Privacy Policy

1. Data controller

• Controller: LA MAISON LLAVENRES, S.L.
• NIF/CIF: B67446658
• Address: Carrer de Munt, 33, 08392 SANT ANDREU DE LLAVANERES
• Email: info@lamaisonbcn.com
• Domain: lamaisonbcn.com

2. Data we process and origin

We receive data through the contact forms on the Website:

• Contact forms
• Fields collected: email (required), phone (optional).
• Origin: provided directly by the interested party.

3. Purposes and legal bases

• Purpose: to handle and manage inquiries, requests or contacts received through the forms.
• Legal basis:
• Consent of the data subject (art. 6.1.a GDPR), given when submitting the form.
• And/or legitimate interests (art. 6.1.f GDPR) when responding to spontaneous requests related to our products/services.

No automated decisions are made nor commercial profiles are created with your data.

4. Data communications and processors

The email and, if appropriate, the phone sent via the forms are forwarded by email to our company to contact potential users/clients.

The collected data are processed exclusively by LA MAISON LLAVENRES, S.L. as controller. We do not sell data to third parties for commercial purposes; we only communicate data to technical processors necessary and under data processing agreements according to art. 28 GDPR.

Providers (processors):

• Hosting provider: Vercel, Inc. — Data hosted in the European Union depending on deployment configuration.
• Email provider: provider based in the European Union — Data processed within the EEA.

We currently do not have DPA contracts signed with these providers. We have configured services to prioritize hosting and processing within the EU when possible.

5. International transfers

In principle, the cookies and data we use are first-party and do not involve transfers outside the EEA. If third-party services that imply transfers outside the EEA are implemented in the future, appropriate safeguards will be applied (e.g., standard contractual clauses).

6. Retention periods

• Contact form data: will be retained for the time necessary to address the request and, at most, 12 months, unless legal obligations require a different period.
• Technical and privacy_security logs: [PERIOD AND PURPOSE, if applicable].

Once the periods have elapsed, data will be privacy_securely deleted.

7. Data subject rights

You may exercise your rights of access, rectification, deletion, opposition, restriction and portability by submitting a request:

• Email: info@lamaisonbcn.com
• By postal mail: Carrer de Munt, 33, 08392 SANT ANDREU DE LLAVANERES

If you consider that your rights have not been properly addressed, you may file a complaint with the competent supervisory authority (AEPD or Catalan Data Protection Authority):

• AEPD: https://www.aepd.es
• APDCAT: https://apdcat.gencat.cat

To exercise rights, it may be necessary to verify your identity to avoid unauthorized access.

8. Information privacy_security

We apply appropriate technical and organizational measures to protect personal data (access control, encryption where applicable, internal privacy_security policies, etc.). However, no system is 100% privacy_secure and we cannot guarantee absolute privacy_security.

9. Minors

Our services are not directed at minors under 18. If we detect that data of minors have been collected without parental consent, we will proceed to delete them.

10. Changes to this policy

We may update this policy to reflect legal or operational changes. Updates will be published on this page with the date of last revision.

11. Contact

For privacy inquiries, you may write to info@lamaisonbcn.com or to Carrer de Munt, 33, 08392 SANT ANDREU DE LLAVANERES.