The purpose of this Privacy Policy is to inform you about the way in which we collect, process and protect the personal data provided through our website or blog (hereinafter Website) and to allow you to freely decide whether you wish us to process them.
Data of the Controller / Provider of Information Society Services
| Identity | NOST COSMETICS, SL |
| CIF/NIF | B01734730 |
| Postal address | Ronda Narciso Monturiol, 4, Office 110-A, CP 46980 Paterna (Valencia) |
| Phone | 961952992 |
| contact@nostcosmetics.com |
| Website | https://clinicas.nostcosmetics.com/ |
| Registry data | Registered in the Mercantile Registry of Valencia Volume 10841, Book 8120, Folio 207, Page V-193416 |
Processing of personal data
The personal data you have provided us will be treated confidentially and will be incorporated into the corresponding processing activity owned by our entity.
We request the data that is essential to process your request, invoice you if you make a purchase or contract, or maintain the relationship with you if you request it or when we are obliged to do so in order to provide you with services and/or process your purchases on this website.
Purpose
Your personal data will be processed for the sole purpose of responding to your requests.
We do not send advertising without the user's prior consent.
Legitimation
Your data is processed on the following bases:
- The request for information, application for employment and/or contracting of our services and/or purchase of products.
- Free, specific, informed and unequivocal consent, since we inform you of this privacy policy, which after reading it and agreeing, you can accept by checking the boxes provided for this purpose.
You can change your mind and withdraw your consent at any time.
Security Measures
Our entity has implemented all the necessary technical and organizational measures to protect the personal data processed, preventing its loss, theft or unauthorized use.
These measures are periodically verified in our compliance controls with specific regulations.
Data retention
The personal data provided will be kept for the time necessary to fulfill the purpose for which they were collected and to determine any potential liabilities that may arise from the purpose.
In the case of job applications, they will be kept for a maximum period of 1 year or until the interested party asks us to delete their data.
Rights of interested parties
You have the right to know whether our entity is processing your personal data; therefore, you have the right to access your data, rectify it if it is inaccurate or request its deletion when the data is no longer necessary.
You may also exercise your right to limitation or portability if you deem it appropriate and to do so you can do so in writing to our entity by email at contacto@nostcosmetics.com attaching a copy of your ID to identify you.
If you wish to make any suggestions or queries regarding the processing of your data, you can contact our data protection consultants:
BUSINESS ADAPTER, SL
Ronda Guglielmo Marconi, 11, 26, (Technology Park) 46980 Paterna (Valencia).
Tel. 96 131 88 04
Email: info@businessadapter.es
Web: https://www.businessadapter.es/
If you wish to make a claim because you believe your rights have been violated, you can do so before the Spanish Data Protection Agency, C/ Jorge Juan, 6, 28001 Madrid or at www.aepd.es.
Profiling
We do not create profiles using your personal data, but if we do, you will be informed and asked for permission to do so.
Likewise, you have the right to object to this type of treatment at any time.
Data transfer
Your personal data will not be transferred to other countries or third parties except in cases where there is a legal obligation.
In the event of purchasing products or contracting services, your personal data may be transferred to those entities necessary to deliver the purchased products or provide our services.
Our bank will have access to your data to manage the collection of products or services, as well as the data processors necessary for the execution of contracts and/or purchases.
In the event of transfers to other entities or other countries, we will inform you and request your prior consent.
Corporate Commitment to Data Protection
Scope of application
This Code of Conduct shall be binding on all departments, employees of our entity and those who act on our behalf.
Object
We have established protocols for the processing of personal data, in accordance with the provisions of Spanish and European data protection regulations, so that the security and confidentiality of these data is guaranteed at all times.
Beginning
Legality, Loyalty, Transparency, Data minimization, Accuracy, Limitation of the conservation period, Integrity, Confidentiality and Active responsibility.
Special category of data
The processing of personal data that reveals ethnic or racial origin, political opinions, religious or philosophical beliefs, trade union membership, the processing of genetic or biometric data, data relating to health or data relating to sexual orientation is prohibited, except in the exceptions authorized by law and with the prior consent of the interested party.
Rights of interested parties
Interested parties shall have the right to access their personal data, as well as to rectify them when they are inaccurate, to delete them when they are no longer necessary or their processing is not desired, to limit them to certain treatments, to have the possibility of receiving their data easily and in structured and commonly used formats by the controller, as well as to have their data used for profiling and to oppose the processing at any time.
Activity Log, Impact Assessment and Security Measures
Our entity will keep a record of the processing activities and will analyse the purposes of the processing, categories of interested parties and data, recipients, international transfers, retention periods, etc., to assess the risks of the processing and implement the necessary security measures to safeguard personal data under the principles of confidentiality and secrecy. Likewise, we have analysed the need to appoint a Data Protection Officer, establishing, if necessary, that the person appointed to this position will have sufficient knowledge and experience in accordance with the provisions of current regulations.
Split payment
In order to offer you Klarna's payment methods, we may transmit your personal data from the contact form and order details to Klarna during the purchase process at the time of payment, so that Klarna can assess whether you are eligible for its payment methods and to adapt these payment methods to your profile. Your personal data is processed in accordance with Klarna's privacy policy.
Control
We have hired the services of an external consultancy to carry out a periodic audit to assess compliance with this commitment and all legal obligations in this area.
The Management
Updated on October 21, 2020
