Privacy protection and securely processing personal data is a priority. We ensure that personal data is only used for appropriate purposes and handled in accordance with applicable data protection laws and our internal regulations.
We are responsible for processing your data in accordance with the General Data Protection Regulation (GDPR). We will use your data solely to enhance your experience.
Personal information is all information that can be associated with you as an individual. In this declaration, you will find answers to questions about how we process your personal data and what rights you have as an individual.
WHO ARE WE?
Contact details of the Controller:
Name: “DipDot Solutions”, SL (“DipDot”)
Address: 109 Principe de Vergara str., 28002 Madrid, Spain
E-mail: [email protected]
WHAT INFORMATION DO WE COLLECT AND WHAT DO WE DO WITH IT?
We collect personal data that we need for the provision of our services. We collect and process your personal data to inform you of our services and to improve service standards.
Data is collected via the Website contact page, mailing list sign up and using Google Analytics.
Contact page:
What: Name, Job Title, Company, Country, E-mail, Website & Information relevant to the enquiry.
How: To provide agreed services to you and disclose it to third parties where such disclosure is connected with the provision of the agreed services.
Basis: Explicit consent (art. 6 (1) (a) GDPR)
Mailing List Sign up:
What: Name, Job Title, Company, Country & E-mail.
How: To provide the services you requested and disclose it to third parties where such disclosure is connected with the provision of the agreed services.
Basis: Legitimate interest (art. 6 (1) (f) GDPR)
Website statistics:
What: Anonymous data such as visitors, sessions, page views, visitor countries, etc.
How: To track and analyse your use of our website for internal purposes, including usage analysis, site performance measurement, and marketing report generation.
Basis: Legitimate interest (art. 6 (1) (f) GDPR)
When you browse our website, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Email marketing: With your permission, we may send you emails about us, new products and other updates.
You can stop receiving marketing messages from us at any time. You can do this:
- By clicking on the ‘unsubscribe’ link in any email
- By contacting us on: [email protected]
Once you do this, we will update your profile to ensure that you don’t receive further marketing messages. Stopping marketing messages will not stop service communications (such as order updates or notifications).
WHAT LEGAL BASIS DO WE PROCESS YOUR PERSONAL DATA ON?
Our legal obligation. These are the cases in which the processing of your personal data is necessary in order to comply with our legal obligation.
Our legitimate interest. When we use “legitimate interest” as our legal basis for processing, we ensure that this does not override your interests, fundamental rights, or freedoms rights. Regardless of our discretion, you always have the right to object to processing based on legitimate interests, as described below.
Pre-contractual or contractual basis. When should we take the necessary steps, at your request, to conclude a contract with us or to execute a contract already concluded between us. In these cases, we will take care to process only the information you need for that purpose.
Your consent. This is a freely expressed, specific, informed and unambiguous indication of your will, through a statement or clearly affirmative action that expresses your consent to the processing of your personal data for a specific purpose.
Consent withdraw. If you change your mind after giving consent, you can withdraw it at any time, stopping us from contacting you or continuing to collect, use, or disclose your information. To do so, simply send us an email at [email protected]. By doing so, all information we hold about you on our website will be deleted.
DEADLINES FOR STORING YOUR PERSONAL DATA
We’ll hold on to your information for as long as you have your account, or as long as is needed to be able to provide the services to you, or (in the case of any contact you may have with us) for as long as is necessary to provide support-related reporting and trend analysis only.
If reasonably necessary or required to meet legal or regulatory requirements, resolve disputes, prevent fraud and abuse, or enforce our terms and conditions, we may also keep hold of some of your information as required, even after you have closed your account, or it is no longer needed to provide the services to you.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
DISCLOSURE
We may disclose your personal information if we are required by law to do so.
THIRD-PARTY SERVICES
We do not, and will not, sell any of your personal data to any third party.
However, we share your data with the following categories of companies as an essential part of being able to provide our services to you, as set out in this statement:
Our subcontractors will be able to have access to personal data if it is necessary for them to be able to deliver their service to us. We have data processor agreements with these which ensure that they do not use information for their own purposes.
Companies that do things to get your purchases to you, such as payment service providers, warehouses, order packers, and delivery companies
Professional service providers, such as marketing agencies, advertising partners and website hosts who, who help us run our business
Credit reference agencies, law enforcement and fraud prevention agencies, so we can help tackle fraud.
We may provide third parties with aggregated but anonymised information and analytics about our customers and, before we do so, we will make sure that it does not identify you.
The third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
Once you leave our website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy.
When you click on links on our website, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
SECURITY
DipDot considers your privacy to be of paramount importance. Therefore, we process your personal data in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures (‘integrity and confidentiality’).
Whether required disclosure involves transfer out of the EU or EEA, we provide measures to protect the personal data, such as entering into an agreement based on the EU’s standard clauses with the recipient or ensuring that the recipient is Privacy Shield certified.
CHANGES TO THIS PRIVACY POLICY
We will update the privacy policy if necessary. You will always find the latest version of our privacy policy on our website www.dipdot.com
If our organisation is acquired or merged with another company, your information may be transferred to the new owners.
YOUR RIGHTS
You have several rights regarding your personal information:
The right to be informed about how your personal information is being used (as outlined in this notice).
The right to access the personal information we hold about you.
The right to request correction of inaccurate personal information.
The right to request deletion of your data, or to stop processing or collecting it, in certain circumstances.
The right to stop direct marketing messages and withdraw consent for other consent-based processing at any time.
The right to request that we transfer or port elements of your data either to you or another service provider.
The right to complain to data protection regulator.
QUESTIONS AND CONTACT INFORMATION
If you want to exercise your rights, have a complaint, just have questions, if you would like to access, correct, amend or delete any personal information we have about you or if you simply want more information please contact us on email to [email protected] with the reference “Data Protection”.
In Spain, the lead supervisory authority is the Spanish Data Protection Agency (AEPD). Applicable data protection law includes the GDPR (Regulation (EU) 2016/679) and the organic law on Personal Data Protection and digital rights guarantee 3/2018 as of 05 December 2018.
If you are not satisfied with our response or believe we are processing your data unfairly or unlawfully, you can complain to your local data inspectorate or to the Spanish Data Protection Agency.
You find the contact details to the Data Inspectorate and their complaint procedure here: