Privacy Policy

• Browsing without Personal Data: You can navigate our website without providing any personal information.
• Use of Specific Services: Certain services require the processing of personal data. In these cases, we will always seek your consent or process the data on another applicable legal basis.

For the purposes of this Policy, and in accordance with the General Data Protection Regulation (GDPR), the following terminology is used:

• Personal Information: Any information relating to an identified or identifiable individual (e.g., name, postal or email address, telephone number).
• Data Subject: The natural person to whom the personal data relates.
• Processing: Any operation or set of operations performed on personal data (e.g., collection, recording, storage, modification, retrieval, use, disclosure).
• Restriction of Processing: Marking personal data to prevent further processing.
• Profiling: Automated processing of personal data to evaluate certain personal aspects (e.g., interests, behavior).
• Pseudonymization: Processing personal data in such a way that it can no longer be attributed to a specific data subject without additional information.
• Data Controller: The entity that determines the purposes and means of processing personal data. In this Policy, it refers to colombiacheckmigonline.com.
• Processor: The party that processes personal data on behalf of the controller.
• Recipient: An entity to which personal data is disclosed, excluding public authorities when disclosure is required by law.
• Third Party: Any entity other than the data subject, the controller, or the processor.
• Consent: A freely given, specific, informed, and unambiguous indication of the data subject’s wishes to allow the processing of their personal data.

As the data controller, we implement robust technical and organizational measures to ensure an appropriate level of security. Our guiding principles for processing personal data include:

• Lawfulness, Fairness, and Transparency: Data is processed in a lawful, fair, and transparent manner.
• Purpose Limitation: Data is collected for specific, explicit, and legitimate purposes.
• Data Minimization: We only collect the data that is strictly necessary.
• Accuracy: We strive to maintain data accuracy and keep it up to date.
• Storage Limitation: Data is retained only for as long as necessary to fulfill its intended purpose or as required by law.
• Integrity and Confidentiality: We protect data against unauthorized access, disclosure, alteration, and destruction.

Processing of your personal data is based on one or more of the following:

• The execution of a contract or pre-contractual measures.
• Your explicit consent (which you may withdraw at any time, except when processing is based on another legal basis).
• Compliance with legal obligations (e.g., tax or regulatory requirements).
• Protection of vital interests.
• Our legitimate interests, provided that these do not override your fundamental rights and freedoms.

Our website uses cookies and similar technologies (e.g., web beacons and single-pixel GIFs) to enhance your experience. Their main functions include:

• Authentication: Ensuring that you receive a personalized and secure experience.
• Security: Supporting features to detect and prevent malicious activities.
• Preferences and Personalization: Retaining your preferences (e.g., language) and facilitating smoother interactions.
• Marketing and Analytics: Measuring the effectiveness of our marketing campaigns and analyzing website usage (e.g., via Google Analytics).
• Performance and Research: Evaluating and improving our products and services.
• Session Cookies: Temporary cookies that are deleted once your browser is closed.
• Persistent Cookies: Cookies that remain on your device until they are manually deleted or expire.

When you visit our website, certain general information is automatically collected and stored in server log files. This data may include:

• Your operating system, browser type, and version.
• The subpages you visit and referring sites.
• Your IP address, as well as the date and time of access.
• Your Internet service provider details.
• Other similar technical information used to safeguard our IT systems.

This information is used to:

• Deliver and display the appropriate content.
• Optimize website performance and advertising content.
• Ensure the proper functioning of our website and IT systems.
• Assist authorities with necessary details in case of cyberattacks.

Anonymous log data is stored separately from any personal information.

If you contact us via our online form or email, the personal data you provide will be used solely to process and respond to your inquiry. This data will not be disclosed to third parties unless required by law.

In compliance with applicable data protection laws, you have the following rights regarding your personal data:

• Access: The right to request access to your personal data.
• Rectification: The right to request correction of inaccurate or incomplete data.
• Erasure: The right to request deletion of your personal data, subject to legal limitations.
• Restriction: The right to request the restriction of processing where applicable.
• Data Portability: The right to receive your data in a structured, commonly used, and machine-readable format.
• Objection: The right to object to the processing of your personal data for direct marketing or other purposes.

To exercise any of these rights, please contact us using the channels provided on our website.

Personal data is retained only as long as necessary to fulfill the purposes for which it was collected or as required by applicable laws. Once the retention period expires, the data is routinely deleted or blocked.

The processing of your personal data is based on one or more of the following legal grounds:

• Article 6(1)(a) of the GDPR: Processing is based on your consent.
• Article 6(1)(b) of the GDPR: Processing is necessary for the execution of a contract or pre-contractual measures.
• Article 6(1)(c) of the GDPR: Processing is required for compliance with legal obligations.
• Article 6(1)(d) of the GDPR: Processing is necessary to protect vital interests.
• Article 6(1)(f) of the GDPR: Processing is based on our legitimate interests, provided that your rights do not override these interests.

When processing is based on Article 6(1)(f), our legitimate interest is to manage and improve our business operations for the benefit of our employees, shareholders, and customers, without infringing on your fundamental rights.

• Criteria: Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected or as required by law.
• Deletion Request: You may request the deletion of your personal data by contacting us at [email protected] or by writing to the address provided.

• Mandatory by Law: Personal data may be processed as required for tax, regulatory, or other legal purposes.
• Contract Formation: The provision of personal data may be necessary to formalize contracts. Failure to provide such data could prevent the conclusion of a contract.