Privacy Policy

This privacy policy is adapted to current Spanish and European legislation regarding the protection of personal data on the internet, and has been established in accordance with the following regulations:

• Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR)
• Organic Law 3/2018, of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD)
• Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI)
• The processing of personal data, as well as any other information requested from users for the management and processing of online inquiries within the Website, will be carried out in accordance with the provisions of the aforementioned legislation.

This website is a secure space where the personal data of our users is respected and protected. Since the privacy of your data is very important to us, we would like to inform you of our guiding principles regarding your privacy:

• We only request the personal information necessary to provide you with the services you request.
• Except in cases provided for by law and for the purposes defined therein, we never share the personal information of our users with anyone, unless we have your express authorization to do so, a legal obligation, or are fully authorized to do so.
• We never use your personal data for any purpose other than that stated in this privacy policy.

Identity of the data controller

VANADI S.A., Tax ID A67736744, with registered office at Calle México 20, 5º, 03008 Alicante, Spain, telephone number +34 966 954 058 and email address info@vanadi.es

Information collected and purpose

For the purposes established in Articles… In accordance with Articles 13 and 14 of the GDPR (Right to Information when Collecting Data), the client is hereby informed that the data collected when contacting us through our contact form will not be recorded in our files until it can be verified that the data provided is correct and should be processed. The purpose of this data processing is the management and control of electronic communications, and, where applicable, the processing of orders for our catering services and their possible invoicing.

1. The user is also informed that the information provided is subject to the commercial relationship established in the order and will not be used for any purpose other than that intended.
2. The processing and management of products purchased through electronic communication via our contact form.
3. The sending and requesting of information for the relevant management of your request or communication.
4. The transfer of the data collected by the Website owner to the different companies or individuals within our organization as necessary for the required purpose. The user may exercise their respective rights of cancellation, erasure, restriction of processing, or data portability, in accordance with the conditions set forth in this privacy policy.
5. In the event of non-compliance with the purposes set forth in these terms and conditions by the Website owner, the user has the right to file a complaint with the Spanish Data Protection Agency.

Principles applicable to the processing of personal data

The processing of the user’s personal data will be subject to the following principles set forth in Article 5 of the GDPR and in Article 4 et seq. of the LOPDGDD:

• Principle of lawfulness, fairness, and transparency: the user’s consent will be required at all times, after being fully and transparently informed of the purposes for which the personal data are collected.
• Principle of purpose limitation: personal data will be collected for specified, explicit, and legitimate purposes.
• Principle of data minimization: the personal data collected will be limited to what is strictly necessary in relation to the purposes for which it is processed.
• Principle of accuracy: Personal data must be accurate and kept up to date.
  Principle of storage limitation: Personal data will only be kept in a form that permits identification of the data subject for no longer than is necessary for the purposes for which the personal data are processed.
• Principle of integrity and confidentiality: Personal data will be processed in a manner that ensures appropriate security and confidentiality.
• Principle of proactive responsibility: The website owner will maintain and regulate the necessary technical and logistical means to ensure compliance with all applicable processing principles.

Category of Personal Data Processed

The Website owner routinely processes identifying data of clients and job applicants (name, surname, tax identification number, address, email address, curriculum vitae or work experience data, etc.).

Legal Basis for Processing Personal Data

The legal basis for processing personal data is the user’s consent, which is given by expressly accepting via the corresponding consent button or checkbox located at the end of the various contact forms.

Retention of Personal Data

The data will be retained by the Website owner for the duration of the business and/or employment relationship, until any applicable legal obligations are fulfilled, or until the user requests its deletion.

Personal Data of Minors

The Website owner does not collect data from individuals under sixteen (16) years of age, the minimum legal age for entering the workforce.

In cases where communications are made by minors under 14 years of age and are not done through their legal representatives or guardians, as required by Article 7 of Spanish Organic Law 3/2018 of December 5, on the Protection of Personal Data and Guarantee of Digital Rights (LOPD-GDD), the Data Controller is exempt from any liability. However, should this situation arise, the Data Controller will take all appropriate and legally sound actions to rectify it.

Personal Data Security

The Website Owner has adopted all necessary measures, within its capabilities and the current state of technology, to guarantee the operation of the electronic platform and prevent the presence of harmful components for customers and/or users.

We work to protect the security of your information during any financial transaction by using SSL encryption on our websites.

The Website Owner makes every effort to avoid errors in the content published on the electronic ordering platform, particularly regarding the description and price of products and goods. All content offered through this website is up-to-date, and the website owner reserves the right to modify it at any time. However, the service provider is not responsible for any consequences arising from errors that may appear in the content on the website and/or electronic platform.

Furthermore, it is important that registered users protect themselves against unauthorized access to their passwords, computers, and devices by using updated antivirus software to prevent any fraud. If using shared computers and devices, ensure that you properly log out of your session.

Duty of Confidentiality and Secrecy

The website owner is committed to maintaining the strictest confidentiality regarding the information collected from users. The owner has a duty to protect this information and undertakes not to disclose, publish, transfer, sell, or otherwise, directly or indirectly, make it available to unauthorized third parties. This obligation remains in effect even after the termination of the business relationship with the user.

Rights arising from the processing of personal data

Users may exercise the following rights against the website administrator:

• Right of access: This is the user’s right to obtain confirmation as to whether or not the website administrator is processing their personal data and, if so, to obtain information about the specific data being processed and the processing carried out by the website administrator, along with available information on the origin of said data and its recipients.
• Right to rectification: This is the user’s right to have their personal data corrected when it is inaccurate or incomplete.
• Right to erasure: This is the user’s right to obtain the deletion of their personal data, provided that current legislation does not establish otherwise, when such data is no longer necessary for the purposes for which it was processed.
• Right to restriction of processing: This is the user’s right to restrict the processing of their personal data when the data controller no longer needs the personal data or the data processed is excessive for the purposes for which it was collected. Right to data portability: This is the user’s right to receive their personal data from the data controller in a structured format to transmit it directly to another data controller, provided this is technically feasible.
• Right to object: This is the user’s right to object to the processing of their personal data or to have such processing cease when it is no longer necessary for the purposes for which it was collected.

The website administrator informs users that they may exercise their rights of access, rectification, erasure, objection, restriction of processing, and data portability, in accordance with current legislation, by submitting an express request to the website administrator. This request must include:

1. The user’s full name, a photocopy of their national identity document, passport, or other valid identification document.
2. A clear statement of the request.
3. An address for correspondence.
4. The date and signature of the requester.
5. Supporting documentation for the request, if applicable.

The website administrator will process the request in accordance with the GDPR and its implementing regulations.

This request can be submitted via email to: info@vanadi.es

Complaints to the supervisory authority

If the user believes there is a problem or violation of current data protection regulations, they have the right to file a complaint with a supervisory authority, which in the case of Spain is the Spanish Data Protection Agency (www.aepd.es).

Changes to the privacy policy

The Website owner reserves the right to modify this Privacy and Cookie Policy at their own discretion, or due to a legislative, jurisprudential, or doctrinal change by the supervisory authority. Changes or updates to this Privacy and Cookie Policy will be explicitly notified to registered users.

This Privacy Policy was last revised on May 5, 2023.