Privacy policy

Welcome to the website www.sobremesa.institute. If you continue to browse and use our website, you are agreeing with the following Privacy Policy.

Privacy and online safety are important to Sobremesa.Institute. This policy explains how we may collect information about you and then how we use it. It also gives certain assurances on things that we will and what we will not do.

Sobremesa.Institute respects the privacy of all users of its site and ensures that the personal information you provide is always treated confidentially. Sobremesa.Institute has taken the necessary organizational and technical protective measures to protect your personal data and complies with the applicable personal data protection legislation.

Also, Sobremesa.Institute guarantees that it has implemented mechanisms for:

  • Ensure the continued confidentiality, integrity, availability and resilience of treatment systems and services.
  • Restore availability and access to personal data quickly in the event of a physical or technical incident.
  • Verify, evaluate and evaluate, on a regular basis, the effectiveness of the technical and organizational measures implemented to guarantee the security of the treatment.
  • Pseudonymize and encrypt personal data, if applicable.

WHICH PERSONAL DATA DO WE GATHER?

During your use of the Sobremesa.Institute website we may gather various personal data from you. This information may be provided by you, for instance if you subscribe to our newsletter service, apply for online courses or when you contact us for another reason. The data generated by your use of the website can also be gathered automatically. In case you have consented to this, your internet use may be monitored by means of so-called marketing cookies, which allows for personalized advertisements.

The personal data we may gather from you include your name, title, gender, date of birth, nationality, country of residence, contact details (such as your address, home telephone number and mobile telephone number, e-mail address, administrative and/or financial data, interests or preferences that you may provide and information about your visit to the website (such as your IP address, provider, browser type, pages you opened on the website, time of your visit).

WHY DO WE GATHER YOUR PERSONAL DATA?

We mainly gather your personal data in the interests of the usual business practices of Sobremesa.Institute. We may also use your personal data for the sale of our online courses and for the provision of our services, including the financial processing thereof. We may also use your data to provide you with information and to keep into contact with you. Your data may also be used for internal visitor analyses in order to further optimize the website. Your personal data may also be required for our own internal administrative purposes, for HR purposes, accounting audits and to comply with legal obligations. Your personal data will only be used for the purposes mentioned and described above or for purposes that are compatible with them. Sobremesa.Institute processes your personal data either on the basis of your consent, or in case of the sale services, because the data is necessary for concluding the agreement between you and Sobremesa.Institute, or alternatively because Sobremesa.Institute has a reasonable interest for the processing of your personal data as set out in this Privacy Policy or (in case of statutory obligations) because it is legally obliged to do so.

CONFIDENTIALITY AND PROFESSIONAL SECRECY

The data collected in all private communications between Sobremesa.Institute and customers or users will be treated with absolute confidentiality, Sobremesa.Institute is committed to the obligation of secrecy of personal data, to its duty to save them and take all necessary measures to prevent their alteration, loss and unauthorized access or processing, in accordance with the provisions of the rules applicable to Security Measures of automated processing containing personal data.

NEWSLETTER

If you are interested in receiving updates about Sobremesa.Institute, you can subscribe to our newsletter. You will then receive an e-mail in which you must click on a link to confirm receipt of the newsletter. We will then save your e-mail address until you unsubscribe from the newsletter. For this purpose you will find a corresponding link to unsubscribe in every e-mail of our newsletter. The delivery of the newsletter is carried out by a professional service provider Mailchimp. The provider is Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.

WHAT DATA ARE STORED BY STRIPE?

If you choose Stripe as your payment method, your personal data (transaction data) will be transmitted to Stripe where it will be stored. These data include the payment method (i.e. credit card, debit card or account number), bank sort code, currency, as well as the amount and the payment date. During a transaction, your name, email address, billing or shipping address and sometimes your transaction history may also be transmitted. These data are necessary for authentication. Furthermore, Stripe may also collect relevant data for the purpose of fraud prevention, financial reporting and for providing its services in full. These data may include your name, address, telephone number as well as your country in addition to technical data about your device (such as your IP address).
Stripe does not sell any of your data to independent third parties, such as marketing agencies or other companies that have nothing to do with Stripe. However, data may be forwarded to internal departments, a limited number of Stripe’s external partners or for legal compliance reasons.

Generally, personal data are stored for the duration of the provided service. This means that the data will be stored until we terminate our cooperation with Stripe. However, in order to meet legal and official obligations, Stripe may also store personal data for longer than the duration of the provided service. Furthermore, since Stripe is a global company, your data may be stored in any of the countries Stripe offers its services in. Therefore, your data may be stored outside your country, such as in the USA for example.

Stripe is still a participant of the EU-U.S. Privacy Shield Framework which regulated correct and secure transfer of personal data until July 16, 2020. However, since the European Court of Justice declared the agreement to be invalid, the company no longer relies on this agreement, but still acts according to the principles of Privacy Shield. The legal basis for the data processing is the fulfillment of the contract according to Article 6(1)(b) GDPR. Therefore, the privacy policy of the respective payment service provider applies.

WHAT DATA ARE STORED BY PAYPAL?

The personal data transmitted to PayPal is data related to the relevant order (first name, surname, address, email, IP address) or other data required to process the purchase contract (such as product, period of access, invoice amount, taxes and other billing information). After payment has been made, a feedback message is sent to our website to confirm the payment has been successful.The buyer can withdraw his or her consent for PayPal to handle personal data at any time. This withdrawal has no effect on the personal data that must be processed, used or transmitted for (contractual) payment processing. The applicable PayPal privacy policy can be found here. We have no knowledge of the storage period at PayPal and no ability to influence it. Paypal does not transmit any of your payment data to us.The transmission of your data is necessary for payment processing via PayPal and is intended to confirm your identity and to administer your payment order. The legal basis for the aforementioned data processing is the fulfillment of the contract pursuant to Article 6(1)(b) GDPR.

USE OF COOKIES

Cookies are pieces of information which a website transfers to your computer’s hard disk for record-keeping purposes. Cookies can make a web site more useful by personalizing information for visitors and by storing information about your preferences on our site. The use of cookies is an industry standard, and many major websites use them to provide useful features for their customers. It is our policy to use cookies only for the following purposes:

  • To identify you.
  • To customize our site for you.
  • To help improve navigation.

Most browsers are initially set up to accept cookies. If you prefer, you can set your browser to reject cookies. However, you will not be able to take full advantage of our web site if you do so.

We use tracking technology to better understand site traffic patterns and use. However, none of the information collected via tracking technology is personally identifiable information.

The Site uses the following types of first-party technical cookies, for which no users’ consent is required but for which the joint Data Controllers are obliged to provide adequate information:

Transient or session cookies: these are essential as they allow the user to move from one page to another on our Site and make use of the services provided; as they are not stored on the user’s device, they disappear when the browser is closed;
Persistent cookies: used solely to improve Site browsing speed, as they memorize certain settings selected by the user (such as language selection).

The use of technical cookies and the processing activities related to the same, do not require prior consent of the user, according to the current laws in force.

The possibility remains, in any case, for users to prevent the installation of technical cookies at any moment in time using the settings on the browser used; this does mean, however, that such settings may make the Site slow, complicated or even impossible to navigate.

LINKS TO OTHER WEBSITES

Our website possibly contains links to non-Sobremesa.Institute websites. These websites may contain different, specific privacy terms and conditions. It is your responsibility to check this before making information available to these websites. Sobremesa.Institute bears no responsibility for any privacy rules applicable on external websites.

EXERCISE OF RIGHTS

The User may exercise the following rights, provided in the RGPD, in relation to the processing of his/her personal data: * Right to request access to personal data relating to the data subject.

  • Right to request its rectification or deletion.
  • Right to request limitation of its treatment.
  • Right to object to treatment.
  • Right to data portability.
  • The right not to be subject to automated individualized decisions.

Such rights may be exercised by e-mail to hola@sobremesa.institute. The interested User must attach a copy of his national identity card, passport or other valid document that identifies. The communication must be made immediately and in no case later than the working day following receipt of the request, together, where appropriate, with other information that may be relevant to the resolution of the request.

GET IN TOUCH

Sobremesa.Institute is registered under the name of Lydia Iracheta Berango with 33432339E fiscal identification number and fiscal address at C/ Pintor Fortuny 27 – 08001 – Barcelona.

If you have any questions regarding this Privacy Policy, please contact us to hola@sobremesa.institute