Privacy Policy

Information and request for consent to the processing of personal data of the websites wwwgiadacarta.com and www.soulfulbusiness.eu pursuant to EU Reg. 2016/679

In compliance with the obligations established by the EU Reg. 2016/679 and by the Legislative Decree 101/2018 amending and supplementing the Legislative Decree 196/2003, regarding the processing of personal data, the Customer / Visitor is hereby informed that Goddessinspired SL, based in Las Palmas de Gran Canaria, Las Palmas, (ES), calle Velarde 30, 6-1, 35010, NIF B76330596, in the person of its legal representative, hereinafter “the company”, will process the personal data concerning him and which have been or will be communicated to the company itself.
The processing of personal data will be carried out in compliance with the regulations in force and under the following conditions.

Premises

This data processing, pursuant to and for the purposes of EU Reg. 2016/679, is based on the principles of lawfulness, correctness and transparency and is carried out for specific, explicit and legitimate purposes.
The data for which authorization to process is requested are always adequate, relevant and limited to what is necessary, with respect to the purposes for which they are processed, in compliance with the principle of data minimization.

1. Purpose of the processing

The processing of personal data is aimed exclusively at achieving the following purposes:

  1. for direct or indirect marketing purposes;
  2. to fulfill any type of obligation required by laws or regulations in force;
  3. for operational and management needs;
  4. for the registration of accesses to the company’s website and the use of the services provided with this site;
  5. for the needs of monitoring the progress of relations with customers and / or the risks connected to them, for the satisfaction of the same and to improve such relations;

2.Base of processing

The basis for the processing of the Customer / Visitor’s personal data is consent in the case of requests for information or clarifications; in the case of stipulation of contracts, the contract.

3. Processing methods

The processing of data may consist, in addition to their collection, in their registration and conservation. At the request of the Customer / Visitor they will be modified, communicated to another Data Controller or deleted. All the previous actions are carried out with the aid of electronic IT and telematic tools, in a manner and with suitable tools to guarantee the security and confidentiality of the data.
In particular, all the technical, IT, organizational, logistical and procedural security measures provided for by the EU Reg. 2016/679 will be adopted, in such a way that the minimum level of data protection required by law is guaranteed.
It should be noted that, due to the conservation methods carried out, access to data is allowed only to the persons in charge of processing by the company as better specified below.

4. Duration of treatment

The duration of the processing of personal data is limited to the time necessary to perform the action requested by the Customer / Visitor and to perform the service provided with this site. The Customer / Visitor may, at any time, exercise the rights referred to in art. 9 and 10 of this information.

5. Type of data collected

The data collected by the company are essential for the execution of the action requested by the Customer / Visitor. They can be:

  • Name and surname;
  • Email address;
  • Address;
  • Tax code or VAT number;

6. Data transfer

The provision of data is necessary for the execution of the action requested by the Customer / Visitor to the Company.
The Customer / Visitor certainly has the right not to grant said authorization and / or revoke it at any time, however such refusal could compromise the regular development of the relationship with the company and, in particular, the impossibility of providing the requested services.

7. Communication and dissemination of data

The external communication of personal data collected for the purposes referred to in point 1 may only take place where:

  1. such communication is mandatory to ensure compliance with the obligations required by law or other binding regulations;
  2. such communication is mandatory to ensure the correct establishment or continuation of the relationship established with the interested party.

The personal data collected for the achievement of the aforementioned purposes may be communicated, to the extent of their specific competence, to public and private subjects, natural and / or legal persons also with commercial and / or management purposes of information systems and / or payment systems, including external parties who carry out specific tasks on behalf of the company.
In particular, the data may be disclosed to the following categories of subjects: banking institutions and companies specialized in payment management, law firms, consultancy and commercial firms, public authorities or administrations for those who comply with the law.
The data may also be disclosed, but only in aggregate, anonymous form, where it is impossible to identify the person to whom the data belong and for statistical purposes.

8. Transfer of data abroad

The personal data communicated by the user to the company will not be transferred abroad by the same.

9. Rights of the interested party

Pursuant to and for the purposes of art. 15 and ss. of EU Reg. 2016/679, the Customer / Visitor has the right to ask the data controller, as better identified in art. 12 of this privacy statement: access to personal data concerning him, the correction or integration of inaccurate or incomplete data; the cancellation of personal data no longer necessary, for which consent has been revoked or for which there is no other legal basis for processing (so-called Right to be forgotten); the limitation of the processing of the same, in the cases indicated by art. 18. of the aforementioned Regulation
The Customer / Visitor also has the right to request the transmission of data, in a commonly used format that can also be read by an automatic device, to another data controller (so-called “data portability”); he also has the right to object, at any time and for reasons connected to his particular situation, to the processing of personal data concerning him.
The requests of the Customer / Visitor, regarding their rights pursuant to art. 15 and ss. Of the EU Reg. 2016/679, they will be satisfied without undue delay by the Data Controller and in any case within 30 days.
The above rights can be exercised either directly or through a person in charge, in the forms provided for by the EU Reg. 2016/679
In any case, it is noted that the data will be processed in such a way as to guarantee the security, integrity and confidentiality of the data in compliance with the organizational, physical and logical measures provided for by the provisions in force.

10. Right to lodge a complaint

Without prejudice to any administrative or judicial appeal, the Customer / Visitor who believes that the treatment that concerns him violates the EU Regulation 2016/679, has the right to lodge a complaint with the supervisory authority (Privacy Guarantor).

11. Right to compensation and liability

Anyone who suffers material or immaterial damage caused by a violation of the EU Reg. 2016/679 has the right to obtain compensation for the damage from the data controller only if it is proven that the latter has not fulfilled the prescribed obligations.
The data controller is exonerated from liability if he proves that the harmful event is in no way attributable to him.

12. Data Controller

The data controller is identified in the legal representative of the company who can be contacted at the email info@giadacarta.com

13. Consent to treatment

We reiterate to the Customer / Visitor that the provision of consent to the processing of personal data in the manner and for the purposes described above is optional.
In case of refusal of consent, the company will not be able to process personal data with the consequent impossibility of providing the requested services.

14. Additional information

The Customer / Visitor is also informed that, through the website www. giadacarta.com , it is possible to share articles and images on the social network platforms called “Facebook”, “Instagram”, “Pinterest” and “Linkedin” and it is also possible, through special buttons therein, the relative channels of the company present on the social networks “You Tube” and “Instagram”
For the management of privacy and personal data by the aforementioned sites, it is advisable to view the relative privacy policies.
It is specified that the Customer / Visitor data that will be communicated for the use of a course on the website www.giadacarta.com will be communicated, exclusively for the purpose of creating the specific user panel necessary for the material use of the course itself, to the e -platform. -learning called “Pyramid”. For the management of privacy and personal data by the latter, it is advisable to view the relative privacy policy.
It is also specified that the Customer / Visitor data that will be used for the creation of sponsored content on social networks belonging to the companies Facebook Inc. and Cold Brew labs Inc. (Pinterest) for as indicated for the purpose referred to in letter a) of point 1 of this information.

This site also makes use of so-called navigation cookies.
For more information about it, it is advisable to view the relative policy .