Privacy policy

ISLA CANELA S.A. (ISLA CANELA) reserves the right to amend this Policy for the purpose of adapting it to regulatory changes, judicial criteria, practices in the sector or in the best interests of the organisation. Any changes made to this policy will be announced with due notice so you can be made perfectly aware of their content.

The processing of your personal data is necessary for providing you with certain services. To that end, said personal data will be included in the corresponding processing activities by ISLA CANELA and will be processed for the specific purpose of each process, mainly in accordance with the regulations provided by Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), as well as Spanish Constitutional Law 3/2018, of 5 December, on personal data protection and the guarantee of digital rights (LOPD-GDD).

I. GENERAL INFORMATION

ISLA CANELA provides general information on the protection of privacy and of personal data applied to the processing activities it undertakes at Portal level, as well as by other means:

1. Who is the Data Controller responsible for your personal data?
ISLA CANELA is the Data Controller, with registered office at Glorieta de Caminos 6 y 7, 4ª planta, 28020 Madrid (Spain), CIF tax code: A-78079852.

Furthermore, ISLA CANELA receives advice and supervision from our Data Protection Officer privacidad@pryconsa.es.

2. Why do we process your personal data?

The purpose of collecting and processing personal data through the different forms owned by ISLA CANELA and made available to Users is to manage and respond to requests for information, queries, complaints, congratulations or suggestions about publications or any services or activities, acts or events provided, offered, sponsored and/or sponsored by ISLA CANELA. Likewise, in the event of filling in the booking form, your data will be used for the diligent execution of the booking. As well as for sending commercial information if you are a customer.

3. What are the legal grounds on which your personal data are processed? In other words, why can we process your personal data?
The legal basis on which we are entitled to process your personal data is as follows; (i) the consent given by you by signing or accepting the relevant forms, for one or more specific purposes (II) and where applicable the performance of a contract to which you are a party, as a contractor or successful tenderer, in the case of a request for tenders the implementation of contractual measures.

4. How long do we keep your personal data?
We will store your personal data for the corresponding period in order to keep a record of service and manage our services efficiently, provided that the data subject does not ask for their data to be erased. When such a request is made, the personal data will be blocked but not deleted for the time necessary and will only be processed for one of the following reasons: compliance with legal/contractual obligations of any nature to which we are subject and/or for the legal periods required for the expiry of any liabilities on our part and/or the exercise or defence of complaints stemming from the relationship maintained with the data subject.

5. Who must update the data?
Furthermore, in order for the data stored in our electronic and/or paper files to always correspond to reality, efforts will be made to keep them up-to-date. For this purpose, the User must make any such changes either directly when duly authorised to do so or via reliable communication to the relevant ISLA CANELA area or department.

6. With whom might your personal data be shared?
Personal data will not be transferred to or shared with third parties unless necessary for development, control and compliance with the aforementioned purpose(s), under the circumstances provided for by law.

7. Personal data security
ISLA CANELA will adopt all the necessary technical and organisational measures in its IT system to comply with the principle of proactive responsibility in order to guarantee the security and confidentiality of the data stored, thereby preventing alteration, loss, processing or unauthorised access based on the start of the art, the cost of application and the nature, scope, content and purposes of the processing, as well as risks of variable likelihood and severity associated with each processing activity.

8. What are your data protection rights and how can you exercise them?

You are entitled to exercise the rights of access, rectification, erasure, limitation, portability and, where applicable, opposition. To do so, you must write to ISLA CANELA at Glorieta de Caminos 6 y 7, 4ª planta, 28020 Madrid (Spain). The letter must state which of these rights you wish to exercise. If you are acting through a legal or voluntary representative, you must also provide a document that certifies such representation and an identification document of the representative. Furthermore, if you believe that your personal data protection rights have been breached, you may lodge a complaint with our Data Protection Officer privacidad@pryconsa.es or, where applicable, the Spanish Data Protection Agency (www.aepd.es).

More information can be found below on the exercise of your data protection rights:

1. What are my rights?
2. Who can exercise these rights with ISLA CANELA?
3. How and where can I exercise these rights?
4. Additional information

1) What are my rights?
Data protection regulations enable you to exercise the rights of access, rectification, opposition, portability, erasure (“right to be forgotten”), processing limitation and to not be subject to automated individual decision-making with the data controller, ISLA CANELA, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation, “GDPR”), as well as Spanish Constitutional Law 3/2018, of 5 December, on personal data protection and the guarantee of digital rights (LOPD-GDD):

Right of access
You are entitled to know:
* Whether we are processing personal data that concern you.
* The origin of your data, if you did not provide them yourself.
* The purpose for processing your data.
* The data categories involved.
* The recipients or recipient categories with which the personal data were or will be shared.
* If possible, the scheduled period for which the personal data will be stored (or, if not possible, the criteria used for determining this period).
* The right to lodge a complaint with a control agency.
* If we make automated decisions – including profiling – using your personal data.
Right of rectification
You are entitled to rectify your personal data by:
* Completing them, if they are incomplete.
* Updating or correcting them, if for any reason they no longer reflect the current reality or are inaccurate.
* By exercising the right to rectification, we will guarantee that all your personal data are accurate and complete
Right to erasure
You are entitled to have your personal data erased under any of the following conditions:
* The data are no longer necessary for the purposes for which they were collected or processed.
* You withdraw the consent on which we based the processing of your data and processing cannot take place on any other legal grounds.
* You have successfully exercised your right to oppose the processing of your data.
* The personal data have been processed unlawfully.
Right to restrict processing
You will be entitled to obtain a restriction on the processing of your personal data (i.e., that we keep your personal data without using the same for the stated purposes).
Right to oppose processing
You will be entitled to ask us to stop using your personal data, for example, when you believe that the personal data we hold about you may be incorrect or you believe that we no longer need to use them.
Right to data portability
When the processing of your data is based on consent or is necessary for the performance of a contract or pre-contract and is automated, you will be entitled to the portability of your data; i.e., that we provide them to you in a structured, machine-readable format of common use, as well as that we provide them to a new data controller. This is why ISLA CANELA will facilitate the portability of your data to the new data controller.

2) Who can exercise these rights with ISLA CANELA?
You, as data subject or owner of the personal data, acting in your own name and on your own behalf.

Through someone else who acts as a duly accredited legal representative (e.g., when the holders of parental authority act on behalf of a minor under the age of 14 or when action is taken as the legal representative of someone with functional diversity) or voluntary representative (someone to whom you freely and voluntarily grant powers of representation to this end).

3) How and where can I exercise these rights?

By post

You can submit your request by sending it to the following postal address: Glorieta de Caminos 6 y 7, 4ª planta, 28020 Madrid (Spain)

Online

You can submit your request by sending an e-mail to the following address privacidad@pryconsa.es.

In both cases, you must:

Provide sufficient details and information so as to enable a response to the request. To this end, you may use the template forms made available by the Spanish Data Protection Agency https://www.aepd.es/es/derechos-y-deberes/conoce-tus-derechos
Hand sign the document or, where applicable and a recognised digital certificate is available, sign it electronically.
When acting on behalf of a third party, a copy of their DNI or equivalent identification document must also be included, as well as the document accrediting representation of the data subject.
Send the form and documents proving your identity by any of the afore-mentioned means.

4) Additional information
ISLA CANELA will study whether the request is supported by law or not. It will notify the requesting party of the decision reached and act accordingly: if accepted, it will adopt the pertinent measures based on the right exercised; if rejected, it will indicate the legally provided system for appeals. In the event that requests clearly have no legal basis or are excessive (e.g., repetitive), ISLA CANELA may: (i) Charge a fee in proportion to the administrative costs incurred; (ii) Refuse to act.

For more information or clarification about your personal data protection rights, you may contact our Data Protection Officer privacidad@pryconsa.es.

Cookie	Duration	Description
cli_user_preference	4 meses/4 months	La cookie es establecida por el plugin de consentimiento de cookies de GDPR y se utiliza para almacenar si el usuario ha consentido o no el uso de cookies. No almacena ningún dato personal./The cookie is set by the GDPR cookie consent plugin and is used to store whether or not the user has consented to the use of cookies. It does not store any personal data.
cookielawinfo-checkbox-analitica	4 meses/4 months	Esta cookie se establece por el plugin "GDPR Cookie Consent". La cookie almacena el consentimiento del usuario para las cookies en la categoría "Analítica". No almacena datos personales./This cookie is set by the “GDPR Cookie Consent” plugin. The cookie stores the user’s consent for cookies in the “Analytics” category. It does not store personal data.
cookielawinfo-checkbox-marketing	4 meses/4 months	Esta cookie se establece por el plugin "GDPR Cookie Consent". La cookie almacena el consentimiento del usuario para las cookies en la categoría "Marketing". No almacena datos personales./This cookie is set by the “GDPR Cookie Consent” plugin. The cookie stores the user’s consent for cookies in the “Marketing” category. It does not store personal data.
cookielawinfo-checkbox-necessary	4 meses/4 months	Esta cookie se establece por el plugin de Consentimiento de cookies GDPR. Las cookies se utilizan para almacenar el consentimiento del usuario para las cookies en la categoría "Necesarias"./ This cookie is set by the GDPR cookie consent plugin. The cookies are used to store the user's consent for cookies in the “Necessary” category.
CookieLawInfoConsent	4 meses/4 months	La cookie es establecida por el plugin de consentimiento de cookies de GDPR y se utiliza para almacenar si el usuario ha consentido o no el uso de cookies. No almacena ningún dato personal./The cookie is set by the GDPR cookie consent plugin and is used to store whether or not the user has consented to the use of cookies. It does not store any personal data.
pll_language	11 meses/ 11 months	Esta cookie es establecida por el plugin Polylang. La cookie solo almacena el código de idioma de la última página visitada. No almacena datos personales./This cookie is set by the Polylang plugin. The cookie only stores the language code of the last page visited. It does not store personal data.
utm_source_cookie	1 mes / 1 month	Esta cookie recoge el valor del parámetro utm_origen de la URL (en caso de existir) para determinar el origen de la visita. No almacena datos personales./This cookie collects the value of the utm_origin parameter of the URL (if any) to determine the origin of the visit. It does not store personal data.
viewed_cookie_policy	4 meses/4 months	La cookie es establecida por el plugin de consentimiento de cookies de GDPR y se utiliza para almacenar si el usuario ha consentido o no el uso de cookies. No almacena ningún dato personal./ The cookie is set by the GDPR cookie consent plugin and is used to store whether or not the user has consented to the use of cookies. It does not store any personal data.

Cookie	Type	Duration	Description
_fbp	third party	3 meses/ 3 months	Utilizada por Facebook para ofrecer una serie de productos publicitarios como ofertas en tiempo real de terceros anunciantes. Política de cookies de Facebook./Used by Facebook to deliver a range of advertising products such as real-time offers from third-party advertisers. Facebook cookie policy.
_ga	third party	1 día/1 day	Esta cookie es instalada por Google Analytics. La cookie se utiliza para calcular los datos de visitantes, sesiones, campañas y para hacer un seguimiento del uso del sitio para el informe analítico del mismo. Las cookies almacenan información de forma anónima y asignan un número generado aleatoriamente para identificar a los visitantes únicos. Política de cookies de Google./ This cookie is installed by Google Analytics. The cookie is used to calculate visitor data, sessions and campaigns and to track website usage for analytics reports. Cookies store information anonymously and assign a randomly generated number to identify unique visitors. Google cookies policy.
_ga_5MCX4GP0FC	third party	1 minuto/ 1 minute	Google utiliza esta cookie para distinguir a los usuarios. Política de cookies de Google./Google uses this cookie to distinguish users. Google cookies policy.
_ga_C8GTR3910M	third party	1 minuto/ 1 minute	Google utiliza esta cookie para distinguir a los usuarios. Política de cookies de Google./Google uses this cookie to distinguish users. Google cookies policy.
_gat_UA-5891160-2	third party	1 minuto/ 1 minute	Google utiliza esta cookie para distinguir a los usuarios. Política de cookies de Google./Google uses this cookie to distinguish users. Google cookies policy.
_gcl_au	third party	3 meses/ 3 months	Esta cookie es instalada por Google Analytics. La cookie toma la información de los clics de los anuncios y la almacena en una cookie de primera mano para que las conversiones se puedan atribuir fuera de la página de destino. Política de cookies de Google./This cookie is installed by Google Analytics. The cookie takes information from ad clicks and stores it in a first-party cookie so that conversions can be attributed outside the landing page. Google cookies policy.
_gid	third party	1 día/1 day	Esta cookie es instalada por Google Analytics. La cookie se utiliza para almacenar información de cómo los visitantes utilizan un sitio web y ayuda en la creación de un informe analítico de cómo el sitio web está haciendo. Los datos recogidos incluyen el número de visitantes, la fuente de donde vienen y las páginas visitadas de forma anónima. Política de cookies de Google./This cookie is installed by Google Analytics. The cookie is used to store information about how visitors use a website and helps create an analytical report about the website's performance. The data collected includes the number of visitors, the source they came from and the pages visited in anonymous form. Google cookies policy.
fr	third party	3 meses/ 3 months	Utilizada por Facebook para ofrecer una serie de productos publicitarios como ofertas en tiempo real de terceros anunciantes. Política de cookies de Facebook./Used by Facebook to deliver a range of advertising products such as real-time offers from third-party advertisers. Facebook cookie policy.
gwcc	third party	3 meses/ 3 months	Esta cookie es establecida por Google Website Call Conversion. La cookie se utiliza para rastrear cualquier conversión de llamadas en dispositivos móviles. Política de cookies de Google./This cookie is set by Google Website Call Conversion. The cookie is used to track any call conversions on mobile devices. Google cookies policy.
IDE	third party	2 años/ 2 years	Utilizado por Google DoubleClick y almacena información sobre cómo el usuario utiliza el sitio web y cualquier otro anuncio antes de visitar el sitio web. Esto se utiliza para presentar a los usuarios anuncios que son relevantes para ellos de acuerdo con el perfil del usuario. Política de cookies de Google./Used by Google DoubleClick and stores information about how the user uses the website and any other advertising prior to visiting the website. This is used to present users with ads that are relevant to them according to the user's profile. Google cookies policy.

Cookie	Type	Duration	Description
_hjid	third party	11 months	Esta cookie es instalada por Hotjar. Esta cookie se establece cuando el cliente llega por primera vez a una página con el script de Hotjar. Se usa para que persista el ID de usuario aleatorio, único para ese sitio en el navegador. Esto asegura que el comportamiento en las visitas subsecuentes al mismo sitio será atribuido al mismo ID de usuario.
_hjIncludedInSample	third party		Esta cookie está configurada para que Hotjar sepa si ese visitante está incluido en la muestra que se utiliza para generar Heatmaps, Embudos, Grabaciones, etc.
GPS	third party	30 minutos/ 30 minutes	Esta cookie es establecida por YouTube y registra una identificación única para rastrear a los usuarios en base a su ubicación geográfica. Política de cookies de YouTube./ This cookie is set by YouTube and records a unique ID to track users based on their geographical location. YouTube cookie policy.
lpv300941	Propia	30 minutos/ 30 minutes	Esta cookie controla la ejecución de Pardot. La cookie se utiliza para automatizar servicios de marketing. Política de cookies de Pardot. This cookie controls the execution of Pardot. The cookie is used to automate marketing services. Google cookies policy.
Pardot	Propia	1 año/ 1 year	Esta cookie controla la ejecución de Pardot. La cookie se utiliza para automatizar servicios de marketing. Política de cookies de Pardot./This cookie controls the execution of Pardot. The cookie is used to automate marketing services. Google cookies policy.
Script Hotjar	third party	1 month
visitor_id300941	Propia	2 años/ 2 years	Esta cookie controla la ejecución de Pardot. La cookie se utiliza para automatizar servicios de marketing. Política de cookies de Pardot./This cookie controls the execution of Pardot. The cookie is used to automate marketing services. Google cookies policy.
visitor_id300941-hash	Propia	2 años/ 2 years	Esta cookie controla la ejecución de Pardot. La cookie se utiliza para automatizar servicios de marketing. Política de cookies de Pardot./This cookie controls the execution of Pardot. The cookie is used to automate marketing services. Google cookies policy.
VISITOR_INFO1_LIVE	third party	5 meses/ 5 months	Esta cookie está puesta por YouTube. Se usa para rastrear la información de los videos incrustados de YouTube en un sitio web. Política de cookies de YouTube./This cookie is set by YouTube. It is used to track information about embedded YouTube videos on a website. YouTube cookie policy.
YSC	third party	1 año/ 1 year	Estas cookies son establecidas por YouTube y se usan para rastrear las vistas de los videos incrustados. Política de cookies de YouTube./These cookies are set by YouTube and are used to track views of embedded videos. YouTube cookie policy.