WORLDWIDE SHIPPING :)

Privacy Policy

  • Last update: July 2021.

1. INFORMATION TO USER

LA MUSA instrumentos (MAREMUSIC RBC SL) as Data Controller, informs you that, in accordance with the provisions of Regulation (EU) 2016/679, of April 27, (RGPD) and LO 3/2018, of December 5, on data protection and guarantee of digital rights (LOPDGDD), we will treat your data as we reflect in this Privacy Policy.

In this Privacy Policy we describe how we collect your personal data and why we collect it, what we do with it, with whom we share it, how we protect it, and your options regarding the processing of your personal data.

This Policy applies to the processing of your personal data collected by the company for the provision of its services. If you accept the measures of this Policy, you agree that we process your personal data as defined in this Policy.

2. CONTACT

Name: MAREMUSIC RBC, SL

Commercial name: LA MUSA INSTRUMENTOS

CIF: B93202885

Address: Calle Peso de la Harina 19, 29007, Málaga (Spain)

E-mail: [email protected]

 

3. OUR PRINCIPLES

We are always committed to providing our services with the highest degree of quality, which includes treating your data with security and transparency. Our principles are:

  • Legality: We will only collect your personal data for specific, explicit and legitimate purposes.
  • Data minimization: We limit the collection of personal data to what is strictly relevant and necessary for the purposes for which it was collected.
  • Limitation of Purpose: We will only collect your personal data for the stated purposes and only according to your wishes.
  • Accuracy: We will keep your personal data accurate and up to date.
  • Data Security: We apply appropriate technical and organizational measures proportional to the risks to ensure that your data does not suffer damage, such as unauthorized disclosure or access, accidental or illegal destruction or accidental loss or alteration and any other form of illicit treatment.
  • Access and Rectification: We have the means for you to access or rectify your data when you deem it appropriate.
  • Retention: We retain your personal data legally and appropriately and only as long as it is necessary for the purposes for which it was collected.
  • International transfers: when it is the case that your data is going to be transferred outside the EU / EEA, it will be adequately protected.
  • Third parties: Access and transfer of personal data to third parties are carried out in accordance with the applicable laws and regulations and with the appropriate contractual guarantees.
  • Direct Marketing and cookies: We comply with the applicable legislation regarding advertising and cookies.

4. COLLECTION AND PROCESSING OF YOUR PERSONAL DATA

The types of data that can be requested and processed are:

  • Identifying data.

We also automatically collect data about your visit to our website as described in the cookie policy.

Whenever we request your personal data, we will clearly inform what personal data we collect and for what purpose. In general, we collect and process your personal data for the purpose of:

  • Providing information, services, products, relevant information and news in the sector.
  • Sending of communications.

In addition, we work with third-party services to develop our activity:

  • Hosting: 1&1 IONOS España SLU

Our hosting is 100% Spanish and 100% secure. Here you can check their privacy policy. We have installed an SSL security protocol certificate, the standard security technology used on the Internet to establish a secure connection between a website and your browser. This secure connection ensures that all data transmitted from the browser to the server will remain private phishing and that your data is safe from hackers or in order to protect against fraud.

  • Newsletter services: Mailjet

The subscriptions and newsletter are managed by Mailjet, which has its servers hosted in the USA, so the data protection changes. 

  • Analysis service: Google Analytics

Google Analytics is a web analytics service provided by Google, Inc., a Delaware company, also located in the United States. Google Analytics uses "cookies", which are text files located on your computer, to help us analyze how users use the website. The information generated by the cookie about the use will be directly transmitted and filed by Google on servers in the United States. These cookies are used to store non-personally identifiable information. In relation to the IP, Google Analytics does not share with its clients information about the real IP address. In addition, Google Analytics makes available a method that we have activated for your privacy and that is known as the IP mask. This method gives website owners using the application the option to tell Google Analytics to only use a part of the for geolocation IP address instead of the full address, which makes your IP even more secure. If you still have questions, you can obtain more details about the policy privacy of Google Analytics here. We have also accepted the data processing amendment and have configured the details of ATD (Addendum on Data Processing), completing the agreement with the data of the data controller. We have also modified the time that the data is saved so that it is not saved forever and is reset with each new activity and the counter is reset on each visit.

  • Cloud storage: Google Drive

Work documents and invoices are stored in Google Drive and passwords are regularly updated to keep files safe in the cloud. The personal data contained in these documents will be kept for the time requested by the client or until the ARCO rights are exercised.

See the Google Drive policy here.

  • Payment services: Stripe

As a method of payment with a card, LA MUSA uses Stripe for greater security and convenience. Once an order has been placed and the card payment is confirmed, its information will appear along with the confirmation. Payment is made from our own website, not having to go to any external site. LA MUSA will never have the details of the card used, and the transaction is made directly with the bank. After authorizing the payment, your bank may request additional confirmation.

Stripe complies with the US-EU Safe Harbor Framework and the US and Swiss security framework, as established by the US Department of Commerce regarding the collection, use, and retention of personal information from users. member countries of the European Union and Switzerland among others.

However, we have entered into the Data Processing Agreement, or DPA under the GDPR with Stripe.

You can view Stripe's privacy policy here.

  • Payment services: PayPal

With this payment method, LA MUSA does not obtain at any time the information of the customer's method of payment, such as the card number. PayPal complies with the US-EU Safe Harbor Framework and the framework US and Swiss security, as established by the US Department of Commerce regarding the collection, use, and retention of personal information from customers. member countries of the European Union and Switzerland among others. However, we have signed with Paypal the Data Processing Agreement, or DPA in accordance with the RGPD.

You can see PayPal's privacy policy here.

  • Payment service: Amazon payments

We also offer Amazon payments as method of purchase, which complies with the US-EU Safe Harbor Framework and the US and Swiss security framework, as established by the US Department of Commerce regarding the collection, use and retention of personal information from the member countries of the European Union and Switzerland among others.

With Amazon payments it is not necessary to sign the Data Processing Agreement as it is now part of your Online Terms of Service. This means that all Amazon customers globally can trust the terms of the AWS GDPR DPA will apply automatically from May 25, 2018, this means that customers who wish to transfer personal data from the Area European Economic (EEA) to others Countries can do so knowing that their personal data AWS will receive the same high level of protection than in the Clients at the European Economic Area: this makes your data safe.

You can see the privacy policy of Amazon Payments here.

 

5. LEGITIMACY

In accordance with the applicable data protection regulations, your personal data may be provided that:

  • You have given us your consent for the purposes of the treatment. Of course, you can revoke your consent at any time.
  • By legal requirement.
  • Because there is a legitimate interest that is not undermined by your privacy rights, such as the sending of commercial information either by subscribing to our newsletter or by being a client.
  • Because it is necessary for the provision of any of our services through a contractual relationship between you and us.

6. COMMUNICATION OF PERSONAL DATA

The data may be communicated to companies related to LA MUSA instruments (MAREMUSIC RBC SL) for the provision of various services as Treatment Managers. The company will not make any assignment, except by legal obligation.

7. YOUR RIGHTS

In relation to the collection and processing of your personal data, you can contact us at any time to:

  • Access your personal data and any other information indicated in Article 15.1 of the RGPD.
  • Rectify your personal data that is inaccurate or incomplete in accordance with Article 16 of the RGPD.
  • Delete your personal data in accordance with Article 17 of the RGPD.
  • Limit the processing of your personal data in accordance with Article 18 of the RGPD.
  • Request the portability of your data in accordance with Article 20 of the RGPD.
  • Oppose the processing of your personal data in accordance with article 21 of the RGPD.
  • If you have given us your consent for a specific purpose, you have the right to withdraw the consent granted at any time, without affecting the legality of the treatment based on the consent prior to its withdrawal.
  • You can exercise these rights by sending a reasoned and accredited communication (with a copy), to [email protected]
  • You also have the right to file a claim with the competent Spanish Control Authority (www.aepd.es) if you consider that the treatment is not adjusted to current regulations.

8. LEGAL INFORMATION

The requirements of this Policy complement, and do not replace, any other requirement under the applicable data protection law, which will prevail in any case.

This Policy is subject to periodic reviews and the company can modify it at any time. When this occurs, we will notify you of any changes and ask you to reread the most recent version of our Policy and confirm your acceptance.