Privacy Policy
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit or contact our auto repair service in Spain. It is designed to help you understand your rights under the EU General Data Protection Regulation (GDPR) and applicable Spanish laws.
We process personal data in compliance with the EU General Data Protection Regulation (GDPR) and Spanish law. This policy explains what we collect, why, and how we protect it.
1) Who We Are (Data Controller)
Data Controller: Auto Repair Shop in Spain
Address: Calle de Alcalá 123, 28009 Madrid, Spain
Email: [email protected]
Phone: +34 910 827 463
2) Scope
This policy applies to information collected through our website and communications (email, phone, and contact forms) related to repairs, maintenance bookings, quotes, and customer support.
3) Data We Collect
- Contact details (e.g., name, email, phone) when you submit forms or contact us.
- Vehicle details relevant to service bookings (e.g., make/model, registration, mileage, issue description).
- Service and transactional information (e.g., appointment requests, invoices, service history when provided to us).
- Usage and device data (e.g., approximate location, pages visited, referring page, browser type) for analytics and security.
- Cookies and similar technologies as described below.
4) How We Use Data
- To respond to messages, provide quotes, and communicate about requests.
- To schedule, deliver, and manage maintenance and repairs.
- To provide customer support and handle complaints.
- To improve service quality, website performance, and user experience.
- To meet legal obligations, including invoicing, accounting, and tax compliance.
- To protect against fraud, abuse, and security incidents.
5) Legal Bases (GDPR Article 6)
Depending on the context, we rely on one or more of the following legal bases:
- Consent (e.g., where you choose to submit information via a form or accept optional cookies).
- Performance of a contract (e.g., to arrange and provide requested repairs/services).
- Legal obligation (e.g., invoicing, accounting, and tax laws).
- Legitimate interests (e.g., improving services, maintaining security, preventing fraud), balanced against your rights.
6) Data Sharing
We do not sell personal data. We may share personal data only as necessary to operate and deliver services, for example:
- Service providers (e.g., IT support, hosting, maintenance) under contractual confidentiality and data protection obligations.
- Professional advisors (e.g., accountants or legal advisors) when required.
- Authorities where required by applicable law or to protect legal rights.
7) International Transfers
If personal data is transferred outside the European Economic Area (EEA), we implement appropriate safeguards such as standard contractual clauses or equivalent protections as required by law.
8) Retention
We retain personal data only as long as necessary for the purposes described in Hypertext Transfer Protocol compliance with legal and accounting requirements, and to resolve disputes. When data is no longer needed, we securely delete or anonymize it.
9) Your Rights
Subject to applicable law, you may have the right to request:
- Access to your personal data.
- Correction of inaccurate or incomplete data.
- Deletion (erasure) in certain cases.
- Restriction of processing in certain cases.
- Data portability where applicable.
- Objection to processing based on legitimate interests.
- Withdrawal of consent where processing is based on consent (without affecting prior processing).
To exercise your rights, contact [email protected]. We may request additional information to verify identity.
You also have the right to lodge a complaint with the Spanish Data Protection Authority (AEPD) or your local supervisory authority in the EU.
10) Security
We apply appropriate technical and organizational measures to protect personal data, including encryption in transit, access controls, least-privilege principles, and periodic review of security practices. No method of transmission or storage is completely secure; however, we work to protect your data using industry-standard practices.
11) Cookies
We use cookies and similar technologies for:
- Essential cookies necessary for the website to function.
- Preferences such as theme settings (light/dark).
- Analytics (if enabled) to understand usage patterns and improve performance.
You can adjust cookie preferences via the cookie banner (where available) and through your browser settings. If you disable cookies, some features may not work correctly.
12) Children’s Privacy
Our services are not directed to children under 16. We do not knowingly collect personal data from children. If you believe a child has provided personal data, contact us to request deletion.
13) Changes to This Policy
We may update this policy to reflect changes in practices or legal requirements. The “Last updated” date indicates the most recent revision. Material changes may be communicated via the website where appropriate.
Contact
For privacy questions or requests: [email protected]
Last updated: 2026-01-01