Privacy Policy
INTRODUCTION
At www.nexlop.com, responsible for Multi Liberty SL, we are committed to ensuring that your personal data is protected and not misused.
In this document, we explain who is responsible for the processing, for what purposes your personal data is processed, the legality of the processing, how we collect it, why we collect it, how we use it, what your rights are, and we also explain the processes we have implemented to protect your privacy.
If you provide your personal data and use our websites, we assume that you have read and understood the terms and conditions protecting your personal data. Multi Liberty SL is responsible for compliance with applicable national and European data protection legislation and strives to process your data in a lawful, fair and transparent manner.
This document applies to Multi Liberty SL
CONSIDERATIONS TO TAKE INTO ACCOUNT
WHO IS RESPONSIBLE FOR DATA PROCESSING?
The definition of “data controller” is described in the General Data Protection Regulation and reads as follows:
"DATA CONTROLLER" OR "DATA PROCESSOR" MEANS.
The natural or legal person, public authority, department or other body which, alone or jointly with others, determines the purposes and means of the processing.
nexlop is responsible for the processing of personal data provided by its customers.
If you have any questions, comments or concerns, or if you would like to make any suggestions regarding the use of your personal data, please email the Privacy Officer at contacto@ nexlop.com .
Information about nexlop
We are constantly launching new products in areas as diverse as fashion and accessories, decoration and furniture, and pet accessories.
Company name: Multi Liberty SL
Registered office: Calle Cruces de San Juan, 47. 35015 - Las Palmas de Gran Canaria, Spain.
TAX IDENTIFICATION NUMBER: B27852839.
Email: contacto@ nexlop.com
Website: www. nexlop.com
WHY DO WE COLLECT YOUR PERSONAL DATA?
The main reason we collect your personal data is to facilitate and improve the service you expect from us as a customer.
We collect your personal data to process any purchases, orders or requests you make on our websites or in our applications, even if some of the aforementioned services are temporarily inactive.
These are the main purposes that we have identified for nexlop :
Comply with legal obligations, including, among others, Law 10/2010 on the prevention of money laundering.
Manage the purchase of products or services offered by www. nexlop .com, including distance selling and management of shipments and returns.
The creation and management of a personal account with a single registration that can be used to purchase products and services offered on www. nexlop.com .
Forwarding customer queries, suggestions and complaints in order to manage and resolve them.
Surveys to improve our services.
Market and marketing research, reports on consumer habits, statistical data and market trends to offer you products and services that may be of interest to you.
Profiling and analysing the behaviour of our customers when they use our websites or applications, but only if you give us permission to do so.
Keeping you informed about our latest products, offers, opportunities, etc. We generally use the following channels: email, telephone, SMS, push notifications, but only if you give us your consent.
▪ Administration for the refund of VAT on purchases made by tourists not resident in the European Community.
HOW DO WE COLLECT INFORMATION ABOUT YOU?
We collect personal information about you in a number of ways. In some cases, you contact us with your personal information, and in other cases, we collect your personal information through other means. Below we explain the different ways we collect your personal information and give you some examples of how we use this information.
HOW DO WE COLLECT INFORMATION ABOUT YOU?
We collect personal information about you in a number of ways. In some cases, you contact us with your personal information, and in other cases, we collect your personal information through other means. Below we explain the different ways in which we collect personal information about you and some examples of how we use this information.
INFORMATION YOU PROVIDE US.
We collect personal information that you provide to us through certain websites. nexlop , by email, by mobile phone, when you request a service or by other means. In each case, you will be informed, at the time of collection, of the owner, the purpose of the processing, the recipients of the information and how to exercise your rights under applicable data protection legislation.
For example, you may provide us with information when you contact our customer service, place an order, register on our websites, update your preferences and account information, fill out a questionnaire, enter a contest, etc.
As a general rule, you will provide us with the following personal information: First and last name, address, identification number, date of birth, email address, telephone number and payment details. In very specific cases and depending on the purpose and use of your data, we may collect data on personal, academic and professional characteristics, employment data, commercial information, social, economic and insurance conditions, and transfer of goods and services. You also consent to the transfer of data to financial institutions for the processing of consumer sales contracts with deferred payment.
If you have never asked us to send you promotional communications, you can subscribe to the various newsletters that we make available to you or send us an email to contacto@ nexlop.com .
INFORMATION WE COLLECT WHEN YOU VISIT OUR WEBSITE
We collect and store limited personal information and anonymous aggregated statistics about all users who visit our website, whether they actively provide us with this information or simply visit our website. The information we collect includes the Internet Protocol ("IP") address of the device you are using, the browser software you are using, your operating system, the browser software you are using, your operating system, and the date and time of your visit to the site.
The IP address of the device you use, the browser software you use, your operating system, the date and time of access, the Internet address of the website from which you linked to our websites and information about how you use our website.
We use this information to determine how long our website takes to load, how it is used, how many times different parts of our website are visited, and what type of information attracts the most visitors. This also allows us to determine whether the website is functioning properly, and if we discover errors or malfunctions in its operation, we can correct them and improve the performance of our website to better serve all users.
This information is collected using cookies. For more information, please see the cookie policy.
SOCIAL NETWORKS
The use of social networks is becoming more and more common and, in this sense, nexlop is present in most of these networks, which is one more way to connect with you.
The information we collect through social media sometimes contains personal information that is online and publicly available. We always make sure that the information we use is properly attributed to its source or anonymized.
These social networks may have their own privacy policies that explain how they use and share your personal information. We encourage you to read the privacy policies of these social networks carefully before using them to ensure that you are comfortable with how your personal information is collected and shared.
MOBILE PHONE
If you use your mobile phone, www. nexlop.com has a geolocation function, the main purpose of which is to detect your position in order to show you the nearest room. If you have activated the geolocation function on your mobile device, you will be able to use all the functions of the applications. If geolocation is not activated, we will inform you and request your prior consent by means of a warning message.
This geolocation service will not be used to share your position with third parties, unless required by law.
Most mobile devices allow the user to disable location services. This feature is usually found in the device's settings menu. If you have any questions about how to disable location services on your device, we recommend that you contact your mobile carrier or the manufacturer of your device.
To turn off location services on your Android device, select Location Services from your phone's settings menu. On most Android devices, you can turn off location services for the entire phone, such as GPS services and third-party location services. If you don't check the box to turn on location services, they will usually remain disabled.
You can turn off location services on your iPhone by going to the Settings menu and selecting Location Services. To turn off location services for the entire device, scroll down until you see the Disable option. To turn off location services for a specific app, scroll down next to the app name until you see the Disable option.
WHAT IS THE LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA?
We process your personal data on a legal basis for several reasons:
To fulfill a contract and/or business relationship.
To comply with various legal obligations.
For reasons of legitimate interest, for example, for security reasons, fraud prevention, to improve our services and products through market research or to respond to requests, queries or complaints.
With your consent, for example to send you personalized offers from www. nexlop.com .
WITH WHOM CAN WE SHARE YOUR PERSONAL DATA?
If you have given us your consent, the data you provide us will be shared with nexlop to be processed for the purposes described above. Not all the purposes described above require the transfer of data. In some cases, it is necessary for us to transfer the data you provide to third parties for the provision of the requested service, such as logistics, transport and delivery services, installers and/or assemblers, home renovations, etc.
There are also companies that provide us with other types of services, such as: IT (storage and processing of information), security services, financial services, auditing services, etc. These third parties only have access to your personal data.
These third parties only have access to the personal data they need to provide these services. These third parties only have access to the personal data they need to provide these services. They are required to retain the personal data you provide to them.
The confidentiality of your personal data and the fact that they are not used for purposes other than those requested by us.
In all cases, nexlop is responsible for the personal data you provide to us and we require the companies with which we share your personal data to apply the same level of data protection as we do.
Likewise, your personal data will be made available to Public Administrations, Judges and Courts to determine any responsibilities that may arise from their processing.
INTERNATIONAL TRANSFER
The personal data we collect is located in France, although some Group companies may operate in other countries and your personal data may be collected in your country of residence.
In some cases, cloud computing services are contracted in third countries, which gives rise to international data transfers. In these cases, there are appropriate safeguards to protect your data, about which you can obtain more information by writing to contacto@ nexlop.com .
Our store is hosted on Shopify International Limited. They provide us with the e-commerce platform that allows us to sell our products and services to you.
Your data is stored in Shopify's database and data storage system and in the general Shopify application. Your data is stored on a secure server behind a firewall.
If you make your purchase through a direct payment gateway, Shopify stores your credit card information. This information is encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction information is stored for the time necessary to complete your order. After your order is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the PCI-DSS standard as managed by the PCI Security Standards Council, a joint effort of Visa, MasterCard, American Express and Discover.
PCI-DSS requirements ensure the secure processing of credit card data by our store and its service providers.
LINKS TO THIRD PARTY WEBSITES
In the event that we provide links to websites that are not operated or controlled by nexlop , you will be notified immediately, as nexlop has no control over these websites and is not responsible for their content, has no control over how others collect and use your personal information, and is not responsible for and does not explain third party websites.
These websites may have their own privacy policies explaining how they use and share your personal information. We encourage you to read their privacy policies carefully before using these websites, to make sure you are happy with how your personal information is collected and shared.
COOKIE POLICY
www. nexlop.com uses cookies to offer a better service and browsing experience. We want the cookies we use to be clear and concise, and below we explain what a cookie is, what it is used for, the types of cookies we use, their purpose and how you can activate or deactivate them if you wish.
WHAT IS A COOKIE AND WHAT IS IT USED FOR?
A "cookie" is a small file that is stored on the user's computer, tablet, smartphone or other device and contains information about their browsing.
Setting cookies for all our users helps us improve the quality of our website. This allows us to know which pages are useful, which are not, and which can be improved.
Cookies are essential for the proper functioning of the Internet. They offer many advantages by providing interactive services and facilitating navigation and use of our website. Under no circumstances can cookies damage your computer. Rather, the fact that they are active helps us to detect and correct errors.
WHAT TYPES OF COOKIES DO WE USE? ACCORDING TO THEIR MANAGEMENT
Personal cookies
These are cookies that are sent to your computer from our own devices or domains from which we provide the service you have requested.
Third party cookies
These are cookies sent to your computer from a device or domain that is not managed by us, but by another company with which we collaborate.
ACCORDING TO THEIR DURATION OF ACTIVITY
Session cookies
These are temporary cookies that remain in the cookie file of your browser until you leave the website, and none of these cookies are stored on your computer's hard drive. The information obtained through these cookies is used to analyse traffic patterns on the website. Ultimately, this allows us to provide a better experience by improving content and user experience.
Persistent cookies
They are stored on your hard drive and are read by our website each time you visit us again. A persistent cookie has a set expiry date. After this date, the cookie stops working. We generally use these cookies to facilitate shopping and registration services.
ACCORDING TO ITS PURPOSE
Technical cookies
These cookies are necessary for navigation and the proper functioning of our website. They allow, for example, to manage traffic and data transfer, access protected areas, carry out the purchase process of an order, use security functions, store content for the transfer of videos or share content on social networks.
Personalization cookies
These cookies allow you to access the service with predefined characteristics based on certain criteria, such as language, the type of browser through which you access the service, the regional settings from which you access the service, etc.
Cookies for analysis purposes
These cookies allow us to quantify the number of users and to statistically analyse the use made by users of the services offered. To do this, we analyse your browsing on our website in order to improve our services. We also use analytical cookies for device recognition and fraud prevention during certain transactions with the Financiera El Corte Inglés purchase card and for all transactions financed by this entity.
Cookies for advertising purposes
These cookies allow us to effectively manage the advertising spaces that may be included on our website.
Cookies for behavioral advertising
These cookies store information about user behaviour obtained through continuous observation. They allow us to understand your internet browsing behaviour and show you advertising related to your browsing profile.
COOKIES USED
The cookies used on our website are described below:
_session_id, a unique session identifier that allows Shopify to store information about your session (referrer, landing page, etc.).
_shopify_visit, no data held, persists for 30 minutes from the last visit. Used by our website provider's internal statistics tracking tool to track the number of visits.
_shopify_unique, no data stored, expires midnight (depending on the visitor's location) of the next day. Calculates the number of visits to a store by an individual customer.
_shopify_cart, unique identifier, stored for 2 weeks, stores information about the shopping cart.
_secure_session_id, unique session identifier storefront_digest, unique identifier, not set if the store has a password, used to determine if the current visitor has access.
HOW LONG DO WE KEEP YOUR PERSONAL DATA?
We only retain your personal data for as long as necessary to fulfil the purpose for which it was collected, in accordance with applicable law. We will retain your personal data for as long as we maintain a contractual and/or commercial relationship with you, or as long as you do not exercise your right to delete it and/or limit its processing.
In this case, we will keep the data adequately protected without using it as long as it is necessary to assert or defend claims or may give rise to claims arising from the processing, judicial, legal or contractual claims that must be processed and for which its recovery is necessary.
HOW CAN YOU EXERCISE YOUR RIGHTS?
In accordance with the Data Protection Regulation, you may exercise your rights of access, rectification, opposition, deletion, limitation of processing, portability and not be subject to an individual decision taken by the data controller.
These rights are characterized by the following.
HOW CAN YOU EXERCISE YOUR RIGHTS?
In accordance with the Data Protection Regulation, you may exercise your rights of access, rectification, opposition, deletion, limitation of processing, portability and not be subject to an individual decision taken by the data controller.
These rights are characterized by the following:
They can be exercised free of charge. If requests are manifestly unfounded or excessive (for example, repeated requests), the controller may charge a fee corresponding to the administrative costs. Refusal to act. Requests must be processed within one month, but this period can be extended by two months depending on the complexity and number of requests. The controller must inform you of the means to exercise these rights. These means must be accessible, and you must not be denied the exercise of these rights simply because you choose another means. If the request is made by electronic means, the information will be provided by electronic means to the extent possible, unless the requester expressly requests otherwise. If the controller does not comply with the request, it must inform the data subject within one month of the reasons for its failure and of the possibility of lodging a complaint with the supervisory authority. You may exercise your rights directly or through your legal representative.
The data controller may process the request on behalf of the data subject if both parties agree to this in a binding legal instrument or agreement.
RIGHT OF ACCESS
The right of access allows you to contact the data controller to find out whether or not your personal data is being processed.
RIGHT OF RECTIFICATION
The right to rectification allows you to request the data controller to rectify your inaccurate personal data without undue delay.
Taking into account the purposes of the processing, you have the right to request that incomplete personal data be completed, including by means of providing a supplementary statement.
In your request, you must indicate which data is involved and what correction needs to be made. Your request may also be accompanied by documents proving the inaccuracy or incompleteness of your data.
RIGHT OF OPPOSITION
The right to object, as its name suggests, allows you to oppose the processing of your personal data by the data controller in the following cases:
When the processing is based on a mission of general interest or on a legitimate interest, including profiling. When the processing is carried out for direct marketing purposes, including the aforementioned profiling.
RIGHT OF ERASURE
The right to erasure may be exercised in the following cases, by requesting the data controller to erase your personal data:
If your personal data is no longer necessary for the purposes for which it was collected or otherwise processed. If the processing of your personal data is based on consent you have given and you have withdrawn that consent, unless the processing is based on another legal basis. If the processing carried out by the controller was based on a legitimate interest or the performance of a task carried out in the public interest, and your interests or fundamental rights and freedoms prevail over such legitimate interest. To use your personal data for direct marketing purposes, including profiling in connection with such marketing. If your personal data has been processed unlawfully. However, this right is not unlimited. It is possible to waive deletion if the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for the performance of a task carried out in the public interest in the exercise of official authority, for purposes of public interest in the field of public health, for archiving purposes in the public interest, for scientific or historical research purposes or statistical purposes, or for the exercise or defence of legal claims.
The data controller is obliged to block the data when it is rectified or deleted.
Data blocking consists of identifying and keeping data confidential, as well as applying technical and organisational measures to prevent its processing, including its viewing, with the exception of making it available to judges and courts, the Public Prosecutor's Office or the competent authorities, in particular data protection authorities, for the fulfilment of responsibilities that may arise from the processing, and only during the limitation period for such responsibilities.
At the end of this period, the data must be destroyed.
RIGHT TO LIMIT PROCESSING
This new right allows you to obtain limitation of the processing of your data by the data controller, and its exercise has two aspects:
If you contest the accuracy of your personal data, for a period enabling the controller to verify it. If you contest the processing of your personal data by the controller on grounds of legitimate interest or the performance of a task carried out in the public interest, assessing whether these grounds override yours. The controller must retain your data:
If the processing is unlawful and you oppose the erasure of your data and request instead that its use be restricted. If the data controller no longer needs the personal data for the purposes of the processing, but you need them for the exercise, defence or recognition of legal claims.
RIGHT TO PORTABILITY
This new right aims to strengthen control over your personal data, allowing you, in the case of automated processing, to receive your personal data in a structured, commonly used and machine-readable format, and to transmit it to another data controller, provided that the processing is based on consent or the execution of a contract.
However, this right shall not apply when processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
WHERE CAN YOU EXERCISE YOUR RIGHTS?
To exercise your rights, nexlop , SL offers you the following options:
Send the duly completed and signed form, along with a photocopy and/or scanned copy of your ID or document proving your identity, to the email address contacto@ nexlop.com . You may also lodge a complaint with the Spanish Data Protection Agency, especially if you are not satisfied with the response to your request. For further details, please visit the website www.agpd.es.
HOW DO WE PROTECT YOUR PERSONAL DATA?
We do our best to protect your personal data. We use appropriate technical and organisational measures to protect your personal data and privacy, and we review these measures regularly. We protect your personal data through a combination of physical, IT and logical security controls, including access controls that restrict and manage how your personal data and information is processed, stored and managed. We also ensure that our employees are trained to protect your personal data. Our procedures indicate that we may ask you to identify yourself before we share your personal data.
As part of our security and confidentiality guarantee, we attach great importance to offering you the highest level of security and protecting the confidentiality of the personal information you provide us. Therefore, commercial transactions are carried out in a secure server environment that uses the SSL (Secure Socket Layer) protocol.
If at any time you have problems accessing any part of our website, it may be due to your browser model, version or settings. If you would like us to help you resolve this problem, or if you have any questions about the operation of our purchasing system, please contact us at contact@ nexlop .com. We will be happy to help you.
The Internet is a means of conducting business transactions over the network. For this reason, one of the main concerns of Internet users is the security of online data.
An e-commerce transaction is the entire process of creating a commercial contract, including communication between the two parties:
The client and the company. The aspects that every commercial transaction must respect are the following:
Authentication, which guarantees which legal or physical person we are communicating with. Integrity, which means that the content of the communication between the two parties must not be altered. Confidentiality, which guarantees that unauthorized persons do not have knowledge of the content of the communication. The security and confidentiality of the data you provide us is of great importance to us.
HOW ARE CHILDREN'S DATA PROCESSED?
The website www. nexlop.com and its products are not generally directed to children, although we may occasionally run a campaign that may be of interest to them. However, we do not knowingly collect personal data from children without the consent of their parents or guardians.
If you are a minor, please do not attempt to register as a user on our website. If we discover that we have accidentally received personal information from a minor, we will delete such information as soon as possible.
WHAT PRECAUTIONS SHOULD I TAKE?
Here are some precautions we recommend to our clients:
Do not share your username and password. Do not write them down in easily accessible places: computer, diary, etc. Always use our SSL security system. Always log out of your browser after accessing a secure section or entering your username or password into the system.