Data protection policy
HOW DO WE OBTAIN YOUR DATA?
If you give us your consent, we collect your data in the following ways:
- When you buy online through the web.
- When you subscribe to the newsletters.
- When you contact us directly.
WHAT INFORMATION DO WE OBTAIN?
When necessary we can store this type of data:
- Name and surname.
- Shipping Address.
- Billing Address.
- language and sex
- Contact phone number.
Eventually we could request additional data but we will always obtain your consent.
We will never ask you for or store data that is not necessary and in particular those that reveal ethical or racial origin, political opinions, religious or philosophical convictions, trade union membership, genetic or biometric data, related to your health or life or sexual orientation.
WHY DO WE NEED YOUR PERSONAL DATA?
- To answer all your questions, present you with offers, news and promotions.
- To know the products that interest you and improve our offer.- To comply with legal requirements.
- To identify you as a customer on our website.
- To keep a history of your purchases.
HOW DO WE PROTECT YOUR PERSONAL DATA?
We put all possible means to ensure that your data is safe. 100% protection is not possible, but at COTTYFISH we constantly work towards this goal. Your password is your responsibility, keep it carefully and do not give it to anyone.
FOR HOW LONG DO WE KEEP YOUR DATA?
We keep your data for the time strictly necessary to fulfill the purpose for which they were collected. In some cases, such as for the referential integrity process, we need to have a historical database of your purchases, as well as due to legal requirements.
With a certain periodicity we will inform you if you want to maintain your consent for the different purposes. Likewise, unless we are obliged to keep them, we will delete your data if you request it.
WITH WHOM DO WE SHARE YOUR DATA?
The data may be passed on to authorities and service providers. These service providers are the data processors. A data processor is the natural or legal person, public or private, or administrative body that, alone or jointly with others, processes personal data on behalf of the data controller or the file manager, as a consequence of the existence of a legal relationship. that links you to it and delimits the scope of your action for the provision of a service. In the case of entities without legal personality that act in traffic as differentiated subjects, the person or persons who are members of the same will be considered in charge of the treatment. In addition, the data may be transferred to platforms such as Facebook and Google for advertising purposes.
WHAT ARE YOUR RIGHTS OVER YOUR DATA AND YOUR RIGHT TO SUBMIT CLAIMS BEFORE THE DATA PROTECTION AUTHORITY.
Any interested party may file a claim with the competent Data Protection Control Authority, especially when they have not obtained satisfaction in the exercise of their rights and the way to contact them would be to write to the Spanish Data Protection Agency. Personal Data at C/Jorge Juan n.º 6, 28001 Madrid or through its electronic headquarters at https://www.aepd.es/
Remember that our treatment of personal data is constantly changing to improve security and protect your rights.