Privacy

On this website, personal data is only collected with the knowledge and consent of users.

This document explains in detail who will process your data, what it will be used for, and what rights you can exercise, among other points. If you want more information, you can read this Privacy Policy, as well as the Legal Notice and the Cookie Policy.

1. DATA CONTROLLER – WHO WILL PROCESS YOUR DATA?

  • Identity: Falinia Gestión S.L.
  • Address: Calle Los Molinos 46, 38670, Adeje, Santa Cruz de Tenerife, Santa Cruz de Tenerife
  • Email: info@tenerifetoptours.com

2. WHAT PERSONAL DATA DO WE PROCESS AND WHERE DOES IT COME FROM?

Due to your relationship with us, we may process different categories of personal data, depending on the service or product you have contracted with us. This data may be collected through various means offered by Falinia Gestión S.L., both online and in person. The types of data processed may include:

Personal identification data: Full name, ID/identification document, date of birth, place/city/country of birth, phone number, email, address, signature, electronic signature, IP address, cookie ID, social media profile ID/links, mobile device ID.

Banking data: Bank account number, credit card number.

3. PURPOSE – WHAT IS YOUR PERSONAL DATA USED FOR?

Falinia Gestión S.L. informs you that your personal data may be processed for the purposes listed below, provided there is a legal basis for each processing activity.

For certain purposes, Falinia Gestión S.L. will act as a Data Processor, meaning that a Data Processing Agreement will be signed with the Data Controller in each case.

According to GDPR (General Data Protection Regulation) and LOPDGDD (Spanish Data Protection Law), personal data can only be processed if there is a legal basis. Article 6 of the GDPR defines the following legal grounds for processing:

  • Consent.
  • Contractual relationship.
  • Vital interests of the data subject or others.
  • Legal obligation.
  • Public interest or exercise of official authority.
  • Legitimate interest of the data controller or third parties.

In some cases, Falinia Gestión S.L. will process your data under the legitimate interest established in Article 6.1(f) of the GDPR, as it considers that this does not harm customers’ data protection rights.

Regarding these processing activities, you have the right to:

  • Obtain more information about what constitutes this legitimate interest.
  • Understand how Falinia Gestión S.L. has concluded that your data protection rights are not harmed.
  • Object to such processing. You may do so via the channels outlined in section 7 – RIGHTS YOU CAN EXERCISE, specifying the processing activity you object to and your reasons.

For all processing activities based on legitimate interest, Falinia Gestión S.L. has conducted a balancing test to confirm that its legitimate interest does not override customers’ rights. You can request information about this test by emailing info@tenerifetoptours.com.

MAIN PURPOSES OF DATA PROCESSING

Purpose Legal Basis
Compliance with legal obligations (e.g., accounting, legal, tax, and administrative obligations). Contract execution, legal obligation.
Management of public domain “Barranco del Infierno” trail. Managing access to the Special Nature Reserve Barranco del Infierno, including ticket reservations and resident discounts.
Sale and management of excursions organized by our company. Processing reservations for excursions directly organized by Falinia Gestión S.L.
Management of third-party excursion bookings. Facilitating reservations for excursions organized by third-party providers. The excursion provider will act as the Data Controller.
Sending quality surveys. Evaluating user satisfaction to improve services.
Commercial communications (unsolicited). Sending offers for products/services related to previously contracted ones. Users can opt out.
Marketing communications. Sending promotions for services/products unrelated to those contracted. Users must give prior consent.
Inquiries, requests, or suggestions. Managing and responding to user requests.

When providing your data, you guarantee its accuracy and agree to notify us of any changes. If certain mandatory fields are not completed, we may be unable to provide the requested services.

4. DATA RETENTION – HOW LONG DO WE KEEP YOUR DATA?

Personal data will be retained only for the time necessary to fulfill the purposes for which it was collected. After this period, your data will be securely stored and protected for the legally required retention periods. Once these periods expire, personal data will be deleted.

5. WHO DO WE SHARE YOUR DATA WITH?

To fulfill the purposes outlined in this Privacy Policy, we may share your personal data with the following entities:

  • Financial institutions.
  • Technology service providers.
  • Business consulting firms.
  • Social Security authorities.
  • Tax authorities.

Apart from the above, Falinia Gestión S.L. will not share personal data with third parties unless legally required. If data must be shared with third parties, explicit user consent will be requested in advance.

All entities handling your data are legally required to maintain confidentiality and implement appropriate security measures.

6. RIGHTS YOU CAN EXERCISE

You may exercise the following rights:

  • Access your data to understand what personal data we hold.
  • Rectify incorrect data and keep your information up to date.
  • Request data deletion if it is no longer needed for the stated purposes.
  • Restrict processing in certain cases.
  • Request data portability to receive your data in a structured format for transfer to another entity.
  • Object to data processing when based on legitimate interest.

To exercise these rights, you can contact us via:

Falinia Gestión S.L. will respond within one month of receiving the request, extendable by two months if necessary due to complexity.

If you believe your data protection rights have been violated, you may file a complaint with the Spanish Data Protection Agency (AEPD) at www.aepd.es.

7. WHAT IF YOU PROVIDE THIRD-PARTY DATA OR SOMEONE PROVIDES YOUR DATA?

If you provide third-party data (e.g., contact persons), you must inform them about the purposes of data processing. If your data has been provided by a third party, it will be processed according to this Privacy Policy.

8. IS MY DATA SAFE?

Falinia Gestión S.L. guarantees appropriate measures to ensure data confidentiality. Your data is handled securely, following EU Regulation 2016/679 (GDPR).

Our website:

  • Has an SSL certificate to establish encrypted connections when exchanging information.
  • Is hosted on IONOS Cloud S.L.U. servers. You can view their Privacy Policy here.

9. CHANGES TO THIS PRIVACY POLICY

This Privacy Policy may be updated due to legal or regulatory changes. If changes significantly affect your privacy, we will notify you via email or website updates.

10. QUESTIONS ABOUT THIS POLICY OR YOUR RIGHTS?

If you have any questions about this Privacy Policy or how we handle your data, please contact us at info@tenerifetoptours.com.