nuevo logo blanco

Tres Lunas Viajes

Privacy Policy

General Information

This Privacy and Cookies Policy is applicable to all personal data that you, as a user, (understood as any individual accessing the website) provide to Caroline Hossack Lopez when you access https://treslunasviajes.com, hereinafter the “Website”.

The purpose of this Privacy and Cookies Policy is to provide you with information about the use we make of the personal data of users, as well as to inform you about the rights granted to you in accordance with the General Data Protection Regulation and the Organic Law on Data Protection and Digital Rights Guarantee.

Who is responsible?

The data controller for the personal data collected through the Website is Caroline Hossack Lopez, with Tax ID number 44999096X and registered address at Calle Migdia 5 Torroella de Montgri, Girona 17257.

Why do we ask for your data?

Purpose

Description

Data

Newsletter sign-up
Manage the subscription to the newsletter, which may include receiving personalized information about other products and services by those means authorized in the sign-up form (SMS, e-mail, etc.). You can unsubscribe from the newsletter at any time.
Email address.
For marketing purposes
To carry out promotional actions of our products or services, according to the consent expressed by the user and the information provided at the time of collection of the same. To personalize the services we offer you and to be able to make recommendations based on your interaction with us on the web and the analysis of your user profile (for example, based on your purchase and browsing history). To show you online advertising that you may see when you browse websites and apps, for example, on social networks. The advertising you see may be displayed randomly, but at other times it is advertising that may be related to your purchase history, preferences and browsing history.
Email address.

To get in touch with the user

Handling enquiries made through the contact form, complaint form or other customer service channels.

Name and/or surname, Email address.

What is our legal basis for data processing?

Our legal basis for processing personal data is as follows:

  • Consent: if you have given explicit consent when entering personal data by checking the corresponding box.
  • Contract performance: if there is a contractual relationship between you and Caroline Hossack Lopez, or if the processing of personal data is necessary for the performance of the commercial relationship.
  • Compliance with a legal obligation: in cases where Caroline Hossack Lopez has a legal obligation applicable to us as data controllers.
  • Legitimate interest: in cases where there is a legitimate interest of our own or of third parties related to the operation of the Website or the provision of services to the user, provided that the fundamental interests and rights of the users do not override the legitimate interest.

How long will we retain your data?

The personal data we collect through the Website will be processed and retained for the time necessary to fulfill the purpose for which they were collected.

Specifically, data collected for the development and execution of a contract with you will be retained for as long as the contractual relationship is in effect. However, personal data collected based on legitimate interest or with your consent will only be retained for the time necessary to fulfill that purpose.

After the strictly necessary period for the purposes described above has elapsed, we will retain personal data for an additional period, until all actions arising from our liability resulting from each of the processing activities have expired.

In cases where we need to transfer data to third parties with headquarters or servers outside the European Union or the European Economic Area (Iceland, Norway, or Liechtenstein), and the European Commission has not issued an Adequacy Decision for that country, or we do not have Binding Corporate Rules, we will comply with the provisions set by the European Commission for these cases to provide you with adequate guarantees, either by signing the standard contractual clauses or by obtaining your informed consent.

If you want more information about the transfer of personal data to countries outside the EU/EEA, you can contact us via the following email address: info@treslunasviajes.com

You should be aware that the United States has not received an adequacy decision regarding European data protection regulations. Therefore, when these companies are based or have servers in the United States, the standards for protecting your personal data may not be the same as those provided for in European regulations. In this regard, by continuing to use the services or the Website, you consent to the processing of this personal data in the United States.

What are your rights?

You can exercise the following rights at any time and free of charge:

  • Access: to know what data we hold and what we do with it.
  • Rectification: to inform us of any inaccurate data.
  • Erasure: to have your personal data deleted, to the extent possible.
  • Objection: to stop us from processing your personal data for any of the purposes mentioned above, provided there is no legal obligation preventing it.
  • Portability: to have your personal data transferred to a third party, to the extent possible.
  • Restriction: to have your data suspended when you challenge its accuracy, or if you want us to keep it for legal claims.
  • Not to be subject to decisions based solely on automated processing of your data.

You can exercise these rights by sending an email to info@treslunasviajes.com, indicating the right you wish to exercise, accompanied by a document proving your identity or by using the following forms:

  • Exercise of the right of access here
  • Exercise of the right to rectification here
  • Exercise of the right to erasure here
  • Exercise of the right to object here
  • Exercise of the right to data portability here
  • Exercise of the right to restriction here
  • Exercise of the right not to be subject to automated decisions here

If we do not properly respect these rights as the data controller, please note that you can file a complaint with the data protection supervisory authority, the Spanish Data Protection Agency, at C/Jorge Juan, 6, 28001- Madrid or at the email address dpd@agpd.es.

Confidentiality and Security Measures

Caroline Hossack Lopez, as the data controller, we undertake to respect the confidentiality of users’ personal data and to use it in accordance with the purposes for which it was collected.

We have implemented all appropriate technical and organizational security measures according to the nature of the data being processed and as required by data protection regulations.