Privacy
HOPS BIJOU meets the requirements imposed by current regulations on data protection, that is, it complies with REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL , of April 27, 2016, relating to the protection of individuals with regard to the processing of personal data and the free circulation of these data and which repeals Directive 95/46/EC (General Data Protection Regulation). In this way, HOPS BIJOU assures its Clients of the correct processing of their personal data.
HOPS makes available to its Clients the Management Policy implemented in the company derived from the ISO 9001 and ISO 27001 certification on quality and information security.
Therefore, this Privacy Policy has been developed taking into account the provisions of current regulations on data protection and its purpose is to inform the owners of the personal data, regarding whom information is being collected. , the specific aspects related to the processing of your data, among other things, the purposes of the treatments, the contact information to exercise the rights that assist you, the retention periods of the information and the security measures among other things.
Data Processing
The personal data requested, where applicable, will consist only of those strictly essential to identify and respond to the request made by the owner thereof, hereinafter the interested party. Said information will be treated in a loyal, lawful and transparent manner in relation to the interested party. On the other hand, personal data will be collected for specific explicit and legitimate purposes, and will not be further processed in a manner incompatible with said purposes.
In this sense, the sections of the website where we collect personal data and the purpose of its collection are the following:
- contact : respond to your query or request
- newsletter subscription : periodic sending of our newsletter containing relevant information about products, services, activities, etc.
- generate a customer account : be able to give access to online content and allow you to access our services: contracting, management of domains and plans, consultation of invoices and contacting departments. Furthermore, as long as you have expressly consented by checking the corresponding box, they will be processed for the purpose of sending you information periodically.
- Contracting of products and/or services : administration, expansion and improvement of the Client's services as well as technical and commercial purposes on the products and services offered. All of this is included in the contractual document called "Terms and conditions" ( https://www.hops.es/joyas/conditionsofUse ).
The data owner will be informed, prior to collecting their data, of the general points regulated in this policy so that they can give express, precise and unequivocal consent for the processing of their data, in accordance with the following aspects.
Purpose of treatment
The explicit purposes for which each of the treatments are carried out are included in the information clauses incorporated in each of the data collection methods (web forms, paper forms, contracts, posters and informative notes).
However, in general the collection and processing of data has the purpose of:
- The maintenance of the contractual relationship established between the data owner and HOPS BIJOU.
- The execution, maintenance and management of any relationships that HOPS BIJOU and the Data Owner may maintain: commercial, administrative, accounting, labor, marketing (business prospecting and promotion), human resources, training, and any other service. of services that were requested from HOPS BIJOU by the Data Owner.
- The sending of technical, operational, advertising, promotional information, related to HOPS BIJOU 's own products, provided that you have given your consent for this or there is a prior commercial/contractual relationship with the legal entity or professional and it refers to the sending of commercial communications referring to products or services similar to those that were initially contracted with the client (article 21.2 of Law 34/2002, of July 11, on Information Society Services and Electronic Commerce).
In no case will they be used for purposes other than those for which they have been collected.
Legitimation (legal basis for processing)
As a general rule, prior to the processing of personal data, HOPS BIJOU obtains unequivocal consent from the owner thereof, by incorporating informed consent clauses in the different information collection systems.
However, in the event that the consent of the interested party is not required, the legitimizing basis of the processing on which HOPS BIJOU relies is the execution of the established contractual relationship, our legitimate interest in the development of the business, in the case of commercial promotion and prospecting or compliance with a law that authorizes or requires the processing of the interested party's data.
If your consent has been requested for any of the treatments that we are going to carry out (such as sending information) we inform you that you can withdraw it at any time.
Recipients
As a general rule, HOPS BIJOU will not inform any third party about your personal data, unless the purpose of the communication is to fulfill purposes directly related to the legitimate functions of the assignor and the assignee or the Owner has given his or her consent for such purposes or when the transfer is authorized by any Law.
However, your personal data may be reported to service providers, and because it is necessary for the provision of the service or the supply of goods. This relationship will be contractually regulated under the terms of article 28 of the RGPD.
Conservation periods
The information collected from the interested party will be kept as long as it is necessary to fulfill the purpose for which the personal data was collected, so that, once the purpose is fulfilled, the data will be canceled. Said cancellation will give rise to the blocking of the data, being kept only at the disposal of the AAPP, Judges and Courts, to address the possible responsibilities arising from the treatment, during the limitation period thereof, once the aforementioned period has expired, the information will be destroyed. .
For information purposes, the legal retention periods for information in relation to different matters are set out below:
|
DOCUMENT |
TERM |
REF. LEGAL |
|
Documentation of a labor nature or related to social security |
4 years |
Article 21 of Royal Legislative Decree 5/2000, of August 4, which approves the consolidated text of the Law on Infringements and Sanctions in the Social Order |
|
Accounting and tax documentation for commercial purposes |
6 years |
Art. 30 Commercial Code |
|
Accounting and tax documentation for tax purposes |
4 years |
Articles 66 to 70 General Tax Law |
Navigation data
In relation to the navigation data that may be processed through the website, in the event that data subject to regulations is collected, it is recommended to consult the Cookies Policy published on our website ( https://www.hops. es/jewels/aboutcookies ).
Rights of interested parties
Data protection regulations grant a series of rights to data subjects or owners.
You can exercise them by contacting HOPS , by writing sent to the following address: Calle Almanzora 17C, 28023 Madrid (Spain) - Customer Service Department or to the email address contacto@hops.es, attaching in all cases a photocopy of your DNI or equivalent document valid in law that allows proving your identity.
HOPS will respond to your request as soon as possible and taking into account the deadlines provided for in data protection regulations.
These rights that assist interested persons are the following:
- Right of access: right to obtain information about whether your own data is being processed, the purpose of the processing being carried out, the categories of data being processed, the recipients or categories of recipients, the retention period and the origin of said data.
- Right to rectification: right to obtain rectification of inaccurate or incomplete personal data.
- Right to deletion: right to obtain the deletion of data in the following cases:
- When the data is no longer necessary for the purpose for which it was collected
- When the owner of the same withdraws consent
- When they must be deleted in compliance with a legal obligation
- When the data has been obtained by virtue of an information society service based on the provisions of art. 8 section 1 of the European Data Protection Regulation
- Right to object: right to oppose certain processing based on the consent of the interested party.
- Right of limitation: right to obtain limitation of data processing when any of the following situations apply:
- When the interested party disputes the accuracy of the personal data, during a period that allows the company to verify its accuracy.
- When the processing is illegal and the interested party opposes the deletion of the data
- When the company no longer needs the data for the purposes for which it was collected, but the interested party needs it for the formulation, exercise or defense of claims
- When the interested party has opposed the processing while it is verified whether the legitimate reasons of the company prevail over those of the interested party
- Right to portability: right to obtain the data in a structured, commonly used and machine-readable format, and to transmit it to another data controller when:
- Treatment is based on consent
- The treatment is carried out by automated means
- Right to file a claim with the competent supervisory authority
Security
The security measures adopted by HOPS BIJOU are those required, in accordance with the provisions of article 32 of the RGPD. In this sense, taking into account the state of the art, the costs of application and the nature, scope, context and purposes of the processing, as well as the risks of varying probability and severity for the rights and freedoms of individuals physical, has established the appropriate technical and organizational measures to guarantee the level of security appropriate to the existing risk.
And all this, offering maximum guarantees of quality and information security in the provision of its services, guaranteeing them by being certified in the ISO 9001:2008 and ISO 27001:2013 standards.
In any case, HOPS has implemented sufficient mechanisms to:
- Ensure the ongoing confidentiality, integrity, availability and resilience of treatment systems and services.
- Restore availability and access to personal data quickly, in the event of a physical or technical incident.
- Verify, evaluate and assess, on a regular basis, the effectiveness of the technical and organizational measures implemented to guarantee the security of the treatment
- Pseudonymize and encrypt personal data, if applicable
- Choosing a selection results in a full page refresh.