PRIVACY POLICY

Our Privacy Policy is based on Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016, known as the General Data Protection Regulation (GDPR).

Our contact details:

  • Four Penguins Ventures, S.L. (B88238647)
  • Address: Palangreros 41, 29640 Fuengirola, Spain
  • Telephone: +34661304614
  • Email: hola@conversorsepa.es
  • Data Protection Officer: You can contact our Data Protection Officer via email at alberto@conversorsepa.es.

What do we use personal data for?

To provide our services

As controllers, we use our Users’ identifying personal data to provide our services.

The data generated by Users on ConversorSEPA, as well as all associated data, is stored on our hosting platform (Digital Ocean). Part of our service involves storing these data as processors.

Likewise, as processors, we use the credentials (usually API keys) of payment gateways and other integrated applications that the User provides to us in order to access these systems and extract or deposit the necessary information to provide the service.

ConversorSEPA also offers the User the option to choose how to collect their fees. For this purpose, Four Penguins may establish agreements with partner organisations, such as payment service providers, and therefore these third parties also need access to the data, under the appropriate safeguards.

On which legal grounds do we process personal data?

We process personal data whenever at least one of the following conditions is met:

  • The data subject has given us their consent.
  • It is necessary for providing our services to the User.
  • It is necessary for compliance with our legal obligations.
  • To inform the user of any updates related to the service.

Who might receive personal data?

We only share the personal data of our Users with our technology providers (for example, to maintain our systems) and with partner organisations that provide services to ConversorSEPA Users (such as payment service providers, allowing the User to collect their fees via bank transfer, direct debit, or credit card).

In cases where we need to transfer personal data to recipients located in countries outside the EU or in countries that do not ensure an equivalent level of protection as the GDPR requires, we only do so with the data subject’s consent and under the appropriate safeguards.

How long do we keep the data?

We retain personal data for the duration of our services, and afterwards for as long as we consider necessary to be able to justify and/or account for our management. This may be linked to statutory limitation periods or to potential requests from competent authorities.

What security measures do we apply?

We apply technical and organisational measures to ensure an adequate level of security in accordance with the applicable regulations.

What rights do you have and how can you exercise them?

You may request access to your personal data, its rectification or erasure, portability, or restriction of its processing, or you may object to the processing by contacting ConversorSEPA (using the contact details provided at the start of this Privacy Policy). For processing based on consent, you can withdraw your consent at any time. You also have the right to lodge a complaint with the Spanish Data Protection Agency.

Review and update

This Privacy Policy is reviewed and updated at least once a year.