PRIVACY POLICY
INTRODUCTION
The protection of personal data is one of the values of GRUPO FREIXENET. Complying with the current legislation on the protection of personal data is a key priority for us. This policy is designed to explain how we process the personal data that you provide us through the various forms on our website.
GRUPO FREIXENET may modify this privacy policy at any time, so we recommend that you consult it before sharing any data with us.
JOINT DATA CONTROLLERS
The joint data controllers of your personal data are the companies that comprise GRUPO FREIXENET, which are listed below:
- COMERCIAL GRUPO FREIXENET, S.A.
A58588922
Joan Sala, 2
08770 – Sant Sadurní d’Anoia - FREIXENET, S.A.
A08018939
Joan Sala, 2
08770 – Sant Sadurní d’Anoia - SEGURA VIUDAS, S.A.
A08292542
Carrer Sant Antoni, 11
08770 – Sant Sadurní d’Anoia - CASTELLBLANCH, S.A.
A08090045
Av. Casetas Mir, 2
08770 – Sant Sadurní d’Anoia - UNIÓ CELLERS DEL NOYA, S.A. (UCSA)
A08753303
Carretera Sant Baudili – A Llacuna (Km 2), 2
08770 – Sant Sadurní d’Anoia
The contact details for the joint data controllers are:
Data Controller: GRUPO FREIXENET
Email: gdpr@freixenet.es
Phone number: 938917030
Address: Joan Sala, 2 – 08770 Sant Sadurní de Noia (BARCELONA)
TYPES OF DATA SUBJECTS AND DATA
This privacy policy refers to the processing related to the following types of data subjects and data provided by the data subjects through the different forms, pages and sections of our website:
Customers and consumers
- Identification data provided by the data subject
- Contact details provided by the data subject
- Data required to make the sale and the delivery (financial or banking data)
Visitors to our winery
- Identification data provided by the data subject
- Contact details provided by the data subject
- Details of the companions
- Date of the reservation
Newsletter subscribers
- Identifying information
- Contact details
Job applicants
- Identifying information
- Contact details
- Academic and professional details: training/qualifications, professional experience, membership of professional associations or bodies, in selection processes.
Registered users of our websites
- Identifying information
- Contact details
Users anonymously browsing our websites
- IP Address
- Data obtained through cookies
- Session data obtained through server logs
PURPOSE AND LEGAL CROUNDS FOR DATA PROCESSING
Our company collects your personal data on the basis of the following purposes and legal grounds:
Consent of the data subject
- Sending out our newsletter with information on products, services, events and promotions.
- Receiving and managing CVs received
- To find out why we use cookies and other tracking technologies, please see our cookie policy.
Fulfilment of a contract
- Purchase, sale and billing of products.
- Management of events and promotional activities such as participation in competitions and prize draws.
- Confirmation of the booking and visit to the winery.
Legal obligation
- To comply with the legally established obligations and to verify compliance with contractual obligations, including the prevention of fraud.
Legitimate interest
- Responding to questions and concerns.
- Improving the content offered (cookies).
- Improving the structure and navigability of the website (cookies).
RECIPIENTS OF THE DATA
Your data will not be sold, leased or made available to third parties and nor will they be subject to international transfers. In specific cases access to your data will be authorised for certain suppliers that provide services to our company, such as sending newsletters, storing data or web pages, but under no circumstances will they process the data for their own purposes. If for any reason there is a need to communicate such data to third parties you will be informed in advance and, where relevant, your consent will be sought, specifying the purpose of the communication and identifying the third party to whom they will be communicated. All of this with the exception of circumstances where a legal requirement forces us to communicate such data to a third party.
REDENTION PERIODS
Your data will be retained as long as is strictly necessary to achieve the purposes of the processing, although they may need to be retained to make them available to the competent authorities and to deal with claims. In this case, the data will be kept blocked until the end of the prescriptive period, at which time they will be erased.
To find out about the retention periods for cookies and other tracking technologies, please see our cookie policy.
EXERCICING OF RIGHTS
The current legislation grants you the following rights:
Right of access You have the right to know which of your personal data we are processing.
Right to rectification You have the right to rectify or complete any data that is inaccurate or incomplete.
Right to be forgotten You can ask for your personal data to be erased from our systems and files.
Right to object You can object to the processing of your data for direct marketing purposes, as well as for personal reasons, unless the legal ground for the processing is legitimate interest
Right to restrict processing You can ask for processing to be restricted if you are concerned about its accuracy or when it is illegal and you object to the erasure of your personal data and instead request the restriction of their use. This also applies when data are no longer necessary for the processing but you need them for the establishment, exercise or defence of legal claims. And finally, when you have objected to the processing, while analysing whether the legitimate interest of the data controller overrides that of the data subject.
Right to data portability You have the right to obtain a copy of all the data that you have given us and, when technically possible, you also have the right to ask for your personal data to be sent to another data controller.
You can exercise these rights free of charge, as well as withdraw your consent at any time, by contacting GRUPO FREIXENET through any of the following means and providing a copy of your ID card or equivalent document as proof of your identity:
- 1. By email, to be sent to gdpr@freixenet.es
- 2. By letter, addressed to the Comité de Protección de Datos y Seguridad de la información at FREIXENET, S.A., Joan Sala, 2, 08770 Sant Sadurní d’Anoia (BARCELONA)
You also have the right to file a claim with the Spanish Data Protection Agency (AEPD), the competent authority in Spain for data protection matters, if you believe that your data have not been processed correctly.
MANDATORY OR OPTIONAL NATURE OF THE INFORMATION PROVIDED BY THE USER
In some cases the personal data requested are mandatory, meaning that a failure to supply them will make it impossible to provide the requested services. These cases will be indicated by the data controllers.
The user guarantees that the data provided are true, accurate, complete and updated, being responsible for any direct or indirect damages that could be caused as a result of a breach of this obligation. If the user provides data relating to third parties, they declare that they have received consent from these third parties and undertake to pass on to them the information contained in this clause, H&A being released from any responsibility in this regard. However, H&A may carry out checks to confirm this fact, adopting the corresponding due diligence measures, in accordance with the data protection regulations.
CONFIDENTIALITY AND SECURITY IN THE PROCESSING OF DATA
GRUPO FREIXENET complies with the applicable privacy regulations, (specifically, with Regulation (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC, and Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights) and guarantees that your data are processed in a lawful, fair and transparent manner in relation to the data subject and in an appropriate and relevant way, restricted to that necessary in relation to the purposes for which they are processed.
Similarly, we guarantee that the data received will be processed with the utmost confidentiality. GRUPO FREIXENET has implemented all the technical and organisational measures available to it to prevent the loss, misuse, alteration, unauthorised access or copying of the data provided.
Latest update: 21 January 2021