Privacy Policy

This page describes how we use your data, what data we collect and store, how we protect stored data, data retention, and waiver of rights. It also outlines our procedures for handling cases under general data policies.

1. RESPONSIBILITY.

The designated data protection officer, for the purposes of this agreement and to monitor and supervise the active functions of this policy:

• Main domain name: hostealo.es
• Company name: AP INTERACTIVE SOLUTIONS SL
• Tax ID: B56483407
• Address: CALLE ESTEBAN SALAZAR CHAPELA, 115. Málaga, Spain.
• Email: [email protected]

2. CONSENT FOR DATA COLLECTION.

1. By using any service or part of our platform, owned or controlled by us, you agree to all clauses of these policies.
2. For the purposes of this policy, it will remain in effect for the entire duration of the client’s use of our services, with an additional period of five (5) years.

3. DATA RETENTION.

1. In accordance with our commitment to the European Union’s GDPR (General Data Protection Regulation), we will retain data only as long as necessary. When purchasing, using, or later accessing any service we own or control, you agree that we may retain your data for 180 days. After this period, all your data will be automatically deleted from our site.
2. Site access logs and requests are retained indefinitely to ensure security. This includes cookie-based data, which will expire either naturally or upon user deletion.

4. CHILDREN’S PRIVACY.

1. We may collect and store information from children under 16 because our services are directly aimed at them, as they are the focus and target audience of the products we sell. We will ensure that any children under 16 registered on our website have obtained parental consent.
2. We collect information from a child when they: create an account on our platform, purchase any product or service we offer, interact with any of our customer support platforms, or use our services.
3. We will never sell your child’s data to any third party and will only share what is absolutely necessary with trusted third parties who enable the daily operation of our business.
4. We request that children share certain information for notification, transactional, and security purposes. We strongly recommend that guardians use their own data instead of allowing children to use their personal data on any part of our platform.
5. By using any part of our platform or services, both the child and the parent explicitly consent to having read, understood, and agreed to all the clauses of this policy.

5. DATA DELETION.

1. This policy does not serve as a waiver of rights.
2. Data deletion will be performed when a client requests the removal of their data. In many cases, the client will be asked to provide proof of the name and address assigned to the billing account before we can process or access their personal data and proceed with the deletion request.
3. If a deletion request is lost at any point, we are not liable for any damages. This is an express waiver of responsibility regarding any deletion request submitted incorrectly or lost in transmission.
4. A parent or legal guardian may request the deletion of data for a person under 16. The guardian may be required to provide transaction-based identification before we can process the request.

6. DATA BREACH.

In the extremely unlikely event of a data breach, we will proceed as follows:

1. Notify you within 48 hours.
2. Provide information about what data we believe was compromised and when we became aware of the breach.
3. Notify data controllers so that breaches can be thoroughly investigated.
4. Temporarily suspend any service we believe was breached to prevent further issues until we can investigate the source.

Our data protection officer will inform you and provide next steps in accordance with the above protocol.

7. DATA WE COLLECT.

We collect and store various types of data such as:

1. Personally Identifiable Information (“PII”)
   1. For example: your name, email, phone number, postal address, IP address, geolocation, etc.
2. Cookies
3. Log-based data
   1. Internet Protocol (“IP”) address, browser type, browser version, pages of our Service visited, time and date of visit, time spent on those pages, and other statistics
4. Third-party services may additionally collect data; these respective services have their own data protection and privacy policies, and the end user (you) is expected to review these individual policies.
   1. WHMCS
   2. Cryptomus
   3. Stripe
   4. Chatwoot
   5. TrustPilot
   6. Cloudflare
   7. Path.net
   8. FontAwesome
   9. Bootstrap
   10. Cogent Communications
   11. Google Analytics
   12. Google
   13. Cookie declaration services
5. Because data may be shared with third-party services, we may not be able to handle deletion requests with the listed companies/services. You may need to send deletion requests directly to the specific company listed above.

8. APPEALS.

If you believe we have made an error in judgment regarding your data deletion request, you may follow the appeal steps included in Hostealo’s final written response. To appeal, you must do so within 28 days of receiving the response. If you do not appeal within that timeframe, you waive your right to appeal.

9. LINKS TO THIRD-PARTY SERVICES.

Our services may contain links to third-party services. Hostealo is not responsible for the data collection, breaches, or data handling practices of third parties. We strongly recommend reviewing the privacy policies of every site you visit. We have no control over and accept no responsibility for the content, privacy policies, or practices of any third-party sites or services.

10. ACCESS PROVISIONS.

1. Provisions are in place for law enforcement agencies to request access to customer personal data in compliance with court orders. Any such order, subpoena, or request can be sent to [email protected] and will be responded to within a maximum of 24 hours.
2. Access provisions are also in place for some of your registered data to be accessible by Hostealo employees. Access to this data is governed by individual confidentiality agreements.

11. CHANGES TO OUR POLICIES.

We may update our privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page. You are encouraged to review this privacy policy periodically for updates.

Changes to this privacy policy are effective once posted on this page.