PRIVACY POLICY
Last updated, July 2024.
USER INFORMATION
Who is responsible for processing your personal data?
VOLTERETA FUSION S.L. (“Voltereta”) is responsible for processing the User's personal data and informs you that this data will be processed in accordance with the provisions of Regulation (EU) 2016/679, of April 27 (hereinafter, “GDPR”), and Organic Law 3/2018, of December 5 (hereinafter, “LOPD”).
Anyone who accesses this 'Website' assumes the role of 'User,'' committing to the observance and strict compliance with the provisions set forth herein, as well as any other applicable legal provisions.
What data do we process about the User?
The Website collects the name, surname, email address, and phone number of Users when making a reservation or communicating via contact forms.
Voltereta expressly reserves the right to unilaterally modify, wholly or partially, the amount or content of the data that may be required, without this circumstance generating any obligation to notify or communicate with respect to the Users of the Website, considering the update on the Voltereta Website as sufficient.
Without prejudice to the availability of updates to this Privacy Policy for the User, the User acknowledges and agrees that it is their responsibility to review this Privacy Policy with each interaction with the Website.
Why do we process your personal data, and for what purpose?
Depending on the form where we obtained your personal data, we will process it confidentially to achieve the following purposes:
- In the JOIN US form: Involve the interested party in recruitment processes and analyze the applicant’s profile with the aim of selecting a candidate for the responsible party's vacant position. (by the consent of the interested party, 6.1.a GDPR).
- In the Reservations forms: Formalize reservations at the VOLTERETA establishment. (for the execution of a contract or pre-contract, 6.1.b GDPR) and send commercial advertising communications by email, fax, SMS, MMS, social networks, or any other electronic or physical means, present or future, to clients, enabling the sending of commercial communications related to products or services similar to those initially contracted with the client (art. 21.2 LSSI). (by Voltereta's legitimate interest, art. 6.1.f GDPR).
- In the Contact forms: Respond to queries or any type of request made by the User through any of the contact methods available on the Voltereta website. (by Voltereta's legitimate interest, art. 6.1.f GDPR) and send commercial advertising communications by email, fax, SMS, MMS, social networks, or any other electronic or physical means, present or future, enabling commercial communications. These communications will be made by Voltereta and will be related to its products and services, or those of its collaborators or suppliers, with whom it has reached a promotion agreement. In this case, third parties will never have access to personal data. (by the consent of the interested party, 6.1.a GDPR). Perform statistical analyses and market studies. (by Voltereta's legitimate interest, art. 6.1.f GDPR)
How long will we keep your personal data?
It will be kept no longer than necessary to maintain the purpose of the processing or as long as there are legal requirements that dictate its custody. When it is no longer necessary, it will be deleted with appropriate security measures to ensure data anonymization or complete destruction.
Regarding the information for processing personal data for the purpose of a job candidate, the data will be kept for a maximum period of one year, after which it will be deleted, ensuring total confidentiality in both processing and subsequent destruction. In this sense, once the aforementioned period has elapsed, and if you wish to continue participating in Voltereta's selection processes, please send us your resume again. If there is any modification to your data, we request that you notify us in writing as soon as possible to keep your data properly updated.
To whom do we disclose your personal data?
To fulfill the above purposes, VOLTERETA may need to disclose, transfer, or otherwise share your personal data with other entities within the Voltereta group or with a third party.
In general, we may disclose, transfer, or share personal data in the following ways:
- With Voltereta group entities: Voltereta is a global company, so your personal data may be shared among our affiliated and subsidiary companies, including, among others, the following group companies:
- ARMARITO HOLDING, S.L.U., with NIF B-40645632.
- CARRERILLA INVERSIONES, S.L.U., NIF B-40645798.
- TRAMPOLÍN INVERSIONES, S.L., with NIF B-40609992
- BEGIN RESTAURANTES, S.L., with NIF B-40626392
- PUBLICIDAD KALEOLÍN, S.L., with NIF B-44591170
- BRUMA PROPERTIES, S.L.U., with NIF B-40655870
- With service providers: Voltereta may disclose personal data to third-party service providers when necessary to provide a service. These services include data storage and analysis, web hosting, IT infrastructure and security, payment transfer management, consulting services, maintenance, and other similar services. When Voltereta outsources processing activities, it will ensure that the service provider is required to implement and maintain appropriate data protection and security measures and will comply with applicable privacy laws.
- With advertising and marketing partners: Voltereta works with third-party companies to display online advertising that is more relevant. These companies may collect cookie IDs, IP addresses, and other identifiers, as well as information about the pages you visit on our sites and other websites, to enable them to display advertisements for products and services that may be of interest to you when you visit our website or other websites.
- When required by law or to protect our rights: in certain cases and when permitted by applicable law, Voltereta may be required to disclose your personal data to comply with legal requirements, such as tax authorities or binding requests from other law enforcement authorities, or to protect Voltereta's legal rights, such as defending a legal claim where permitted by applicable law.
- As part of a corporate transaction: Additionally, if a Voltereta business unit is sold or transferred as part of a corporate transaction, it may be necessary to disclose your personal data to a purchasing entity, including in connection with due diligence conducted before such an event, where permitted by applicable law.
We may share aggregated or anonymous information with third parties for research, marketing, analysis, and other purposes, provided that such information does not identify a particular individual.
What are your rights?
The User has the right to access their information, as well as to rectify, transmit, and delete it, and to limit or object to certain processing activities. Voltereta is committed to respecting the confidentiality of the User's personal data and ensuring the exercise of their rights.
Additionally, we inform you that at any time you may exercise the rights indicated below by writing to us at derechos@volteretarestaurante.com, indicating the reason for the request and the right you wish to exercise.
In particular, regardless of the purpose or legal basis under which the data is processed, the User has the right to:
- Be informed concisely, transparently, intelligibly, and in an easily accessible manner, with clear and simple language, about the use and processing of their personal data.
- Request access to the data that Voltereta holds about them.
- Request that the data already held be corrected. By actively providing their personal data by any means, the User guarantees that it is true and accurate and commits to notifying any change or modification to it.
- Request that their data be deleted to the extent that it is no longer necessary for the purpose for which it was collected or that there is no longer any legitimacy to process it.
- Request that the processing of their data be limited, which means that in certain cases they may request that we temporarily suspend the processing of their data or retain it beyond the necessary time when it may be needed.
- Object to the processing of their personal data, including profiling.
- Furthermore, if the User has provided their consent for the processing of their data for any purpose, they also have the right to withdraw it at any time. To do so, they may send a written request to the postal address or email of the organization indicated above. In this regard, the written request must contain, at a minimum, the following information:
1. A photocopy of their ID or equivalent document to verify the User's identity.
2. The object of their request, that is, the right they wish to exercise. - If the User feels that their rights regarding the protection of their personal data have been violated, especially when they have not obtained satisfaction in exercising their rights, they may file a claim with the competent Data Protection Control Authority (Spanish Data Protection Agency) through its website: www.aepd.es. There may be exceptions to some rights. For example, Voltereta may not be able to delete data if there is a legal requirement to retain it or if it is necessary for the performance of a contract with you. Similarly, access to data may be denied if making the information available would reveal personal data about another person, or if Voltereta is legally prohibited from disclosing such information.If Voltereta needs to verify your identity before proceeding with your request, you will be notified in a timely manner.Security measuresThat in accordance with the provisions of the current regulations on the protection of personal data, VOLTERETA is complying with all the provisions of the GDPR and LOPD regulations for the processing of personal data under its responsibility and, manifestly, with the principles described in article 5 of the GDPR, by which they are processed in a lawful, loyal, and transparent manner in relation to the interested party and adequately, pertinent and limited to what is necessary in relation to the purposes for which they are processed.VOLTERETA guarantees that it has implemented appropriate technical and organizational policies to apply the security measures established by the GDPR and LOPD in order to protect the rights and freedoms of the Users and has communicated the appropriate information to them so that they can exercise them.