At CoverManager we care about your privacy. Therefore, and in compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on data protection of natural persons and Organic Law 3/2018 of 5 December on the Protection of Personal Data and Guarantees of Digital Rights, we would like to provide you with more information about the processing of the data that we carry out.
Domain name: covermanager.com
Company name: Restaurant Booking & Distribution Services S.L.
Trade Name: CoverManager
Registered Office: Avenida de la Constitución no24 cuarta planta (41001, Sevilla)
Data protection officer: Víctor López
As the party responsible for the processing of your data, we will only process them for the purpose of managing and controlling contractual relations with our customers, for answering queries made by our customers through our contact email, for commercial prospecting activities regarding our products and services, and for the activities involved in selection processes for the recruitment of candidates for jobs. We respect in all cases the principle of data minimization, so the treatment will always be appropriate, proportional and limited to what is strictly necessary. Profiling will not be carried out in order to make automated decisions.
During the booking process on our customer's websites, CoverManager receives personal data under a data processor contract. In order to avoid duplicate bookings, our customers authorise us to cross-reference data (only the telephone number used to make the booking).
The personal data provided by our customers will be kept for the duration of the contractual relationship or, where appropriate, for the minimum number of years necessary to comply with the company's legal obligations, and always for the time strictly necessary for the purpose for which they have been collected. All of this as long as the right to suppression, limitation or cancellation of the same is not exercised.
Where we act as data processor, we will retain data in accordance with the instructions of the various data controllers for the time necessary to fulfil the purposes consented to by the data subjects in the various privacy policies of our clients.
The legal basis for data processing is unambiguous and express consent and the fulfilment of contractual and legal obligations.
Unless legally obliged to do so and in the cases provided for by the data protection regulations in force at any given time, under no circumstances will we pass on your data to third parties for processing without informing you in advance and requesting your consent.
In order to provide its services, CoverManager relies on a number of service providers (legal assistance, auditors, document destruction, e-mail manager) to facilitate its work. Due to the efficiency of the service, some of these service providers are located in territories outside the European Economic Area which do not provide a level of data protection equivalent to that of the European Union. In such cases, we inform you that we transfer your data with adequate guarantees and always maintaining the security of your data, as we use the most appropriate tools for the international transfer of data, such as Standard Contractual Clauses or any other relevant complementary measures. In particular, we use the following providers outside the EEA:
At any time, you may request the exercise of your rights by writing to the registered office of CoverManager or via email to firstname.lastname@example.org, including in both cases a photocopy of your ID card or other equivalent document proving your identity in order to ensure that the rights are exercised by the interested parties.
In accordance with current data protection legislation, the rights that you can exercise against CoverManager are:
The right to request access to personal data to obtain more information about the data we process.
Right to request rectification of inaccurate or incomplete data
Right to request deletion when, among other reasons, the data are no longer necessary for the purposes for which they were collected
The right to object to the processing, in which case CoverManager will stop processing the data, except for compelling legitimate reasons or for the exercise or defence of possible claims.
Right to data portability: in case you want your data to be processed by another entity, CoverManager will facilitate the portability of your data to the new controller if applicable.
The right to limit their processing, in certain circumstances provided for in Article 18 GDPR, in which case they will only be kept by CoverManager for the defence of possible claims.
Right to withdraw consent: where consent has been given for a specific purpose, you have the right to withdraw consent at any time, without affecting the lawfulness of the processing based on consent prior to its withdrawal.
At any time, if the data subject considers that his or her data is not being treated in an appropriate manner or as required by the data subject, he or she may lodge a complaint with CoverManager's Data Protection Officer or with the Spanish Data Protection Agency (www.agpd.es).
All data requested through the website are mandatory, as they are necessary for the provision of an optimal service to the user. In the event that all the data is not provided, the provider does not guarantee that the information and services provided will be completely tailored to your needs.
Similarly, the user may unsubscribe from any of the subscription services provided by clicking on the unsubscribe section of all e-mails sent by the provider.
The provider has adopted all the technical and organisational measures necessary to guarantee the security and integrity of the personal data it processes, as well as to prevent their loss, alteration and/or access by unauthorised third parties.
CoverManager maintains the highest levels of security to protect your personal data against loss, destruction, accidental damage and unauthorised or unlawful access, processing or disclosure, such as firewalls, access control procedures and cryptographic mechanisms. To achieve these purposes, the user/customer agrees that the provider obtains data for the purposes of the corresponding authentication of access controls.
CoverManager will carry out a risk assessment of the processing, taking into account the state of the art, the costs of implementation, and the nature, scope, context and purposes of the processing, as well as the risks of varying likelihood and severity to the rights and freedoms of individuals.
In order to ensure an adequate level of security, based on the assessment carried out, the following security measures, among others, shall be applied where appropriate:
Pseudonymisation and encryption of personal data, where appropriate.
Ability to ensure the continued confidentiality, integrity, availability and resilience of processing systems and services.
Ability to restore availability and access to personal data quickly in the event of a physical or technical incident.
Existence of a process of regular verification, evaluation and assessment of the effectiveness of technical and organisational measures to ensure the security of processing.
Periodic assessment of the risk of accidental or unlawful destruction, loss or alteration of, or unauthorised disclosure of or access to, personal data transmitted, stored or otherwise processed.
Measures to ensure that any person acting under CoverManager's authority has access to personal data only in accordance with CoverManager's instructions.
CoverManager undertakes to treat personal data that may be collected with absolute confidentiality, pledging to maintain secrecy regarding them and guaranteeing the duty to protect them by adopting all necessary measures to prevent their alteration, loss and unauthorized access or treatment, in accordance with the provisions of applicable law.
The only person responsible for filling in the forms with false, inaccurate, incomplete or out-of-date data will be the user who enters them.