Buyer Data Protection Policy

Effective Date: April 2025

At SmartDevices.es, protecting your privacy and personal data is of utmost importance to us.
This Buyer Data Protection Policy explains how we collect, use, store, and protect your personal information when you visit or make a purchase from our website.

We are fully committed to complying with the General Data Protection Regulation (GDPR) (EU) 2016/679 and Spain’s Organic Law 3/2018 on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD).

1. Data Controller

The entity responsible for processing your personal data is:

Company Director: Matej Belic
NIE Number: Z2891635B
Registered Address:
Calle Yate 173,
03189 Orihuela, Alicante,
Spain

For any inquiries regarding the processing of your personal data, please contact us through our Contact Us page.

2. Personal Data We Collect

When you interact with SmartDevices.es, we may collect the following categories of data:

  • Identification Data: Full name, billing address, shipping address
  • Contact Data: Email address, phone number
  • Payment Information: Only transaction details (no credit/debit card numbers are stored directly by SmartDevices.es; payment processing is handled securely via authorized third-party gateways)
  • Order Details: Purchased items, order history
  • Technical Data: IP address, browser type, operating system, browsing behavior
  • Communication Records: Emails, messages, and other communications with our support team

We collect personal data directly from you when you place an order, create an account, subscribe to our newsletter, or communicate with our customer service.

3. Purpose and Legal Basis of Data Processing

We use your personal data for the following purposes:

  • To process and deliver your orders
  • To manage your customer account
  • To provide warranty and after-sales services
  • To respond to your inquiries and provide customer support
  • To comply with legal obligations (e.g., invoicing, accounting, tax compliance)
  • To send promotional communications, with your explicit consent

Legal basis for processing your data:

  • Performance of a contract (Article 6(1)(b) GDPR)
  • Compliance with legal obligations (Article 6(1)(c) GDPR)
  • Your consent, where required (Article 6(1)(a) GDPR)
  • Legitimate interests (Article 6(1)(f) GDPR), such as improving our services and securing our website

4. Data Storage and Retention

Your personal data is stored securely on servers located within the European Economic Area (EEA).

We retain your personal data only for as long as necessary:

  • Order-related data: Retained for at least 6 years for legal and tax purposes
  • Account information: Until you request deletion
  • Marketing communications: Until you withdraw your consent

Once the retention period expires, personal data will be securely deleted or anonymized.

5. Sharing of Personal Data

We only share your personal data with trusted third parties when necessary:

  • Payment Providers: To process your payments securely
  • Shipping Companies: To deliver your orders
  • IT and Hosting Service Providers: To maintain and secure our website
  • Legal Authorities: When required by applicable laws and regulations

We ensure that all third-party providers adhere to strict data protection standards, in compliance with GDPR.

6. Your Data Protection Rights

You have the following rights regarding your personal data:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data (“right to be forgotten”), subject to legal obligations
  • Right to Restrict Processing: Limit how your data is processed
  • Right to Data Portability: Receive your data in a structured, commonly used, machine-readable format
  • Right to Object: Object to the processing of your data for certain purposes, such as direct marketing
  • Right to Withdraw Consent: At any time, if processing is based on your consent

To exercise any of these rights, please contact us via the Contact Us page.
We will respond to all legitimate requests within one month.

7. Data Security Measures

We implement appropriate technical and organizational security measures, including:

  • SSL/TLS encryption of the website
  • Secure data storage and backups
  • Restricted access to personal data
  • Regular security audits and vulnerability assessments

Despite our efforts, no method of transmission or storage is 100% secure. In the event of a data breach, we will notify affected individuals and the relevant supervisory authority as required by law.

8. International Data Transfers

SmartDevices.es does not transfer personal data outside of the European Economic Area (EEA).
If, in the future, international transfers are necessary, we will ensure adequate protection in compliance with GDPR, such as using Standard Contractual Clauses approved by the European Commission.

9. Updates to This Policy

We reserve the right to update this Buyer Data Protection Policy at any time to reflect changes in legal requirements or our business practices.
We encourage you to review this page regularly. Changes will become effective when posted.

The current version was updated on April 28, 2025.

If you have any questions about this Buyer Data Protection Policy or how we handle your personal data, please complete the form below or contact us via our Contact Us page.

Your privacy matters to us!