book a table

PRIVACY POLICY

WEBSITE PRIVACY POLICY

https://www.milanobeach.es

I. PRIVACY AND DATA PROTECTION POLICY

Respecting current legislation, Milano Beach (hereinafter also referred to as the Website) undertakes to adopt the necessary technical and organisational measures, according to the level of security appropriate to the risk of the data collected.

Laws incorporated into this Privacy Policy This privacy policy is adapted to current Spanish and European regulations regarding the protection of personal data on the internet. Specifically, it complies with the following:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).

     

  • Organic Law 3/2018 of 5 December on the Protection of Personal Data and Guarantee of Digital Rights (LOPD-GDD).

     

  • Royal Decree 1720/2007 of 21 December, approving the Regulations for the development of Organic Law 15/1999 of 13 December on the Protection of Personal Data (RDLOPD).

     

  • Law 34/2002 of 11 July on Information Society Services and Electronic Commerce (LSSI-CE).

Identity of the Data Controller The controller of the personal data collected at Milano Beach is: PLAYA MURO STAYS S.L., with NIF/CIF: B44648038, registered in the Mercantile Registry of Mallorca: Volume 2988, Folio 197, Page PM-95954. The representative is: PLAYA MURO STAYS S.L. (hereinafter, Data Controller). The contact details are as follows:

  • Address: C/. Joglars, Balneari 4, Platja de Muro. 07458-MURO

  • Contact Telephone: 971099036

  • Contact Email: info@milanobeach.es

Personal Data Register In compliance with the GDPR and the LOPD-GDD, we inform you that personal data collected by Milano Beach through the forms on its pages will be incorporated into and processed in our file to facilitate, expedite, and fulfil the commitments established between Milano Beach and the User, or to maintain the relationship established in the forms filled out by the User, or to respond to a request or inquiry. Furthermore, in accordance with the GDPR and the LOPD-GDD, a record of processing activities is maintained which specifies, according to their purposes, the processing activities carried out and other circumstances established in the GDPR.

Principles applicable to the processing of personal data The processing of the User’s personal data shall be subject to the following principles set out in Article 5 of the GDPR and Article 4 et seq. of Organic Law 3/2018:

  • Lawfulness, fairness, and transparency: The User’s consent will be required at all times after completely transparent information on the purposes for which the personal data are collected.

  • Purpose limitation: Personal data will be collected for specified, explicit, and legitimate purposes.

  • Data minimisation: Only data strictly necessary for the purposes for which they are processed will be collected.

     

  • Accuracy: Personal data must be accurate and kept up to date.

     

  • Storage limitation: Personal data will only be kept for the time necessary for the purposes of processing.

     

  • Integrity and confidentiality: Personal data will be processed in a way that guarantees security and confidentiality.

     

  • Proactive responsibility: The Data Controller shall be responsible for ensuring that the above principles are met.

Categories of personal data The categories of data processed by Milano Beach are solely identifying data. In no case are special categories of personal data (as defined in Article 9 of the GDPR) processed. [Note: Use this version if you only collect basic info. If you collect health/ethnic data, please specify].

Legal basis for the processing of personal data The legal basis for processing is consent. Milano Beach undertakes to obtain the express and verifiable consent of the User for the processing of their personal data for one or more specific purposes. The User has the right to withdraw consent at any time.

Purposes of processing Personal data are collected for the purpose of fulfilling commitments between the Website and the User, responding to requests, and improving the quality and navigation of the Website. Data may also be used for commercial personalisation and statistical purposes.

Personal data retention periods Personal data will be retained for the minimum time necessary and, in any case, for a period of 12 months, or until the User requests their deletion.

Recipients of personal data User’s personal data will not be shared with third parties. If the Data Controller intends to transfer data to a third country or international organisation, the User will be informed at the time of collection.

Personal data of minors In accordance with Article 8 of the GDPR and Article 7 of Organic Law 3/2018, only those over 14 years of age may lawfully consent to the processing of their personal data by Milano Beach. For those under 14, the consent of parents or guardians is required.

Data security and secrecy Milano Beach implements technical and organisational measures to ensure data security and prevent accidental loss or unauthorised access. The Website has an SSL (Secure Socket Layer) certificate, ensuring that data transmission is encrypted and confidential.

Rights derived from the processing of personal data The User may exercise the following rights against the Data Controller:

  • Right of access: To obtain confirmation of whether their data is being processed.

  • Right to rectification: To modify inaccurate or incomplete data.

  • Right to erasure (“right to be forgotten”): To have data deleted when no longer necessary.

  • Right to restriction of processing: To limit how data is used.

  • Right to data portability: To receive data in a structured, machine-readable format.

  • Right to object: To stop the processing of their personal data.

  • Right not to be subject to automated individual decision-making.

To exercise these rights, the User must send a written communication to the Data Controller with the reference “GDPR-https://www.milanobeach.es, including:

  1. Name, surname, and copy of ID (DNI/Passport).

  2. Specific details of the request.

  3. Address for notification purposes.

  4. Date and signature.

  • Postal Address: C/. Joglars, Balneari 4, Platja de Muro. 07458-MURO

  • Email: info@milanobeach.es

Complaints to the supervisory authority If the User considers there is an infringement of regulations, they have the right to file a complaint with a supervisory authority, specifically the Spanish Data Protection Agency (AEPD) (https://www.aepd.es/).

II. ACCEPTANCE AND CHANGES TO THIS PRIVACY POLICY

The User must have read and agreed to the conditions contained in this Privacy Policy. Use of the Website implies acceptance of this policy. Milano Beach reserves the right to modify this policy according to its own criteria or legislative changes.