General Data Protection Regulation (GDPR)

Balearic360 is committed to complying with the General Data Protection Regulation (GDPR) and protecting the privacy rights of our users.

GDPR Overview

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. The GDPR is an important component of EU privacy law and of human rights law.

The regulation contains provisions and requirements related to the processing of personal data of individuals who reside in the European Union and the European Economic Area.

Key GDPR Principles

  • Lawfulness, fairness and transparency: Personal data must be processed lawfully, fairly and in a transparent manner in relation to the data subject.
  • Purpose limitation: Personal data must be collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes.
  • Data minimization: Personal data must be adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
  • Accuracy: Personal data must be accurate and, where necessary, kept up to date.
  • Storage limitation: Personal data must be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed.
  • Integrity and confidentiality: Personal data must be processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage.

Your Rights Under GDPR

The GDPR provides individuals with the following key rights:

  • Right to Information: You have the right to be informed about the collection and use of your personal data.
  • Right of Access: You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, access to the personal data.
  • Right to Rectification: You have the right to obtain from the controller the rectification of inaccurate personal data concerning you.
  • Right to Erasure: You have the right to obtain from the controller the erasure of personal data concerning you where certain conditions apply.
  • Right to Restrict Processing: You have the right to obtain from the controller the restriction of processing where certain conditions apply.
  • Right to Data Portability: You have the right to receive the personal data concerning you, which you have provided to a controller, in a structured, commonly used and machine-readable format.
  • Right to Object: You have the right to object, on grounds relating to your particular situation, at any time, to processing of personal data concerning you.

How We Protect Your Data

Balearic360 implements various security measures to protect your personal data:

  • Encryption of data in transit and at rest
  • Regular security assessments and audits
  • Access controls and authentication measures
  • Employee training on data protection
  • Incident response procedures
  • Data backup and recovery procedures

Data Processing Activities

We process personal data for the following purposes:

  • Providing and improving our services
  • User authentication and account management
  • Communication with users
  • Analytics and performance monitoring
  • Marketing and promotional activities (with consent)
  • Legal compliance and dispute resolution

International Data Transfers

When transferring personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or ensuring the recipient country provides adequate protection.

Data Breach Policy

In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible.

We will also notify affected individuals without undue delay where the breach is likely to result in a high risk to their rights and freedoms.

Contact Information

If you have any questions about our GDPR compliance or wish to exercise your rights, please contact us at info@balearic360.com.

Data Protection Officer: For specific data protection inquiries, please contact our Data Protection Officer at dpo@balearic360.com