We hereby inform you that this service is intended exclusively for the provision of the services described below. In accordance with our information security and privacy policies, you should not share confidential documents or personal information that is not related to the purpose of this tool. Any sensitive or confidential data that does not meet this purpose will be deleted immediately in order to protect your privacy and the integrity of our systems.
By initiating or continuing this conversation for the management of your orders, you confirm that you have been informed about how we process your personal data. Further information about our Privacy Policy is available below.
BASIC INFORMATION – PRIVACY POLICY
Moeve Virtual Assistant |
| Data Controller |
- Corporate name: Moeve, S.A. (hereinafter, “Moeve”)
- Registered office: Paseo de la Castellana 259 A, Madrid (Spain) - Tax ID number: A28003119
- Email address: dpo@moeveglobal.com
|
Purposes of Processing and
Legal Basis |
- Purpose 1: To provide, manage, monitor and maintain the requested contractual or commercial relationship.
- Purpose 2: Provision of the Customer Service.
- Purpose 3: Fraud prevention.
- Purpose 4: Compliance with the regulations applicable to Moeve.
|
| Data Subject Rights |
Where applicable, the data subject may exercise the rights of access, rectification or erasure, restriction of processing, objection, data portability, and the right not to be subject to automated individual decision-making, through the following channels:
- By post: Paseo de la Castellana, 259 A, 28046 Madrid (Spain)
- By email: derechos.arco@moeveglobal.com |
| Additional Information |
For further information, please refer below to the supplementary Privacy Policy.
Likewise, by accepting this Privacy Policy, the data subject acknowledges and agrees to the Terms and Conditions applicable to the use of the “WhatsApp Business” service. For further information, please refer to WhatsApp’s Privacy Policy at: https://www.whatsapp.com |
1. WHO IS THE DATA CONTROLLER?
In accordance with the applicable legislation on the protection of personal data, with particular attention to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (hereinafter, the “GDPR”), and Organic Law 3/2018 of 5 December on the Protection of Personal Data and the Guarantee of Digital Rights (hereinafter, the “LOPDGDD”), data subjects are hereby informed that their personal data will be processed by:
Moeve, S.A. (hereinafter, “MOEVE”)
Tax ID number: A28003119
Registered office: Paseo de la Castellana, 259 A, 28046 Madrid (Spain)
Data Protection Officer: dpo@moeveglobal.com
2. WHAT DATA ARE PROCESSED, FOR WHAT PURPOSES AND ON WHAT LEGAL BASIS?
The personal data provided within the framework of the Virtual Assistant service will be processed for the following purposes:
- PURPOSE 1 – Manage, process, monitor and maintain the requested contractual or commercial relationship.
- Purpose Description: The personal data provided by the data subject may be processed in order to handle, manage and process their requests related to Moeve products, including: (i) receipt and tracking of orders, (ii) management of product availability, (iii) communication regarding delivery or collection times, and/or (iv) resolution of incidents related to the order.
- Legal Basis: Article 6.1(b) GDPR – Processing necessary for the performance of a contract to which the data subject is a party, or for the implementation of pre-contractual measures at the data subject’s request.
- Data processed for third purpose: Identification and contact data (first and last name, telephone number and/or email address, CIF/NIF) and order details and order history.
- PURPOSE 2 – Provision of the customer service.
- Purpose Description: Personal data may be processed in order to handle and manage enquiries, incidents or requests submitted by the data subject.
- Legal Basis: Article 6.1(b) GDPR – Performance of a contract or implementation of pre-contractual measures at the request of the data subject.
- Data processed for the third purpose: Identification and contact data (first and last name, CIF, email address and/or telephone number) and order history.
- PURPOSE 3 – Fraud prevention.
- Purpose Description: Management and development of control and fraud prevention activities aimed at preventing unlawful actions within the framework of the provision of Moeve’s services.
- Legal Basis: Article 6.1(f) GDPR – Legitimate interest of MOEVE in protecting its operations and customers against fraudulent activities. For further information regarding the legitimate interest relied upon by MOEVE, the data subject may contact our Data Protection Officer at the following email address: dpo@moeveglobal.com.
- Data processed for the third purpose: Identification and contact data: first and last name, email address and telephone number.
- PURPOSE 4 – Cumplimiento de la normativa aplicable.
- Purpose Description: Compliance with the legal obligations applicable to MOEVE under any applicable legal framework.
- Legal Basis: Article 6.1(c) GDPR – Compliance with a legal obligation applicable to the data controller.
- Data processed for the third purpose: Identification and contact data: first and last name, CIF, email address and telephone number.
3. PERSONAL DATA OF THIRD PARTIES
Where the data subject provides personal data of third parties through the WhatsApp channel, the data subject declares and guarantees that they have previously informed such third parties of the content of this Privacy Policy and have obtained their consent where required for the disclosure of their data to the company.
The data subject shall be responsible for the truthfulness, accuracy and updating of the personal data of third parties provided, and shall hold the Data Controller harmless from any liability arising from the breach of this obligation.
4. HOW LONG WILL PERSONAL DATA BE RETAINED?
Personal data will be retained only for as long as necessary to fulfil the purpose for which they were collected and, in any event, while legal, contractual or other liabilities may arise in connection with such purpose.
Once these periods have expired, the data will be duly blocked and retained solely at the disposal of courts, tribunals and competent public authorities for the legally established limitation periods. After such periods have elapsed, the data will be securely deleted.
5. SOURCE OF THE PERSONAL DATA
The personal data processed by MOEVE has been provided directly by the data subject or by third parties, in accordance with section three of this Privacy Policy.
The data subject is responsible for the accuracy and updating of the data provided.
6. TO WHOM ARE PERSONAL DATA DISCLOSED? ARE THEY TRANSFERRED INTERNATIONALLY?
All disclosures of personal data made by Moeve are necessary for the fulfilment of the purposes indicated or are carried out in order to comply with a legal obligation, and may be made to the following companies and public bodies:
- RECIPIENT 1: Where necessary, to companies within the Moeve Group, listed at www.moeveglobal.com, for administrative purposes and for the management of the relationship with the data subject, on the basis of Moeve’s legitimate interest. The legitimate interest supporting such disclosure consists of ensuring better organization and optimization, as well as unified management of resources within the business group where, internally, this is required for the effective performance of the activities carried out.
- RECIPIENT 2: Moeve’s service providers and collaborating companies that may be engaged to provide the services and fulfil the purposes described above, and that will act as data processors through the adoption of appropriate legal safeguards in accordance with the requirements established in the GDPR.
- RECIPIENT 3: Where applicable, to Public Administrations and the Administration of Justice, in compliance with legal obligations.
For the provision of the service, your data are processed by our technology providers, which may involve an international transfer of data to the United States. Such transfers are covered by the European Commission’s adequacy decision for the EU–U.S. Data Privacy Framework, to which our providers (Meta Platforms, Inc. and Salesforce, Inc.) are adhered, or, where applicable, by the execution of Standard Contractual Clauses approved by the European
Commission or any other valid legal mechanism that ensures an adequate level of protection equivalent to that of the European Economic Area.
If you wish, you may obtain further information about international data transfers by contacting our Data Protection Officer at: dpo@moeveglobal.com.
7. WHAT RIGHTS DOES THE DATA SUBJECT HAVE?
The data subject is hereby informed that they may exercise, where applicable, the rights of access, rectification or erasure, restriction of processing, objection, data portability, and the right not to be subject to automated individual decision-making.
The data subject may withdraw any consent given for a specific purpose at any time and may modify their preferences at any time.
These rights may be exercised by contacting MOEVE at the following email address: derechos.arco@moeveglobal.com, or at its registered office at Paseo de la Castellana, No. 259 A (28046) Madrid, Spain.
The data subject is also informed that they may lodge any complaint relating to the protection of personal data with the Spanish Data Protection Agency (Agencia Española de Protección de Datos) at www.aepd.es, the competent supervisory authority in Spain.
MOEVE hereby informs that it has appointed a Data Protection Officer, who may be contacted at: dpo@moeveglobal.com.