Privacy Policy
This privacy policy informs you about the type, scope and purpose for the processing of your personal data by us.
Details of responsible party
Get Unreal S.L.
Carrer de Reding 15
Tarragona 43001
SPAIN
CIF: B55762678
General information about the processing of data
Scope of the processing of personal data
We process your personal data only in so far as necessary to provide our contents, services and a functioning website. User data is only processed once your consent is obtained. An exception is made only in such cases where a previous consent is not possible and where processing of such data is permitted through legal provisions.
We process personal data (e.g. name, address and email-address) and contractual data (e.g. provided services, payment information) in order to fulfill our contractual obligations and services in accordance with Article 6, paragraph 1(b) of the GDPR.
Legal basis for the processing of data
If we obtain your consent for processing operations of your data, then Article 6, paragraph 1(a) of thew GDPR is the legal basis for this processing. When the processing of data is required to fulfill a contract with a concerned party, then Article 6, paragraph 1(b) of the GDPR is the legal basis for this processing. This also applies to processing operations which are required to carry out pre-contractual measures. If processing of personal data is required to fulfill legal obligations which our company is subject to, then Article 6, paragraph 1(c) of the GDPR is the legal basis for this processing.
In the case that vital interests of a concerned party or another natural person require the processing of personal data, then Article 6, paragraph 1(d) of the GDPR is the legal basis for this processing. If the processing of data is required to protect a legitimate interest of our company or a third party and if said interests outweigh the interests, fundamental rights and fundamental freedoms of the concerned party, then Article 6, paragraph 1(f) of the GDPR is the legal basis for this processing.
Deletion of data and duration of data storage
Personal data of a concerned party will be deleted or blocked when the purpose of its storage ceases to apply. Storage may continue if stipulated by European or national legislation in federal regulations, laws or other provisions which we as the responsible party are subject to. Unless further storage is required to conclude or fulfill a contract, data will also be deleted or blocked if a stipulated storage period of aforementioned standards expires.
Cooperation with processors and third parties
If we transmit your data to other persons and companies (processors or third parties) or otherwise grant them access to process the data, we only do so on the basis of a legal permission, your consent, a legal obligation, for the purpose of executing contractual relationship, or if we have a legitimate interest in the transmission (e.g. for the purposes of providing customer service etc.). If we engage third parties for the processing of data on such grounds then Article 28 of the GDPR is the legal basis for such actions.
Data security
Our web site uses SSL (Secure Socket Layer) in conjunction with 256-bit encryption. If the browser used to visit our web site does not support 256-bit encryption, 128-bit technology will be applied instead. Whether a page of our website is transmitted with encryption can be determined by the presence of a key or closed padlock in the lower status bar of the browser. We apply suitable technological and organizational safety measures to protect data against accidental or intentional manipulations, partial or complete loss, destruction or unauthorized access by third parties. Our safety measures are continuously improved according to technological advancements.
Company profiles on social media
We maintain company profiles on social networks and platforms (including Facebook, Instagram, Google and WhatsApp) to communicate with customers, potential customers and users in order to inform them about our services. Terms and conditions and data processing regulations of the respective operators apply when accessing their networks and platforms.
Unless otherwise indicated in our data protection declaration, we process the data of users who interact with us on social networks and platforms, e.g. by posting or sending us messages.
Access to our web site and generation of log files
When accessing our website https://get.unreal.today, the user’s browser automatically sends information to the server of our website. This information is temporally stored in a so called log file. The following information is mechanically collected and stored until it is automatically deleted:
- type and version of the browser
- details of the operating system
- the user’s internet service provider
- the user’s IP address
- the date and time of the visit
- the website from which the user came (referrer URL)
- the webpages on our site visited
- protocol (GET or POST)
- error and status codes
The stored data is used for the following purposes:
- to ensure a smooth access to the website
- to ensure a comfortable use of our website
- to evaluate the security and stability of the system
- for further administrative purposes
The basis for storing this information is Legitimate Interest (Article 6 paragraph 1(f) of the GDPR) . The collected data is under no circumstances used to draw conclusions as to the user as an individual.
Usage of cookies
General information
We use cookies on our website, which are small files that contain certain information about you, such as your browser, location data, or IP address. Cookies do not harm your device and do not contain viruses or other malware.
The use of cookies helps us to make our website more user-friendly, efficient, and secure, allowing us, for example, to determine which pages you have visited on our website, to display our website in different languages or to offer a booking function. We only store and use cookies for as long as is necessary. When you close your browser, session cookies are automatically deleted. We also use temporary cookies to temporarily store information you submit to our website. If you leave our website and return later to make use of our services, those entries are restored so you do not need to enter them again. We also use cookies to gather statistical data about the usage of our website in order to optimize our service. Temporary cookies are automatically deleted after a certain period. When visiting our website, users are automatically informed about our usage of cookies and directed to this data protection declaration. The legal basis for the use of cookies as set out herein is Article 6 paragraph 1(b) of the GDPR, insofar as these cookies are used to collect data to initiate or process contractual relationships. If the processing does not serve to initiate or process a contract, our legitimate interest lies in improving the functionality of our website. The legal basis is then Article 6 paragraph 1(f) of the GDPR.
Third-party cookies
Our website may also use cookies from companies with whom we cooperate for the purpose of advertising, analyzing, or improving the features of our website. Please refer to the information below under the headings “Tracking tools” and “Social media” for details, in particular for the legal basis and purpose of such third-party collection and processing of data collected through cookies.
Disabling cookies
You can refuse the use of cookies by changing the settings on your browser. You can also use your browser to delete cookies that have already been stored. However, the steps and measures required vary, depending on the browser in use. For any questions, please use the help function or consult the documentation for the browser or contact its maker for support. It is important to note that if the installation of cookies is prevented or restricted, not all the functions on our site may be usable and access to some parts of our web site may be restricted. In particular, you will not be able to complete any bookings or make any purchases on our web site.
User-initiated contact
If you contact us via email, social media or you complete and submit any of the contact forms on our website, the data you provide will be used for the purpose of processing your request. We must have this data in order to process and answer your enquiry; otherwise we will not be able to answer it in full or at all. This also establishes our legitimate interest for collecting and processing of the acquired data in accordance with Article 6 paragraph 1(f) of the GDPR. If the purpose of making contact with us is to initiate, request or conclude a contract, then the legal basis for this data processing is Article 6 paragraph 1(b) of the GDPR. Personal data will be deleted once we have fully answered the inquiry and there is no further legal obligation to store said data, such as if a contract resulted from the enquiry.
Tracking tools
We use the following tracking tools in accordance with Article 6 paragraph 1(f) of the GDPR. We want to ensure the adequate configuration and continuous optimisation of our website. We furthermore use those tools to gather statistical data about the usage of our website in order to optimise our service for the user. Those interests are considered justified in accordance with the aforementioned regulation. The respective categories and purposes for the processing of data follow below in the corresponding paragraphs:
Google Analytics
We use Google Analytics on our website, a service provided by Google Inc. , 1600 Amphitheatre Parkway, Mountain View, CA 94043 (hereinafter: Google). Through its participation in the EU-US Privacy Shield program, Google guarantees that it will follow the EU’s data protection regulations if it processes EU sourced data in the United States. For more information refer to: https://www.privacyshield.gov. The Google Analytics service is used to analyze how our website is used. The legal basis is Article 6 paragraph 1(f) of the GDPR. Our legitimate interest lies in the analysis, optimisation, and economic operation of our site.
Usage and user-related information related to your visits to our web site, such as browser type and version, operating system, referrer-url, IP address and time of server request may be transmitted to a Google server in the United States and stored there. The data collected in this way is in turn used by Google to provide us with an evaluation of visits to our website and what visitors do once there. This data can also be used to provide other services related to the use of our website and of the internet in general. Google states that it will not connect your IP address to other data. In addition, Google provides further information with regard to its data protection practices at the web addresses below, which includes options you can exercise to prevent such use of your data.
Google also offers an opt-out add-on for most popular browsers which gives offers you further control over the data that Google collects when you visit our website. The add-on informs Google Analytics that no information about the website visit should be transmitted to Google Analytics. Note that this does not prevent information from being transmitted to us or to other web analytics services we may use as detailed herein. Alternatively, especially when using a mobile device, the link above may be used to put a opt-out-cookie in the used browser, which inhibits further collection of data via our website.
Social Media
We use plug-ins from the following social media platforms:
The legal basis is Article 6 paragraph 1(f) of the GDPR. Our legitimate interest lies in improving the quality of our website and the quality of our service to our customers as well as to support our marketing efforts to grow our business. The responsibility to comply with data protection regulations lies with the corresponding service providers.
Below are additional details about these platforms and the processing of your data by the companies that provide the platforms. All companies are active members of the EU-US Privacy Shield program, which guarantees that they will follow the EU’s data protection regulations when processing EU sourced data in the United States. For more information refer to: https://www.privacyshield.gov.
Facebook.com is a service provided by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. In the EU, this service is also operated by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, hereinafter both referred to as “Facebook.” Information about the collection and use of data as well as your rights and protection options in Facebook’s privacy policy found at www.facebook.com/policy.php.
The Instagram service is being offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA (“Instagram”). Information about the collection and use of data as well as your rights and protection options in Instagram’s privacy policy can be found at instagram.com/about/legal/privacy.
LinkedIn is a service provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin Ireland. (“LinkedIn”) Information about the collection and use of data as well as your rights and protection options in LinkedIn’s privacy policy can be found at www.linkedin.com/legal/privacy-policy.
The Twitter service is operated by Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA (“Twitter”). Information about the collection and use of data as well as your rights and protection options in Twitter’s privacy policy can be found at https://twitter.com/privacy.
WhatsApp is a service operated by WhatsApp Inc., 1601 Willow Road, Menlo Park, California 94025, USA (“WhatsApp”).
Information about the collection and use of data as well as your rights and protection options in WhatsApp’s privacy policy can be found at www.whatsapp.com/legal/privacy-policy-eea
Third Party Services
We use certain third party services in order to be able to carry out transactions on our web site, such as creating bookings and processing payments.
Redsys
Services to enable payment via bank transfer, credit and debit cards, SEPA direct debit, direct banking, and Bizum are provided by Redsys Servicios de Procesamiento, S.L (CIF B-85955367), Francisco Sancha 12, Madrid 28034 (“RedSys”). Redsys collects, stores and processes personal data according to their terms of use and is responsible for the lawful handling of said data. Further information about their privacy policy can be found at www.redsys.es/en/legal/20200224_politica-privacidad_ENG.pdf
Your rights
If we process your data, you may exercise the following rights:
- You have the right to request details about your personal data that we process, how and for what purpose we process it, and the details of other parties to whom your data has been transmitted.
- You have the right to request that we modify any inaccurate personal data.
- You have the right to request that we delete your personal data, when this is possible (for example, by legal imperative);
- You have the right to ask us to limit the processing of your personal data when the accuracy, legality or need to process the data is doubtful, in which case, we may keep them for the exercise or defense of claims.
- You have the right to object to the processing of your personal data, when the legal basis that enables us to process those indicated is our legitimate interest. If you so object, Get Unreal will stop processing your data unless it is necessary for the defense of claims or for compliance with its legal obligations.
- You have the right to the portability of your data, when the legal basis that enables us to process it is the existence of a contractual relationship or your consent.
- You have the right to withdraw your prior consent to the processing of your data by us.
- You have the right to lodge a complaint with a supervisory authority which is the Spanish Agency for Data Protection, C / Jorge Juan, 6, 2800
To contact us in relation to any your rights set out above, please contact us via email at privacy@get.unreal.today. Alternatively, please contact us in writing at the address set out at the beginning of this policy.