Privacy policy

1. USER INFORMATION

This website informs users about its policy regarding the processing and protection of the personal data of users and customers that may be collected while browsing the site. The website is the Data Controller of the user’s personal data and provides the following information about the processing of said data: Data retention criteria: Personal data will be kept until the data subject requests its suspension by exercising their rights, and in any case in compliance with the applicable legal limitation periods. Data subjects’ rights:

• Right to withdraw consent at any time.

• Right to access, rectification, deletion, portability of data, and the limitation or objection to its processing, as well as the right not to be subject to automated individual decisions.

Contact details to exercise your rights: You must properly identify yourself and clearly indicate the right you wish to exercise.

• Name: MICAMI with VAT ID X9564398D
• Address: Calle San Telmo 9, 1A, 49650, Barrika, Bizkaia
• Phone: +34 634 75 04 00
• Email: info@micamitravels.com

2. INFORMATION PROVIDED BY THE USER

If you are under 18, using the forms on our website is not allowed.

By entering their data in contact forms or download forms, users expressly, freely, and unequivocally accept that their data is necessary to fulfill their request by the Data Controller. Entering data in other fields is voluntary.

The user guarantees that the personal data provided is truthful and is responsible for communicating any changes.

All requested data through the website are necessary to provide an optimal service to the user. If not all data are provided, we cannot guarantee that the information and services offered will be fully adapted to your needs.

3. SECURITY MEASURES

In accordance with current regulations on the protection of personal data, the Controller complies with all provisions of the GDPR and the Spanish LOPD for the processing of personal data under its responsibility. These data are processed lawfully, fairly, and transparently in relation to the data subject, and are adequate, relevant, and limited to what is necessary for the purposes for which they are processed.

The Controller guarantees that appropriate technical and organizational policies have been implemented to apply the security measures required by the GDPR and LOPD to protect users’ rights and freedoms and has provided them with the necessary information to exercise them.

4. SECURITY BREACHES

The Controller will notify any security breach affecting the database used by this website, or affecting any of our third-party services, to all individuals whose data may have been affected, as well as to the relevant authorities, within 72 hours of the breach being detected.

5. APPLICABLE LEGISLATION AND JURISDICTION

For the resolution of any conflicts or issues related to this website or the activities carried out, Spanish legislation shall apply, to which both parties expressly submit. The competent jurisdiction for resolving any disputes shall be the Courts and Tribunals of Bilbao.