Privacy and GRPD Policy

Effective date: October 2023


Welcome to Elbud Costa Blanca SL (“we”, “our”, or “us”). We are committed to protecting the privacy of our users. This Privacy Policy outlines the types of information we collect, how we use it, and the steps we take to ensure your information is kept secure.

Information We Collect

Personal Information: When you sign up or use our services, you may provide information such as your name, email address, physical address, phone number, and other identifying information.

Usage Data: We automatically collect information about how you interact with our website, such as IP addresses, browser type, time spent on pages, and other usage statistics.

How We Use Your Information

To provide and maintain our service.
To notify you about changes to our services or policies.
To allow you to participate in interactive features of our service.
For marketing and promotional purposes, with your consent.
For analysis and improvement of our service.

Protection of Your Information

We implement security measures to protect against unauthorized access, alteration, disclosure, or destruction of your personal information.

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee its absolute security.


We use cookies and similar tracking technologies to track activity on our website and store certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, some parts of our service may not function properly.

Third-Party Services

Our service may contain links to other websites not operated by us. We are not responsible for the content, privacy policies, or practices of any third-party sites.

GDPR (General Data Protection Regulation) Policy

Data Protection Officer (DPO)

We have appointed a Data Protection Officer (DPO) who can be reached at [DPO Contact Information]. If you have any questions or concerns related to the processing of your personal data, please contact our DPO.

Lawful Basis for Data Processing

We will only process personal data when we have a lawful basis to do so. The lawful bases may include the necessity of processing for the performance of a contract, compliance with a legal obligation, protection of vital interests, consent, the performance of a task carried out in the public interest, or the exercise of official authority.

Data Collection

Information We Collect: We collect personal data such as names, email addresses, phone numbers, and other necessary information to provide our services.

Purpose of Data Collection: We collect personal data for specific, explicit, and legitimate purposes, including the provision of services, customer support, and marketing. We do not process data in ways that are incompatible with these purposes.

Data Minimization: We collect and process only the data that is necessary for the purposes for which it is collected.

Data Subject Rights

Under the GDPR, data subjects have certain rights, including:

  • The right to access personal data.
  • The right to rectify inaccurate data.
  • The right to erasure (right to be forgotten).
  • The right to restrict processing.
  • The right to data portability.
  • The right to object to processing.
  • The right not to be subject to automated decision-making, including profiling.

Modification, Deletion, and Rectification
: You have the right to request modification, deletion, or rectification of your personal data, provided such requests are in accordance with the applicable data protection laws and regulations. To exercise any of these rights, please contact us by email at

We will respond to your request within the timeframes specified by applicable data protection laws. In order to confirm the identity of the demander, we will reserve the right to ask for some identity documentation as a proof. 

Data Security

We take appropriate measures to protect your personal data against unauthorized access, disclosure, alteration, and destruction. These measures include encryption, access controls, and regular security assessments.

Data Retention

We will retain personal data for the period necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law.

International Data Transfers

If we transfer personal data to countries outside the European Economic Area (EEA), we will ensure appropriate safeguards are in place to protect your data, in compliance with GDPR requirements.

Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify the appropriate regulatory authorities and, where required, the affected data subjects, in accordance with GDPR requirements.

Privacy by Design

We implement privacy by design principles in our data processing activities, ensuring data protection is considered from the outset of any new projects or systems.

Amendments to This Policy

We may update this Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will post any revised policies on our website.

Contact Us

If you have any questions about this Privacy Policy, please contact us at:
+34 622 238 859
Avenida de Asunción, 5, Local 30, 03185 Torrevieja.