Privacy Policy
I appreciate that you are here, I know how important your privacy and data protection are, therefore I am going to try to inform you as best as possible about how we treat the data on our website, if you need anything or have any suggestions, do not hesitate to contact contact me through: info@zarimoth.store
INFORMATION ON DATA PROTECTION
The Owner makes this Privacy Policy available to you through the website www.zarimoth.store, at Zarimoth's Store or on our website, in order to inform you in detail about how we process your personal data and protect your privacy and the information you provide to us. In case of introducing modifications in the future on it, we will notify you through this same web page or through other means so that you can know the new privacy conditions introduced. This privacy policy is also applicable to the processing of personal data of potential customers regarding the sending of email advertising, product promotions and any other activity or event promoted by Our Website.
We inform you in accordance with the current Spanish and European regulations on the protection of personal data on the Internet and in compliance with the regulations that appear below,
Regulation (EU) 2016/679, General Data Protection,
Organic Law 3/2018, of December 5, Protection of Personal Data and guarantee of digital rights,
Royal Decree 1720/2007, of December 21, which approves the Regulations for the development of Organic Law 15/1999, of December 13, on the Protection of Personal Data,
Law 34/2002, of July 11, on Services of the Information Society and Electronic Commerce.
WHO IS RESPONSIBLE FOR THE PROCESSING OF YOUR DATA?
Below we indicate the information regarding the person responsible for the processing of your data and the way to contact them to exercise your rights:
Owner : Gara Beltrán Donate
Email : info@zarimoth.store / xzarimothx@gmail.com
Website : www.zarimoth.store
If you need more information, you can contact us through our email.
FOR WHAT PURPOSE DO WE PROCESS THE DATA WE COLLECT FROM YOU ON OUR WEBSITE?
On our website we collect and process your personal information in general to manage the relationship we maintain with you, the main purposes being those identified below:
For the contracting of services offered on our website such as the sale of illustrations and merchandising, we will use your data for management, contracting, billing and loyalty.
In the case of subscription to our website, its newsletter or any similar service, your data will be used to manage subscriber and user lists, as well as to send the corresponding information.
In the case of requesting our guides and other useful tools offered on our website, your data will be used to complete the records and forms necessary to obtain said information.
When requests for information, suggestions and claims that you can send us are made, your data will be used in order to manage them.
Your data will also be used to keep you informed about events, offers, products and services that may be of interest to you through different communication channels as long as you have given your consent.
In the case of promotions, raffles, advertising, etc., your data will be used to facilitate access to them.
If you want to collaborate with US or perform a service for OUR WEBSITE, your data will be used to manage the resulting relationship.
In the case of suppliers, your information will be used to manage the existing business relationship and to comply with billing requirements.
Below we also inform you about the legal basis applicable to the processing of personal data:
“Article 6 GDPR:
Processing will only be lawful if at least one of the following conditions is met:
a) the interested party gave their consent to the processing of their personal data for one or more specific purposes;
b) the treatment is necessary for the execution of a contract in which the interested party is a party or for the application at his request of pre-contractual measures;
c) the processing is necessary for compliance with a legal obligation applicable to the controller;
d) the processing is necessary to protect the vital interests of the data subject or of another natural person;
e) the processing is necessary for the fulfillment of a task carried out in the public interest or in the exercise of public powers vested in the controller;
f) the processing is necessary for the satisfaction of legitimate interests pursued by the data controller or by a third party, provided that the interests or fundamental rights and freedoms of the data subject that require the protection of personal data, in particular when the interested party is a child.
WHAT IS THE LEGITIMATION OF DATA PROCESSING BASED ON?
The legitimation is based on the user's consent to subscribe to our website, without which it will not be possible to access its free or paid content.
Likewise, your consent for the use of your personal data will have a contractual nature when they are collected in compliance with a contract or a provision of services offered by our website.
The legal billing and tax obligations imply our legitimate interest in the processing of your personal data for purposes aimed at complying with them.
You are informed that the consent you give us may be revoked at any time by you by using your rights contained in the text of this Privacy Policy.
WHAT KIND OF DATA WILL BE COLLECTED AND USED?
In order to provide you with the contracting and provision of the services offered on our website or any other contracting channel, we collect the following data:
Names and surnames.
DNI, when necessary for billing.
Email address.
Home.
Phone number.
Bank details required to process payments.
Any additional data required for the above, that is, contracting and provision of services, will always be collected with prior consent and the provisions of this Privacy Policy will apply.
These data are necessary for contracting our services, not being a communication that constitutes a legal requirement, but a communication of a contractual nature.
HOW DO WE COLLECT YOUR INFORMATION?
We collect your personal information through different means, but you will always be informed in advance, generally at the time of collecting your data, through informative clauses about the person responsible for the treatment, the purpose and legal basis of the treatment, the recipients of the data and the period of conservation of your information, as well as the way in which you can exercise the rights that assist you in terms of data protection.
In general, the personal information that we process is limited to identification data (name and surname, date of birth, address, ID, telephone number and email), contracted services and payment and billing information.
In cases of professional or labor collaboration, we collect academic and professional data in order to meet the obligations derived from maintaining the employment relationship or, where appropriate, the professional one.
The person in charge of this website also uses social networks, and this is another way of reaching you. The information collected through the messages and communications you post may contain personal information that is available online and accessible to the public. These social networks have their own privacy policies that explain how they use and share your information, so it is recommended that you consult them before using them, to confirm that you agree with the way in which your information is shared. it is collected, treated and shared.
Our website collects personal data and information through the contact forms available on it and the comments posted, which will be publicly visible.
Through our website we collect personal information related to your browsing through the use of cookies. To know clearly and precisely the cookies we use, what their purposes are and how you can configure or disable them, see our Cookies Policy .
WHAT RESPONSIBILITY DOES THE USER HAVE?
By providing us with your data through electronic channels, the user guarantees that they are over 14 years of age and that the data provided to the person in charge of this website is true, exact, complete and up-to-date. For these purposes, the user confirms that he is responsible for the veracity of the data communicated and that he will keep said information properly updated so that it responds to his real situation, taking responsibility for false and inaccurate data that he could provide, as well as for damages and damages, direct or indirect, that may arise.
HOW LONG DO WE KEEP YOUR INFORMATION?
The person in charge of this web page only keeps your information for the period of time necessary to fulfill the purpose for which it was collected, to comply with the legal obligations that are imposed on us and to attend to the possible responsibilities that could derive from the fulfillment of the purpose. for which the data was collected. This mainly refers to the provision of services advertised on this website or that may be requested by its users.
In the event that you collaborate professionally with us, or want to become part of our staff and apply for one of our jobs, the data provided will become part of our job bank and will be kept for the duration of the selection process. and for a maximum of one year or until you exercise your right of deletion.
If at any time we have collected your data to address you as a potential user of our services or respond to a request for information made by you, said data will be kept for a maximum of one year from its collection, and will be deleted after said date. term if a contractual relationship has not been formalized or at the time you request it.
In any case, and as a general rule, we will keep your personal information as long as there is a contractual or professional collaboration relationship that binds us or you do not exercise your right of deletion and/or limitation of treatment, in which case, the information will be blocked without giving you use beyond its conservation, as long as it may be necessary for the exercise or defense of claims or some type of liability could arise that had to be addressed.
In particular, any user data published on the website or social networks related to www.zarimoth.store will be kept from the moment the user gives their informed consent until the moment of its revocation.
Likewise, the data related to billing will be kept for a period of 6 years from the date of the last entry made in the accounting book, for the purposes of the provisions of the Commercial Code.
TO WHOM DO WE COMMUNICATE YOUR DATA?
In general, the Responsible Party does not share your personal information, except for those assignments that we must make based on imposed legal obligations.
Although it is not a transfer of data, to provide the requested service it may be that third-party companies, which act as our suppliers, access your information to carry out the service that we have contracted for them. These managers access your data following our instructions and without being able to use it for a different purpose and maintaining the strictest confidentiality.
Likewise, your personal information will be available to the Public Administrations, Judges and Courts, for the attention of possible responsibilities arising from the treatment.
For the provision of these strictly necessary services, tools are used that are managed by third parties, who apply their own privacy policy. Specifically, we use the following third-party tools and services:
Analytics: Google , Facebook Pixel , Facebook Conversions API and TikTok Pixel .
Hosting: Shopify .
Web platform: Shopify .
Email marketing: Shopify Email Marketing .
Platforms and means of payment: Shopify Payments and Paypal .
Advertising: Google Adsense , Facebook Ads and TikTok Ads .
International data transfers
Zarimoth's Store is built using Shopify software, owned by US-based company SHOPIFY INC. so there is no data transfer.
Our website uses the email marketing and automation services of Shopify Inc. based in the United States and the United Kingdom, so there may be data transfer. This company is committed to not making any transfer of data outside the European Union, in compliance with the GDPR.
In addition, for greater security, in cases where it has been materially possible, we have agreed with our suppliers that, for the provision of the contracted service, they make use of servers located in the EEA and if, in the future, we need to use servers located outside of the territory of the EU, the appropriate measures will be adopted, which will be incorporated into this Privacy Policy, guaranteeing that said providers are under the Privacy Shield agreement or that there are other adequate security guarantees for the protection of personal data.
Additionally, we want to mention that the Privacy Shield is not an indicator of full compliance with the GDPR, since this agreement was invalidated by the CJEU on July 16, 2020. This is so, because American companies may be forced to cede data from Europe to the American authorities. So the companies adhering to this agreement do not transfer your data to third parties, but they could transfer it to the American authorities.
WHAT ARE YOUR RIGHTS REGARDING THE PROCESSING OF YOUR DATA AND HOW CAN YOU EXERCISE THEM?
The regulations on data protection allow you to exercise your rights of access, rectification, deletion and portability of data and opposition and limitation to its treatment, as well as not being subject to decisions based solely on the automated processing of your data, when appropriate.
These rights are characterized by the following:
Its exercise is free, except in the case of manifestly unfounded or excessive requests (eg, repetitive nature), in which case the Controller may charge a fee proportional to the administrative costs borne or refuse to act.
You can exercise the rights directly or through your legal representative or volunteer.
Our duty is to respond to your request within one month, although, taking into account the complexity and number of requests, the term can be extended for another two months.
Our obligation is to inform you about the means to exercise these rights, which must be accessible and without being able to deny you the exercise of the right for the sole reason of opting for another means. If the request is submitted by electronic means, the information will be provided by electronic means when possible, unless you request otherwise.
If the person in charge of this web page does not process the request, they will inform you, no later than one month, of the reasons for their non-action and the possibility of claiming before a Control Authority
In order to facilitate the exercise of these rights, we provide you with the links to the application form for each of them:
Form exercise of the right of access
Form for exercising the right of rectification
Form to exercise the right of opposition
Form to exercise the right of deletion (right "to be forgotten")
Form for exercising the right to limit processing
Form of exercises of the right to portability
Exercise form not to be subject to automated individual decisions
To exercise your rights, the Controller makes the following means available to you:
1. By written and signed request addressed to the Responsible, info@zarimoth.store Ref. Exercise of Rights LOPD.
2. Sending the scanned and signed form to the email address info@zarimoth.store indicating the Exercise of Rights LOPD in the subject.
In both cases, you must prove your identity by attaching a photocopy or, where appropriate, a scanned copy, of your ID or equivalent document in order to verify that we only respond to the interested party or their legal representative, in this case providing a document accrediting the representation.
Likewise, and especially if you consider that you have not obtained full satisfaction in the exercise of your rights, we inform you that you may file a claim with the national control authority by contacting the Spanish Agency for Data Protection, C / Jorge Juan, 6 – 28001 Madrid. You can obtain more information on the official page of this organization.
HOW DO WE PROTECT YOUR INFORMATION?
The Controller is committed to protecting your personal information.
Reasonably reliable and effective measures, controls and procedures of a physical, organizational and technological nature are used, aimed at preserving the integrity and security of your data and guaranteeing your privacy.
All of our computers are password protected to prevent unauthorized access.
Zarimoth's Store is also protected by an SSL certificate that guarantees the encryption of the data transmitted between the browser and the server. In addition, it is protected with a Shopify web firewall application to prevent any computer attack.
In the case of the contracts that we sign with our suppliers, we include clauses in which they are required to maintain the duty of secrecy regarding the personal data to which they have had access by virtue of the order carried out, as well as to implement security measures. technical and organizational techniques necessary to guarantee the confidentiality, integrity, availability and permanent resilience of the systems and services for the processing of personal data.
All these security measures are reviewed periodically to ensure their adequacy and effectiveness.
However, absolute security cannot be guaranteed and there is no security system that is impenetrable, therefore, in the event that any information subject to processing and under our control is compromised as a result of a security breach, we will take the adequate measures to investigate the incident, notify the Control Authority and, where appropriate, to those users who may have been affected so that they take the appropriate measures.
PUBLICATION DATE
The privacy policy of this web page has been published and is applicable from July 27, 2023 and will be modified whenever necessary, to adjust it at all times to the legislative and business/professional reality, without notice of the changes. . The new versions will enter into force once they are published on the website.