Client Area

Privacy Policy

This page describes how we use your data, what data we collect and store, how we protect stored data, data retention, and waiver of rights. It also describes our procedures for handling cases under general data.

 

1. RESPONSIBILITY.

The designated Data Protection Officer, for the purposes of this agreement to observe and supervise the active functions of this policy:

  • Main domain name: hostealo.es
  • Company name: AP INTERACTIVE SOLUTIONS SL
  • Tax ID (CIF): B56483407
  • Address: CALLE ESTEBAN SALAZAR CHAPELA, 115. Málaga, Spain.
  • Email: [email protected]

 

2. DATA COLLECTION CONSENT.

  1. By using any service or part of our platform, whether owned or controlled by us, you agree to be bound by all the clauses of these policies.
  2. For the purposes of this policy, it will apply to all future use of our services by customers, for an additional period of ‘five’ (5) years.

 

3. DATA RETENTION.

  1. In accordance with our commitment to the European Union’s GDPR (General Data Protection Regulation): we will only retain data for as long as it is necessary when purchasing, using, or subsequently accessing any service that we own or control. You agree that we may retain your data for 180 days; after this period, all your data will be automatically deleted from our site.
  2. Logs and access requests to the site are retained indefinitely to ensure security; this includes cookie-based data, which expires based on user deletion or the natural expiration of the cookie.

 

4. CHILDREN’S PRIVACY.

  1. We may collect and store information from children under 16 because our services are directed specifically to them, as they are the focus and target audience of the products we sell. We will ensure that children under 16 registered on our website have obtained parental consent.
  2. We collect a child’s information when they create an account on our platform, purchase any product or service we offer, interact with any of our customer support platforms, or interact with our platform or services.
  3. We will never sell your child’s data to any third party and will only share what is absolutely necessary with trusted third parties that enable us to carry out our daily business operations.
  4. We ask children to share certain information with us for purposes of notification, transactions, and security. We strongly recommend that the guardians of children use their own data instead of allowing their children to use their data in any section of our platform.
  5. By agreeing to use any part of our platform or services, both the child and the parent expressly consent that they have read, understood, and accepted all the clauses of this policy.

 

5. DATA DELETION.

  1. This policy does not serve as a waiver of rights.
  2. Data deletion will be carried out when a customer requests that their data be deleted. In many cases, you will be asked to provide proof of the name and address associated with the billing account before we can process or access your personal data, and before we can proceed with any deletion request.
  3. If at any point a deletion request is lost, we are not responsible for any damages, and this constitutes an express waiver of liability regarding any deletion request that has been submitted incorrectly or lost during transmission.
  4. The parent or legal guardian of a child may request the deletion of data for a person under 16. The guardian may be asked to provide transaction-based identification before we can process a deletion request.

 

6. DATA BREACH.

In the extremely unlikely event of a data breach, we will proceed as follows:

  1. Notify you within the following 48 hours.
  2. Provide information regarding what data we believe was breached and when we became aware of it.
  3. Inform the data controllers so that data breaches can be thoroughly investigated.
  4. Suspend any network on any service that we believe has been breached to prevent further breaches until we can investigate the source.

Our Data Protection Officer will inform you and provide you with the next steps in accordance with the above protocol.

7. DATA WE COLLECT.

We collect and store a variety of data such as:

  1. Personally Identifiable Information (PII)
    1. For example: your name, email address, phone number, postal address, IP address, geolocation…
  2. Cookies
  3. Log data
    1. Internet Protocol (IP) address, browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, and other statistics
  4. Third-party services may additionally collect data; these respective services have their own data protection and privacy policies, and it is expected that the end user (you) review these individual policies.
    1. WHMCS
    2. Cryptomus
    3. Stripe
    4. Chatwoot
    5. TrustPilot
    6. Cloudflare
    7. Path.net
    8. FontAwesome
    9. Bootstrap
    10. Cogent Communications
    11. Google Analytics
    12. Google
    13. Cookie declaration services
  5. Due to any data shared with third-party services, it is possible that we may not be able to regulate deletion requests with the companies/services listed above, and you may need to submit deletion requests to the specific company, as listed above.

 

8. APPEALS.

If you believe that we have made an error in our judgment regarding your deletion request, you may follow the appeal steps outlined in Hostealo’s final written response. In order to appeal, you agree that you must do so within 28 days of receipt. This response confirms the steps for filing an appeal; if you do not appeal the decision within 28 days, you waive your right to appeal.

 

9. LINKS TO THIRD-PARTY SERVICES

Our services may contain links to third-party services. Hostealo is not responsible for the collection, breaches, or data procedures of third parties. We strongly recommend that you review the privacy policies of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of third-party sites or services.

 

10. ACCESS PROVISIONS.

  1. Provisions are made for law enforcement agencies to request access to customers’ personal data with respect to judicial orders. Any court order, subpoena, or request from law enforcement agencies can be sent to [email protected] to receive a response within a maximum of 24 hours.
  2. Access arrangements are made for a portion of your registered data for Hostealo employees. The data under this access agreement is controlled according to their individual confidentiality agreements.

 

11. CHANGES TO OUR POLICIES.

We may update our privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page. It is recommended that you review this privacy policy periodically to detect any changes.

Changes to this privacy policy take effect when they are posted on this page.