+34 986 241 431 – +34 690 175 752

Privacy Policy

IDENTIFICATION AND CONTACT DETAILS OF THE DATA CONTROLLER

EVERY PARTS, S.L., a company domiciled at Avda. Atlántida, 34 – Ground Floor Left – Bouzas, 36208, Vigo (Pontevedra) – Spain, with Tax ID No. B36952216, is the data controller responsible for the processing of personal data carried out through this website. This clause provides information on how the Company uses your personal data.

Likewise, this Privacy Policy aims to provide information on the rights that apply to both registered and unregistered users pursuant to GDPR 2016/679 and Organic Law 3/2018 on Personal Data Protection. If you have any questions regarding the processing of your personal data, you may contact the Company at Avda. Atlántida, 34 – Ground Floor Left – Bouzas, 36208, Vigo (Pontevedra) – Spain.

WHERE WE INFORM

On the following website: www.everyparts.es (more information in our legal notice)

DATA PROCESSING

EVERY PARTS, S.L. informs through this website about its privacy policy regarding the processing and protection of personal data of any data subject with whom it maintains a relationship requiring the processing of their data.

The operations, procedures and technical processes carried out, whether automated or not, which allow the collection, storage, modification, transfer and other actions on personal data, are considered personal data processing. In this case, we inform you of joint processing where necessary for the management of services and/or products contracted with any of the aforementioned companies, without prejudice to the provisions of section 4 of this policy.

Maximum transparency in information: for this reason, we inform you how we process data, even when we do not collect data directly from the website.

We do not share data with third parties. Your data is safe and will only be disclosed to third parties when there is a legal obligation or when it is essential to provide the service. This is explained in the section “Recipients”.

Legal compliance: EVERY PARTS, S.L. complies with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons (GDPR), with Organic Law 3/2018 of 5 December on Personal Data Protection and the guarantee of digital rights, and with Law 34/2002 of 11 July on Information Society Services and Electronic Commerce (LSSICE or LSSI). Although repealed, security measures from Royal Decree 1720/2007 implementing former Organic Law 15/1999 continue to be applied.

  • DATA CONTROLLER

In compliance with current data protection legislation, we inform you that the personal data you voluntarily provide through any of our information collection channels will be incorporated into automated and/or manual processing systems. EVERY PARTS, S.L., with whom you maintain a contractual relationship, is the controller of such processing. The data will not be disclosed to third parties except where there is a legal obligation.

Likewise, EVERY PARTS, S.L. declares and guarantees that it maintains the required security levels for the protection of personal data in accordance with current legislation and has implemented all available technical means to prevent loss, misuse, alteration, unauthorized access or theft of the data provided, ensuring that its employees comply with these obligations and with the duty of confidentiality.

  • WHAT PERSONAL DATA DO WE PROCESS?

The processing of your data is necessary to provide you with access to the content and/or functionalities of our Website or, where applicable, to send you information or provide the services offered through it. We are firmly committed to processing your personal data lawfully and consistently, in accordance with applicable data protection regulations.

When you browse our Website and, in particular, when you interact with it, you provide us with data directly, for example by completing online forms or requests in accordance with the processing purposes indicated in each case (e.g. the contact form).

The data you provide is related to such forms. We will always request data that is adequate, relevant and limited to what is necessary for the stated purposes (data minimization principle):

  • Contact and identification data: name, surname, address, telephone number, email address.
  • Commercial data and preferences: information you provide regarding your preferences, such as the type of services you are interested in.
  • Any data you voluntarily decide to provide.
  • Data derived from communications you maintain with us.
  • Information related to your browsing activity in the case of online services (IP address or data derived from cookies or similar devices – see our Cookie Policy).
  • Information available from publicly accessible sources to which we may legitimately have access.
  • Data derived from the contractual or pre-contractual relationship you maintain with us, including your image, with prior notice of image capture where applicable.
  • Data provided by third parties about you, where there is a legitimate basis or your consent has been obtained.
  • Data of third parties that you provide to us, with the prior consent of the third party concerned.
  • HOW DO WE PROCESS DATA?

At EVERY PARTS, S.L. we process your personal data in strict compliance with current legislation. We also have appropriate technical and organizational measures in place to ensure an optimal level of security, guaranteeing that only authorized persons can access the data, that data integrity is preserved, and that any intentional or accidental loss is avoided.

The operations and technical procedures we carry out, whether automated or not, that allow the collection, storage, modification, transfer and other actions on personal data are considered personal data processing.

  1. PURPOSES OF DATA PROCESSING

EVERY PARTS, S.L. processes your data for the following purposes:

  • To allow you to browse our Website and access the information and content available on it.
  • To respond to and manage your queries and requests.
  • To send you all necessary information regarding the characteristics of the services you have requested.
  • If you consent or there is a sufficient legal basis, to send you information and advertising about offers, products, services, promotions, gifts and campaigns related to our services.
  • To provide appropriate customer support services.
  • To carry out quality control of our services through satisfaction surveys.
  • If you have accepted the cookie policy, to develop the purposes associated with the different types of cookies described therein. You may configure cookie use at any time and withdraw your consent. Withdrawal of consent for certain types of cookies (such as session or technical cookies) may prevent proper browsing of the Website.
  • To adopt applicable protection measures in accordance with current regulations, including the possible anonymization or pseudonymization of personal data.
  • To apply appropriate technical and/or organizational security measures based on the existing risk.
  • In general, to comply with legal and regulatory obligations applicable to our activity sector, including cooperation with judicial authorities, regulatory bodies and law enforcement agencies, as well as fraud detection and crime prevention.
  • LEGAL BASIS FOR DATA PROCESSING

The legal basis for the processing of personal data is your explicit consent (art. 6.1(a) GDPR) and, where applicable, the satisfaction of legitimate interests (art. 6.1(f) GDPR), the application of pre-contractual measures at the request of the data subject (art. 6.1(b) GDPR), or your consent.

For the sending of information and commercial communications, the legal basis is your consent (art. 6.1(a) GDPR) and, where applicable, legitimate interest in accordance with article 21.2 of Law 34/2002 (art. 6.1(f) GDPR).

  • MINORS

Minors under 14 years of age may not use the services available through the Website without prior authorization from their parents or legal guardians, who will be solely responsible for the actions carried out by minors under their care, including the completion of forms with personal data. EVERY PARTS, S.L. cannot verify users’ ages and therefore assumes no responsibility if minors access the Website without supervision.

  • ELECTRONIC COMMUNICATIONS

If you receive electronic communications (emails, automated form responses or other systems), please note that messages are intended exclusively for the recipient and may contain privileged or confidential information. If you are not the intended recipient, any unauthorized use, disclosure or copying is prohibited.

In accordance with Law 34/2002 and Directive 2002/58/EC, if you do not wish to receive commercial communications by electronic means, please notify us via the same channel with the subject line “UNSUBSCRIBE COMMUNICATIONS”. Your request will be processed within 10 days.

  • HOW LONG DO WE RETAIN YOUR DATA?

Personal data will be retained as long as the data subject does not request its deletion and while the relationship that gave rise to the processing remains in force, in accordance with legal retention periods. Once this period has ended, the data will be deleted from all systems.

  • TO WHOM WILL YOUR DATA BE DISCLOSED?

No data will be transferred or disclosed except where legally required. If requested by public authorities within their legal powers, data will be disclosed accordingly.

If any transfer outside these cases is required, you will be informed beforehand and your consent will be requested where applicable.

For organizational and operational purposes, it may be necessary to engage advisors or service providers who process data on our behalf under a written data processing agreement.

  • WHAT ARE YOUR RIGHTS?

You have the following rights:

  • Right to withdraw consent.
  • Right of access.
  • Right to rectification.
  • Right to data portability.
  • Right to restriction of processing.
  • Right to erasure.
  • Right to lodge a complaint with the Spanish Data Protection Agency.
  • DATA PROCESSING PURPOSES – ACTIVITY RECORDS

CONTACTS

  • Purpose: Sending commercial information and offers.
  • Legal basis: Consent.
  • Data: Identification data.
  • Data transfers: None.
  • Retention period: Until the request is resolved.

CLIENTS

  • Purpose: Customer relationship management.
  • Legal basis: Contractual relationship and legitimate interest.
  • Data: Identification, personal, banking and image data.
  • Data transfers: Banks, processors, tax authorities.
  • Retention period: Until deletion is requested, then up to 6 years for legal obligations.