PRIVACY POLICY

In accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 (hereinafter “GDPR”), Spain’s Organic Law 3/2018 of December 5 on the Protection of Personal Data and guarantee of digital rights (hereinafter “LOPDGDD”), as well as any other current legal provisions on data protection, we hereby provide users with this Privacy Policy.

1. Data Controller

• Controller: RAQUEL QUIROS MOLINA
• Tax ID (NIF): 50627674M
• Address: C/ Lázaro Martín, 8 esc. 4, 1-B, 14900, Lucena (Córdoba), Spain
• Email: raquelquirosmolina@gmail.com
• Phone: +34 658 667 188
• Website: www.oceansnake.com

Hereinafter, the Controller.

2. Purpose of Data Processing

Personal data collected through contact forms, subscriptions, emails, or any other available means on the www.oceansnake.com website will be processed for the following purposes:

1. Handling inquiries: Responding to requests for information, questions, or complaints received.
2. Business relationship: Providing services, sending the necessary information for contract performance or pre-contractual steps, and facilitating contact with clients and suppliers.
3. Sending commercial communications: If you have given explicit consent, we may send you commercial communications related to oceansnake.com services and/or products.
4. Improving the user experience: Analyzing traffic and website usage to enhance its performance and the content provided (e.g., via analytics cookies).

3. Legal Basis for Processing

The legal bases for processing your personal data include:

• Your consent: Granted by submitting information through the various contact forms, subscribing to newsletters, or sending emails to the indicated address.
• Performance of a contract: When necessary to provide a service or product and manage the contractual relationship, where applicable.
• Legitimate interest: To maintain the relationship with customers or suppliers and improve the quality of our service.

You may withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

4. Data Retention

Personal data provided will be retained as long as they are necessary for the purposes mentioned above and until the data subject requests their deletion. Afterward, they may remain duly blocked for the period required by applicable regulations to address any liabilities arising from processing.

5. Disclosure of Data to Third Parties

As a general rule, your personal data will not be disclosed to third parties, except in the following cases:

1. Legal obligation: When necessary to comply with a legal provision or judicial requirement.
2. Service providers: When needed to deliver certain services (hosting, email marketing tools, etc.), under the relevant data processing agreements that ensure the confidentiality of the data.

In all instances, any possible disclosure will comply with data protection regulations, with the appropriate data processing agreements executed with third parties where necessary.

6. Your Rights

As a user, you may exercise the following rights at any time, as recognized by current data protection legislation:

• Right of Access: Obtain confirmation on whether we are processing your personal data and, if so, learn about the processing.
• Right to Rectification: Request the modification of any personal data that are inaccurate or incomplete.
• Right to Erasure (“Right to be Forgotten”): Request the deletion of your personal data when, among other reasons, they are no longer necessary for the purposes for which they were collected.
• Right to Object: Object to the processing of your data based on the Controller’s legitimate interests.
• Right to Restrict Processing: Request the limitation of data processing while verifying the accuracy or lawfulness of the data, or when the Controller no longer needs the data, but the data subject needs them for the formulation, exercise, or defense of legal claims.
• Right to Data Portability: Request to receive your personal data in a structured, commonly used, and machine-readable format in order to transfer them to another controller.

To exercise these rights, please send a written request, attaching a copy of your ID or other proof of identity, to the following postal or email address:

• Postal Address: C/ Lázaro Martín, 8 esc. 4, 1-B, 14900, Lucena (Córdoba), Spain
• Email: raquelquirosmolina@gmail.com

Additionally, if you believe your data protection rights have not been properly satisfied, you have the right to file a claim with the Spanish Data Protection Agency (www.aepd.es).

7. Security Measures

The Controller has adopted the necessary technical and organizational measures to ensure the security of personal data and to prevent their alteration, loss, unauthorized processing, or access, in accordance with current regulations. However, users should be aware that security measures on the Internet cannot be guaranteed to be completely invulnerable.

8. Accuracy and Truthfulness of Data

Users guarantee that the personal data provided are accurate and truthful, and agree to notify any changes. The Controller shall not be liable for any inaccuracies in the personal data provided by the users.

9. Changes to the Privacy Policy

The Controller reserves the right to modify this Privacy Policy at any time to adapt it to legislative updates or changes in processing activities. In the event of significant changes, users will be informed via the website or other means of contact so they can review these modifications.

10. Governing Law and Jurisdiction

This Privacy Policy shall be governed by and interpreted in accordance with Spanish law. For any dispute relating to its validity, performance, compliance, or termination, the user and the Controller expressly submit to the jurisdiction of the competent Courts and Tribunals as provided by consumer protection regulations.