1.1 – This section contains information on how to manage the site www.epuboo.com with reference to the processing of user data.
1.2 – This information is provided pursuant to Art. 13 EU Reg. 2016/679 concerning the protection of individuals with regard to the processing of personal data as well as the free circulation of such data and the Spanish legislation in force for the protection of personal data, Ley Orgánica 15/1999 de Protección de Datos de Carácter Personal and Ley Orgánica 3/2018 de Protección de Datos y RGPD and subsequent amendments to those who interact with ePUBoo, at: www.epuboo.com.
1.3 – The information is provided only for www.epuboo.com and not for other sites that may be consulted by the user through links contained therein.
1.4 – The purpose of this document is to provide information on the methods, timing and nature of the information that the data controllers must provide to users when connecting to the www.epuboo.com page, regardless of the purpose of the connection itself, according to Spanish and European legislation.
1.5 – If the user is under the age of 16, pursuant to Art. 8 EU Reg. 2016/679, he will have to legitimize his consent through the authorization of his parents or guardian.
2.1 – The data controller is the natural or legal person, public authority, service or other body which, individually or together with others, determines the purposes and means of the processing of personal data. It also deals with data security profiles. With regard to this website www.epuboo.com, the data controller is ePUBoo at the headquarters of
Carretera de Santa Gertrud, Km 17 – 07840 Santa Eularia des Riu, Ibiza, Spain, and for any clarification or exercise of rights, the user can contact him at the email address email@example.com.
2.2 – Pursuant to Art. 28 EU Reg. 2016/679 the data controller is the natural or legal person, public authority, service or other body that processes personal data on behalf of the data controller. The data are stored on the servers of the company Register SPA.
2.3 – The person responsible for the protection of personal data is the figure provided for by Art. 37 EU Reg. 2016/679. It cooperates with the Spanish Data Protection Agency (AEPD) and constitutes the contact point, also with respect to data subjects, for issues related to the processing of personal data (Articles 38 and 39 EU Reg. 2016/679), as well as coordination for the implementation and keeping of records of processing activities (Art. . 30 EU Reg. 2016/679). As required by Art. 37 EU Reg. 2016/679, below are the contact details of the Data Protection Officer, email firstname.lastname@example.org.
2.4 – The data is processed within the European Union. In the event that ePUBoo makes use of services located in third countries, the company first checks that they provide adequate guarantees of protection approved by the European Commission and / or in compliance with the EU-USA Privacy Shield. The site may share some of the data collected with services located outside the European Union area. For example with Google and Facebook through social plugins and the Google Analytics and Facebook Pixel service. The transfer is authorized and strictly regulated by Art. 46, Paragraph 1 EU Reg. 2016/679, for which no further consent is required. The companies mentioned above guarantee their adherence to the EU-USA Privacy Shield. Data will never be transferred to third countries that do not comply with the conditions set out in Art. 45 and subsequent EU Reg. 2016/679.
2.5 – The user data acquired during the navigation on the site can be communicated to third parties, who, as managers or authorized to process, will process the personal data communicated on behalf of ePUBoo. The categories of subjects to which ePUBoo communicates the user data acquired by browsing the site are external collaborators that ePUBoo uses for consultancy, cloud service providers, institutions that manage payment systems, commercial partners.
3.1 – Like all sites, this site also makes use of log files in which information collected in an automated manner is stored during user visits. The information collected could be the following: internet protocol (IP) address, type of browser and parameters of the device used to connect to the site, name of the internet service provider (ISP), date and time of visit, page of origin of the visitor ( referral) and exit, possibly the number of clicks. This information is processed, based on the legitimate interests of the owner, in an automated form and collected in an exclusively aggregate form in order to verify the correct functioning of the site, and for security reasons.
3.2 – For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may possibly also include personal data such as the IP address, which could be used, in accordance with the applicable laws, in order to block attempts to damage to the site itself or to cause damage to other users, or in any case harmful activities or activities constituting a crime. These data are never used for the identification or profiling of the user, but only for the purpose of protecting the site and its users; such information will be treated according to the legitimate interests of the owner.
3.3 – The information that users of the site will deem to make public through the services and tools made available by them, are provided by the user knowingly and voluntarily, exempting this site from any liability for any violations of the laws. It is up to the user to verify that they have permission to enter personal data of third parties or content protected by international standards.
3.4 – The data collected by the site during navigation are processed by the owner, by the data processors and by authorized subjects for the following purposes: to allow navigation on the site, to carry out analysis of visitor traffic, to create the account necessary for the access to the reserved area and carry out the operations relating to the same reserved area, issue invoices, send newsletters.
3.5 – The data collected from the site are used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the activities specified. The data used for security purposes (blocking attempts to damage) are also kept for the time strictly necessary. The optional, explicit and voluntary sending of emails to the addresses indicated on the site entails the subsequent acquisition of the sender’s address, necessary to respond to the request, as well as any other personal data included in the message.
3.6 – This site processes user data in a lawful and correct manner, adopting the appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of data. The processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the owner, in some cases, categories of employees involved in the organization of the site (administrative, commercial, marketing, legal and technical personnel) or external subjects (such as hosting service providers, IT companies, agencies) may have access to the data. of communication).
4.1 – Cookies are a reduced set of data transferred to the user’s browser from a server used to store information that may relate to the user, his preferences, the Internet access device. It is not executable code and does not transmit viruses.
4.2 – Cookies, from a subjective point of view, are distinguished into first-party cookies if installed by the owner on the user’s browser and third-party cookies if sent from sites or servers other than the one visited by the user.
4.4 – The site also uses Google Analytics analytical cookies. These are cookies that perform a visitor traffic analysis function, monitoring the number of accesses, for statistical purposes. With respect to the installation of the aforementioned cookies, the site acts as a technical intermediary between the third party and the user, as it is not obliged to provide the relevant information directly to the user and to acquire consent to the installation of cookies, the indication of the updated link to the information and consent forms published by third parties being sufficient. Below is the link to the page containing the extended information and the consent forms of third parties, where the user can deny their consent to the installation: https://developers.google.com/analytics/devguides/ collection / analyticsjs / cookie-usage.
4.5 – The settings to manage or disable cookies may vary depending on the browser used. The user can manage or request the deactivation or deletion of individual cookies by changing the settings of their browser. This deactivation can slow down or prevent access to some parts of the site and can remove the preferences that the user has set for the site.
4.6 – For more information, you can visit the relevant information page of the browser you are using.
5.1 – We comply with the new European GDPR regulation for the protection of personal data in force since 25 May 2018. GDPR is the English acronym for General Data Protection Regulation. In even more technical terms, it is the EU Regulation 2016/279. The purpose of the GDPR is to regulate the collection and processing of personal data, providing for controls and obligations towards those who collect and process such personal information.
5.2 – Any information relating to an individual, connected to his or her private, professional or public life is a given object of interest for the GDPR. By way of example, we can therefore mention: Name and surname, postal or e-mail address, date of birth, tax code, etc. Or even more ‘personal’ information such as those relating to health. Citing the regulation itself, any information concerning a natural person identified or identifiable through a characteristic data ‘of his physical, physiological, genetic, psychological, economic, cultural or social identity’ is personal data.
5.3 – Processing personal data does not necessarily mean exploiting or using them. It is very likely that personal data will be collected without being used, but this does not preclude compliance with the requirements of the GDPR. Even a simple information collection form such as e-mail or telephone number to be able to contact a potential customer is to be considered as processing of personal data. The following are therefore also considered processing, by way of example: conservation, organization, modification, extraction, consultation, cancellation, etc.
5.5 – You will always be able to access your online control panel directly and access the account management, invoices and payments sections, where you can update your personal data at any time. You can also contact us to make changes to your personal data, update it or correct any inaccuracies.
5.6 – Your personal data are stored in Register SPA’s datacenters, where they have strict building access controls, including biometric scanners. Physical access to the server is strictly limited to authorized personnel on site and virtual access is controlled through various authentication systems, including cryptographic keys
5.7 – If you want to learn more, read the full text of the new GDPR 2016/679 regulation –> eur-lex.europa.eu
6.1 – The site intends to inform the user of the rights it holds. In particular, the interested party has the right to ask the owner for access to personal data (Article 15 EU Reg. 2016/679), rectification (Article 16 EU Reg. 2016/679), cancellation or right to oblivion (Article 17 EU Reg. 2016/679), data portability (Article 20 EU Regulation 2016/679), limitation of the processing of the same (Art. 18 EU Reg. 2016/679) or to oppose, for legitimate reasons, their treatment (Art. 21 EU Reg. 2016/679).
6.2 – Requests can be addressed to the data protection officer without formalities or, alternatively, using the model provided by the Spanish Data Protection Agency (AEPD), by sending an email to email@example.com.
6.3 – If the processing is based on Art. 6 Letter A EU Reg. 2016/679 – express consent to use – or on Art. 9 Letter A EU Reg. 2016/679 – express consent to the use of genetic, biometric, health-related data, which reveal religious or philosophical beliefs or trade union membership, which reveal racial or ethnic origin, political opinions – the user has the right to withdraw the consent at any time without prejudice to the lawfulness of the processing based on the consent given before the revocation. Likewise, in the event of a violation of the law, the user has the right to lodge a complaint with the Spanish Data Protection Agency (AEPD), as the authority responsible for monitoring processing in the Kingdom of Spain.
6.5 – For a more in-depth examination of the rights of the user, see Articles 15 and subsequent EU Reg. 2016/679.
6.6 – For information contact the Manager:
EU VAT # ESY3152546L
US EIN # 98-1350377
German MVB Nummer # 5296910
Address: Camì Mistera 2 – Diseminado P 31, 92 – 46389 Turís, Comunidad Valenciana – Spain