This policy sets out what personal data we might collect, how we process and protect that data, the lawful grounds for that processing, and your related rights. Essentially ‘personal data’ means any information relating to an identified or identifiable natural person, namely one who can be identified, directly or indirectly from that information alone or in conjunction with other information.
HoyHoyIbiza store details such as name, e-mail address, gender, organisation/department (if provided) and subsequent personal details as provided. This information is stored on our secure servers
We collect or are provided personal data in the normal course of business:
When you provide us with personal data about yourself or another person, you are confirming to us that you are authorised to provide us with that information and that any personal data you give us is accurate and up-to-date.
Given the nature of our business, we do not ask for ‘sensitive’ or ‘special categories of personal data’, such as information about your health, political opinions, racial origins or sexual life and we would ask you not to send any to us.
We use personal data in the normal course of our business, for example:
We will not give, sell or rent your personal data to third parties so they can market their services to you. Nor do we accept advertising from third parties on the Website. We may share personal data in the following limited circumstances.
In each case, we share the minimum personal data necessary and we have written contracts in place incorporating relevant wording to safeguard that personal data and comply with applicable laws, and we will only share such data as is necessary for the purpose in question. Where possible, we keep personal data within the European Economic Area (‘EEA’). However, in order to carry out the above purposes, we may use third parties and their facilities outside the EEA. In all such cases we will ensure that appropriate security measures are in place to protect your personal data and a valid legal basis for the transfer applies.
As a default position, we will only retain personal data for any statutory retention period, then a reasonable period (if any) necessary for the above purposes. This is subject, for example, to any valid opt-out or withdrawal of consent where processing is based on consent, or other valid exercise of your data subject rights which is affected.
The security of data is very important to our business. In accordance with our legal obligations, we take appropriate technical and organisational measures to protect your personal data and keep those measures under review. However, we can only be responsible for systems that we control and we would note that the internet itself is not inherently a secure environment.
You have the right to know if we process any personal data about you and, if we are, with certain limitations, to a copy of that personal data. You also have the right to ask us to remove or correct any of that personal data that is inaccurate, to object to certain processing and to withdraw any consent you may have given us for any processing of your personal data. You have the right to request your personal Information to be deleted from our CRM upon request to firstname.lastname@example.org. We undertake to perform the deletion within one month (30 calendar days) and will send you a confirmation once the information has been deleted. Wherever possible, we will aim to complete the request in advance of the deadline.
You have the right, at any time, to object to the processing of your personal data for direct marketing.
The Website does not use technologies that respond to ‘Do-Not-Track’ signals communicated by your internet browser.
If you’ve any questions you can always contact us at the address above or by email to Privacy@hoyhoyibiza.com. You have the right, at all times, to notify a complaint to any regulator such as the Spanish Supervisory Authority, although we would welcome the opportunity to discuss and resolve any complaint with you first.