WeDive is the organization responsible for the processing of your personal data obtained through this website, or directly from our customers, in the contact for booking, as well as for filling out contact forms or suggestions. The responsible organization can be contacted through the following e-mail address: firstname.lastname@example.org
What personal data is collected and why
Pursuant to the General Data Protection Regulation (GDPR), Personal Data is defined as any information relating to an identified or identifiable natural person, being an identifiable natural person who can be identified, directly or indirectly, namely by reference to a number identification or one or more specific elements of their physical, physiological, psychological, economic, cultural or social identity.
Personal data is collected and processed by WeDive, only when we are contacted directly by our customers, either by filling out the contact form or suggestions, on this website or in the store or by telephone or email, for diving or course reservations, budget requests, or any other contact of the client’s initiative.
The collected data will be defined as the essential data required to allow the reservation of a place on a course or a dive. In addition, this data will ensure that WeDive provides the very best services in order to fulfill the customers requirements. The data includes the customer’s name, e-mail address, telephone contact, tax identification number and data related to the payment method.
What is the purpose of the data collected and how can it be used?
The data gathered is utilized in the context of the preparation and execution of service contracts between WeDive and its customers and are processed in compliance with contractual obligations and in compliance with the law.
If you are asked for consent, and the consent is granted, such data will be stored and processed within the scope described in the respective declaration of consent to use. For example, the consent granted for use for promotional purposes (invitations to events, promotions, marketing).
The personal data which we collect will be subject to computer processing and stored in databases, with the legislation in force on data protection and the rules on information security being strictly complied with.
We make backup copies at the server level, encrypted, and within the parameters that allow recovery due to computer attack, programming errors, misuse of technological means or accidental deletion.
The personal data you have provided to us will be stored in the European Union, and may be transferred outside the European Union only to countries with the same type of protection required by the regulations in force.
With whom is your data shared and from which third parties do we receive data?
We do not share your data with third parties in order to reveal your personal information, such as email, name, etc. The only exceptions to this rule are for partners with whom we have to share data in order to provide Reserve Online services. Please, see below:
When making reservations or registering on our website, as appropriate, you may be asked to enter: name, email address, mailing address, telephone number, credit card information, social security number, gender, level certification, experience level, height, weight, footwear or other clothing size, hotel information or other information requested by the companies that use our service. You can, however, visit and browse our websites and offers and not enter any personally identifiable information.
The data subject consents that WeDive, in the scope of its activity, may resort to a subcontractor that processes its data on our behalf.
When this happens, we will take the appropriate measures, in order to ensure that these subcontractors, sometimes inserted in a certain business group, present sufficient and adequate guarantees for the execution of technical and organizational measures and that they will only act according to our instructions.
When visitors leave comments on the site, the data in the comments form, as well as the IP address and the user agent of the browser, are saved to help with spam detection.
Storage time of personal data
The period of time during which data is stored and preserved varies according to the purpose for which the information is processed. There are legal requirements that oblige us to retain data for a minimum period of time.
If there is no legal conservation period, the data will be stored and preserved only for the minimum period necessary for the purposes that motivated its collection and subsequent treatment, after which they will be eliminated from our database.
The personal data provided to us, with your consent, for promotional and marketing purposes, will be kept until the moment the holder requests the elimination of them, or when they cease to serve the purposes for which they were provided
Your rights over your personal data
We guarantee the exercise of your rights to:
Access – you have the right to request, amongst others, confirmation that your personal data are or are not subject to treatment and to access your data, in accordance with article #15 of the GDPR.
Rectification – you are entitled, without undue delay, to the rectification of inaccurate personal data concerning you and that incomplete data be completed.
Right to cancel – you can request, in certain circumstances, that your personal data be deleted from our records, without undue delay.
Opposition – you are entitled to oppose certain types of data processing, such as processing for the purpose of direct marketing.
Right to Portability – you have the right to transfer your personal data that we keep to another organizations or to receive it in a structured format, in common use and automatic reading.
Right to Limitation of Treatment – when you want, for example, to challenge the accuracy of your personal data for a period of time that allows us to verify its accuracy.
For the purpose of exercising these rights, please send an email to email@example.com. A form will be sent to you so that you can exercise your rights as a data subject. Please fill in all the fields and send it to the referred email. After receiving the form successfully, WeDive undertakes to guarantee the exercise of the right within the legally established period.
Information and communications will be sent free of charge.
Note, however, that if the requests submitted by the data subject are manifestly unfounded or excessive, namely due to their repetitive nature, we may, under the terms of the General Data Protection Regulation:
- a) Demand the payment of a reasonable fee taking into account the administrative costs of providing the information or communication, or taking the requested measures;
- b) Refuse to proceed with the request, in which case we will demonstrate the unfounded or excessive nature of the request.
If you leave a comment on our website, you can choose to save your name, email address and website in cookies. This is for your convenience so you don’t have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit the login page, a temporary cookie will be set to determine whether your browser accepts cookies. This cookie does not contain any personal data and will be deleted when you close your browser.
When you log in, some cookies will be set up to store your session information and your screen display choices. Login cookies last for one year. If you select “Remember me”, your session will persist for two weeks. Upon logging out, login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie does not include personal data, it only indicates the content ID of the article you just edited. Expires after 1 day.
Who can I contact in case of doubt?
If you have any questions or concerns about how we collect and treat your personal data, you can contact firstname.lastname@example.org