Legal Notice and Privacy Policy

We believe that the privacy of our customers and users should be paramount. For this reason, we apply a transparency policy to all our processes so that users are always informed and have control over their privacy.

Please read carefully each of these terms that regulate access and use, and in general, the relationship between this website and its users.

Who is responsible for the processing of your data?
In compliance with Chapter II of Law 34/2002, LSSICE, of art. 13.1a of Regulation (EU) 2016/679 and current regulations on the protection of personal data, we inform you that this website is the property of GEMS BEAUTY S.L. . (hereinafter GPS BEAUTY LIFE):

ADDRESS: C/ TRAVESERA DE GRACIA Nº 96, 3º, 2ª, 08006, BARCELONA, BARCELONA
CIF: B66866039
EMAIL: admin@gpsbeautylife.com
MERCANTILE REGISTRY: Mercantile Registry of Barcelona, ​​Volume 45589, Folio 116, Page 492856, Inscription 1.

Regulatory framework
GPS BEAUTY LIFE guarantees respect for the guarantees, rules and procedures provided for in the Legal System to protect the rights to personal and family privacy and the protection of personal data.
• Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights (LOPDGDD).
• Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 regarding the protection of natural persons with regard to the processing of personal data and the free circulation of these data (RGPD)
• Law 34/2002, of July 11, on services of the information society and electronic commerce (LSSI).

Data Protection Delegate
In accordance with the RGPD (art. 37.1), GPS BEAUTY LIFE, having taken into account the nature, scope and purposes of the treatment, as well as the risk associated with the treatment operations and after internal analysis, has reached the conclusion that that it has no legal obligation to appoint a data protection delegate.
However, to guarantee and demonstrate that the treatment is carried out under the provisions of the RGPD, protocols and accountability tools have been established, such as impact assessments, quarterly reviews, annual audits, etc.
Likewise, it has a team in charge of guaranteeing compliance with the regulations on the protection of personal data, as well as informing and advising the interested parties and cooperating with the
controlling authority.

What information are we going to request?
The collection and use of data is essential to be able to offer you our services. However, you should know that we are only going to request that information that is strictly adequate, pertinent and limited to what is necessary to offer you the services described below.
These are the data that we may request:

Contact details: name, postal address, telephone number, email, DNI, NIF or identification document, signature.
Financial and transaction data: credit card number, bank account number.
Transaction data: purchases, purchase amount, purchase date, payment method.
Technology data: time spent on the web, pages visited, language preference, IP address, device type, operating system, browser type, screen resolution.
Session data: username and password.
Navigation on this website by minors requires that they have previously obtained authorization from their parents, guardians or legal representatives, who will be considered legally responsible for any acts carried out by minors in their care.
The legal representatives of minors have full responsibility for access to Internet content and services by said minors. To do this, they have computer programs and tools to block and filter access to content or websites that are not appropriate for minors.

How we obtain your data
You can provide us with personal data through the following ways:

By accessing our website.
By registering and creating your profile.
When you use our contact form.
When you contact us via email.
When you make the purchase of any of the products through the web.
When you interact through the website allowing the use of cookies.
What will we use your data for?
GPS BEAUTY LIFE informs you that the data you voluntarily provide will be incorporated into a personal data file. This file has implemented all the security measures required by the regulations (Art. 32 RGPD).
Since May 25, 2018, to improve the protection of your data, the RGPD replaces the obligation to register files with the creation of a record of treatment activities that must offer all the information necessary to know the flow of data and the actions carried out to protect them. GPS BEAUTY LIFE has 

created this record and remains available for any consultation by the control authority.
GPS BEAUTY LIFE prepares a commercial profile based on the information you provide us. will not be taken
automated decisions based on said profile.
We may use your data for the following purposes:

Respond to your queries.
Carry out the service that you have entrusted to us.
Manage your orders.
Process payments.
Compile statistics.
Improve your experience as a web user.
Maintain web security by monitoring for malicious activity and fraud detection.
Send you information about products and/or services of interest to you.
Update our records.
Verify your identity for regulatory compliance purposes. You can opt out of receiving our electronic communications, you can request it by sending an email to admin@gpsbeautylife.com with the following subject “I do not want to receive commercial communications”.
How long will we keep your data?
The personal data that you provide us will be kept for the time necessary for the treatment purposes for which they have been collected and as long as you do not request their deletion. Specifically, the deadlines established depending on the purpose are as follows:

Respond to your queries: the data will be kept during the processing of the response.
Carry out an entrusted service: the data will be kept while said service is being managed.
Manage an order: the deadlines will be kept while said order is being managed.
Process payments: the data will be kept as long as the processing of payments is necessary.
Prepare statistics: the data will be kept indefinitely as long as the interested party does not request its deletion.
Improve the user experience of the website: these data will be kept for the period established for each cookie.
Maintain the security of the web: these data will be kept in the system indefinitely as long as the interested party does not request its deletion.
Send you information: these will be kept in the system indefinitely as long as the interested party does not request their deletion.
Update our records: this data will be kept in the system indefinitely as long as the interested party does not request its deletion.
Verify your identity for regulatory compliance purposes: these data will be kept in the system indefinitely as long as the interested party does not request its deletion.
We may keep your personal information even after completing this need if necessary to comply with any legal obligation, the data would remain blocked for the time necessary to comply with the period established by the Law to then proceed to its elimination.

What is the legitimacy for the treatment of your data?

The legal basis for the processing of your data is based on article 6.1b of the RGPD when we manage the service that you have entrusted to us, that is, when the data processing is necessary for the execution of a contract.
The legal basis for the processing of your data is based on obtaining your consent, in accordance with article 6.1a of the RGPD for the rest of the purposes.
Recipients
GPS BEAUTY LIFE will formalize, in each case, the confidentiality and processing contracts that are necessary to perform the service that you have entrusted to us.
GPS BEAUTY LIFE checks that all the treatment managers with whom it works comply with its security policies and the technical measures imposed by the regulations and follow its instructions in the provision and correct development of the services for which they are contracted.
Specifically, the external services that may have access to your data under the conditions set forth above are the following:

Labor, tax or accounting advice service.
Courier services.
Computer maintenance service.
Hosting service.
Software technical support service.
Website maintenance service.
Data storage service.
Advisory service for the protection of personal data.
It is possible that some of these services are located in a country outside the European Union, in which case you will only have access to your data when it is included in the list of countries with an adequate level of personal data protection.
GPS BEAUTY LIFE may share your information with the following organizations located in the USA. In order to guarantee the level of protection required by the RGPD, these organizations have declared their adherence to the Privacy Shield Principles to the United States Department of Commerce. For more information on the Privacy Shield principles, click HERE.

Dropbox, which provides you with a data storage service.
GPS BEAUTY LIFE will not rent or sell personal information or share your personal information.