• The nature of the personal information processed;
• The purposes and means of processing personal information;
• The identity and contact data of the data controllers;
• The contact details of the Data Protection Officer (DPO);
• Any third party involved in the processing activities;
• The retention period of personal information;
• The security measures adopted to protect personal information;
• Users' privacy rights.
Under no circumstances, users under the age of sixteen cannot consent to the processing of personal information without the authorization of the parents.
The GDPR indicates in its legislation the need for control and supervision of data by a subject that, alone or jointly with others, determines the purposes and means of processing personal information.
Under the framework of the new legislation, the designated controllers for processing and monitoring the data of "the Web" are:
CROWNHILL SHOES S.L. C / VELAZQUEZ 126 28006 MADRID (SPAIN)
At Crownhill Shoes, you can contact the designated data protection officer to ensure that our website processes personal information in accordance with the GDPR, through the following email address: firstname.lastname@example.org
2. Personal Information and purposes of the data collected
"Personal Information" refers to any information with users that identifies them personally, either alone or in combination with other information.
Personal information is collected automatically by the Crownhill Shoes website or received through multiple sources: forms, chat, email, applications, devices, social networks and other media.
• Navigation data
The site collects non-confidential browsing data by automatic means to enable and improve user navigation (for example, IP address, date / time of the visit and its length, any reference URL, pages visited on the site, the device used and other information).
The processing of this information allows users to access the site and fully enjoy its functions and services. In addition, the navigation data can be used to verify that the site works correctly.
From time to time, the navigation data is processed anonymously for statistical purposes.
It is unlikely that the navigation data will allow the identification of the relevant data subject. However, by its very nature, navigation data may allow the identification of users if they are associated with other information.
The navigation data described above is stored only temporarily in accordance with applicable law.
Upon completion of the purchase, the site asks users to provide personal information with the essential purpose of fulfilling their purchase orders and comply with contractual obligations (for example, first and last name, email address, delivery address, etc.).
Such personal information is also essential for Customer Service to assist customers in inquiries and any related needs, before or after the sale (for example, regarding the delivery status of the order or product returns).
Personal information related to orders will be stored for as long as necessary to comply with contractual obligations and with applicable tax and financial reporting obligations.
The site may also verify the payment instruments used by customers to purchase on the site with the main purpose of preventing fraudulent or criminal activities. Under no circumstances, Crownhill Shoes, nor its controllers, store information related to the cards of our customers and third parties are entrusted with the verification of the payment of the purchases made within "the web".
Similarly, personal information and shipping address is considered essential for the correct execution of the order, therefore the lack of it will avoid users from completing their order.
In order to improve the user experience, "the Web" may send communications by email, with product suggestions, discounts, requests for comments or other updates. Customers can always unsubscribe from such communications by email (for example, by clicking on the "unsubscribe link" at the bottom of each email).
However, the e-mails of a transactional nature, that is to say, they contain the confirmation of the payment of the order, as well as the detail of the same or assistance for the payment thereof, may never be subject to the subscription cancellation, since by their nature they form indispensable part of the contract of sale.
• Site registration
When users choose to register a personal account within the Crownhill Shoes site, they are requested to submit personal information. The site clearly indicates what personal information is mandatory (or not) to set up a site account.
Users must send personal information that is true and accurate at the time of registration and they are invited to keep their personal information updated. To proceed to any modification of them, you must log in to the personal account to make all the relevant changes.
Users who choose to enable or log in to their site account through a social network should keep in mind that when they connect their site account to a social network account, the site collects certain personal information that the user has already provided to those social networks (for example, the email address and the public profile on Facebook).
The Controllers do not supervise or control such social network services or user profiles in these services, and do not establish privacy settings or rules on how the personal information of those services will be used. It is strongly recommended that users read all policies and information about applicable social networking services to obtain more information about how they process personal information.
• Newsletter and marketing communications
On the Site, users can choose to receive newsletters and commercial communications.
Crownhillshoes.com always collects explicit, free and unambiguous consent from users before sending newsletters and marketing communications to any user.
In such cases, users may be invited to send personal information in addition to their email address in order to have informative newsletters and marketing communications adapted to the user's profile.
At any time, users can always withdraw their consent to receive newsletters and commercial communications through their account settings, by clicking on the "unsubscribe" link in any of these emails or simply by email indicating such effect.
Under the explicit consent of the user, the newsletters and marketing communications can be adapted to the user's "profile", based on the personal information and navigation data that the site collects or receives about the user in question.
The main objective of Crownhill Shoes is to propose products, services and initiatives that respond better to the tastes, buying habits and interests of users and customers.
Personal information can also be used for remarketing, redirecting or creating profiles, including through third parties (for example, social networks, etc.).
3. Cookies Policy
Cookies are used to save the preferences and settings of the user's browser in order to make the navigation more efficient and faster, thus speeding up the process of loading the web in a future visit. They are a small text file with information that is stored in the browser of the user's device (computer / tablet / Smartphone) when visiting a specific website. Cookies are also used to track users through a website. In this way it is possible to recognize if the user is registered what products are visited or how long it takes the user to visit us again.
Our website www.crownhillshoes.com makes use of two types of cookies:
4. Management and use of personal information
Within the use of the personal data that users provide to "the Web", it may be necessary for Crownhill Shoes to use external digital marketing tools, such as email marketing tools for example, to which relevant information will be transferred to them. said use, and only and exclusively for direct use in actions relevant to Crownhill Shoes, in no case will be used for the benefit of third parties.
For this, the Controllers can transfer personal information of the clients to external suppliers, acting as "data processors" (the "Processors"), in order to carry out commercial operations.
It is the responsibility of the Crownhill Shoes controllers to ensure and ensure that all Processors apply their best practices to protect personal information and that they will not use personal information for any other purpose than agreed with the Controllers.
Users can request an updated list of processors involved in the processing of personal information relevant to site activities by writing an email to: email@example.com
The Crownhill Shoes Controllers always reserve the right to disclose personal information about users as required by law (for example, in response to requests for law), and when necessary to protect the rights of the Controllers or their affiliates. or third parties. In any other case, the exchange of personal information will be conditioned on the user's preliminary and explicit consent, unless processing is permitted under an alternative legal basis. The Controllers will not transfer any personal information outside the European Economic Area (EEA), unless the user has explicitly authorized such transfer or the transfer of personal information outside the EEA is permitted by the GDPR on another legal basis.
5. Processing methods and security measures
The Controllers process the personal information of the users with computer, automatic and electronic tools and, in limited cases, through the use of documentary means. In accordance with the GDPR, specific security measures have been implemented to prevent data loss, illegal or inappropriate use and unauthorized access.
Only the authorized employees of the Controllers and the authorized employees of the external suppliers who act as Processors on behalf of the Controllers have access to personal information related to the activities of the Site. There are data processing agreements with the processors to ensure that they always meet the security level required by the GDPR while processing personal information related to the site's activities.
While the Site adopts primary security measures to prevent the loss, destruction or dissemination of personal information, at the same time it can not exclude the security risks that are naturally involved in the transmission of data online. The user accepts the inherent risks of providing personal information through the Internet and will not hold the Site responsible for any breach of security, unless this breach is due to the negligence or voluntary breach of the Site.
6. Storage of personal information
The Controllers will store personal information for as long as it is necessary to provide users and customers with the required services or to comply with legal or tax obligations or for the minimum period prescribed by law.
In order to determine the appropriate storage period for personal information, Controllers will consider multiple factors to ensure that personal information is not stored for a period longer than necessary or appropriate. Such criteria will also include:
• The purpose for which the Site contains personal information;
• legal, tax and regulatory obligations in relation to that personal information;
• The type of relationship continues with the user or customer in question (how often the user logs into their site account, if users continue to receive marketing communications, how often they browse or shop on the site, etc.);
• Any specific user request in relation to the deletion of personal information;
• Legitimate commercial interests.
The site will immediately eliminate or anonymize personal information that is no longer needed or not maintained in accordance with the law.
7. Connection to third-party websites or platforms
The site may contain banner, advertising messages and other links to websites or third-party. The Controllers cannot control or take responsibility for the conduct of such websites or third-party platforms with respect to the privacy law. Users are encouraged to read their privacy policies to verify how they collect and process personal information.
8. The rights of users
Users have the right to receive confirmation if the Controllers contain personal information about them. In that case, users may, under the protection of the GDPR:
• Be informed about the collection and use of your personal information;
• Access your personal information at no cost;
• Rectify or complete inaccurate personal information (when incomplete);
• Delete personal information ("the right to be forgotten");
• Under certain conditions, obtain the restriction or deletion of your personal information;
• Obtain and reuse your personal information for your own purpose in different services when the processing is based on a contract or consent, and the processing is carried out by automatic means ("the right to data portability");
• Under specific conditions, object to the processing of your personal information;
• Make objections at any time about the use of personal information for purposes of "profiling" or "automated decision making";
• The right to file complaints related to the collection and processing of personal information to the competent supervisory authority;
• The right to withdraw consent for the processing of personal information at any time.
Users can contact the site for any questions and exercise their privacy rights at the following email address: firstname.lastname@example.org