Englisch: ¡TODO! Mallorca – REAL ESTATE

Englisch: ¡TODO! Mallorca – REAL ESTATE

Privacy Policy

Privacy Policy

1. Controller

SEAFRONT PROPERTIES MALLORCA S.L. Ronda Migjorn, 145B, 07620 Llucmajor – Spain CIF: B16602278 Tel.: +34 971 628 850 E-mail: immo@todo-mallorca.es

2. Legal basis

The processing of personal data is carried out in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR) and Spanish Organic Law 3/2018 of 5 December on the Protection of Personal Data and the guarantee of digital rights (LOPDGDD).

3. Purposes and legal bases of processing

We process your personal data for the following purposes:

Management of comments and content published on the website – legal basis: consent of the data subject (Art. 6(1)(a) GDPR). Management of registered user accounts – legal basis: performance of a contract (Art. 6(1)(b) GDPR). Website security and fraud prevention – legal basis: legitimate interest of the controller (Art. 6(1)(f) GDPR). Processing of enquiries and contact requests – legal basis: consent or pre-contractual measures (Art. 6(1)(a) and (b) GDPR).

4. Data collected and source

We collect the following personal data:

When leaving a comment: name, email address, website (optional), IP address and browser user agent string. When registering as a user: username, email address and any further information provided in the user profile. When visiting the website: IP address, browser type, operating system, pages visited and time of access – automatically recorded by the hosting provider in server log files. When requesting a password reset: IP address, which will be included in the reset email.

5. Cookies

Our website uses first-party and third-party cookies. Cookies are small text files stored on your device that cause no harm.

Functional cookies: when you leave a comment, you may consent to your name, email address and website being saved in cookies to make future comments easier. These cookies are valid for one year. Session cookies: when you log in, we set temporary cookies to check whether your browser accepts cookies. These cookies contain no personal data and are deleted when you close your browser. Authentication cookies: after logging in, we store your login credentials and display preferences. Login cookies are valid for two days and display preference cookies for one year. If you select “Remember Me”, your session remains active for two weeks. When you log out, these cookies are deleted. Editorial cookies: when you edit or publish an article, a cookie containing the post ID is saved, with no personal data included. This cookie expires after one day.

You can configure your browser to reject or delete cookies at any time. Please note that disabling certain cookies may affect the functionality of the website.

6. Gravatar service

An anonymised string (hash) may be created from your email address and transmitted to the Gravatar service (Automattic Inc.) to check whether you have a profile picture stored there. Once your comment is approved, your profile picture will be publicly visible alongside it. The Gravatar privacy policy is available at: https://automattic.com/privacy/

7. Embedded content from third parties

Posts on this website may contain embedded content from other platforms (e.g. videos, images or articles). This content behaves in exactly the same way as if you had visited the third-party website directly. These websites may collect data about you, use cookies, embed additional third-party tracking systems and record your interaction with the embedded content – including if you have an active account on those platforms.

8. Images and geolocation data

If you are a registered user and upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS), as other visitors may download these images and extract the location information.

9. Recipients of data

We do not pass your personal data on to third parties unless one of the following applies: a legal obligation exists, you have given your express consent, or it is necessary for the provision of the contracted service.

In particular, your personal data may be transmitted to the following recipients:

Hosting providers and technical service providers acting as data processors. Subcontractors, external service providers, cooperation partners and fulfilment partners, where their involvement is necessary to carry out the contracted services (e.g. cooperating estate agents, tax advisors and gestorías, notaries, financing partners and banks, or construction and renovation companies). Data is shared strictly to the extent necessary for the fulfilment of the contract. Public authorities and competent bodies, where required by law.

We never sell your personal data to third parties. Where we engage data processors, we ensure that they provide sufficient guarantees regarding the protection of personal data in accordance with Art. 28 GDPR.

10. International data transfers

Where any of the services we use require a transfer of data outside the European Economic Area (EEA), such transfer is carried out on the basis of appropriate safeguards under the GDPR, in particular the standard contractual clauses approved by the European Commission.

11. Retention periods

Comments and associated metadata are stored indefinitely so that follow-up comments from the same author can be automatically recognised and approved. Data of registered users is stored for as long as the account is active. Users may request deletion of their account at any time. Server log files are retained only for as long as necessary for system security and as permitted by applicable regulations.

12. Your rights

Under the GDPR and LOPDGDD, you have the following rights:

Access to your stored personal data. Rectification of inaccurate or incomplete data. Erasure of your data where it is no longer necessary for the original purposes. Restriction of processing in the cases provided for by law. Objection to processing based on the legitimate interest of the controller. Data portability in a structured, commonly used format. Withdrawal of consent at any time and without giving reasons, without affecting the lawfulness of processing carried out prior to withdrawal.

To exercise any of these rights, please contact us at immo@todo-mallorca.es, enclosing a copy of your identity document or passport.

13. Right to lodge a complaint with a supervisory authority

If you believe that the processing of your data does not comply with applicable regulations, you have the right to lodge a complaint with the competent data protection supervisory authority. In Spain, this is the Agencia Española de Protección de Datos (AEPD): www.aepd.es

14. Security

This website uses SSL/TLS encryption to protect data transmission between your browser and our server. In addition, we implement appropriate technical and organisational measures to protect your data against unauthorised access, loss or destruction.

15. Spam detection

Visitor comments may be checked through an automated spam detection service.

16. Amendments to this privacy policy

We reserve the right to update this privacy policy where necessary, for example in response to changes in legislation or adjustments to our services. The current version will always be available on this page. In the event of material changes, we will notify you in an appropriate manner.

Scroll to top