Last Updated: July 2021
Data collected by CrossMystore
CrossMystore collects all the information entered in the application by the user and stores it on their own servers or on the servers of the CrossMystore storage provider. Being a Cloud service, server storage is a requirement for the operation of the application, that is why the user accepts this fact.
CrossMystore classifies data into two categories: user data and account data. The user data includes the user name and personal data, as well as photographs or other documentation that the user chooses to upload to the application in the account information part and the contact information. The account data are those related to the business account created by the user: Brand information, product inventory, billing information, customers orders.
Finally, CrossMystore collects data from the connected device through cookies. The user can deactivate the cookies in his browser so that CrossMystore does not collect such information in case the user wants it to be so. This information is used to perform navigation studies and access to the application, as well as the use of it. The navigation information includes the type of device and its characteristics, location, and connection times.
Who is responsible for the processing of your data?
Company: Indomit 2020 S.L
Address: Gabriel Querol 2, 3, 2A 08221, Terrassa
E-mail: [email protected]
For what purpose do we keep your personal data?
In Indomit 2020 S.L we treat the information that the interested persons facilitate us with the purpose of lending and/or commercializing the products and/or services offered by our firm.
In particular, based on the legitimate interest regulated in the GDPR, CrossMystore may send commercial promotions, newsletters, and other information of interest to all those who have registered for a webinar or other events promoted by CrossMystore.
How long will we keep your data?
The personal data provided will be kept for the time necessary for the provision of the service requested or marketing of the product and during the legally established periods.
What is the legitimacy of the treatment of your data?
To which recipients will your data be communicated?
The data will not be communicated to third parties except when legally obligated.
What are your rights when you provide us with your data?
Anyone has the right to obtain information about whether Indomit 2020 S.L is processing personal data that concerns them, or not.
Interested persons have the right to access their personal data, as well as to request the rectification of inaccurate data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purposes that were collected.
In certain circumstances, the interested parties may request the limitation of the processing of their data, in which case we will only keep them for the exercise or defense of claims.
You can materially exercise your rights in the following way: by sending an email to [email protected], duly identifying yourself and expressly indicating the specific right you wish to exercise.
If you have given your consent for a specific purpose, you have the right to withdraw the consent granted at any time, without affecting the legality of the treatment based on the consent prior to its withdrawal.
In case you feel your rights are violated in relation to the protection of your personal data, especially when you have not obtained satisfaction in the exercise of your rights, you can submit a claim to the competent Data Protection Control Authority through its website: www.agpd.es.
How have we obtained your data?
All personal data obtained by CrossMystore has been advanced directly by the user. We do not deal with special categories of personal data pursuant to Article 9 of the EU General Data Protection Regulation ( personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership).
Data shared by user
Many of our services allow you to share information with other users. Remember that when you share information publicly, it can be indexed by search engines. Our services provide you with different options on how to share and delete your content.
How to access your personal data and update them whenever you use our services, our goal is to provide access to your personal information. If that information is not correct, we strive to provide you with ways to eliminate or update it quickly, unless we have to maintain that information for legitimate business or legal reasons. By updating your personal information, we may ask you to verify your identity so we can process your request.
We may reject requests that are more repetitive than reasonable, requiring a disproportionate technical effort (for example, developing a new system or radically changing an existing practice) that endanger the privacy of other users or are not at all practical (for example, requests that refer to information stored in backup systems).
When we can offer you the possibility to access your personal data and modify it, we will do it for free, unless it requires a disproportionate effort.
By providing our services, we will protect your data so that it can not be accidentally or intentionally disposed of. For this reason, even if you delete your data from our services, we may not immediately destroy the residual copies stored on our active servers or the data stored in our security systems.
Access and modification of user data
The user can modify at any time his user data or the accounts of which he owns. CrossMystore does not store the modified information so that once the user modifies or deletes the information, he will lose it forever within the application.
The date we share:
We do not share personal information with companies, organizations or individuals that are not related to CrossMystore, unless any of the following circumstances apply:
- Consent: We will share your personal information with companies, organizations or individuals outside of CrossMystore when you have given us your consent to do so. Your consent will be required to share specially protected personal data.
- Legal reasons: We will share your personal data with companies, organizations or individuals outside of CrossMystore if we consider in good faith that there is a reasonable need to access, use, retain or disclose such information in order to: comply with any requirement under applicable legislation or regulations; Comply with the provisions of the current Conditions of Service, including investigating possible infringements, detecting or preventing any fraud or technical or security incidents, or otherwise dealing with them, protecting the rights, property Or the security of CrossMystore, our users or the general public to the extent required or permitted by applicable law.
For CrossMystore, security is the most important thing. Currently, the data storage service is done through specialized providers with security certificates and anti-hacking systems.
CrossMystore has decided to outsource storage to ensure the vendor meets the highest security standards, at levels that CrossMystore could not offer on its own storage servers.
We endeavor to protect CrossMystore and our users from any unauthorized modification, disclosure or destruction of the data we hold or unauthorized access to them. In particular: We encrypt many of our services through the SSL protocol. We review our policy on data collection, storage, and processing, including physical security measures, to prevent unauthorized access to our systems.
We limit the access of CrossMystore contractors, agents, and employees to the personal information they must process for CrossMystore and we ensure that they comply with strict contractual confidentiality obligations and are subject to the relevant disciplinary conditions or dismissal if they fail to comply with such obligations.
When we need to obtain information from you, we will always ask you to provide it voluntarily by giving your consent expressly through the means enabled for it.
The processing of data collected through the data collection forms of the website or other channels will be incorporated into the Registry of Treatment Activities for which Indomit 2020 S.L. is responsible.
Indomit 2020 S.L. treats the data confidentially and adopts the appropriate technical and organizational measures to guarantee the appropriate level of security for the treatment, in compliance with the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Board of 27 April 2016 and other regulations applicable in the field of Data Protection.
However, Indomit 2020 S.L. can not guarantee the absolute invulnerability of the systems, therefore, it does not assume any responsibility for the damages and losses derived from alterations that third parties may cause in the computer systems, electronic documents, or files of the user.
If you choose to leave our website through links to websites not belonging to our entity, Indomit 2020 S.L. will not be responsible for the privacy policies of these websites or the cookies they may store on the user’s computer.
Our policy regarding the sending of our emails is focused on sending only communications that you have requested to receive. If you prefer not to receive these messages by email, we will offer you the possibility to exercise your right to suppress and waive the receipt of these messages, in accordance with the provisions of Title III, article 22 of Law 34 / 2002, Services for the Information Society and Electronic Commerce.