Privacy Policy

This Privacy Policy is an integral part of the Terms of Use of the website www.holasbeachwear.com, property of OSDM Têxteis, SL. It regulates the collection and processing of the personal data provided by its users, as well as the exercise of their rights with respect to these data.

At, OSDM Têxteis, SL, we understand that the use of your personal data requires your confidence. The confidentiality and integrity of your personal data is one of our main concerns. We are subject to the highest privacy standards and will only use your personal data for clearly identified purposes.

All your personal information collected will be used to help you make your visit to our site as productive and enjoyable as possible.

The Privacy Policy, as well as the collecting, processing or transmission of User Data, are governed by the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 and applicable laws and regulations in Spain.

1. HOW WE COLLECT YOUR DATA?

Your personal data will be collected and processed by OSCEP in the following situations:

• If you contact us directly, particularly through our website and if you are interested in our products by shopping online, when you subscribe to our Newsletter, and / or if you have other questions.

• If you contact directly through one of our stores, purchasing our products and / or when you fill out your customer card.

• If you respond to one of our direct marketing campaigns, for example from our Facebook page, Instagram, Twitter or Youtube.

• If your data is sent to us by our partners or by third parties, as long as they comply with the requirements in this regard, provided in data protection legislation.

OSCEP assumes that the data collected was inserted by the respective holder and that its insertion was authorized by the same, being the same true and accurate. If you are under 16 years of age, we will need the authorization of your parents or guardians to collect your personal data.

1.1.  What Data Can be Collected?

Personal information may be requested, such as:

• Contact details: Name, address, delivery address, telephone number and e-mail address.

• Customer data: Customer number

• Transaction Details: NIF

• Website Usage Data: Information about how you use the website and whether you have opened or forwarded our messages, including data collected through cookies or other tracking technologies. For more detailed information please consult our cookie policy

Please help us to keep your personal information updated. For this purpose, you should inform us of changes to your personal data, in particular changes relating to your contact details. You can do this by updating the data in our website or through email at holasbeachwear@outlook.com

2.       FOR WHAT PURPOSE WE USE YOUR DATA?

All information we collect is recorded, used and protected in accordance with current EU data protection legislation and this privacy policy.

The purpose of the information collected is to:

• Compliance with contractual obligations in connection with the sale - Art. 6 (1) to. (b), (c), (f) of the RGPD

• OSCEP uses your personal data to manage your purchases online (including our product delivery service and invoice issuance).

• Details of your 'delivery address' will be shared with the logistics company (s) we hire, for the purpose of processing the purchase agreement and delivering your goods to you. In order to ensure that the goods are delivered according to your wishes, we may use your e-mail address and/or telephone number, to contact you prior to delivery, to inform you about the delivery.

• Respond to requests for information and questions as well as sending our Newsletter

• Whenever you use the "Contact Us" option on our website, and/or subscribe to our Newsletter, the processing of your data takes place based on your consent (Art 6º (1) a) RGPD).

• Promotional communications, campaigns and sending of vouchers based on consent - Art. 6, no. 1, al. a) of the RGPD.

If you have given us your consent for the additional use of your data, they may be used in accordance with the scope described in the respective consent form.

This is the case, for example, of consent for promotional purposes (product and service offerings), definition of individual customer profile and / or market research (not related to the contract and / or service).

You may withdraw your consent at any time (see section 4. Rights of the Card Holder).

We will treat your personal data as necessary to fulfill these obligations, as well as transmit them to the authorities upon notification. In addition, we will treat your personal data as necessary for the management of legal and/or judicial actions.

3. THE RIGHTS OF THE OWNER

In accordance with the law, the user is guaranteed, at all times, the right of access to the data that concern him, the updating and rectification of his personal data, as well as the right to eliminate or limit his treatment, portability of their data and oppose to the treatment of the same, verified the conditions legally anticipated.

3.1.  Rights Exercise

You can exercise these rights by request through e-mail: info@holasbeachwear.com

Your requests will be treated with special care so that we can ensure the fulfillment of your rights. You may be required to prove your identity so as to ensure that the personal data is shared only with your cardholder.

You should be aware that in certain cases (e.g. due to legal requirements) your request may not be met immediately.

In any case, it will be informed of the measures taken to that effect, within one month from the moment the request is made.

3.2.  CLAIMS

You are also entitled to lodge a complaint with the Competent Supervisory Authority, in particular in the Member State of the holder's habitual residence - if you consider that the processing of your data violates the legal regime in force:

• For Spain – Agencia Española de Protección de Datos

• For Portugal – Comissão Nacional de Proteção de Dados (CNPD)

• For EDPB – European Data Protection Board

• List of All Supervisory Authorities in Europe

4. SOCIAL MEDIA AND COOKIE POLICY

4.1.  Cookies Policy

On this website, cookies are used to ensure a proper usage experience. Cookies are small, sometimes encrypted, text files that store Internet settings. It is transferred the first time you visit a website. The next time you visit, from the same device, cookies and the information contained therein will be forwarded to the originating website (primary cookies) or to another website to which it belongs (third-party cookies). In this way, the website can detect that it has already been visited through this browser and, in some cases, adapt the content displayed.

Some cookies are extremely useful since they can enhance your experience by returning to a website you've visited. Cookies will remember your preferences, will know how you use the website and will tailor the content displayed to be more relevant to your interests and personal needs.

They also help us organize the website or information about our products and how to make that information more tailored to the user's interests or preferences. Cookies allow us to know who visited which pages and what content, to evaluate the frequency of visits to certain pages, to determine which of the favorite areas of the website and to guide the general use of the website.

4.1.1.         Types of Cookies

There are two main types of cookies:

• Session Cookies: They concern cookies that are used only during an online session, and which are deleted as soon as you leave the site. The information obtained allows us to identify problems and provide a better navigation experience.

• Persistent Cookies: They are retained by the site and are used whenever the visit returns. They are generally used to direct navigation according to the interests of the user, allowing us to provide a more personalized service.

Whether session cookies or persistent cookies can be deleted by you at any time through your browser settings.

4.1.2.         Cookie Categories

Depending on their function and purpose, cookies can be divided into four categories:

• Essential Cookies: Some cookies are essential to access specific areas of our website. Allows site navigation and usage of your applications, such as accessing secure areas of the site through login. Without these cookies, services that require it cannot be provided.

• Performance Cookies: They gather information about how the website is used - for example, which pages a user visits most often or if they receive error messages from a page. These cookies do not store any information that allows the identification of the user. The information collected is aggregated and anonymous. These cookies are used exclusively to improve the performance of a website and, consequently, the experience of its users.

• Functional Cookies: We use feature cookies to allow us to remember your preferences. For example, cookies avoid typing the user's name every time the user accesses the site. In a nutshell, feature cookies retain user preferences for site usage, so you do not need to reconfigure the site each time you visit.

• Cookies for Marketing Purposes: They serve to direct the advertising according to the interests of each user, allowing to limit the number of times of visualization of the advertisement. These cookies help measure the effectiveness of advertising. However, they do not identify the user. This information may be shared with third parties, for example advertisers. Cookies for marketing purposes are often linked to third-party page functionality.

4.1.3.         How to manage cookies

You can delete cookies at any time or automatically set your lock through your browser. However, disabling cookies may prevent some services from functioning properly on the website, affecting, in whole or in part, the navigation of the website.

For more information about cookies, including setting up your browser to reject cookies, visit www.allaboutcookies.org.

4.2.  Social Media and External Links

This website also incorporates third party content. Examples of this integration are the integration of Facebook, Instagram, Youtube, Twitter and Google Analytics services, whose privacy practices may differ from those practiced by OSCEP. These 'third party' sites may eventually collect your IP address, install cookies while visiting this website and obtain, for example, information that you have visited.

Our website includes social networking features, so-called plug-ins such as Facebook. Facebook plug-ins are identified by the Facebook logo. When using this type of plug-in, your browser connects directly to Face servers.

We do not have control or responsibility for third-party sites, so we cannot assume any responsibility for the protection and privacy of any personal data you share with them.

• You can get more information about Facebook's data handling and cookie policy at Facebook

• You can get additional information about Google Analytics data collection at Google Analytics

• You can get additional information on Youtube data collection at Youtube

• You can obtain additional information about Instagram data collection at Instagram

5.       DATA SHARING

OSDM may communicate your personal data to/when:

• Entities subcontracted for the purposes described in this Privacy Policy, under the terms of the contracts entered into with them;

• Such communications of data are necessary or appropriate (i) in light of the applicable law (ii) is carried out in compliance with a legal obligation / court order, (iii) a decision by the National Data Protection Commission or another competent authority, or (iv) to respond to requests from public or governmental authorities.

5.1.  Data Transfer Outside the European Union

Your personal data may be accessed by our suppliers or service providers located in countries outside the EEA, for the purposes described in this Privacy Policy. If it does, we ensure that your personal data that are exported outside the EEA will be handled in accordance with appropriate security measures, in compliance with applicable legal provisions, in particular as regards the determination of the suitability of such country for data protection and applicable to such transfers.

Certain countries located outside the EEA, such as Switzerland and Canada, have already been recognized by the European Commission as offering an adequate level of data protection, as well as US-based service providers who have joined the United States Department of Commerce United States, to the EU-US Privacy Shield. As such, no additional safeguards will be required.

Your personal data is stored on the protected servers of our suppliers / service providers, being accessed and used exclusively under our policies and standards (or equivalent policies and standards of our suppliers / service providers).

6. PERIOD OF PRESERVATION OF PERSONAL DATA

In accordance with Art. 17 of RGPD, your Personal Data will be stored for the period of time necessary for the purposes for which it was collected or for the period of time required to comply with its obligations under the laws or European laws and regulations, to which OSDM must respond.

If you have given your consent to the processing of your personal data for marketing purposes, such data will be kept until the consent is revoked.

7. HOW DO WE KEEP YOUR PERSONAL INFORMATION SAFE?

We use a variety of security measures, including encryption and authentication tools, to help protect and maintain the security, integrity, and availability of your personal information.

While the transmission of data over the internet or website cannot guarantee complete security against intrusions, we and our service providers have made the best efforts to implement and maintain physical, electronic and procedural safeguards designed to protect your personal data at all times. With the applicable data protection requirements. Among others, we have implemented the following:

• All data transmitted on the website uses the SSL (Secure Socket Layer) standard. SSL is a proven security standard. You can confirm that the connection is secure by using the https: // attachment (...) in the browser address and / or the browser lock icon.

• Restricted personal access to your data based on the criterion of granularity and only within the scope of the purposes communicated.

• Transfer of data collected only in an encrypted form.

• Storage of highly confidential data only in encrypted form.

• Protection of IT systems through firewalls, with a view to preventing unauthorized access to your personal data.

• Continuous monitoring of access to information technology systems with a view to preventing, detecting and preventing the misuse of your personal data.