GDPR

Introduction

At CostaDelSolEstate.com, we are committed to protecting and respecting your privacy and complying with the General Data Protection Regulation (GDPR). This GDPR Compliance Document explains how we collect, use, and safeguard your personal data in accordance with GDPR.

Data Controller

The data controller for CostaDelSolEstate.com is: Michal Kalášek, ID No. 88767621, Čimická 223, Prague 1, Czech Republic, info@malaga.homes.

Legal Basis for Processing Personal Data

We process your personal data based on the following legal grounds:

  • Consent: When you have given us clear consent to process your personal data for a specific purpose
  • Contract: When processing is necessary to fulfill a contract with you
  • Legal Obligation: When processing is necessary to comply with a legal obligation
  • Legitimate Interests: When processing is necessary for our legitimate interests or those of a third party

Personal Data We Collect

We may collect and process the following personal data:

  • Identification Information: Name, username, title
  • Contact Information: Email address, phone number, postal address
  • Technical Information: IP address, browser type, device information
  • Usage Information: How you use our website and services
  • Marketing Preferences: Your preferences for receiving marketing from us

How We Use Your Personal Data

We use your personal data for the following purposes:

  • To register you as a new website user
  • To provide information about properties that may interest you
  • To manage our relationship with you
  • To improve our website and services
  • To comply with legal and regulatory obligations
  • To protect our business and users from fraudulent activities

Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Your Rights Under GDPR

Under GDPR, you have the following rights:

  • Right of Access: You have the right to request copies of your personal data
  • Right to Rectification: You have the right to request that we correct any inaccurate personal data
  • Right to Erasure: You have the right to request that we delete your personal data under certain circumstances
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data
  • Right to Data Portability: You have the right to request that we transfer your personal data to another organization or directly to you
  • Right to Object: You have the right to object to the processing of your personal data
  • Rights Related to Automated Decision-Making: You have rights related to automated decision-making and profiling

To exercise any of these rights, please contact us using the details provided in the “Contact Information” section below.

Data Security

We have implemented appropriate security measures to prevent accidental loss, use, or unauthorized access, alteration, or disclosure of your personal data. We restrict access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know.

Third-Party Processors

We may engage third-party service providers to process personal data on our behalf. These providers are carefully selected and must maintain appropriate security measures to protect your information.

International Transfers

We may transfer your personal data to countries outside the European Economic Area (EEA). Whenever we transfer your personal data outside the EEA, we ensure a similar degree of protection by implementing at least one of the following safeguards:

  • Standard Contractual Clauses approved by the European Commission
  • Privacy Shield certification (where applicable)
  • Binding Corporate Rules

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies. For detailed information about the cookies we use and the purposes for which we use them, please see our Cookie Policy.

Data Breach Procedures

In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible, unless the breach is unlikely to result in a risk to your rights and freedoms. If the breach is likely to result in a high risk to your rights and freedoms, we will also inform you of the breach without undue delay.

Changes to This GDPR Compliance Document

We may update this GDPR Compliance Document from time to time. We will inform you of any significant changes by posting the new document on our website with a prominent notice.

Contact Information

If you have any questions about this GDPR Compliance Document or our data processing practices, please contact us at:

Email: info@malaga.homes

Complaints

You have the right to lodge a complaint with the relevant supervisory authority for data protection issues at any time. However, we would appreciate the opportunity to address your concerns before you approach the authority, so please contact us first.

Last Updated: 08.04.2025

Scroll to Top