PRIVACY POLICY AND DATA PROTECTION

In compliance with current regulations, totalfutbolcards.com (hereinafter referred to as the “Website”) is committed to adopting the necessary technical and organizational measures according to the appropriate level of security for the data collected.

Laws Incorporated into this Privacy Policy

This privacy policy complies with current Spanish and European regulations on the protection of personal data on the internet. Specifically, it adheres to the following regulations:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of individuals with respect to the processing of personal data and the free movement of such data (GDPR).
  • Organic Law 15/1999, of December 13, on the Protection of Personal Data (LOPD).
  • Royal Decree 1720/2007, of December 21, approving the regulation for implementing Organic Law 15/1999 (RDLOPD).
  • Law 34/2002, of July 11, on Information Society Services and Electronic Commerce (LSSI-CE).

Identity of the Data Controller

The data controller for the personal data collected on totalfutbolcards.com is:

  • FIDCOMMERCE SL
  • Tax Identification Number (NIF): B75121103
  • Registered in the Commercial Registry of San Sebastián with the following details: ________.
  • Representative: Fran Murillo
  • Address:
    Avda. Felipe IV n1 6C, Donostia 20011
  • Contact Phone: 951 137 259
  • Contact Email: info@totalfutbolcards.com

Personal Data Registration

The personal data collected through the forms on this Website will be entered into an automated file under the responsibility of the Data Controller. This file is registered with the General Data Protection Register, accessible via the Spanish Data Protection Agency’s website (http://www.agpd.es). The data is used to facilitate, expedite, and fulfill commitments established between totalfutbolcards.com and the user, maintain the relationship formed through the completed forms, or respond to inquiries.

Principles Governing Personal Data Processing

The processing of user data on this Website adheres to the following principles outlined in Article 5 of the GDPR:

  • Principle of Lawfulness, Fairness, and Transparency: User consent is always required after being fully informed about the purposes of data collection.
  • Principle of Purpose Limitation: Data is collected for specific, explicit, and legitimate purposes.
  • Principle of Data Minimization: Only necessary data is collected for processing purposes.
  • Principle of Accuracy: Data is kept accurate and up-to-date.
  • Principle of Storage Limitation: Data is stored only as long as necessary for its intended purpose.
  • Principle of Integrity and Confidentiality: Data is processed securely to ensure confidentiality and protection against unauthorized access.
  • Principle of Accountability: The Data Controller ensures compliance with the above principles.

Categories of Personal Data

The Website only processes identifying data. No special categories of personal data, as defined in Article 9 of the GDPR, are processed.

Legal Basis for Processing Personal Data

The legal basis for processing personal data is user consent. totalfutbolcards.com commits to obtaining the user’s explicit and verifiable consent for data processing for specific purposes.

Users may withdraw consent at any time, which will not affect the legality of prior processing. In cases where forms are used to submit data for inquiries or information requests, the user will be informed if completing certain fields is mandatory.

Purposes of Processing Personal Data

Data is collected to facilitate, expedite, and fulfill commitments established between the Website and the user. It may also be used for:

  • Commercial, operational, and statistical purposes.
  • Marketing studies to improve the Website and tailor content to user preferences.

Users will be informed of specific purposes at the time of data collection.

Data Retention Period

Personal data will only be retained as long as necessary for the purposes outlined, typically no longer than 18 months, unless the user requests deletion.

Recipients of Personal Data

Personal data may be shared with the following:

  • Google Analytics: Analytics provider.
  • Raiola Networks: Hosting provider.

If data is transferred internationally, users will be informed in advance.

Data from Minors

Only individuals aged 14 years or older can legally provide consent for data processing. For children under 14, parental or guardian consent is required.

Data Security and Confidentiality

totalfutbolcards.com implements technical and organizational measures to ensure the security of personal data and prevent unauthorized access, alteration, or destruction. The Website uses an SSL certificate to encrypt data transmissions.

In case of a data breach, users will be promptly informed if their rights or freedoms are at risk, as required by GDPR Article 4.

User Rights

Users have the following rights under the GDPR:

  1. Access: To confirm if data is being processed and obtain details.
  2. Rectification: To correct inaccurate or incomplete data.
  3. Erasure (Right to Be Forgotten): To request deletion of data if it is no longer needed.
  4. Restriction of Processing: To limit how data is processed.
  5. Data Portability: To request data in a portable format.
  6. Objection: To object to processing based on specific grounds.
  7. Automated Decision-Making and Profiling: To ensure decisions based solely on automation do not affect them unfairly.

Users can exercise these rights by submitting a written request with a copy of their ID to: