PRIVACY POLICY

1. Identification of the Data Controller

 

LAST PLACES, S.L. is RESPONSIBLE for the processing of the USER’s personal data and informs you that this data will be processed in accordance with the provisions of Regulation (EU) 2016/679 of 27 April (GDPR) and Organic Law 3/2018 of 5 December (LOPDGDD).

You can contact the Controller by e-mail at contact@lastplaces.com.

The address for the purpose of complaints shall correspond to the address indicated as the Holder’s address.

 

 

2. Purposes of processing

 

1. Answer the questions that the interested party sends to the Data Controller.

 

Retention period: The data will be kept until the issue raised by the data subject is resolved. Subsequently, if necessary, the information will be kept blocked for the legally established periods.

 

Legal basis: Legitimate Interest of the Data Controller and Consent of the Data Subject.

 

1. To send the interested party commercial communications about our services or about articles, events or publications that may be of interest to them (newsletter).

 

Retention period: The data will be kept as long as the data subject does not revoke the consent granted. Subsequently, if necessary, the information will be kept blocked for the legally established periods.

 

Legitimate basis: Express consent of the data subject.

 

1. Manage the publication of user content or opinions on our blog.

 

Retention period: The data will be kept as long as the data subject does not revoke the consent granted. Subsequently, if necessary, the information will be kept blocked for the legally established periods.

 

Legitimate basis: Express consent of the data subject.

 

 

3. Recipients of your data

 

The Data Controller contracts with third party processors in order to provide its services. With the exception of these entities, your data will not be disclosed to other third parties. If for any reason it is necessary to communicate such data to third parties, you will be informed in advance and, where appropriate, your consent will be requested and the purposes of the communication and the identity of the third party to whom the data will be communicated will be specified.

 

This is with the exception of cases in which a legal requirement makes it necessary to communicate such data to a third party.

 

4. Rights

 

Individuals who provide us with their data have the following rights in relation to their data:

 

1. Right of access
2. Right of rectification or erasure
3. Right to restriction of processing
4. Right to portability
5. Right to object
6. Right to withdraw consent

 

1. Right of access: Any person has the right to obtain from the Data Controller confirmation as to whether or not personal data concerning him/her are being processed and, if so, the right of access to the personal data.
2. Right of rectification: This is the right to obtain the rectification of personal data held by us concerning you.

 

1. Right of erasure: This is the right to obtain the erasure of your personal data.

 

1. Right to restriction of processing: This is the right for your data to cease to be subject to the relevant processing operations when any of the following conditions are met:

 

• When you have exercised your rights of rectification or opposition and the Controller is in the process of determining whether the request is admissible.

 

• If the data processing is unlawful, which implies the erasure of the data, but you do not want your data to be erased by the Data Controller.

 

• When the data are no longer necessary for processing, this means that the data are deleted, but you wish the data controller to limit the processing of the data and to keep them for the purpose of making, exercising or defending claims.

 

1. Right to portability: This is the right to obtain from the Data Controller, in the event of automated processing of your data, a copy of your data in a structured, commonly used and machine-readable format or to have this copy transmitted directly to the Data Controller indicated by you. Please note that this right does not apply to:
   • The data of third parties that you have provided to the Data Controller.
   • The data which is its responsibility, but which has been provided to the Data Controller by third parties.
2. Right to object: This is the right to object to the processing of your personal data. As far as the processing carried out by the Data Controller is concerned, you may object to the sending of commercial communications, both our own and those of third parties.

 

If you would like more information about your rights, we suggest that you visit the website of the Spanish Data Protection Agency, as well as the European Data Protection Regulation.

 

These rights may be exercised by sending an email to contact@lastplaces.com, clearly indicating which right you wish to exercise and providing a copy of your identity document to prove your identification. They may also be sent by post to the registered address of the Data Controller, which appears in point 1 of this Privacy Policy.

 

Additionally, we inform you about the possibility of filing a complaint with the competent Control Authority, in this case, the Spanish Data Protection Agency, especially in the event that you have not obtained satisfaction in the exercise of your rights. You can contact the Spanish Data Protection Agency by telephone on 901 100 099 and 912 663 517 or by visiting them at their address C/ Jorge Juan, 6. 28001 – Madrid.

 

5. Security measures

 

The Controller guarantees the user that the processing carried out complies with all the provisions of the aforementioned data protection regulations, GDPR and LOPDGDD, and that the data are processed lawfully, fairly and transparently in relation to the data subject and are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.

Likewise, the Controller guarantees that it has implemented appropriate technical and organisational policies to apply the security measures established by the GDPR and the LOPDGDD in order to protect the rights and freedoms of USERS and has provided them with the appropriate information so that they can exercise them.

 

6. Origin and veracity of the data

 

All of the data collected comes from the interested party. The User, by accepting this Privacy Policy, declares and undertakes to guarantee the truthfulness and accuracy of the data provided, as well as being the legitimate owner of the same.

 

Likewise, the User undertakes to keep his/her data updated at all times, and to notify the Controller without delay of any significant modification, such as the change of ownership of his/her bank account, or the modification of his/her e-mail account provided through the relevant forms hosted on the website.

 

In this regard, the User shall be solely responsible for any failure to comply with the above, exonerating LAST PLACES from any liability with respect to such data that the User has not previously communicated to LAST PLACES.