Privacy Policy
This policy establishes the principles on which CAFEGA IMPORT BCN S.L. will process, handle, and protect any personal information collected through the website https://cafega.es/ (hereinafter, the “Website”), ensuring compliance with the principles of lawfulness, fairness, and transparency, as well as all other obligations and guarantees established in applicable regulations.
WHO WILL PROCESS YOUR PERSONAL DATA?
- Data Controller: CAFEGA IMPORT BCN S.L. (hereinafter CAFEGA)
- Registered Office: C/ de Provença, 185, 1 2, 08036 Barcelona
- Tax ID (NIF): B56411812
- Email: cafega@cafega.es
PURPOSES AND LEGAL BASIS FOR DATA PROCESSING
The personal data collected by CAFEGA will be processed for the purposes and based on the legal grounds listed below:
| Objective | Legal Basis |
|---|---|
| Managing user account registrations necessary for acquiring Cafega services. | Contractual obligation (Art. 6.1b GDPR) |
| Processing images of attendees at Cafega-organized events for informational and promotional purposes. | Consent (Art. 6.1a GDPR) |
| Processing candidate data submitted through Cafega’s job application form. | Consent / Intent to enter into a contract (Art. 6.1a, 6.1b GDPR) |
| Responding to user inquiries, requests, proposals, and complaints via contact forms on the Website. | Consent (Art. 6.1a GDPR) |
| Processing data provided during event registration, information sessions, or downloads of guides, e-books, or similar free products for direct marketing purposes. | Consent (Art. 6.1a GDPR) |
| Sending commercial communications, including electronically, to inform users about products and services. Users can opt out at any time. | Consent (Art. 6.1a GDPR) |
| Compliance with legally established obligations. | Legal obligation (Art. 6.1c GDPR) |
For data processing based on consent, users can withdraw consent at any time without affecting the legality of prior processing. To revoke consent, contact CAFEGA at cafega@cafega.es.
WHAT DATA WILL BE PROCESSED?
The data processed by CAFEGA may include, but is not limited to, the following categories:
- Personal contact details and identifiers (name, surname, address, email, phone number, ID/passport, IP address).
- Employment and organizational data (company, department, position, responsibilities, functions).
- Professional and educational background (career details, work experience, tasks, academic qualifications, certifications, evaluations).
- Financial data (bank account details for invoicing and payments).
- Photographs and videos of event attendees for informational and promotional purposes.
- Service usage data to analyze the performance of Cafega’s services.
OBLIGATION TO PROVIDE DATA
Forms on the Website will indicate required fields. If users fail to provide mandatory data, CAFEGA may be unable to process their request.
DATA RETENTION PERIOD
CAFEGA will retain personal data only for as long as necessary to fulfill the intended purposes, provided the user does not withdraw consent. Afterward, data may be stored in a blocked state for legally required periods.
For inquiries and requests, data will be retained for one year from the last update, after which they will be deleted unless the user specifies otherwise. For more details, contact cafega@cafega.es.
DATA DISCLOSURE
Personal data will not be disclosed to third-party companies without prior consent, except in the following cases:
- Public authorities in Cafega’s areas of activity, as required by applicable regulations.
- Law enforcement agencies when required by law.
- Financial institutions for payment processing.
- Legal professionals when legally required or for service execution.
INTERNATIONAL DATA TRANSFERS
If CAFEGA transfers personal data to third parties outside the European Economic Area (EEA), it will ensure that adequate safeguards are in place, in compliance with Chapter V of the GDPR, such as standard contractual clauses or other legally valid mechanisms.
USER RIGHTS
Under applicable data protection laws, users have the following rights:
- Access: Obtain information on whether CAFEGA processes their personal data and, if so, receive a copy.
- Rectification: Correct or update inaccurate or incomplete data.
- Erasure (Right to be Forgotten): Request the deletion of data when it is no longer necessary for the original purpose, unless there is a legal obligation to retain it.
- Restriction: Request that CAFEGA ceases processing personal data under legally established conditions.
- Objection: Oppose data processing in certain circumstances, unless CAFEGA has compelling legitimate reasons or needs to process the data for legal claims.
- Data Portability: Receive personal data in a structured, commonly used, machine-readable format and transmit it to another controller.
How to exercise these rights?
Users can exercise their rights by providing valid identification and contacting CAFEGA via:
- Email: cafega@cafega.es
- Postal Mail: C/ de Provença, 185, 1 2, 08036 Barcelona (Attention: Cafega Customer Service)
Additionally, if a user believes their rights have not been fully upheld, they may file a complaint with the Spanish Data Protection Agency (AEPD) at Calle de Jorge Juan, 6, 28001, Madrid, or via www.aepd.es.
SECURITY MEASURES
CAFEGA is committed to keeping personal data secure, implementing appropriate technical and organizational measures to prevent unauthorized access, modification, or disclosure. These measures consider the state of technology, the nature of stored data, and potential risks.
Additionally, CAFEGA contractually requires its service providers and partners to apply adequate security measures to protect personal data.
CHANGES TO THIS PRIVACY POLICY
This Privacy Policy may be updated over time due to changes in regulatory requirements or judicial rulings. CAFEGA reserves the right to modify this policy accordingly.
Last updated: August 23, 2021
© Cafega Import Bcn, S.L. All rights reserved.