Privacy Policy

In accordance with the legislation in force on the protection of personal data, Jaque Digital S. Coop. And. (hereinafter, “Jaque Digital” or “the Website”) undertakes to process user information in a lawful, fair and transparent manner, and to adopt the necessary technical and organizational measures, in line with the level of risk, to guarantee the security of the personal data collected through www.jaquedigital.com.

This privacy policy is adapted to current Spanish and European regulations on the protection of personal data on the internet. In particular, it complies with the following rules:

• Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).
• Organic Law 3/2018 of 5 December, on the Protection of Personal Data and the guarantee of digital rights (LOPDGDD), in its current wording.
• Law 34/2002 of 11 July, on Information Society Services and Electronic Commerce (LSSI-CE).

The controller of the personal data collected on the Website is JAQUE DIGITAL, S. Coop. And., CIF F16401424 (hereinafter, the “Controller”). Their contact details are as follows:

• Address: Calle Decano Fernández de Castillejo 4, 2º 5, C.P. 14004, Córdoba (Spain).
• Contact phone: +34 684 04 88 25
• Contact email: contacto@jaquedigital.com

In compliance with the GDPR and the LOPDGDD, Jaque Digital maintains an internal record of processing activities that includes, for each category of data processed, the purposes, legal basis, retention periods, categories of recipients and the security measures applied.

The personal data collected through the forms on the Website are integrated into the Controller’s information systems in order to facilitate, streamline and fulfil the commitments established between Jaque Digital and the User, as well as to handle requests, queries or actions submitted by the User.

The processing of the User’s personal data will be subject to the principles laid down in Article 5 of the GDPR and Articles 4 and following of the LOPDGDD, in particular:

• Lawfulness, fairness and transparency: a valid legal basis will always be required and the User will be informed clearly and understandably about the processing carried out.
• Purpose limitation: personal data will be collected for specified, explicit and legitimate purposes and will not be further processed in a way incompatible with those purposes.
• Data minimization: personal data processed will be adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
• Accuracy: personal data will be accurate and, where necessary, kept up to date.
• Storage limitation: personal data will be kept for no longer than is necessary for the purposes of the processing and, in any case, for the legally required periods.
• Integrity and confidentiality: personal data will be processed in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage.
• Accountability: the Controller will apply appropriate technical and organizational measures to ensure and be able to demonstrate that processing is carried out in accordance with data protection regulations.

The categories of data processed at Jaque Digital are, in general, identification and contact data (for example, name, surname, email, phone number, company, position) and, where appropriate, professional data related to the project or service requested. Under no circumstances are special categories of personal data processed as referred to in Article 9 of the GDPR, unless they are voluntarily provided by the User and there is an appropriate legal basis for their processing.

The legal basis that legitimizes Jaque Digital’s processing of personal data will depend on the relationship established with the User and the purpose of the processing. In particular, the following legal bases are used:

• The User’s consent (Art. 6.1.a GDPR) for processing data provided through contact forms, subscription to commercial communications, resource downloads or similar. • Performance of a contract or the application of pre-contractual measures (Art. 6.1.b GDPR), when processing is necessary for the provision of a service, the preparation of commercial proposals or the development of projects with the User or their company. • Compliance with legal obligations (Art. 6.1.c GDPR), especially those arising from tax, accounting and consumer regulations. • The Controller’s legitimate interest (Art. 6.1.f GDPR), for example to ensure the security of the Website, manage basic support queries, conduct non-intrusive satisfaction surveys or improve the quality of the services offered.

When the legal basis is consent, the User has the right to withdraw it at any time, without affecting the lawfulness of processing based on consent before its withdrawal. Withdrawal of consent may, where applicable, condition the provision of certain services when the data is essential for that purpose.

Personal data are collected and managed by Jaque Digital for the following main purposes:

• To manage requests for information, contact or quotes made by the User through the Website. • To manage the contractual relationship and the provision of development, design, consulting or similar services that Jaque Digital offers to the User or the entity for which they work. • To carry out administrative, accounting and tax tasks arising from the services provided. • To handle technical support queries or incidents related to the services contracted. • To send informational or commercial communications related to Jaque Digital’s services, provided the User has given consent or there is a legal basis to do so. • To improve the user experience, quality and performance of the Website, as well as to carry out statistical analyses of its use.

When personal data are obtained, more specific information on the purposes of processing will be provided depending on the form or channel used.

Personal data will be kept for the time strictly necessary to fulfil the purposes for which they were collected. In general:

• Data relating to queries or information requests will be kept for a maximum period of 24 months from the last relevant interaction with the User, unless they result in a contractual relationship. • Data arising from a contractual relationship will be kept for the duration of that relationship and, thereafter, for the periods necessary to comply with legal obligations (for example, 6 years for commercial and tax obligations). • Data processed for commercial purposes will be kept as long as the User does not withdraw consent or object to the processing.

In any case, the data will be duly blocked while legal liabilities may arise, remaining available to judges and courts, the Public Prosecutor’s Office or the competent Public Administrations.

As a general rule, the User’s personal data will not be transferred to third parties, unless there is a legal obligation or it is necessary for the provision of the requested services.

Certain providers that offer services to Jaque Digital (for example, web hosting services, email delivery tools, IT support or legal and accounting advice) may have access to personal data, always acting as data processors and under the Controller’s instructions, with the confidentiality and data protection agreements required by law.

Likewise, data may be communicated to the competent Public Administrations, judges and courts when there is a legal obligation to do so.

In accordance with Article 8 of the GDPR and Article 7 of the LOPDGDD, only individuals over 14 years of age can validly give consent for their personal data to be lawfully processed by Jaque Digital. In the case of minors under 14, consent from parents or legal guardians will be required, and processing will only be lawful to the extent that they have authorized it.

Jaque Digital undertakes to adopt appropriate technical and organizational measures to ensure a level of security appropriate to the risk, so as to prevent accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or unauthorized disclosure of or access to such data.

The Website has an SSL (Secure Socket Layer) certificate, which ensures that personal data are transmitted securely and encrypted between the User’s device and the Controller’s servers.

However, no data transmission over the internet is completely invulnerable, so Jaque Digital cannot guarantee the absolute impregnability of the network nor the total absence of fraudulent access by third parties. Should a personal data security breach occur that entails a high risk to the rights and freedoms of natural persons, the Controller undertakes to notify the User and, where appropriate, the competent supervisory authority, under the terms established by the regulations.

Personal data will be treated as confidential by the Controller and by any person involved in any phase of its processing, all of whom will be subject to the corresponding legal or contractual duty of confidentiality.

The User has, with respect to Jaque Digital and before the Controller, the rights recognized in the GDPR and the LOPDGDD:

The User may exercise their rights by written communication addressed to the Controller with the reference “Data Protection – Jaque Digital”, specifying the right they wish to exercise and attaching a copy of their identity document or equivalent means of identification.

The request may be sent to the following postal address or email:

Postal address: Calle Decano Fernández de Castillejo 4, 2º 5, C.P. 14004, Córdoba (Spain).

Email: contacto@jaquedigital.com

• Right of access: to obtain confirmation as to whether or not Jaque Digital is processing personal data concerning them and, if so, to access such data and information relating to the processing.
• Right to rectification: to request the modification of personal data that are inaccurate or incomplete.
• Right to erasure ("right to be forgotten"): to request the deletion of personal data when, among other reasons, they are no longer necessary for the purposes for which they were collected.
• Right to restriction of processing: to request the restriction of the processing of personal data in certain circumstances.
• Right to data portability: to receive the personal data concerning them in a structured, commonly used and machine-readable format and to transmit those data to another controller when processing is based on consent or a contract and is carried out by automated means.
• Right to object: to object to the processing of their personal data in certain circumstances and on grounds relating to their particular situation, especially when processing is based on the Controller’s legitimate interest or for direct marketing purposes.
• Right not to be subject to automated individual decision-making, including profiling, except where legally permitted conditions are met.

• User’s name and surname, and a photocopy of their ID, NIE or equivalent identification document.
• Specific request stating the right being exercised.
• Address or email address for notification purposes.
• Date and signature of the applicant or, where appropriate, of the person representing them, together with the document proving such representation.

The Website may include hyperlinks or links that provide access to third-party websites not operated by Jaque Digital. In such cases, the Controller will not be responsible for the privacy policies or content maintained by such third parties on their respective websites, as their owners are responsible for their own personal data processing and privacy practices.

If the User considers that the processing of their personal data infringes current regulations, or that their rights have not been properly satisfied, they have the right to lodge a complaint with the competent supervisory authority. In Spain, this authority is the Spanish Data Protection Agency (AEPD), accessible at www.aepd.es.

It is necessary for the User to have read and agreed to the personal data protection conditions contained in this Privacy Policy, accepting the processing of their personal data under the terms described herein. The use of the Website implies acceptance of the Privacy Policy and, where applicable, any updates that may be published.

Jaque Digital reserves the right to modify its Privacy Policy when necessary, for example due to legislative, case-law or supervisory authority changes, as well as adjustments to the services offered. When changes are significant, the User may be informed by notices on the Website or other appropriate means.

This Privacy Policy has been updated to comply with Regulation (EU) 2016/679 (GDPR) and Organic Law 3/2018 of 5 December on the Protection of Personal Data and the guarantee of digital rights (LOPDGDD), in its current wording.