Privacy Policy

Last updated: October 31, 2025

 

1. Data Controller

 

The data controller responsible for the personal data collected through this website is:

  • Owner: Mónica Conde Martinez

  • NIF (Spanish Tax ID): 43.738.404V

  • Registered Address: c/Coll de Condreu 5, 17172 Les Planes d'Hostoles (Girona), Spain.

  • Email: info@MonicaConde.com

  • Website: www.MonicaConde.com

For Mónica Conde Martinez (hereinafter, "the Controller"), your privacy and the security of your data are paramount. We are committed to processing your personal data lawfully, fairly, and transparently.

 

2. What personal data do we collect?

 

We collect your personal data at different times:

  • Identification and Contact Data: Name, surname, shipping and billing address, email address, phone number, and NIF (the latter is necessary for issuing legal invoices in Spain).

  • Transaction Data: Information about orders placed, payments (we never store your full card details), and returns.

  • Browsing Data (Cookies): IP address, device type, browser, pages visited, and time spent on site. You can find more information in our [link to your Cookie Policy].

  • Communication Data: Any information you provide to us via the contact form or email.

 

3. For what purpose do we process your data?

 

We process your data for the following purposes and on the following legal bases:

  1. To manage your purchase (Legal basis: Performance of a contract):

    • To process your order, prepare the artwork (original or reproduction), and manage its shipment to the specified address.

    • To manage payment for the products.

    • To issue the corresponding legal invoice.

    • To manage potential returns or warranty claims.

  2. To respond to your inquiries (Legal basis: Consent):

    • To answer questions or requests for information sent via our email or contact form.

  3. For the operation of the Website (Legal basis: Legitimate interest and Consent):

    • To ensure the proper functioning and security of the online store (Necessary cookies).

    • To perform anonymous statistical analysis of website usage to improve our services (Analytics cookies, if you accept them).

  4. To comply with legal obligations (Legal basis: Legal obligation):

    • To retain your invoices and transaction data for the periods legally required by Spanish tax and commercial regulations.

 

4. How long do we keep your data?

 

We will only keep your personal data for the time necessary to fulfill the purpose for which it was collected:

  • Customer Data (Orders and Billing): This data will be kept for the duration of the contractual relationship and, subsequently, for the periods established by law (generally, a minimum of 6 years for tax and commercial purposes).

  • Inquiry Data: This data will be kept only for the time necessary to manage and resolve the inquiry.

  • Browsing Data (Cookies): The retention period varies depending on the type of cookie, as detailed in our Cookie Policy.

 

5. Who do we share your data with?

 

We do not sell or rent your personal data to anyone.

We only share your data with third parties (data processors) who help us provide our services, always under our control and with a legal obligation to protect your data:

  • Shopify Inc.: This is the platform that hosts our online store. Shopify processes data to enable the store, cart, and payment process to function. Shopify may transfer data internationally (outside the EU), but it does so under the Standard Contractual Clauses approved by the European Commission, ensuring an adequate level of protection.

  • Payment Gateways (Shopify Payments / Stripe): To process the payment for your order. Important: We do not have access to your full credit card details; these are managed directly by the secure payment gateway.

  • Transport and Logistics Companies: (e.g., Correos, MRW, UPS, etc.) We need to share your name, address, and phone number to be able to deliver your order.

  • Legal and Tax Advisors: To comply with our accounting and tax obligations.

 

6. What are your rights?

 

As the data subject, the law (GDPR) grants you the following rights:

  • Right of Access: To know what data we are processing about you.

  • Right to Rectification: To request the correction of inaccurate or incomplete data.

  • Right to Erasure (Right to be forgotten): To request that we delete your data when it is no longer necessary for the purposes for which it was collected.

  • Right to Restriction of Processing: To request that we temporarily limit the processing of your data in certain circumstances.

  • Right to Object: To object to the processing of your data based on your particular situation.

  • Right to Data Portability: To receive your data in a structured format and have it transmitted to another controller.

  • Right to Withdraw Consent: At any time, for those purposes that were based on your consent (like responding to an inquiry).

 

7. How can you exercise your rights?

 

You can exercise any of these rights free of charge by sending an email to info@MonicaConde.com, with the subject line "Privacy Rights Request" and attaching a copy of your ID card (DNI) or equivalent identification document to verify your identity.

If you feel your rights have not been properly addressed, you have the right to file a complaint with the Spanish Data Protection Agency (AEPD).

 

8. Security Measures

 

The Controller has adopted all necessary technical and organizational measures to guarantee the security of your personal data and prevent its alteration, loss, or unauthorized access or processing. This Website uses an SSL (Secure Socket Layer) certificate, which ensures the encrypted transmission of your data.

 

9. Changes to the Privacy Policy

 

We reserve the right to modify this policy to adapt it to new legislation or case law. Any changes will be published on this Website, and the "Last updated" date at the top of the document will be amended accordingly.