Who we are

Our website address is: https://eschillhadas.es. Eschillhadas is an online food store that offers artisanally crafted food products.

What personal data we collect and why

Comments

When visitors leave comments on the site, we collect the data shown in the comments form, as well as the visitor's IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Orders and purchases

When you place an order in our store, we collect the information necessary to process your purchase and deliver your products. This includes:

  • Full name
  • Email address
  • Phone number
  • Shipping and billing address
  • Payment information (securely processed by our payment provider)
  • Order history

This information is necessary to fulfil the sales contract and to comply with our legal obligations. We retain it for the legally required period for tax and accounting obligations.

Contact form

When you use our contact form, we save the message sent, your name and email address in order to respond to your enquiry. This data is not shared with third parties and is deleted once the enquiry has been resolved.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (GPS EXIF), as visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select "Remember Me", your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

Our store also uses cookies to remember the contents of your shopping cart, your preferences and to improve your browsing experience. You can manage or disable cookies in your browser settings, although this may affect the functionality of the store.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Payments

We process payments through secure, certified payment providers. We do not store your full credit or debit card details on our servers. All payment information is securely processed and encrypted by our payment service provider, which complies with PCI-DSS standards.

Who we share your data with

We do not sell, exchange or transfer your personal data to third parties without your consent, except in the following cases:

  • Delivery service providers: we share your name and address with the courier services required to deliver your order.
  • Payment providers: the data necessary to process the payment is transmitted securely to our payment gateway provider.
  • Legal obligations: we may disclose your data when required by law or to protect our legal rights.

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

Order data and billing information are retained for the legally established period to comply with tax and accounting obligations (currently 5 years under Spanish legislation).

For users that register on our website, we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

In accordance with the General Data Protection Regulation (GDPR) and current Spanish legislation, you have the following rights regarding your personal data:

  • Right of access: you can request a copy of the personal data we hold about you.
  • Right of rectification: you can request that we correct inaccurate or incomplete data.
  • Right of erasure: you can request that we delete your personal data when it is no longer necessary.
  • Right to object: you can object to the processing of your data under certain circumstances.
  • Right to data portability: you can request that we provide your data in a structured, commonly used format.
  • Right to restriction of processing: you can request that we limit the use of your data under certain circumstances.

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

To exercise any of these rights, you can contact us through our contact form or by sending an email to: info@eschillhadas.es

Where your data is sent

Visitor comments may be checked through an automated spam detection service. Order data is processed and stored on secure servers within the European Economic Area (EEA).

Security of your data

We are committed to ensuring the security of your personal information. We have implemented appropriate technical and organisational measures to protect your data against unauthorised access, alteration, disclosure or destruction. Our website uses SSL encryption to protect the transmission of sensitive data.

Changes to this privacy policy

We reserve the right to update this privacy policy at any time. When we do, we will publish the revised version on this page with the update date. We recommend that you review this policy periodically to stay informed about how we protect your information.

Contact

If you have any questions about this privacy policy or about the processing of your personal data, you can contact us:

Eschillhadas
Web: https://eschillhadas.es
Correo electrónico: info@eschillhadas.es

You also have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD) if you consider that the processing of your personal data infringes current regulations. You can do so through their website: www.aepd.es