Privacy Policy 

In order to keep our clients duly informed and comply with the obligations imposed by current data protection legislation, we would like to explain our PRIVACY POLICY for our website, products, articles, services, and applications (hereinafter referred to as the “Services”). 

This document has been drafted in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, concerning the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (hereinafter referred to as GDPR), as well as Organic Law 3/2018, of December 5, on Personal Data Protection and the guarantee of digital rights (hereinafter referred to as LOPDGDD), and the appropriate recommendations from various data protection authorities. 

FIRST. WHO IS RESPONSIBLE FOR DATA PROCESSING? 

Entity: StayAlliance
Tax ID (N.I.F.): G-21728480
Registered Address: Calle San Marcos No. 9, Bajo, 28004, Madrid (Spain).
Email: info@stay-alliance.es 

SECOND. WHY DO WE COLLECT INFORMATION? 

  • StayAlliance (hereinafter, the “Controller”) is strongly committed to the privacy of its users. Therefore, any data collected by the Controller through the Website will only be used for the purpose requested by the user. As a user, you will not receive promotional communications (unless we have your consent) from the Controller or third parties. The Controller collects your information to provide the best service. The purposes for this data processing include: 
  • To contact you after receiving an inquiry through our designated forms. 
  • To communicate with you following the contracting of a service. 
  • To send promotional communications with your consent. 
  • To monitor your inquiries to provide the best service. 
  • To comply with legal obligations. 
  • To fulfill contractual obligations arising from the use of our services. 
  • To improve service delivery and resolve any potential issues. 
  • To prevent fraud and operational and contractual risks. 

THIRD.WHEN DO WE COLLECT YOUR DATA? 

  • Your data may be collected, for example:
  • When you contract any of our services.
  • When you fill out any form directed to us.
  • When you subscribe to our newsletter.
  • When you contact us through the communication channels we provide, including social media.

FOURTH. ON WHAT BASIS DO WE PROCESS YOUR DATA?  

  • We process your data in accordance with Article 6.1 of the GDPR, based on the following legal grounds: 
  • Contractual Performance: If the processing relates to the contracting of any of our services, the legal basis is the execution of a contract. 
  • Consent: If you contact us through our communication channels or subscribe to our newsletter, the legal basis is your consent, which you may revoke at any time. 
  • Legal Obligation: In certain cases, we will process your data to comply with a legal obligation. 

FIFTH. DO WE SHARE YOUR DATA WITH THIRD PARTIES? 

The Controller does not share your data with third parties unless it is necessary to comply with a legal obligation or we have your authorization. By consenting to this policy, you expressly authorize [Asier Pereda] to use your data to make offers and provide agreed-upon services. 

If the Controller’s Services include links to other systems, these third parties may collect the necessary information during such interaction, always with your consent (e.g., cookies). 

SIXTH. DO WE MAKE INTERNATIONAL DATA TRANSFERS? 

The Controller does not make international data transfers in the provision of its Services.  

SEVENTH. HOW LONG DO WE RETAIN YOUR DATA? 

The Controller will retain your data only as long as necessary for the purposes for which they were collected, in compliance with the principle of storage limitation, unless a legal obligation requires their retention. Specifically: 

  • Inquiries submitted via the Website Form: Data will be retained until the inquiry is resolved. 
  • Job applications: Data will be retained for a maximum of three (3) years. 

EIGHTH. WHAT ARE YOUR RIGHTS? 

You have the following rights regarding the processing of your data: 

  • Right of Access: You have the right to know what data is being processed and the operations carried out on it. Your data will always be available at the provided contact address. 
  • Right of Rectification: You can rectify inaccurate data we hold about you. 
  • Right to Erasure: Unless required by law, you may request the deletion of your data. 
  • Right to Restriction: You may request the Controller to restrict the processing of your personal data under certain conditions. 
  • Right to Object: You can object to the processing of your personal data unless there is a legitimate interest. 
  • Right to Data Portability: You can request your data in a structured format to transfer it to another Controller. 

NINTH. WHERE CAN YOU EXERCISE YOUR RIGHTS? 

You may exercise your rights listed in Section 8 by contacting the Controller via: 

  • Postal Mail: Send a signed and certified communication to Calle San Marcos No. 9, Bajo, 28004, Madrid (Spain). 

Communications must include electronic signature or a copy of a valid ID. 

Additionally, you may file a complaint with the Spanish Data Protection Agency (AEPD) if deemed appropriate. More information at www.aepd.es. 

TENTH. ACCESS TO INFORMATION BY THE CLIENT 

Clients can access their voluntarily provided information, such as personal details, payment preferences, order history, subscriptions, and conditions for receiving emails (newsletters, etc.).  

ELEVENTH. CHANGES TO THE PRIVACY POLICY. 

This Privacy Policy may change due to legislative requirements. Users can access this information at any time via the link on the website. It is recommended that users review the policy frequently. 

TWELFTH. DATA ACCURACY 

The user guarantees that the data provided via the Website is true, accurate, complete, and up-to-date, being responsible for any damage that may result from non-compliance. 

THIRTEENTH. MINIMUM AGE 

In accordance with the LOPDGDD, the processing of personal data for a minor can only be based on their consent if they are over fourteen years of age or have the authorization of their parents and/or legal guardians if they are under that age. Therefore, by accepting this Privacy and Cookies Policy, the user guarantees that they meet this age requirement or have the aforementioned parental authorization to register for the Controller’s Services and assumes full responsibility for this declaration. Minors may only use the Controller’s Services under the supervision of a parent or guardian, who will be responsible for such use. 

FOURTEENTH. SECURITY 

The Controller is committed to ensuring the security and confidentiality of your data and personal information. Therefore, we have adopted numerous security measures and technical means to prevent their loss, misuse, or unauthorized access, in accordance with the provisions of the GDPR. The Controller undertakes to act promptly and responsibly if the security of your data might be at risk and to inform you of such an event, if relevant, with the utmost diligence. 

FIFTEENTH. INFORMATION PROVIDED 

The Controller collects information provided by you in various circumstances, such as when you create a profile, while browsing the website www.cursoriambikes.com, updating your data, or communicating with the Controller through different channels (phone, website, email). 

In addition, the Controller automatically collects and analyzes information in specific cases related to website usage (IP address, device or computer location, visit history linked to the website www.cursoriambikes.com, purchase history, and service contracts). Phone numbers used to contact customer service are also automatically logged. 

The cookie system may, in some cases, identify devices, applications, browsing data, or other technical information to achieve the stated objective of fraud prevention. Both first-party and third-party cookies will be used to obtain statistical data on user browsing and to improve our services. 

SIXTEENTH. APPLICABLE LAW AN JURISDICTION 

The relationship between the Controller and the user shall be governed by current Spanish legislation, and any disputes shall be submitted to the Courts and Tribunals of the user’s domicile.