Products

About Us

Quality

Privacy Policy

cabezuelofoods.com

Date of last revision: October 1, 2024

Thank you for visiting this website. We believe your privacy is important. For the controller of this website, your reading and showing interest in this section demonstrates your interest in it. You should do this every time you visit new websites, especially if they are going to ask you for personal data. Below, in this document, we explain what personal data we collect, on what basis, for how long it will be stored, and aspects related to data protection regulations, in compliance with current legislation. We encourage you to read these terms carefully before providing your personal data. For children under 14, parental or guardian consent is required for the processing of their data. If you are under 14, you should not leave your data on this website unless your parents authorize it. Under no circumstances will data relating to the professional or economic situation or the privacy of other family members be collected from the minor without their consent. If you have any questions about this, please contact us through the email addresses of the data controller or, where applicable, the data protection officer. This controller assumes a permanent commitment to privacy and guarantees best practices in the processing of your personal data.

In compliance with the provisions of data protection regulations (Regulation (EU) 2016/679 of April 27, 2016), Cabezuelo Foods S.L. (hereinafter, “The Data Controller” or simply “The Data Controller”), Data Controller of the website www.cabezuelofoods.com (hereinafter, the “Website”), establishes the following Privacy Policy, which will be followed in the processing of personal data. This policy is understood, in any case, without prejudice to the provisions of the corresponding Legal Notice and the corresponding Cookies Policy.

1. Who is going to ask me for my personal data?

Data Controller: Cabezuelo Foods S.L.

Address: Calle Campo De Criptana 86, 13630, Socuéllamos, Ciudad Real
Email: info@cabezuelofoods.com
Phone: 926 532 842

Data Protection Officer Details: dpo@cabezuelofoods.com If you have any questions, doubts, or suggestions regarding how we use your personal data, you can contact the Data Protection Officer through the email address.

We try to guarantee the privacy of the users of this website. You should know that we will never request personal information unless it is really necessary for the provision of services, we will never share it with third parties (except in certain cases in which it is essential and based on legitimate and previously informed situations), and we will never use your data for purposes other than those related to the contractual relationship. This entity assumes the commitments of Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights, Regulation (EU) 2016/679 of the European Parliament and of the Council, and Law 34/2002, of July 11, on Information Society Services and Electronic Commerce (LSSICE or LSSI), as well as the regulations that develop or complement them.

This Data Controller guarantees the confidentiality of the personal data being processed and informs you that the people who have access to your information are subject to professional secrecy. However, we cannot guarantee the impregnability of this website or the total absence of risks. To the extent that it is considered that your privacy has been endangered, this controller undertakes to communicate to the user without undue delay any violation of the security of personal data that is likely to entail a high risk to rights and freedoms, in compliance with the provisions of the General Data Protection Regulation.

Therefore, the data that may be requested from users of this Website, those provided by the mere fact of accessing the Website (cookies), those related to possible comments on the various corporate pages of social networks linked from this Website, or those provided by the rest of the means or communication channels enabled (for example, email) will be processed by the data controller indicated in compliance with current legislation.

2. What obligations do I have when giving my data?

By providing us with your personal information through electronic channels, the user declares that they are over 14 years of age and that all the data provided is true, accurate, complete, and up-to-date. To this effect, the user confirms that they are responsible for the veracity of the data communicated and that they will keep said information conveniently updated so that it responds to their real situation, being responsible for the false and inaccurate data that they may provide, as well as for the damages, direct or indirect, that may arise.

3. What do we use your personal data for?

When a user visits this website, they are providing personal information. This information may include personal data such as your IP address, name, physical address, email address, telephone number, and other information. The purposes for which we process your data will depend on the context or section in which it is requested:

  • By the mere fact of visiting the Website, there is certain information that is collected on the servers that provide hosting services. Among this information is that relating to the IP address from which the Website is accessed. The purpose of the processing in this case is to facilitate browsing the web. We may also collect certain information (cookies), which we will process according to the specific Cookies Policy that you can consult.
  • If you provide us with personal data through email or through other means (traditional or not), in general we will process your data in relation to the management or query made. In compliance with Law 34/2002, on Services of the Information Society and Electronic Commerce, The Data Controller will not send commercial communications without identifying them as such and without prior information in this regard. For these purposes, any information sent to interested parties will not be considered as commercial communication as long as its purpose is the maintenance of the contractual relationship or response to their request or those other information related to their request -if applicable- and that derive directly from this relationship.
  • If you provide us with information through one or some of the social networks that this entity maintains and that are linked through this Website, assuming this entity the role of Data Controller of the data provided (for example, photos uploaded by us or by third parties, comments that the interested party makes in relation to publications that we make, etc.), we will process the information exclusively in relation to your query, management, or comment made, and always within the social network and in the context of it, not proceeding in any case to the extraction of these data unless we obtain consent for it from the interested party. However, the use of these platforms is subject to the full acceptance of their conditions, and this implies the processing of your data with conditions different from those set forth here. The official profiles on social networks linked from this Website have been created so that you can better know our activity and create an alternative channel of communication with people interested in our entity and the services we offer, but we decline responsibility for the processing of data that the companies that manage the mentioned social networks make of them.

4. How long will you keep them?

As a general rule, the data stored by this controller will be deleted as soon as they are no longer necessary for the purposes for which they were stored and there is no legal obligation to keep them. However, if the user’s data is not deleted because it is necessary for other legally permitted purposes, its processing will be restricted to very specific purposes. This means that the data will be blocked and will not be processed for other purposes. For example, in relation to user data that must be kept for commercial or tax reasons.

It depends on the data processing carried out:

  • The data related to the cookies existing on this Website have a conservation period indicated in the Cookies Policy itself.
  • The data that you send us through the means that this Website makes available to you (for example, email) will be kept for as long as the relationship with the interested party lasts or the same withdraws their consent in their case. Subsequently, we will keep the data depending on whether there is a legal obligation or not, being in any case the minimum period required depending on the relationship or management that is carried out. For example, we will keep the billing data due to legal tax and accounting obligation for 6 years. There is also the period of 5 years established by art. 1964 of the Civil Code (personal actions without special term).
  • The data included in the social networks linked through this Website will be maintained by us until the interested party withdraws their consent. However, it is possible that the responsible entities keep these data according to other treatment policies for which we are not responsible in any case.

5. Why can we process your personal data?

Because there is a legitimation that includes the data protection regulations themselves. That is, the regulations allow us to process your personal data. It depends on the data processing carried out:

  • The existence of one or several legal obligations that force us to the treatment. For example, the aforementioned tax obligation in relation to the invoices issued.
  • You have given us your consent to process your data in the terms set out, by checking the corresponding acceptance box or signing the expository document that is presented to you at a time prior to the processing of your data.
  • There is a pre-contractual or contractual relationship. For example, in the event that the interested party provides us with their data in relation to an entrusted management, we will process them because we understand that we have to give full response to it.

6. Are we going to transfer them to someone?

Whenever we subcontract third parties for the provision of our services, we will take the appropriate legal precautions, as well as the appropriate technical and organizational measures to guarantee the protection of personal data in accordance with the relevant legal regulations.

In addition to the Data Controller set out above, the data may be processed by other entities depending on the nature of the data processing:

  • The entities responsible for the social networks linked from this website, in case the interested party provides information through them.
  • Certain service companies related to this Website. For example, the entity that provides us with hosting services in relation to the domain name (hosting, with data centers located in national territory).
  • By legal obligation, Public Bodies, Tax Agency, Judges and Courts and, in general, competent Authorities, when this controller has the legal obligation to provide them.
  • Certain companies responsible for the cookies that are hosted on your computer by the mere fact of visiting this Website may have information associated with your IP address, browsing habits, etc., as described in the corresponding Cookies Policy.

This Data Controller follows strict criteria for the selection of service providers in order to comply with its obligations in terms of data protection and undertakes to sign with them the corresponding data processing contract through which it will impose obligations related to the imposition of appropriate technical and organizational measures, process personal data for the agreed purposes and attending only to the documented instructions and delete or return the data to this controller once the provision of services is finished.

7. What rights do I have?

Any person has the right to obtain confirmation about whether or not we are processing personal data that concerns them in this entity. Interested persons have the right to access their personal data, as well as to request the rectification of inaccurate data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purposes for which it was collected. In certain circumstances, the interested parties may request the limitation of the processing of their data, in which case we will only keep them for the exercise or defense of claims. In other circumstances and for reasons related to their particular situation, the interested parties may oppose the processing of their data. In those cases in which you have given us your consent, we additionally inform you that you have the right to withdraw it at any time, without this affecting the legality of the treatment based on the consent prior to its withdrawal. If you request it, this entity will stop processing the data, except for compelling legitimate reasons, or the exercise or defense of possible claims. You can also require us to have your data processed by another entity, facilitating this entity the portability of your data to the new controller. To this end, specific forms have been prepared (which are at your disposal and which you can request) so that you can exercise your rights of access, rectification, deletion, limitation to treatment, opposition to treatment, opposition to automated individual decision-making including the elaboration of profiles and to the portability of the data. In any case, if you consider that these rights have not been conveniently satisfied by us, we inform you that you can file a claim with the control authority (Spanish Data Protection Agency, Jorge Juan 6, 28001, Madrid, or before its electronic headquarters https://sedeagpd.gob.es).

If you prefer, the interested party can send a postal mail to the address that appears in the heading, or by email in the email indicated, including a document that proves identity and request the exercise of the rights mentioned above.

8. Mandatory or optional nature of the information we request. Veracity of the information.

The user, by marking the corresponding boxes and entering data in the fields, expressly and freely and unequivocally accepts that their data is necessary to meet their request, by the Data Controller. The user guarantees that the personal data provided is true and correct, and is responsible for communicating any modification thereof. This Data Controller is exonerated from any responsibility if the user enters false data. All the data requested through the website are mandatory, since they are necessary at least to contact us. In the event that all the data is not provided, it is not guaranteed that the information and services provided are completely adjusted to your needs.

9. Principles that we will apply when we process your personal data

The processing of the User’s personal data will be subject to the following principles collected in article 5 of the General Data Protection Regulation:

  • Principle of lawfulness, loyalty and transparency: the User’s consent will be required at all times prior to completely transparent information of the purposes for which personal data is collected.
  • Principle of limitation of purpose: personal data will be collected for specific, explicit and legitimate purposes.
  • Principle of data minimization: the personal data collected will be only those strictly necessary in relation to the purposes for which they are processed.
  • Principle of accuracy: personal data must be accurate and always updated.
  • Storage limitation principle: personal data will only be kept in a way that allows the identification of the User for the time necessary for the purposes of its processing.
  • Principle of integrity and confidentiality: personal data will be processed in a manner that guarantees its security and confidentiality.
  • Proactive responsibility principle: the Data Controller will be responsible for ensuring that the above principles are complied with.

10. In relation to social networks

The Owner Entity maintains several pages and/or profiles on various social networks, linked through this Website. The Owner Entity will not be responsible for what is published by third parties on the aforementioned social networks. The use and processing of data that third parties make on the aforementioned social networks will be subject to general or particular conditions different from the present one. The Owner Entity recommends its careful reading and awareness in this regard. If a user has a profile on the social network and has decided to join the page created by us, or contacts us through any of the channels available on said social network, thus showing interest in the information that is advertised on the network, we consider that they provide us with their consent for the processing of those personal data published on their profile. The user must bear in mind that their publications will be known by other users, so they themselves are primarily responsible for their privacy. The images that may be published on the page will not be stored in any of our information systems, but they will remain on the social network.

The user can access the privacy policies of the social network itself at any time, as well as configure their profile to guarantee their privacy.

In relation to the rights of access, rectification, deletion, limitation and opposition, which you have and which can be exercised before us, you must take into account the following nuances:

  • Access: will be defined by the functionality of the social network and the ability to access information on user profiles.
  • Rectification: can only be satisfied in relation to information that is under our control, for example, deleting comments published on the page itself. Normally, this right must be exercised before the Social Network.
  • Deletion, limitation and/or Opposition: as in the previous case, can only be satisfied in relation to information that is under our entity, for example, ceasing to be linked to the profile.

The Owner Entity may carry out the following actions:

  • Access to public profile information.
  • Send personal and individual messages through the channels of the social network.
  • Updates to the status of the page that will be published in the user’s profile.
  • The user can always control their connections, delete the content that is no longer of interest to them and restrict with whom they share their connections, for this they must access their privacy settings.

Our presence on the Internet includes presence on the social network facebook.com and on Instagram, both networks operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. We will consider that you consent to the processing of your data in the environment of the social network if you become a “fan” or “follower” on the aforementioned fanpage that we maintain. In that sense, you consent to us processing your data only in the environment of said social network. You can find us on the aforementioned social network and click “like” on it. If you have logged in to Facebook, this may assign the navigation to your Facebook account. You can consult more information about the data processing carried out by Facebook at http://www.facebook.com/policy.php. By the mere fact of using this social network and communicating with us, you authorize us to use your personal data only through the platform of the aforementioned social network for the purposes of managing our professional page that we maintain on this social network and the communications that we maintain bidirectionally with our followers through chat, messages or other means of communication that Facebook allows now and in the future. Thus, (1) we will process your data within this social network to manage the list of people who like our page on Facebook and (2) you may receive information related to events, activities and promotions, always in the context of use of the social network. For example, we can access the public information of your profile, send you personal messages in a context of communication with us, and you must take into account that the update of the page can be published in your user profile. Outside of these assumptions we will not use your data. This Data Controller has no responsibility for the treatments and subsequent use of personal data that may be carried out by social networks or by third-party service providers. It is also important that you know that we will not be responsible for the comments that third parties may make in relation to you in the context of using this social network. Users will be responsible for the veracity, authenticity and updating of the information they publish. You should also know that the publication of personal data implies that it may be accessed by the rest of the users of the same and may even be accessible from search engines.

11. Cookies and other aspects

This website includes an SSL certificate. This is a security protocol that makes your data travel completely and securely. In this entity we have assumed the appropriate security measures after the corresponding risk analysis carried out. Among these security measures includes, in particular, the encrypted transmission of data between your browser and our server.

As a user, you are solely responsible for the veracity and correctness of the data you submit on this website. The Owner will not accept any type of responsibility in this regard, ensuring the accuracy, validity and authenticity of the personal data provided.

This Data Controller reserves the right to modify and/or update the information on data protection when necessary for the correct compliance with the Data Protection Regulations. If any modification occurs, the new text will be published on this page, where you can have access to the current policy. In each case, the relationship with users will be governed by the rules provided at the precise moment in which the web is accessed. For all purposes, the validity of the document can be verified in the header.

12. Security information for safe browsing

  • Always use an updated browser. Also do it through an updated operating system. If applicable, review the apps and programs that you use most often. The main browsers today are updated automatically either transparently to the user or through notifications that must be approved. Often these updates are usually avoided because it seems heavy to us, but the reality is that they usually incorporate patches that correct small security gaps. Likewise, we recommend that the add-ons and extensions are configured to update automatically. Also, make sure that the installation of these add-ons is done from reliable sources.
  • It is advisable to disable add-ons such as Adobe Flash and Java for those unknown services and sites. Mechanisms that allow you to click and execute or the use of certain extensions make this task easier. It is also recommended to disable JavaScript to browse unknown web pages.
  • It is advisable to review the security and privacy options of the browser. Currently browsers have measures as interesting as: not accepting third-party cookies, blocking pop-ups, avoiding password synchronization, avoiding auto-completion, deleting temporary files and cookies when closing the browser, blocking geolocation, filtering ActiveX, etc.
  • It is recommended to use the https protocol. It implies that the information between your browser and the server will travel encrypted from end to end. However, it is important to verify that the certificates sent by “https” services that handle sensitive information have been sent by a trusted entity. Any error or alert generated by the browser as a result of the validation of the certificate (for example, self-signed certificates) should be carefully reviewed. Be wary if the beginning of the internet address is not of the type “https”. And in any case, keep in mind that the padlock icon in the browser does not guarantee security: the padlock only serves to warn that the communication to the web server is encrypted and that they have paid to have it, but it has nothing to do with the fact that the web is legitimate or a fraud.
  • Take the time necessary to configure the cookies of the website you are visiting. In principle, a correct configuration of cookies should allow you to disable them, and they should not be loaded automatically (except for essential cookies) in any case.
  • Protect your passwords, do not reveal them to third parties in writing or verbally, change your password periodically and never respond to password requests that arrive by email. Use combinations of numbers, letters and symbols for your passwords. Do not store passwords by default through the browser and use more secure tools for their management (for example, password managers that implement a robust encryption system). In the event that you decide to use the browser, it is important to use a master key that encrypts the credentials repository.
  • Assess the use of additional extensions or add-ons that implement functionalities not contemplated by the browser. For example, those that improve privacy during navigation or that block as much as possible ads, advertising banners and certain tracking techniques used by third parties.
  • We recommend not trusting unknown Wi-Fi networks. When our connections fail, desperation leads us to track and enter Wi-Fis of dubious origin and legitimacy but presented as free. These fraudulent networks can open the doors of your devices wide open and that is why you should avoid them,
  • It is also important to close the session when we have finished browsing, especially if we have done it through a public computer.

13. Control Authority

We trust that we can resolve any question or doubt that may concern you in relation to your personal information. But if you wish to file a complaint with the competent authority, you have the right to do so. In Spain, the highest authority in matters of data protection is the Spanish Data Protection Agency (AEPD). Its website is accessible at the address https://www.aepd.es/es and its telephone number is 91 266 35 17.

14. Updates to this Privacy Policy

This controller reserves the right to modify this privacy policy to adapt it to changing legal situations or in case of modification of our activity or important changes that affect the processing of personal data. However, this only applies to this privacy policy. However, if the consent of the users is necessary, the changes will only be made if the users authorize it. Users are requested to regularly inform themselves about the content of this Privacy Policy.