Legal terms

1. RESPONSIBILITY

Chocolates Simón Coll S.A. with registered office in Carrer Sant Pere, 37 Sant Sadurní d’Anoia (Spain) and with CIF A-08720781 is responsible for processing data files from users.

2. PRINCIPLES

At Chocolates Simón Coll, we respect the right to privacy of our platforms’ users. Among our most important principles, we highlight the following:

  • Protect your privacy and offer a tailored service.
  • Personal data is collected with precise objectives based on the user’s consent or on a legitimate interest when the user interacts with us.
  • The user has the right to be informed about their personal data and to access it anytime. They can also request to amend or delete the data.
  • We do not sell your data to any third party.
  • Simón Coll grants that we will adopt the appropriate measures to safeguard your data from the wrongdoing and keep them safe.

3. DATA PROTECTION POLICY

The following Data protection policy explains how and with what purpose we use the data we collect from you on our websites, offline programs, visits to our retail shops or our public events.

Chocolates Simón Coll respects the right to privacy of our users when visiting our website or any other digital platform, taking part on offline programs, visiting retail shops or public events related with the company or its brands. With that, the users share their personal data and accept the described on this Data protection policy. If the user does not agree with the Data protection policy, Chocolates Simón Coll would suggest not to use our websites or share personal data.

Chocolates Simón Coll reserves the right to introduce changes in this Data protection policy at any time. For that reason, we would encourage the user to check it regularly. The changes will apply when published on this site. We will notify the user of any substantial change reasonably in advance.

4. CONSENT

Chocolates Simón Coll will only collect, use or divulge the user’s personal information when is fair and lawful to do so. Most of the times, we will explicitly ask for the user’s consent. In some occasions, we will infer the user’s consent from their acts and behaviours. Also, we will process the data for legal purposes or taking our legitim interests as a basis.

5. DATA COLLECTION

5.1. Personal Data

This Data protection policy applies to data that Chocolates Simón Coll collects from people or entities from different sources (i.e. websites, online shops, social networks, events or services with users participation) and, in some occasions, through third parties. The company collects the following personal data:

Shared by the user with Chocolates Simón Coll directly:

Chocolates Simón Coll collects data when the user requests information, purchases products, gets registered for a competition or uses a company’s application. When the users share that information, they will be informed about what data is mandatory and what data can be shared voluntarily. We highlight here the following types of personal data:

  • Contact information.
  • Information needed to initiate an account session or to fill a survey of any kind.
  • Billing information.
  • User-generated content.
  • Employment information.

Automatically shared with user interaction on the website

Chocolates Simón Coll uses cookies and other tracking technology to collect certain types of information when the user interacts with the Chocolates Simón Coll’ websites. We highlight the IP addresses, web browsing preferences, the user’s previously visited pages, the user browsing experience, and the time of the visit. For more information, please visit our Cookies policy.

The data collection also happens on third-party social network websites (such as the “Like” functionality on Facebook and Instagram or the “Follow” functionality on Twitter) through social plugins. The goal of that data collection and the handling and additional usage of it by those third-party providers on their sites, and also the rights and options to change them in order to protect their privacy can be checked on the Data protection policy references of the already mentioned providers. If the users do not wish the data collected at those third-party social network websites to be shared through Chocolates Simón Coll website to the user account on those social networks, the users should close their session on the social network previous to visiting the site.

Collected from other sources

Chocolates Simón Coll collects information from other sources such as:

  • Promotional partners and other companies (subject to their policies on privacy protection and current legislation).
  • Payment processors in order to protect our customers against possible fraud.
  • Third-party data aggregator/collector.

5.2. Children Personal Data

Chocolates Simón Coll website has been designed for adult use. However, there is a chance our content can be enjoyed by a younger public. In that case, we will ask for the consent of the parent or legal guardian before we collect any kind of personal information, if the user is underage. If we notice we have personal data from children, that data will be deleted from our database. The parents or legal guardians of the child can get in touch and request the deletion of the data or the cancellation of the register. For that reason, Chocolates Simón Coll has the right to request a copy of a document that proves that parental/legal relationship.

6. PURPOSE

Chocolates Simón Coll collects and uses personal data for a diversity of purposes, which you can find below. The user can object to each of the data processing at any time.

  • In order to allow the creation of a user account and have access to it [“execution of contractual and pre-contractual measures as a legal basis (according to Article 6, letter b from the GDPR – General Data Protection Regulation –)”].
  • Process and send orders and purchases [“execution of contractual and pre-contractual measures as a legal basis (according to Article 6, letter b from the GDPR – General Data Protection Regulation –)”].
  • Develop consumers implication and deliver a tailored service, which includes:
    • Send information requested by the user [“consent as a legal basis (according to Article 6, paragraph 1, letter a from the GDPR – General Data Protection Regulation –)”].
    • Get in touch with the user in order to answer questions, complains or comments sent through email, letter or third-party apps (social networks such as Instagram, Facebook or Twitter) previously communicated by the user [“execution of contractual and pre-contractual measures as a legal basis (according to Article 6, letter b from the GDPR – General Data Protection Regulation –)”].
    • Achieve a more active implication from the user with the Chocolates Simón Coll products through user-generated content, for instance [“consent as a legal basis (according to Article 6, paragraph 1, letter a from the GDPR – General Data Protection Regulation –)”].
  • Use of the data in competitions or promotions where the user has been registered. This includes:
    • Manage competitions or promotions [“execution of contractual and pre-contractual measures as a legal basis (according to Article 6, letter b from the GDPR – General Data Protection Regulation –)”].
    • Publish the winners’ contact details [“legitimate interest as a legal basis (according to Article 6, paragraph 1, letter f from the GDPR – General Data Protection Regulation –)”].
  • Get in touch with the user for marketing purposes, which includes marketing and social functions with the frame of social networks [“consent as a legal basis (according to Article 6, paragraph 1, letter a from the GDPR – General Data Protection Regulation –)”], which includes:
    • Send newsletters, if the user is subscribed to the service.
    • Suggest products or services that Chocolates Simón Coll may think relevant to the user.
    • Offer the chance of taking part in competitions or promotions.
  • Improve the Chocolates Simón Coll website and/or combine with information received from others in order to help understand the user needs and offer a better service. In this section, we include the website and products customisation and the sharing of ads based on their interests [“consent as a legal basis (according to Article 6, paragraph 1, letter a from the GDPR – General Data Protection Regulation –)”]. Which includes:
    • Study the website usage using data such as information of the log-in to the user account, the usage of the computer and/or the previous usage of other websites.
    • Study of our website’s usage through tracking tools. For more information, the user can check the Chocolates Simón Coll Cookies Policy.
    • Improve our products and services using demographic information, consumer profile making and feedback collection (comments/reactions) from the consumers.
    • Annalyse the efficiency of our advertisement and promotions through the use of cookies.
    • Customise the user experience on the site taking as a basis a targeted advertisement.
  • Process your employment application to get a job position and also determine if the user can be fit for other open positions in the company [“compliance of a legal obligation as a legal basis (according to Article 6, paragraph 1, letter a from the GDPR – General Data Protection Regulation –)”].
  • Manage topics of internal governance, security and specific cases treatment [“legitimate interest as a legal basis(according to Article 6, paragraph 1, letter f from the GDPR – General Data Protection Regulation –)”] which includes:
    • Ensure the daily functioning, maintenance, and security of the Chocolates Simón Coll website.
    • Carry demographic studies or audits.
    • Get in touch with the user for consumption investigation purposes.
    • Manage risks, conflicts, and registers.
    • Comply with the legal and regulatory requirements.

7. RECIPIENTS

Chocolates Simón Coll does not share user personal information with any third-party willing to use it for direct marketing purposes unless the user has given specific consent for it.

The user personal data is revealed to the following types of recipients:

  • Commercial partners, such as suppliers, if the user needs to get any kind of information from this third-party, for instance, the location of shops with Simón Coll products in a given country. If there is a request for deleting the personal data from the webs, Chocolates Simón Coll will do so, unless they don’t have to keep them legally. However, the user needs to keep in mind that their data may still exist on the partners’ database if the data was shared before the deletion request.
  • Service suppliers that need to supply the service on Chocolates Simón Coll behalf. Advertisement, Media and Marketing agencies that make and analyse Simón Coll’s campaigns, postal services and logistic companies that deliver a product ordered by the user, recruitment agency and hosting or security providers, and, finally, website analytics suppliers.
  • Authorities, for legal reasons, and potential buyers, in order to make a specific transaction. This includes governmental or police authorities asking Chocolates Simón Coll to share the information according to the current legislation.

We will now share more information for data policy in the United States:

A few third-party service providers have their residency in the U.S. Chocolates Simón Coll would like to inform the users living in Switzerland/European Economic Area (EEA) that in the U.S. there are tracking measures adopted by the U.S. authorities which allow for the personal data transferred from Switzerland/EEA to the States to be stored. That happens with no differentiation, limits or exception on the basis of the goal aimed and with no objective criteria that could limit the access to the data by the U.S. authorities and its subsequent use for very concrete and strictly limited purposes that could justify an intervention on the access or its subsequent usage. We would also want to point out that there is no such thing as a repair legal action in the U.S. for the people in Switzerland/EEA affected by this that would mean getting access to their data and changing or deleting it. There is no effective legal protection either against the general rights of the U.S. authorities to have access to the data. We would encourage the customers affected to be aware of this legal situation and be properly informed when giving their consent for the use of their data.

For the users living in the EU, we would like you to take into account that from the EU’s point of view, the U.S. doesn’t have data protection enough, inter alia (among other things), for the problems already mentioned in this section. Having said that and taking into account, as explained on the Data protection policy, that the recipients or receptors of data (such as Google, Facebook and Twitter) are based in the U.S., we will grant, being through a contract or through a certificate from those companies under the Privacy Protection Seal UE/U.S., that the level of  data protection from our partners is appropriate.

If we propose social plugins or if you link your account with third-party platform accounts, such as Facebook, we will be able to gather and process the data related to those accounts. If you link with Facebook, your Facebook ID will be stored, also your name, email, location, list of friends and profile picture and it will be used in order to connect to your Facebook account in a way that allows for a certain functionality on the sites. The use of your information by third-party platforms is determined by their Privacy protection policy and their own service adjustments. For more information, we would encourage you to check the Data protection policy in each of those social networks.

8. RIGHTS

The rights you enjoy for the personal data processing in relation with Chocolates Simón Coll are:

8.1. Access right

The user will be entitled to get confirmation from Chocolates Simón Coll on whether their personal data is being processed, and also to the following information: processing aim; data categories; recipients or recipient categories to whom the data will be communicated, if possible, the time estimate for the data to be kept or, if not possible, the criteria used to determine that time. In these cases, Chocolates Simón Coll will share a copy of the personal data being processed. Furthermore, if the request comes through electronic ways, the information will be shared in a commonly used electronic format. The user will be able to use this right every 6 months, unless there is a just cause to do the request more often within the 6 months. When baseless or excessive requests, especially repetitive, Chocolates Simón Coll will be entitled to charge for the admin costs resulting from the request, which will be in line with the true cost of the request. Chocolates Simón Coll will inform the user about the results of the request within a month (or 2 months if the request is especially complex, this time extension will be notified within the first month). If Chocolates Simón Coll decides to disregard a request, you will be informed and given the reasons for the disregard within a month’s time from the date of the request.

8.2. Correction right

The user has the right to get a correction from Chocolates Simón Coll of the inaccurate data related to them. In addition, taking into account the aim of the data processing, the user will have the right to complete the incomplete data, including through an additional statement. For that reason, the user will have to specify on the request what data they are referring to and the adjustment that needs implementing; an also send along documentation that proves the inaccuracy or incompletion of the data.

8.3. Removal right

The user will have the right to remove their personal data by Chocolates Simón Coll in the following circumstances: data is not needed with the objectives under which were collected or processed; the user withdraws the consent and the processing has no other legal basis; the user objects to the processing and other legitimate motives don’t prevail; that the data has been processed illegally.

When the elimination is derived through the exercise of the right to oppose direct marketing, Chocolates Simón Coll will be entitled to keep the user’s identifying data in order to prevent future direct marketing processing of the data.

When Chocolates Simón Coll have already published the personal data and then is forced to delete it, taking into account the available technology and its application cost, will adopt all reasonable measures, including technical measures, in order to inform the responsible ones for the data being processed about the request for removal of any link to that personal data or any copy of it.

All of the above will not apply: for exercising the right of freedom of speech and information; for the compliance of a legal obligation that requires the processing of the data, or for the compliance of a public interest mission or the exercise of the public power conferred to the responsible; with scientific or historical investigation or statistical purposes, as long as the removal right would make impossible or would obstruct severely the success on those purposes; for the wording and exercising or the defence of a complain.

8.4. Right to limit the processing

The user will have the right to get from Chocolates Simón Coll a limitation for the data processing when any of the following situations takes place:

  • When the user has disputed the accuracy of the personal data, for the duration of a certain time enough for Chocolates Simón Coll to verify the accuracy of the data;
  • Under the assumption that the user reckons that the processing of the data is illegal and Chocolates Simón Coll has said no to the removal of the personal data and asked for a limitation of its use instead;
  • If Chocolates Simón Coll does not need the personal data anymore for the processing purposes, but the user needs it for the wording, exercising or the defence of a complain;
  • Under the assumption that the user objects to the processing, while it’s verified whether the legitimate motives of Simón Coll prevail upon the user’s.

When the user has been granted the limitation of the data processing as explained in this section, Chocolate Simón Coll will inform them before this limitation is no longer in place.

Chocolates Simón Coll will inform of any change or deletion of personal data or limitation to the processing of it to each of the recipients to whom Simón Coll has shared the data with, except if it’s impossible or would require a disproportionate effort. Chocolates Simón Coll will inform the user about the recipients if the user requests it.

 8.5. Right to data portability

The user will have the right to obtain their personal data from Chocolates Simón Coll in a structured format, commonly used and machine-readable, and to share them with another processing responsible with no objection from Chocolates Simón Coll, when the processing is based on the consent and it’s done through automated methods.

In exercising the right to data portability, the user will have the right for the personal data to be shared directly from one responsible to the other when technically feasible. The exercise of this right will be understood with no detriment of the removal right.

This portability right will not apply to the processing needed for the accomplishment of a public interest mission or in the exercise of the public power conferred to Chocolates Simón Coll.
The right to portability does not apply to data gathered by Chocolates Simón Coll through the services provided.

8.6. Right to object

The user will have the right to object to the processing of their data at any time, including profiling.

When the user exercises this right, Chocolates Simón Coll will stop processing their personal data, unless credits legitimate purposes for the processing to prevail upon the interest, rights and freedom of the user, or for the wording, the exercising or the defence of a complain.
When personal data processing has the purpose of direct marketing (kind of advertisement using one or more ways to communicate directly with the target and obtaining measurable answers), the user will have the right to object at any time of the processing, including the profiling as long as it’s related to the already mentioned direct marketing. When the user objects to the processing for direct marketing, the data will stop being processed for that purpose.

 8.7. Right related to the individualised automatic decisions

In relation to the individualised automatic decisions, including profiling, the user will have the right not to be the subject of a decision based only in automatic processing, including profiling, unless it’s necessary for a contract between the user and Chocolates Simón Coll; it’s authorised by law and established suitable measures in order to protect the rights and freedom and their interests, or in case it’s based on explicit consent.
When it’s needed for a contract and/or it’s based on the consent, Chocolates Simón Coll will adopt the suitable measures to preserve the rights, freedom and their legitimate interests, allowing the user, at least, the right to get human intervention from Chocolates Simón Coll, and also the right to express their opinion and dispute the decision.

In addition, we let the user know that they can address the Data Protection Spanish Agency in order to obtain additional information about their rights. We also inform the user that, in the event of having given consent for a specific purpose, the user has the right to withdraw that consent at any time, with that not affecting the legality of the processing based on the previously given consent, now withdrawn. At the same time, we would like to inform that the user can place a complaint before the Data Protection authorities, especially if the user is not satisfied with the exercise of their rights.

 1. WHAT ARE COOKIES?

A cookie is a small piece of information (data blocks) sent to the hard drive of your device via a web server. Chocolates Simón Coll uses cookies and tracking technologies to collect information about your browsing activity and establish some metrics about your user experience. In particular, cookies allow us to support the operation of our sites, to understand how you and other visitors interact on our pages and to provide advertising messages to a targeted audience.

 2. TYPES OF COOKIES

Cookies can be classified with different criteria:

2.1. Based on the sender:

  • Own cookies: cookies sent to the user’s technical equipment from a device or domain managed by the site (Simón Coll, in this case) from which the service requested by the user is provided.
  • Third-party cookies: cookies sent to the user’s technical equipment from a device or domain that is not managed by the site, but rather by another entity which processes the data obtained through cookies.

2.2. Based on their life cycle:

  • Session cookies: temporary cookies that stay on the user’s browser cookies archive during a user’s browsing session. These cookies are not recorded on the user’s hard drive and, in the long term, allow the site to improve the user experience making the site easier to navigate and improving its content.
  • Permanent cookies: these cookies are stored in the user’s hard drive and the site reads them each time the user visits the site. A permanent cookie has an expiring date. After that date, the cookie stops working. Usually, they are used to improve the purchase and register services.

2.3. Based on purpose:

  • Technical cookies: cookies that enable the user to browse a website, platform or application and use the various options or services thereon, including controlling traffic and data communication, identifying the session, accessing restricted areas, remembering items in an order, making purchases of an order, filling out a registration application or request to participate in an event, using security items while browsing, storing content to disseminate video or sound files and sharing content over social networks.
  • Customisation cookies: cookies that enable the user to access the service with certain general features predefined on the user’s device based on a series of criteria, such as language, browser used to access the service, regional configuration for where the service is accessed, etc.
  • Analytical cookies: cookies that enable those responsible for them to track and analyze the behaviour of websites to which they are related. The data gathered through this type of cookie is used to measure the activity of the websites, application or platform and to create a browsing profile for the website, application or platform users in order to analyze the data regarding the use the user makes of the service.
  • Advertising cookies: cookies that allow for the most effective possible management of the advertising space, if any, that the publisher has included on a website, application or platform from which the requested service is provided based on criteria such as the content published or frequency with which ads are shown.
  • Behaviourally targeted advertising cookies: cookies that allow for the most effective possible management of the advertising space, if any, that the publisher has included on a website, application or platform from which the requested service is provided. These cookies store user’s behavioural information obtained through on-going observation of their browsing habits, which enables the development of a specific profile to show tailored advertising. At the same time, it’s possible that when visiting a site or when opening an email where an ad or a promotion of one of our products or services is shown, some cookies can be installed in your browser. Those cookies allow us to show you some adverts related to the search you did, develop some control over our ads shown in relation with, for instance, the number of times they are seen, where are they present, at what time are they seen, etc.

3. LIST OF COOKIES USED IN SIMONCOLL.COM

  • Cookies Accept: cookies acceptance
  • PHPSESSID: PHP native cookie that allows the site to store status serialised data. In this site, it’s used to establish user sessions sending status data through a temporary cookie also known as Session Cookie. The PHPSESSID cookie expires when closing the session.
  •  Wordpress
    • wp-settings-{time}-[UID]: wp-settings-1, wp-settings-8, wp-settings-time-1, wp-settings-time-1 (It’s used to customise the admin interface). Expiration time of 1 year.
    • wordpress_<sessionid> (Contains data related with the user’s session.) https://codex.wordpress.org/WordPress_Cookies. Expiration time of 2 weeks.
    • WordPress_logged_in: This cookie remembers if you are authenticated in the site while browsing through the pages. It expires when closing the session.
  • Woocommerce
    • woocommerce_cart_hash. Contains information about the basket and enables woocommerce to know when the basket data changes. It expires when closing the session.
    • woocommerce_items_in_cart. Contains information about the basket and enables woocommerce to know when the basket data changes. It expires when closing the session.
    • wp_woocommerce_session_. Cookie (wp_woocommerce_session_). Contains a unique code for each user that allows the site to find the basket data for each user in the database. Expiration time of two days.
    • woocommerce_recently_viewed. It’s used to know what are the recently viewed products. It expires when closing the session.
  • WPML – Multilanguage
    • wpml_referer_url: It stores the last URL called in the front-end. Expiration time of 24h.
    • wpml_admin_referer_url. It stores the last URL called in the back-end. Expiration time of 24h.
    • _icl_current_admin_language_. It stores the current language in the admin section of WordPress. Expiration time of 24h.
    • Wp-saving-post. Cookie generated when auto-saving a post in the editor. Expiration time of 24h.

4. LIST OF SERVICE SUPPLIERS THIRD-PARTY COOKIES 

  • __stripe_mid: Session payment method. https://stripe.com/cookies-policy/legal
  • Google Analytics. https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage
    • _ga. Expiration of 2 years.
    • _gat. Expiration of 10 minutes.

 5. SOCIAL NETWORKS

Social networks also gather data through the use of cookies on the content shared by the user on the network. Chocolates Simón Coll has no control upon the activity within those social networks. But we would like to remind users that each social network has their own privacy and cookies policies. Below we share the links to the legal documentation for each of our three social networks:

Instagram:

Facebook:

Twitter:

6. OUR RECOMMENDATION

The user can disable the cookies used by Chocolates Simón Coll. But by doing so, it’s possible that some of the functionalities can’t be executed properly or browsing might be more difficult. For that reason, we would recommend keeping the cookies activated and delete them once the user has left the platform if they wish.

How to delete cookies after browsing through our platforms.

Depending on the server used, this can be done in different ways:

  • Google Chrome. The user needs to access the option: “Clear browsing data” through the “History” menu. There you’ll find a pop-up menu where the user will be able to decide what data needs to be deleted, including cookies.
  • The users access the option “Clean history” through the “History” menu. There you’ll find a pop-up menu where the user will be able to decide what data needs to be deleted, including cookies
  • Internet Explorer. The users access the option “Delete browsing history” through the “Tools” menu. There will be a pop-up menu where the user will be able to decide what data needs to be deleted, including cookies.
  • Android Chrome. The users access the “Security and Privacy” option. There will be a pop-up menu where the user will be able to decide what data needs to be deleted, including cookies.

As you can see, all browsers are fairly similar. Hence if the user browses with any other browser, it shouldn’t be a problem to find a way to delete the cookies. The user can also set up the system for it to delete all the cookies automatically once the session is closed. 

How to disable cookies before browsing our sites.

If after reading our recommendation above, the user still decides to disable cookies, the computer or device can store cookies automatically. Here you can find how to do that depending on the browser used:

  • Google Chrome. The users access “Customise and control Google Chrome”, click on the link “Show advanced options” and then click “Content set-up”. From that point, the available options for cookies will be displayed.
  • The users access the “Tools” menu, clicks on “Options” and then “Privacy”. The user can find there all the available options.
  • Internet Explorer. The users access the “Tools” menu and clicks on “Internet options” and, when the pop-up menu appears, the user clicks on “Security”. The user can choose one of the preestablished security levels or customise their own security level.
  • Android Chrome. Users access the “Settings” menu and clicks on “Security and privacy” when the pop-up menu appears, the user can choose whether to accept cookies.

The process is very similar in any browser. The user can find more information in the help menu of each of them.

More information about how cookies work, their use and managing.

The user has other alternatives to manage the use of cookies. One of them, for instance, is to navigate through private browsing, that way the hard drive won’t store unwanted data. If cookies are being stored and the user wants to check them, they can do that through the hard drive and delete them one by one if needed.

Finally, the user must know that most of the browsers let you know how to prevent the acceptance of new cookies, notify the reception of a new cookie or how to disable cookies completely. If the user needs more information about cookies, we would recommend checking the option “help” on the toolbar of their browser. Generally speaking, the user can check the “Cookies use guide” made by the Spanish Agency of Data Protection.

7. COOKIES POLICY AND ITS RELATIONSHIP WITH PRIVACY POLICY

The Cookies policy is part of Chocolates Simón Coll’s Privacy policy.

8. CHANGES ON COOKIES POLICY

Chocolates Simón Coll can change the Cookies policy unilaterally when there is a change in the current law, jurisprudential doctrine or internal criteria. Any change introduced will be published in this section.