DISSOL, S.C.P. is committed to protecting the privacy of users who access this website and/or any of its services. The use of the website and/or any of the services offered by DISSOL, S.C.P. implies the user’s acceptance of the provisions contained in this Privacy Policy and of the processing of their personal data as stipulated herein. Please note that, although there may be links from our website to other websites, this Privacy Policy does not apply to other companies or organisations to which the website may be redirected. DISSOL, S.C.P. does not control the content of third‑party websites and accepts no responsibility for the content or privacy policies of those sites.
INFORMATION ABOUT THE OWNER
In compliance with Article 10 of Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce, the following identifying details of the Owner are provided:
Website: | avetblaurestaurant.com |
Owner: | DISSOL, S.C.P. |
Address: | CARRETERA DE SANT CELONI A SANT MARÇAL, KM 21 08479-FOGARS DE MONTCLUS |
Tax ID: | J58501305 |
Telephone: | 653767890 |
Email: | INFOAVETBLAU@GMAIL.COM |
Company registry details: | ENTER COMPANY REGISTRY DETAILS |
2)APPLICABLE LAWS
This Privacy Policy has been drafted in accordance with the Spanish and European regulations in force on the protection of personal data on the internet, and in particular with the following:
Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).
Organic Law 3/2018, of 5 December, on Personal Data Protection and guarantee of digital rights (LOPD‑GDD).
Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI‑CE).
PRIVACY QUESTIONS
In compliance with Regulation (EU) 2016/679 and Organic Law 3/2018, we provide the following information on the processing of personal data that you may provide to us:
Data controller:
DISSOL, S.C.P.
Our details appear at the top of this Legal Notice.
Register of personal data
In accordance with the GDPR and the LOPD‑GDD, we inform you that any personal data collected by DISSOL, S.C.P. through the forms on its pages will be included in, and processed in, our file for the purpose of enabling, streamlining and fulfilling the commitments established between DISSOL, S.C.P. and the User, maintaining the relationship arising from any forms the User fills in, or handling any request or query they submit. Likewise, in accordance with the GDPR and the LOPD‑GDD, and unless the exception laid down in Article 30.5 GDPR applies, we keep a record of processing activities that specifies, according to their purposes, the processing activities carried out and the other circumstances established in the GDPR.
Legal basis for processing
The legal basis for the processing of personal data is consent. DISSOL, S.C.P. undertakes to obtain the User’s express and verifiable consent for the processing of their personal data for one or more specific purposes.
The User has the right to withdraw their consent at any time. It will be just as easy to withdraw consent as it is to give it. As a general rule, withdrawing consent will not condition the use of the Website.
Whenever the User must or may provide their data through forms in order to make enquiries, request information or for reasons related to the content of the Website, they will be informed if the completion of any of those forms is mandatory because the data are essential for the proper performance of the operation concerned.
Other legal bases:
Compliance with legal obligations.
Legitimate interest: sending our own advertising.
Categories of data
The categories of data processed by DISSOL, S.C.P. are solely identifying data. Under no circumstances are special categories of personal data processed within the meaning of Article 9 GDPR.
Source of your data
Data provided by clients who are recipients of the services, by any means.
Data supplied by users through the different services offered on the website.
Retention period for personal data
Personal data will only be kept for the minimum time necessary for the purposes for which they are processed and, in any case, for the following period only: The personal data provided will be stored for the time strictly necessary, that is, for as long as you are a user of our services or wish to continue receiving information, or until the User exercises their right to erasure or objection, or restriction of processing. However, we will keep certain identifying and traffic data for a maximum of 2 years in case they are required by courts and tribunals or in order to bring internal actions arising from misuse of the website.
At the time when personal data are obtained, the User will be informed of the period for which the personal data will be stored or, where this is not possible, the criteria used to determine that period.
We also inform you that our information retention policies are aligned with the time limits laid down by the various statutory limitation periods:
a) General rule:
Under Article 30 of the Commercial Code, and unless other criteria apply, all company documents and/or information will be kept for 6 years. This applies to all accounting, tax, employment or commercial documentation, including correspondence.
b) Specific time limits:
The company must also observe minimum retention periods depending on the type of data processed and the different limitation periods, which each department must be aware of.
No decisions will be taken based solely on automated processing that produce legal effects concerning you or similarly significantly affect you.
Purposes of processing
The purposes of the processing of personal data are as follows:
CLIENT MANAGEMENT: To provide the services contracted as part of each company’s normal activity and to invoice them. The data provided will be kept for as long as the commercial relationship is maintained or for as many years as necessary to comply with legal obligations.
POTENTIAL CLIENT MANAGEMENT: To send people with a legitimate interest information about our products and services by any available means and invite them to events of interest. The data provided will be kept for as long as you do not request the cessation of this processing and will be collected subject to prior express consent.
Recipients of the data
Users’ personal data will not be shared with third parties.
In any case, when personal data are obtained, the User will be informed of the recipients or categories of recipients of the personal data.
Personal data of minors
In accordance with Articles 8 GDPR and 7 of Organic Law 3/2018, only persons over 14 years of age may give their consent to the lawful processing of their personal data by DISSOL, S.C.P. If the data subject is under 14, the consent of parents or guardians will be required, and processing will only be lawful to the extent that they have authorised it. Otherwise, the legal representative must inform us as soon as possible.
Rights arising from the processing of personal data
Users may exercise the following rights against the Controller, as recognised in the GDPR and Organic Law 3/2018:
Right of access: the right to obtain confirmation as to whether DISSOL, S.C.P. is processing their personal data, and, if so, to obtain information about their specific personal data and about the processing carried out, including, among other aspects, the information available about the origin of the data and the recipients of any disclosures made or planned.
Right to rectification: the right to have inaccurate personal data corrected or, taking into account the purposes of the processing, to have incomplete data completed.
Right to erasure (“right to be forgotten”): the right, where the current legislation does not provide otherwise, to have personal data erased when they are no longer necessary for the purposes for which they were collected or processed; when the User withdraws consent and there is no other legal basis; when the User objects to the processing and there is no other legitimate ground; when personal data have been unlawfully processed; when they must be erased to comply with a legal obligation; or when they have been obtained in connection with the offer of information society services directly to a child under 14. The Controller must also, taking account of available technology and the cost of implementation, take reasonable steps to inform controllers who are processing the personal data of the data subject’s request to erase any links to those personal data.
Right to restriction of processing: the right to restrict processing where the accuracy of the personal data is contested; where the processing is unlawful; where the Controller no longer needs the data but the User requires them for the establishment, exercise or defence of legal claims; and where the User has objected to processing.
Right to data portability: where processing is carried out by automated means, the right to receive from the Controller the personal data in a structured, commonly used and machine‑readable format and to transmit those data to another controller. Where technically feasible, the data will be transmitted directly from one controller to another.
Right to object: the right to object to the processing of personal data, or to have processing stopped, by DISSOL, S.C.P.
Right not to be subject to a decision based solely on automated processing, including profiling: the right not to be subject to a decision based solely on automated processing of personal data, including profiling, unless otherwise provided for by current legislation.
Finally, data subjects have the right to lodge a complaint with the competent Supervisory Authority (AEPD) if they consider that there is a problem or infringement of current legislation in the way their personal data are being processed.
You may exercise the above rights by sending us a written request, together with a copy of a document proving your identity, to our postal address or email address (as indicated at the beginning of this text).
PRINCIPLES APPLICABLE TO THE PROCESSING OF PERSONAL DATA
The processing of users’ personal data will be subject to the following principles, as set out in Article 5 GDPR and Articles 4 et seq. of the LOPDGDD:
Principle of lawfulness, fairness and transparency: consent will always be required after full and transparent information about the purposes of collecting personal data.
Principle of purpose limitation: personal data will be collected for specified, explicit and legitimate purposes.
Principle of data minimisation: the personal data collected will be only those strictly necessary for the purposes for which they are processed.
Principle of accuracy: personal data must be accurate and kept up to date.
Principle of storage limitation: personal data will be kept in a form which permits identification of the user for no longer than is necessary for the purposes of the processing.
Principle of integrity and confidentiality: personal data will be processed in a manner that ensures appropriate security and confidentiality.
Principle of proactive accountability: the Website controller will maintain and implement the technical and organisational measures necessary to ensure that all principles relating to processing are complied with.
WHAT SECURITY MEASURES DO WE APPLY?
We apply the security measures laid down in Article 32 GDPR. We have therefore adopted the necessary measures to ensure a level of security appropriate to the risk posed by the processing we carry out, with mechanisms that allow us to guarantee the ongoing confidentiality, integrity, availability and resilience of processing systems and services.
Some of these measures are:
Informing staff about data‑processing policies.
Regular back‑ups.
Access control to data.
Regular verification, evaluation and assessment processes.
CONFIDENTIALITY AND SECURITY OF PERSONAL DATA
DISSOL, S.C.P. undertakes to adopt the technical and organisational measures necessary, according to the appropriate level of security in relation to the risk of the data collected, to ensure the security of personal data and to prevent their accidental or unlawful destruction, loss or alteration, or unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.
The Website uses an SSL (Secure Socket Layer) certificate, which ensures that personal data are transmitted securely and confidentially, as all data transfer between the server and the User, and vice versa, is fully encrypted.
However, as DISSOL, S.C.P. cannot guarantee the impregnability of the internet or the total absence of hackers or others who may gain fraudulent access to personal data, the Controller undertakes to notify the User without undue delay when a personal data breach occurs that is likely to result in a high risk to the rights and freedoms of natural persons. Under Article 4 GDPR, a personal data breach is any breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.
Personal data will be treated as confidential by the Controller, who undertakes to inform and contractually or legally oblige any employees, partners and any other persons with access to the information to respect this confidentiality.
LINKS TO THIRD‑PARTY WEBSITES
The Website may include links that allow access to third‑party web pages that are not operated by DISSOL, S.C.P. The owners of those websites have their own data‑protection and privacy policies and are responsible for their own files and privacy practices.
ACCEPTANCE AND CHANGES TO THIS PRIVACY POLICY
It is necessary for the User to have read and agree with the conditions on the protection of personal data contained in this Privacy Policy, and to consent to the processing of their personal data so that the Controller can proceed to do so in the manner, for the periods and for the purposes indicated. Use of the Website implies acceptance of this Privacy Policy.
DISSOL, S.C.P. reserves the right to modify its Privacy Policy, at its own discretion or due to a legislative, case‑law or doctrinal change by the Spanish Data Protection Agency. Any changes or updates to this Privacy Policy will not be explicitly notified to the User. Users are advised to consult this page periodically to stay informed of the latest changes or updates.
Last updated: 13/01/26
