporate reasons, etc. If as a result of the changes, the rights of the users are affected, theresponsibleundertakes to inform about the reasons.