Privacy policies



The purpose of this 'Privacy and Data Protection Policy' is to inform you of the conditions governing the collection and processing of your personal data by Digital Cornucopia, S.L. to safeguard your fundamental rights, honor and freedoms, all in compliance with the regulations in force governing the Protection of Personal Data according to the European Union and the Spanish Member State.

In accordance with these regulations, we need to have your authorization and consent for the collection and processing of your personal data, which is why below we provide you with all the details of interest to you regarding how we carry out these processes, for what purposes, which other entities may have access to your data and what your rights are.

For all the above, once you have reviewed and read our Data Protection Policy, it is essential that you accept it as proof of your agreement and consent.


Who collects and processes your data?

The Data Controller is the natural or legal person, of a public or private nature, or administrative body, which alone or jointly with others determines the purposes and means of the processing of personal data; in the event that the purposes and means of the processing are determined by the Law of the European Union or of the Spanish Member State.

In this case, our identification details as Data Controller are as follows: Digital Cornucopia, S.L. CIF B87833851

How can you contact us?

Postal and registered office address:

Vía Dos Castillas 33, Edif. 4, 1ª planta. 28224 Pozuelo de Alarcón, Madrid (Madrid), Spain


Who can help you with our Data Protection Policy?

Our Data Protection Officer (DPO) can be contacted as follows:



What do we do to guarantee the privacy of your data?

Digital Cornucopia, S.L. adopts the necessary organizational and technical measures to guarantee the security and privacy of your data, avoid its alteration, loss, unauthorized processing, or access, depending on the state of technology, the nature of the data stored and the risks to which it is exposed.

Among others, the following measures should be highlighted:

·         Ensure the permanent confidentiality, integrity, availability and resilience of processing systems and services.

·         Restore availability and access to personal data quickly in the event of a physical or technical incident.

·         Regularly verify, evaluate, and assess the effectiveness of the technical and organizational measures implemented to ensure the security of the processing.

·         Pseudonymize and encrypt personal data in the case of sensitive data.


Why do we want to process your data?

We need your authorization and consent to collect and process your personal data, for which reason we set out below the intended uses and purposes:

Website queries: Response to queries received through the electronic form on the website.

E-commerce: Marketing, advertising, and commercial prospecting.

How long do we keep your data?

We use your data for the time strictly necessary to fulfil the purposes indicated above. Unless there is a legal obligation or requirement, the retention periods are as follows:

Website Consultations: For a period of 1 year from the last confirmation of interest.

E-commerce: For a period of 5 years from the last confirmation of interest. The personal data provided will be kept for as long as they are necessary or relevant for the purpose for which they were collected or recorded, and as long as you do not revoke the consent given.


Why do we process your data?

The collection and processing of your data is always legitimized by one or more legal bases, which are detailed below:

Website consultations: Explicit consent of the data subject.

E-commerce: Explicit consent of the data subject, or the existence of a contractual relationship with the data subject by means of a contract or pre-contract.


To whom do we transfer your data within the European Union?

Occasionally, in order to comply with our legal obligations and our contractual commitment to you, we are faced with the obligation and need to transfer some of your data to certain categories of recipients, which we specify below:

E-commerce: Tax Administration; Banks, savings banks and rural banks. In addition to the categories of recipients to which data is transferred, we may also transfer it to advertising or organic companies that provide us with products, services or trips that we offer and/or raffle, in each case we will transfer the data solely and exclusively to the company that has transferred the product, service or trip. 

Do we make international transfers of your data outside the European Union?

We do not carry out international transfers of your data.


Where did we obtain your data from?

Website Consultations

Website users: The interested party or their legal representative

Electronic commerce

Users of the website: You or your legal representative

What types of your data do we collect and process?

Website enquiries

Website users

Identification data (Email address; Name and Surname)


Website users

Identifying data (E-mail address; Name and Surname)


What rights do you have?

The data protection regulations in force protect you in a series of rights in relation to the use we make of your data. Each one of your rights are unipersonal and non-transferable, e.g., they can only be exercised by the data subject, subject to verification of his or her identity.

Below, we indicate which rights you have:

·         Request ACCESS to your personal data

·         Request the RECTIFICATION of your data

·         Request the DELETION or erasure of your data (right to be 'forgotten')

·         LIMIT or OPPOSE our use of your data

·         Right to PORTABILITY of your data for telecommunications or internet services.

·         Right to WITHDRAW your consent at any time.

·         The right to lodge a data protection COMPLAINT with the Supervisory Authority: Spanish Data Protection Agency.

How can you exercise your rights in relation to your data?

To exercise your rights of access, rectification, deletion, limitation or opposition, portability, and withdrawal of your consent, you can do so as follows:

Website Consultations

Responsible: Digital Cornucopia, S.L.

Address: Vía Dos Castillas 33, edificio 4, planta 1, 28224 Pozuelo de Alarcón (Madrid), Spain




Responsible: Digital Cornucopia, S.L.

Address: Vía Dos Castillas 33, edificio 4, planta 1, 28224 Pozuelo de Alarcón (Madrid), Spain



How can you make a complaint?

In addition to the rights you have, if you believe that your data is not being collected or processed in accordance with current Data Protection regulations, you may file a complaint with the Supervisory Authority, whose contact details are given below:

Spanish Data Protection Agency

C/. Jorge Juan, 6. 28001, Madrid (Madrid), Spain

Email: Telephone: 912663517



Acceptance of this document indicates that you understand and accept all the clauses of our privacy policy and therefore authorize the collection and processing of your personal data under these terms. This acceptance is made by activating the 'Read and Accept' checkbox in our Privacy Policy.