Privacy policy
1. Introduction
In this privacy statement, we explain what data we process from you if we have, intend to have, or have had a business relationship with you. We also explain why and for how long we process your data, and what your rights are regarding each processing operation. We also provide information about the parties we collaborate with and our security policy.
We believe it is important that our services are reliable and transparent. Therefore, we handle your personal data discreetly and with care, and we ensure that all processing of your data complies with applicable laws and regulations.
2. Controller of Personal Data Processing
The Controller is:
Ecom Pirates®
Calle Tabarca 12-14
03580 L’Alfàs del Pi
Spain (Alicante)
Ecom Pirates® is a trademark of Piratas Ecom S.L.
3. Privacy Manager
We have appointed a Privacy Manager. This is not a "data protection officer" as defined in Article 37 of the GDPR. However, this person is responsible for ensuring that your data is processed in accordance with the law. The Privacy Manager's duties include monitoring and handling questions and complaints. The contact details of our Privacy Manager are:
S. van den Elzen
4. The personal data we process
Depending on your relationship with our organization and the purpose for which we process data, we record (always some of) the following data:
First and last name
Address details
Telephone number
Email address
Job details
Bank account number
Information about your activities on our website
5. For what purpose and on what basis do we process personal data?
We process your personal data for the following purposes:
Maintaining financial records
Processing and executing orders
Sending newsletters or mailings
Monitoring website visits
The processing grounds are those as referred to in Article 6 of the GDPR (consent, agreement, or legitimate interest).
6. Automated decision-making
We do not make decisions based on automated processing on matters that could have (significant) consequences for individuals. These are decisions made by computer programs or systems, without human intervention (for example, one of our employees).
7. How long we retain personal data
In general, we do not retain your data longer than necessary for the purposes for which we collected it. The retention period may vary from case to case. For example, we may be required to retain certain documents for a minimum period for tax or administrative purposes. In such cases, we will only retain the data necessary to comply with our legal obligations. After the statutory retention periods, we will delete or anonymize your data.
8. Sharing personal data with third parties
We do not share your personal data with third parties unless this is done in the context of executing an agreement with you and to comply with any legal obligation. To the extent these third parties are considered processors, we have concluded a data processing agreement with them that governs, among other things, security, confidentiality, and your rights. We remain responsible for these processing operations.
We engage third parties in the manner and on the grounds described above for the following categories of processing: processing and executing orders.
Monitoring website visits
9. Cookies, or similar technologies, that we use
We use cookies on our website. These are small text files that are stored in the browser of your computer, tablet, or smartphone when you first visit this website.
We use the following cookies:
Cookies with a purely technical functionality. These ensure that the website works properly and that, for example, your preferred settings are remembered. These cookies are also used to ensure the website functions properly and to optimize it.
Cookies that track your browsing behavior so that we can offer customized content and advertisements. When you visited our website, we already informed you about these cookies and requested your consent to place them.
Cookies placed by third parties. These include advertisers and/or social media companies.
You can opt out of cookies by configuring your internet browser to no longer store them. You can also delete all previously stored information through your browser settings.
10. Your rights (access, modification, deletion, etc.)
The following explains your rights regarding the processing of your data.
Right to access
You have the right to access your own data. This includes the purposes of the processing, the parties to whom the data is shared, and the retention periods.
Right to rectification
You can ask us to rectify your data immediately. You also have the right to have incomplete data completed, for example, by sending us an email.
Right to be forgotten
You have the right to be forgotten. Upon request, we will erase your data without undue delay. However, we may not always erase all of your data. Sometimes, for example, the processing is still necessary to comply with legal obligations or to establish, exercise, or substantiate claims.
Right to restrict processing
You generally have the right to restrict the processing of your data, for example, if you believe your data is inaccurate or unnecessary.
Notification of rectification, erasure, or restriction
Unless it is impossible or involves a disproportionate effort, we will inform the recipients of your data of any rectification, erasure, or restriction of processing.
Right to data portability
You have the right to data portability. This means that you can request to receive your data. You can then store this data for personal reuse. You only have this right with regard to data that you have provided to us yourself and if the processing is based on consent or a contract to which you are a party.
Withdrawal of consent
If data processing is based on consent, you have the right to withdraw that consent at any time. However, the processing of your data prior to the withdrawal remains lawful.
Right to object
You have the right to object to the processing of your data. After your objection, we will generally stop processing your data.
Complaint to the Dutch Data Protection Authority or to the court.
Filing a complaint with the Dutch Data Protection Authority or to the court. If you believe the processing of your data violates the law, you can contact our Privacy Manager. You also have the right to file a complaint with the Dutch Data Protection Authority (AP) or take legal action.
Restrictions on your rights
We may sometimes restrict your rights, for example, in the context of the prevention, investigation, detection, and prosecution of criminal offenses, such as fraud.
You can direct any request to our Privacy Manager. To verify that the request for access has been made by you, we will send you a series of security questions after receiving your request. You must answer them before we can process your request. This is to protect your privacy. We will respond to your request as quickly as possible, but no later than within four weeks.
11. How we protect personal data
We take the protection of your data seriously and take appropriate measures to prevent misuse, loss, unauthorized access, unwanted disclosure, and unauthorized modification. If you believe your data is not properly secured or if there are indications of misuse, please contact our Privacy Manager.
12. Changes
We may amend this statement if developments warrant it, for example, in the event of new processing methods. The most current privacy statement can be found on our website. We recommend that you consult this privacy and cookie statement regularly to stay informed of any changes.
© Ecom Pirates®