PRIVACY POLICY

The Majorca Daily Bulletin is committed to protecting personal data. Privacy and trust are important to us. This Privacy Policy statement provides detailed information on how the Majorca Daily Bulletin uses and protects personal data as well on the legislation that enables it to do so.

This Privacy Policy is applicable to the websites www.majorcadailybulletin.com, wwww.mallorcamagazin.com, www.elsoller.cat, publicidad.mallorcamagazin.com, www.gruposerra.com, as well as the personal data you provide us with or which we obtain from you when visiting these websites. It is important that you read the specifications in the Privacy Policy with care along with their corresponding online format, as it is within this framework that we gather personal data.

The Privacy Policy of the Majorca Daily Bulletin is governed by the current law in Spain and more widely by European law in Europe. The Data Protection Act is set out in Rule 2016/679 established by the European Parliament and European Council on 27th April, 2016. It refers to the technology used, the nature of data documented and the risks to which such data is exposed. It gives details of the technical methods which are used to guarantee the confidentiality and privacy of logged personal data along with assurances of its integrity, availability and security. Every necessary step is taken to stop any tampering with such data, loss or unauthorised access, or use of the data for fraudulent purposes.

The Majorca Daily Bulletin guarantees that the personal data of its website users is processed in a licit, uncompromising and open manner and that such data is documented with the explicit consent of the Users so as they are aware as to how their personal information is to be utilised. If there is to be any kind of contractual agreement to which the Users are party, the Privacy Policy allows for a pre-contractual agreement in the legitimate interests of the Majorca Daily Bulletin through which it can improve its services, products or brands. Such agreement also covers the contracting of, and lending of our services, or to meet requests for information or to deal with claims raised in the course of business.

We recommend that you read the following text carefully and if after doing so you have any doubt, you can get in touch with us through our email address privacy@majorcadailybulletin.com

RESPONSIBILITY FOR PROCESSING (PERSONAL DATA)

The responsibility of adhering to the terms of the Privacy Policy currently lies with the company Ediciones Jemma S.L., Paseo Mallorca 9-A, Palma de Mallorca 07011. The company’s business identity number is CIF B78159142 and can be found in the Business Registry of Palma de Mallorca, tome 2896. book 0, folio 66, of archive sheet PM-90940, second inscription. Date 25-03-2021. Tel. 971-788 300, email contact privacy@majorcadailybulletin.com.

As well as the following companies of its group: HORA NOVA, S.A. A-07242753 Paseo Mallorca 9-A 07011 Palma

SECURING PERSONAL DATA

We gather personal information on the User through:

Requests for information and quotations on our products and services, as well as details provided for taking part in an event, activity or promotional event, etcetera, or data secured when the User acquires any of our products or services by means of the User providing information required to that effect, through means of email correspondence and/or forms made available to the User on the internet.

Cookies and other technology. If you wish to know more you are welcome to visit our Cookies Policy.

In the forms which are available on the websites, there is guidance as to which sections the User is obliged to complete so that if the sum total of the information required is not provided, we cannot meet the requirements of the User or provide the requested services.

So though this procedure we can lawfully obtain the following information:

  • Christian name and surname
  • Date of Birth
  • National Identity Number
  • Nationality and/or residential address
  • Telephone number,
  • Email address
  • Web page
  • (Geographical) Location

The Location of the Users will be used to optimise areas of targeted publicity. If the User doesn’t want the Majorca Daily Bulletin to have knowledge of his/her location, the User will need to configure their browser which will deactivate the geo-localisation function; browsing features (through cookies); tastes and preferences (through cookies): the IP address (through cookies): any opinion or comment that is freely given to us or is found in public profiles on news (for example through social networking such as Facebook or Twitter); any other information and/or archive file that is freely passed over to us.

On those websites where you can acquire something or where you can subscribe to some information or advertising service, your payment details will be requested, for example details of your banking card and any other information required to process your payment should that be necessary.

It may be that you are asked to share your location or geographical whereabouts. If this is the case then the purpose is to personalise advertising close to where you are located or to provide you with information on services where you are located. This information can also be used to carry out statistical studies and break down advertising services into branches.

We gather, use, divulge, transfer and store personal information when it is necessary to lend our services and for our operational purposes and business, such as is described in this current Privacy Policy.

You are free to get in touch with us if you have any questions or concerns regarding the processing of your personal data by emailing us on privacy@majorcadailybulletin.com.

YOUR COMMITMENT IS TO PROVIDE US WITH ACCURATE DETAILS AS AND WHEN REQUIRED

The Users of our websites should be certain that the information provided is true, accurate and up-to-date. In order that we have your most recent personal information on file, we would ask that you let us know of any changes in your circumstances.

As the User, it is important that you are the only person responsible for any direct or indirect damage resulting from providing us with inaccurate or false information leading to a fraudulent transaction.

CONSENT OF MINORS

It is essential that people under 16 years of age who use our websites have the express consent of their parents or legal guardians to do so. A copy of identity documentation of the minor and appropriate authorisation should be sent by email to privacy@majorcadailybulletin.com. We do not keep personal data on people under 16 years of age without the consent of their parents or guardians. Users need to declare and guarantee their being 16 years of age and over.

In the event that our website managers suspect that Users could be under age, their personal information will not be processed and their requests not replied to. We reserve the right to request sight of a national identity card of similar document to provide proof of their being of a legal age to use the website.

PURPOSE OF PROCESSING PERSONAL DATA

We hereby guarantee that all the personal data provided by users will be stored and processed by those responsible for the following purposes:

To respond to questions sent through completion of our contact form or which have been emailed to us at privacy@majorcadailybulletin.com about the processing of data where the legal basis for such processing is consent.

To manage letters to the director, formal complaints made by members of the public or any other communication received via this email address at any of our offices. The legal basis for processing the personal data is consent.

To manage and process requests for subscriptions received through completed forms requesting subscriptions and to offer the User the service that they request. The legal basis for processing the data is the setting up of a contract.

To manage the accounts of a registered User to guarantee correct carrying out of any service requested. The legal basis for processing of data in these cases is consent and /or setting up an account between the User and the Provider.

Promote the participation of registered Users in conferences, outings, events and activities of all kinds as requested by the User. The legal base for processing personal data is consent.

To reply to the questions of the User regarding privacy issues or User application for exercise of rights with regard to Data Protection sent to us via our email address privacy@majorcadailybulletin.com. The legal basis in this instance for use of personal data is legitimate interest.

To send the User emails in response to their questions, to send information sheets or commercial notices and other material specifically requested by the User through subscription to our publication. The legal basis for use of the data is consent.

To manage the User data base for email communication and for other processing purposes set out in this Privacy Policy. The legal basis for data processing in this instance is consent, and/or setting up of a contract.

To carry out analytical studies of the website for statistical purposes with the aim of improving information provided. The legal base for processing personal data in this instance is legitimate interest.

To manage our social networks using data provided by our Users. In this respect the processing of data is determined by the guidelines of this Privacy Policy and by the terms and conditions, privacy policies and specific rules of access related to each social network. The legal basis for our processing of the data is through consent.

To manage targeted advertising through non-specific data that can be obtained through a selection of Cookies downloaded onto the User’s computer device when the User is navigating the web. This process gives guidelines on which documents and which websites are most frequently visited. The use of Cookies along with analysis of other personal data can result in identification of the User. Automated individualised decision-making and/or profile building through Cookies and other tracking technology for targeted publicity do not have negative legal implications and thus should not affect the User. However, the User has the right to voice his opposition at any time to the use of data manipulation such as the use of Cookies. There is more information about this to be found in our Cookies Policy.

Legal obligations. There is the possibility that we are obliged to use, document and retain personal information for legal reasons and for the fulfilment thereof, such as prevention, detection and investigation of a crime, prevention of personal loss or fraud or in order to comply with internal and external audit requirements. Whilst bearing in mind our commitment to the security of information and protection of personal data, we are legally obliged to provide information if circumstances demand that we assist with crime prevention:

  1. By virtue of existing law, which could include laws outside of the country of residence of the User.
  2. To respond to investigations by tribunals, security organisations, regulatory bodies and other public and governmental institutions which could also include authorities with legal power outside the country of residence of the User.
  3. And to protect rights, privacy, security or property of those responsible for processing data and those of other people.

Before sending any requests or information through completing on-line forms or through an electronic email address on the internet, the User must give express confirmation that he/she has read this Privacy Statement, which to all legal intents and purposes confirms that the User gives his informed consent unequivocally, freely and specifically for the purposes set out herein.

This express consent implies that the User gives his authorisation for the processing of personal details under the terms and conditions established in this Privacy Policy. Similarly those with whom he has entered into the agreement of consent must also agree to be bound by a contractual obligation when processing personal data to fulfil these terms and conditions.

Other company websites linked to those in the organisation who process personal data can contain subscription forms for the User to receive news, newsletters or for using purchasing services from those websites, or to receive information on activities. These websites could also contain personalization tools that would be shared with them.

We can use personal information to send and suggest adapted content such as news items, investigations reports and business information, and to personalise User experiences with our services and those of related companies. Some of these services could ask the User to share exact geographical location in such a way that we might be able to personalise your experience and promote precision in the services provided to you. If you agree to share your exact geographical whereabouts with us, you will be able to deactivate it at any time simply by adjusting the privacy configuration on your mobile device.

The personal information that is collected on our website Users is not always obtained directly from the Users themselves. Our computer servers through the use of Cookies and other technologies automatically collect certain information which can lead to the identification of the User. There is more information on this in our Cookies Policy.

INTERNATIONAL TRANSFERS

In some instances, third party tools and services are used for the management of the websites such as for investigative and analytical purposes, and email marketing campaigns. Some of these services could be carried out by third party organisations based in countries outside the European Union (Google, Mailchimp, Amazon Host, WordPress, etc.)

It is always our policy to use secure I.T. tools preferably linked to servers based in Spain, or in the event of that not being possible, to servers based in another member country of the European Union so that practices are carried out according to European law, and based on guidelines and recommendations by the Spanish Data Protection Agency, from the European Commission and in agreement with European Union laws governing international transfer of personal data including verification on the Privacy Shield list.

The majority of those third party operators are well able to show that they adhere to European ruling on data protection, to the extent that they use European-based servers and may even have an administration base in a European country. Nevertheless, in the event that there is a need for international transfer of personal data, accepting this Privacy Statement implies that you give your express consent to such a move, having been informed of the process of data handling in advance. In cases where a third party cannot guarantee a level of security that is the norm in Europe, relevant contractual assurances will be put in place for the User together with a prerequisite of the third parties’ adherence to Privacy Shield.

SECURITY MEASURES APPLIED TO THE PROCESSING OF PERSONAL DATA

In order to protect the personal data of Users and subscribers, Majorca Daily Bulletin ensures that it and its processors implement technical and organisational measures appropriate to the state of the art to protect personal data, taking into account the scope, context and purposes of the processing, as well as the risks of varying likelihood and severity to the rights and freedoms of data subjects, and endeavours to ensure the confidentiality, integrity, availability and resilience of the processing systems and services.

We always apply technical and organisational security measures to process personal data, giving assurances of confidentiality and minimising the risk of unauthorised access or inappropriate use of the personal data of the Users by third parties. We have already put in place, and consistently maintain, the levels of security demanded by current legislation to protect the Users’ personal data, bearing in mind the technology being used, the nature of the data and the possible risks.

The Majorca Daily Bulletin keeps a record of the personal data of the Users in encrypted form on secure servers in Spain and Europe, and in cases where it has to be stored in countries outside the European Union, verification of those third parties’ adherence to European norms and practices (Privacy Shield) is secured in advance. The data is thereby protected against the usual forms of cyber crime.

The Majorca Daily Bulletin makes use of encryption and authentication Protocol with a TLS 1.2 (strong) connection, ECDHE_RSA with P-256 (a strong key exchange), and AES_256-GCM (a strong cipher) guaranteeing that the personal data which we have requested from the Users is transmitted to our servers across an SSL (Secure-Socket-Layer) in order to protect the data from third party intervention.

seguridad

The Majorca Daily Bulletin is capable of acting swiftly and efficiently to restore availability of, and access to, personal data in the event of a technical or physical disruption to our service.

NOTIFICATION OF A BREACH OF SECURITY OF PERSONAL DATA

In the event of a breach of security, unless it is improbable that the said security violation constitutes a risk to personal safety, the Spanish Data Protection Agency will be notified no more than 72 hours after the incident has occurred, along with a description of the nature of the violation of privacy, the possible risks that could result from it and the measures taken or proposed to rectify the breach of security; and where possible, it will be made known which are the categories and the approximate number of interested parties and the nature of the data affected.

Similarly, the Users who have been affected by such a breach of security will be notified in the shortest time frame possible, in circumstances where it is probable that the breach of security of personal data could mean a high risk of infringement of individual rights and liberties. Possible consequences resulting from such a breach will be detailed to the Users, along with a description of the measures proposed to correct the privacy violation.

EXERCISE OF RIGHTS

The User can, at any time, withdraw his consent and/or exercise his rights of access, rectification, suppression, limitation, opposition and portability (the ability of software to be transferred from one machine to another) provided in European legislation for Personal Data Protection, by sending an email to privacy@majorcadailybulletin.com or send instructions by post to Ediciones Jemma S.L., Paseo Mallorca 9-A, Palma de Mallorca 07011 (Spain). In such a case, the User should indicate the right he wishes to exercise and attach a copy of his identity card or other valid documentation which can include his personal email verification.

WHAT ARE THE USERS’ RIGHTS?

According to current legislation, the rights held by the User in relation to the collection and processing of personal data are:

The right to easy access of information, meaning the right he has to be informed in a concise, transparent, intelligible manner, with clear and simple language, about the use and processing of his personal data.

The right of access, which gives the User a legislative right to obtain information on what areas of his personal data are the object of processing, the end result of such processing, the different categories of personal information being processed, the term and criteria of database conservation, and to whom or to what organisations will such personal data be sent. The User also has a right to know if personal profiles of the User are set up using key information along with the consequences/results of processing provided personal details; the right to exercise correction or withholding of personal data and the right to limit or oppose data processing and the right to present a complaint to the Controlling Body.

The right to exercise correction to data allows the User to demand that wrongfully logged personal details be rectified, whether inaccuracy is due to a matter of error or whether data is incomplete.

The User has the right to exercise suppression or removal of data:

In cases where the processing of personal data becomes unlawful

When the User has withdrawn his consent to the use of personal data or if he has chosen to exercise his right to oppose the use of the data when a legal reason for it being processed no longer exists.

The User does not have the right to remove personal data:

When its processing remains necessary to exercise the right to freedom of expression and information

When the data is essential to comply with a legal requirement;

When the data is key to the the formulation, exercise or defence of legitimate claims or complaints

If the data remains important to public interest based on current legislation, for reasons of public health or for reasons of historic investigation whether it be statistical or scientific.

The User has the right to put a stop to the processing of recorded personal where there is supposition that its processing is being used for direct marketing or inaccurate profile building; the interests, rights and liberties of the User will prevail - especially where the User is a minor - against the legitimate interest of the person/people responsible for processing of the data and/or of third parties even if the data is being used for historic or statistical investigation; that is unless the data processing proves necessary for public interest.

The right to limitation of data processing means that the User has the right to decide what areas of his personal data he does not want used in the future. He is able to exercise this right when he has stated exactly what his wishes are in advance; and indeed when the processing of his personal data is being used for illicit purposes. Alternative to exercising his right to suppression of the data the User can decide how to limit processing of his personal data in future. If the User believes that his personal data is no longer necessary for the purposes for which he initially provided them, he can limit how third parties use the data but can retain the details to be used for his own interests, whether it be creativity or the exercise of, and the defence of, lawful claims and complaints.

In the case where limitation has been placed on the extent of processing of personal data, the restriction can be lifted if the User approves of it. Such would be the case where the data processing affected protection of judicial or physical rights of another person; of where a key motive existed for the public interest based on current legislation.

The User has the right to receive (a copy of) the personal data he has made available and to “portability” which is the transmission of such details to another data processor. This should be carried out using a structured, internationally-recognised technological format that is in common use. Transfer of such data is based on the consent that the User provided on a specific day for one or several purposes, or for the ratification of a contract of which he was a part.

The right of portability (ability of transfer of software or system from one machine to another) will not to be applied in the event that transmission becomes technically impossible; nor when it could negatively affect the rights and freedom of third parties; and not even when data processing has a mission of public interest based on current legislation.

The right to revoke consent is always applicable even when permission has been given for processing of personal data, for whatever purposes, such as for example with the aim of providing commercial information. Consent can be withdrawn at any moment.

The User has the right to make a complaint to a controlling Authority, allowing him to present a complaint to the Spanish Data Protection Agency, whose website is currently www.agpd.es.

How do we share information with third parties?

We share personal information with third parties with the aim of meeting service requirements or carrying out commercial operations under the terms described in this Privacy Policy, or as and when we consider the law permits or demands it. Mostly, when we share data with third parties, they are not of a personal nature but rather for anonymous or statistical purposes. In the event where we do share personal information, it is done in such a way that conforms to the privacy and safety requirements of our policy.

We hereby inform the User that personal data could be handed over to:

Companies which go to make up the GRUPO SERRA. This would be done in circumstances where the company wishes to offer business services, for the administration and management of sales and marketing, for technical assistance or customer service, and for business and product development. We demand that all our employees adhere to our internal policy for privacy and security.

We could also hand over personal data information to companies linked to our operations, business associates and third party suppliers. This would be for the purpose of offering services with other companies and/or brands, of offering content, software support, systems and platforms, direct marketing services, services for providing space in the “Cloud”, publicity, data analysis and for promoting events.

We might provide personal data to meet legal obligations: such provision of data to appropriate authorities in these circumstances is protected by law. The information might be needed for investigation into criminal investigation or into claims that affirms that data content infringes the rights of third parties, or to protect the rights, the property and the security of third parties. This would include cases of business merger, sale, acquisition, joint enterprise, assignation, cession, whether it be total or just a part of our business, activities and actions.

If we are required by the competent authorities to respond to legal requirements, criminal investigation of possible illegal activity or claims that content infringes the rights of third parties or to protect the rights, property or safety of third parties, personal information of Users may be disclosed to the competent authorities.

COOKIES POLICY

The Majorca Daily Bulletin, and the companies which comprise the GRUPO SERRA, our business associates and third party suppliers use “cookies.” These are small files of information that upload cookies in the User’s computer terminal when he logs onto a website. The purpose is to store data that can be updated and recovered by those responsible for the installation of the computer to carry out certain functions considered necessary for the correct operating and visualisation of the website:

in order to store and administer the User’s preferences,

to send publicity fine-tuned to the User’s requirements using different marketing functions (Remarketing with Google Analytics, Impression Reports from Google’s Display Network)

to enable content and to collect analytical data for use, for example, through demographic data and related interest reports produced by Google Analytics).

To secure such analysis, the web can automatically store specific information in the server’s registry through the use of cookies which collect data and record the navigational sites visited by the User when on the web. These server registries can include information such as the type of navigator used, the language of the navigator, the data and time when access to the sites is recorded, URL, the equipment model, the version of the operating system, its unique identification code (OP) and the data on the mobile network used in event of access .

Cookies can be used which register the IP addresses in access and navigation to analyse and measure the length of time the User spends on different web sites and to draw conclusions from the tendencies of using certain areas of the web rather than others.

It is appropriate that the User is aware that we use Internet tools and platforms which install cookies for which we are not responsible, so it is possible that the organisations responsible for the installation of these tools could use personal data for purposes of which we are unaware.

If you wish to obtain more information of the use that we make of cookies and to be aware of how to avoid the installation of cookies, the User is welcome to take a look at our Cookies Policy.

AUTOMATED DECISION-MAKING

We do not use a totally automated decision-making process in our contractual relationship with Users. If the contrary were to happen, we will keep the User informed and let him know what rights he has under current legislation.

FOR HOW LONG WILL WE MAKE USE OF YOUR PERSONAL DATA

The personal data which is provided to us will be kept only for the time that is necessary to fulfil the purposes for which it was collected, to satisfy the Users’ requirements, to be able to fulfil the contractual relationship established between ourselves and the User, to ensure that we meet our legal obligations. This will not be the case where the User exercises his right to suppress or revoke his consent according to current legislation, or to ensure that the terms and conditions of processing personal data remain adequate, pertinent and limited to only what is necessary under the Privacy Policy.

RE-USE OF THIS POLICY

Copying, mass reproduction or reuse of this Privacy Policy which has been specifically analysed to meet the requirements of internet business is not authorized.

LEGISLATION AND JURISDICTION

The content of this Privacy Policy has been composed in accordance with Spanish and European Union legislation.

The User accepts that the claims and complaints against those responsible for the processing of personal data emanating from the use of this web site specifically in connection with the User’s personal data will be heard by the appropriate tribunal located in Palma de Mallorca. If it is the data processors who have to make some kind of complaint or claim against the Users, it will be done through the appropriate legal authorities in the country where the User is living, or in Palma de Mallorca in the event that the complaints and claims are against professional or legal bodies not associated with User groups.

If the User accesses this site from a location outside of Spain, he or she is responsible for complying with all applicable local and international law.

RESERVATION OF THE RIGHT TO MODIFY THE PRIVACY POLICY

We reserve the right to amend the terms and conditions of this Privacy Policy at any time, as a result of developments on the internet if we consider it necessary whether it be for legal or technical reasons, or due to changes in the nature and configuration of the web in question. We not have any obligation to advise or give notice to the User about such modifications, but sufficient notice will be given of changes to our Privacy Policy by publication on our website.

Changes will be made to our contractual relationship with the Users following any such modification that we make in our Privacy Policy. The continuation of the Users to use our web site following the publication (on the web) of such changes will be taken as the Users’ acceptance of such modifications to the Privacy Policy. For this reason, if a change to the Privacy Policy is posted on the web site, the date that the update has come into force will be added so that the changes will become effective as of the date stated.

It the User is not in agreement with any changes to the Privacy Policy that we post on the website, he does not have to accept them. He can stop providing personal data on the contact forms used on the web or he can exercise his right of access, opposition, cancellation and suppression, limitation or portability in the terms and conditions established in the section on Exercise of Rights of this Privacy Policy.

Last update: 25/5/2018