GDPR Compliance

Introduction

At SpanishProperties.org, we are committed to protecting and respecting your privacy and complying with the General Data Protection Regulation (GDPR). This GDPR Compliance document explains how we collect, use, and protect your personal data in accordance with the GDPR.

Data Controller

The Data Controller for SpanishProperties.org is: info@spanishproperties.org

Legal Basis for Processing Personal Data

We process your personal data on the following legal grounds:

  1. Consent: Where you have given clear consent for us to process your personal data for a specific purpose
  2. Contract: Where processing is necessary for the performance of a contract with you
  3. Legal Obligation: Where processing is necessary for compliance with a legal obligation
  4. Legitimate Interests: Where processing is necessary for our legitimate interests or the legitimate interests of a third party

Personal Data We Collect

We may collect and process the following personal data:

  • Identity Information: Name, username, title
  • Contact Information: Email address, phone number, postal address
  • Technical Information: IP address, browser type, device information
  • Usage Information: How you use our website and services
  • Marketing Preferences: Your preferences in receiving marketing from us

How We Use Your Personal Data

We use your personal data for the following purposes:

  • To register you as a new website user
  • To provide you with information about properties that may interest you
  • To manage our relationship with you
  • To improve our website and services
  • To comply with legal and regulatory obligations
  • To protect our business and users from fraudulent activities

Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Your Rights Under GDPR

Under the GDPR, you have the following rights:

  • Right to Access: You have the right to request copies of your personal data
  • Right to Rectification: You have the right to request that we correct any inaccurate personal data
  • Right to Erasure: You have the right to request that we delete your personal data in certain circumstances
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data
  • Right to Data Portability: You have the right to request that we transfer your personal data to another organization or directly to you
  • Right to Object: You have the right to object to the processing of your personal data
  • Rights Related to Automated Decision Making: You have rights related to automated decision making and profiling

To exercise any of these rights, please contact us using the details provided in the “Contact Information” section below.

Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. We limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know.

Third-Party Processors

We may use third-party service providers to process personal data on our behalf. These providers are carefully selected and required to maintain appropriate security measures to protect your information.

International Transfers

We may transfer your personal data to countries outside the European Economic Area (EEA). Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by implementing at least one of the following safeguards:

  • Standard Contractual Clauses approved by the European Commission
  • Privacy Shield certification (where applicable)
  • Binding Corporate Rules

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies. For detailed information about the cookies we use and the purposes for which we use them, please see our Cookie Policy.

Data Breach Procedures

In the case of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible, unless the breach is unlikely to result in a risk to your rights and freedoms. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you of the breach without undue delay.

Changes to This GDPR Compliance Document

We may update this GDPR Compliance document from time to time. We will notify you of any significant changes by posting the new document on our website with a prominent notice.

Contact Information

If you have any questions about this GDPR Compliance document or our data processing practices, please contact us at:

  • Email: info@spanishproperties.org

Complaints

You have the right to make a complaint at any time to the relevant supervisory authority for data protection issues. However, we would appreciate the chance to deal with your concerns before you approach the authority, so please contact us in the first instance.

Last Updated: 06.04.2025

© 2025 SpanishProperties.org. All Rights Reserved. SpanishProperties.org real estate agency is managed by Michal Kalasek ICO88767621