The Owner undertakes to comply with the regulations on the Protection of Personal Data and to respect the privacy of Users. The objective is to offer the best service to the User and for this it is necessary in some cases to process their personal data.
Data Controller
SEVILLA FÚTBOL CLUB S.A.D.
NIF: A41035346
Address: Calle Sevilla Fútbol Club s/n, 41005 Sevilla.
Telephone: 954 53 53 53
Email: lopd@sevillafc.com
Purposes for which the data is used, legitimacy and type of data
• Answering queries: Responding to queries from the User who contacts them through the forms or communication tools available on the Website. The legitimate basis for the processing is the User's consent, in accordance with Art. 6(1)(a) of the GDPR.
The data processed for this purpose are: identification data (such as first name, last name), contact information (such as email address, postal address, telephone number, user profile) and communications sent by the user (such as questions, conversations, complaints or other information sent to our support team).
If the User decides to use WhatsApp as a channel to communicate with Customer Service, this tool will be opened on a site external to this Website, managed by the WhatsApp application itself (an entity located in the USA, a country that does not have the same level of security as the European Union). The User is advised to review their privacy settings and read WhatsApp's Privacy Policy for more detailed information on WhatsApp's use of the personal data of users who use its services.
• Provision of services: To provide the services requested by the User. The legitimate basis for the processing is the performance of a contract to which the User is a party, in accordance with Art. 6(1)(b) GDPR. The data processed for this purpose are: identification data (such as name, surname, ID card, date of birth), contact information (such as email address, postal address, telephone number), information on the services provided (such as characteristics of the service).
• Registration: Processing of registration as a Registered User of the Website in order to provide you with the services that require it. The legitimate basis for the processing is the User's consent, pursuant to Art. 6(1)(a) of the GDPR, and the performance of a contract to which the User is a party, pursuant to Art. 6(1)(b) of the GDPR.
The data processed for this purpose are: identification data (such as name, surname, date of birth), contact information (such as email address, postal address, telephone number), account information (such as login credentials, including email address, password, account settings, gender, language, social media).
• Import of data from social networks: The User may freely choose the option to use his/her profile on his/her social networks to register or log in, as well as to share additional information about his/her profile on said social networks. The legitimate basis for the processing is the User's consent, in accordance with Art. 6(1)(a) of the GDPR.
The data processed for this purpose are:
Data shared via Facebook:
Profile name and photo (Required to register. However, the profile picture is not processed)
Email Address (Optional)
Birthday (Optional)
Biography Posts (Optional. Public and private bio posts, including photos and videos, information about the places tagged in them, and the types of reactions they receive.)
Gender (Optional)
Page Likes (Optional)
Current City (Optional)
Interest Categories (Optional)
Based on the likes of the page and the posts in the bio, the following inferred data can be obtained:
"Engagement" value: this value measures the volume of interactions that the user has with the Facebook wall of the official page.
"Social" value: this value measures the User's influence on social networks.
"Promotion" value: Users' walls are analysed for references to sweepstakes, promotions and sweepstakes participations, and a value measuring the promotional ratio on the User's wall is assigned. It is also checked whether the User's profile follows Facebook pages dedicated to advertising promotions, raffles and sweepstakes.
"Fan Value": This score is a combination of the previous 3 that ranks Users by the value obtained (a User with a higher score will be considered a more valuable user).
Data shared through Google:
Name and surname (Required to register)
Email Address (Required to register)
Last Name (Optional)
Age (Optional)
Date of Birth (Optional)
Country (Optional)
Gender (Optional)
City (Optional)
Telephone (Optional)
Interest (Optional)
Likes (Optional)
Commercial Communications Preferences (Optional)
Keywords/Social Activity (Optional)
Medium (Optional)
Hashtags (Optional)
Data shared via Twitter:
Name
Surname
No. of followers
Interests
Tastes
Sites
Keywords/social activity
Hashtags
Personality Insights
• Sales/Contracting: Management of the process of selling the products or contracting of services selected by the User. The legitimate basis for the processing is the performance of a contract to which the User is a party, in accordance with Art. 6(1)(b) GDPR. The data processed for this purpose are: identification data (such as name, surname, ID number, date of birth), contact information (such as email address, postal address, telephone number), purchase/contracting information (such as product or service characteristics, delivery method, discount code, shipping address) and billing information (such as tax identification number, billing address, etc.). payment method).
• Registration: Procedure by which the User communicates his/her interest in participating in activities. The legitimate basis for the processing is the User's consent, in accordance with Art. 6(1)(a) of the GDPR. The data processed for this purpose are: identification data (such as name, surname, ID card, date of birth), contact information (such as email address, postal address, telephone number), information on the activities to which the User registers (such as characteristics of the same).
• Browsing data (Cookies): Data collected by own or third-party cookies that may be generated by this Website and that the User can freely choose to activate in full or granular in advance. The data processing carried out by cookies is specifically informed in the Cookies Policy. The legitimate basis for the processing is the User's consent, in accordance with Article 6.1.a) of the GDPR and the legitimate interest of the entity, in accordance with Article 6.1.f) of the GDPR, for those data that are necessary for the operation of the Website. according to their purposes. For more information, you can consult our Cookies Policy or modify your choice of preferences in our cookie management tool.
The Owner will not be responsible for the processing of the information collected by the cookies of third-party advertising managers, nor will they have access to the data collected by them. The Owner informs that these third parties will process the data for their own purposes depending on each type of cookies and may in turn transfer the information to other service providers or process the data in combination with data collected on other websites by these or other publishers to provide the services that each of them entrusts to it.
These third parties may be located both within the territory of the EU/EEA and in third countries, including countries that may not have the adequate level of protection of personal data according to the criteria of the European Commission. based on the recommendations of the supervisory authorities, with third parties acting both as processors or sub-processors, and as data controllers.
The user who accepts the processing of data by third-party cookies must be aware that by accepting these terms they imply the transfer of data to third parties and the international transfer of their data.• Browsing data (Google): By implementing various Google technologies for the management of ads such as Google Ad Manager 360 or Google Ad Exchange on this Website,data generated by the User during registration on applications or devices linked to Google or on third-party sites that use these technologies in conjunction with the data generated on this Website may be processed. The legitimate basis for the processing is the User's consent pursuant to Art. 6(1)(a) of the GDPR and the performance of a contract to which the User is a party pursuant to Art. 6(1)(b) of the GDPR.
The data processed for this purpose are: browsing data collected by Google with the consent of users of its privacy policies, when using applications or devices, with the intention of creating commercial profiles and impacting with advertising in a personalized way. Google Privacy Policy: https://policies.google.com/privacy
Information about Google Technologies: https://policies.google.com/technologies
International Data Transfer. Google Inc. is headquartered in the United States, which does not guarantee an equivalent level of protection as the European Economic Area. By making use of its technology, the owner accepts the standard contractual clauses adopted by the European Commission with said provider in accordance with the provisions of art. 46.2 c) of the General Data Protection Regulation, including additional guarantees and obligations addressed to these providers for the greatest possible security and transparency. More information on the content of Google's Standard Contractual Clauses can be found at:
ttps://support.google.com/publisherpolicies/answer/10437486?hl=es
• Human Resources: Data collected in Human Resources forms or attached to files by candidates interested in participating in personnel selection processes. The legitimate basis for the processing is the User's consent, in accordance with Art. 6(1)(a) of the GDPR. The data we process for this purpose are: identification data (such as name, surname, date of birth), contact information (such as address, province, postal code, town, telephone, email), training data and professional data (level of studies, languages, CCV), amateur status and profile.
• Whistleblowing Channel: Data collected in the Whistleblowing Channel form, both from the whistleblower and from affected third parties, necessary for the management of the entity's internal whistleblowing system. The legitimate basis for the processing of own data is the User's consent, in accordance with Article 6(1)(a) of the GDPR, and compliance with a legal obligation applicable to the Data Controller, in accordance with Article 6(1)(c) of the GDPR. In the case of third-party data provided on this channel by the User, the legitimate basis is the existence of a public interest, in accordance with Art. 6.1.e) of the GDPR.
The data processed for this purpose are: identification data (such as name, surname), contact information (telephone, email) and data of the complaint (description, people involved, knowledgeable people).
• Communication with shareholders: Data on the registration or updating of information of the shareholders of this Entity, necessary for the control of the ownership of the shares and manage their relationship with the company, including the sending of communications with only shareholder information. The legitimate basis for the processing is compliance with a legal obligation applicable to the Data Controller as data controller, pursuant to Art. 6(1)(c) of the GDPR. The data processed for this purpose are: data provided by shareholders when contacting the entity for the different procedures, data contained in the minutes or in the communications on the virtual notice board.
• Commercial communications: For the User who voluntarily accepts this option, promotions, advertising, offers, news, invitations to events and any type of commercial information from the Owner will be sent. The legitimate basis for the processing is the User's consent, in accordance with Art. 6(1)(a) of the GDPR. The data processed for this purpose are: identification data (such as name, surname), contact information (such as email address, postal address, telephone number).
• Commercial communications with third-party information: For the User who voluntarily accepts this option, promotions, advertising, offers, news, invitations to events and any type of commercial information from third parties with which the Owner has an agreement will be sent, in any case it will be the Owner who will make this sending and in no case will the User's data be transferred to these third parties. The legitimate basis for the processing is the User's consent, in accordance with Art. 6(1)(a) of the GDPR. The data processed for this purpose are: identification data (such as name, surname), contact information (such as email address, postal address, telephone number).
• Personalized commercial communications: For the User who voluntarily accepts this option, promotions, advertising, offers, news, invitations to events and any type of personalized commercial information that the Owner may determine based on their behavior, preferences and personal profile will be sent. The legitimate basis for the processing is the User's consent, in accordance with Art. 6(1)(a) of the GDPR. The data processed for this purpose are: identification data (such as name, surname, date of birth, gender), contact information (such as email address, postal address, telephone number), profiling data (interests, preferences, service usage history), application data (use of apps, websites or social networks, location data).
In any case, the User may subsequently at any time oppose the receipt of commercial communications by choosing the option to unsubscribe present in each of the communications received. For Registered Users, it will also be possible to modify the settings of their choices regarding the receipt of communications in "My Account".
When the legitimate basis is the contractual relationship, the data will be kept for as long as this relationship is maintained and subsequently in compliance with the legal limitation periods that are applicable to it. When the legitimate basis is consent, the data will be kept until consent is withdrawn. When the legitimate basis is a legal obligation, the data will be kept for the legal limitation periods that apply to you.
Transfers: There are no plans to transfer the personal data of Users collected through this Website to any third party without a legal basis that legitimises this processing. The Owner uses external providers that use Cookies to carry out analytical studies of the use and generation of advertising that may be behavioural. The Owner does not have access to the data generated by these Cookies. The User will be able to select which Cookies will be generated on this Website in advance, will be able to subsequently manage their decisions and will be able to consult the Cookies Policy at any time.
Rights of the interested parties: Users may exercise their rights of access, rectification, deletion, portability and limitation or opposition by sending a signed request by post with the subject "Data Protection", to the address: calle Sevilla Fútbol Club s/n, 41005 Sevilla, clearly indicating the contact details or by sending a request by email with the subject "Exercise of Rights", to lopd@sevillfc.com, from the same email account you provided. Users have the right to withdraw their consent and have the right to lodge a complaint with the Supervisory Authority (Spanish Data Protection Agency www.aepd.es).
Data Protection Officer
It is reported that the Data Protection Officer of the entity is: Grupo Datcon Sur S.L.U., C/ Dr. Duarte Acosta 7, 1.24, 11500, El Puerto de Santa María, Cádiz, and its contact: ejercicioderechos@grupodatcon.com.
The free text fields that may appear in the forms of the Website have the sole and exclusive purpose of collecting information to improve the quality of the Services. The User shall not include, in those spaces that the Website may offer as "free text fields", any personal data that may be classified within those data for which a level of Special protection, such data being understood as data relating to the economic and financial situation, psychological profiles, ideology, religion, beliefs, trade union membership, health, racial origin and/or sex life.
Non-obligatory fields
The Owner informs the User of the non-obligatory nature of the collection of some data, except in the fields indicated otherwise by means of a (*). However, failure to complete such data may prevent the provision of all Services linked to such data, releasing you from any liability for the non-provision or incomplete provision of these Services.
Access to and rectification of personal data
The User undertakes to provide accurate information in relation to his/her personal data, and to keep the data provided to the Owner always updated. The User shall be responsible, in any case, for the veracity of the data provided, and the Owner reserves the right to exclude from the services any User who has provided false data, without prejudice to any other actions that may be taken by law. The data provided by the User will be presumed to be correct, so that, in the event of erroneous sending of their data by the User, the Owner declines any responsibility that could cause an error or damage to the User himself or to third parties.
Personal data of third parties
When a User provides data of third parties over whom they do not have representation or legal guardianship, they will be considered joint data controllers, and within the obligations imposed by the General Data Protection Regulation, they will assume full responsibility for having the express consent of the interested party who owns these data, or of their legal guardian if any. for the transfer of this personal data to the Owner of this Website and its processing for each of the necessary purposes. The User shall also be obliged to transmit the information contained in this Privacy Policy to the interested party.
The User who provides data of a third party assumes all legal responsibility that may arise from the breach of these obligations.
Processing of personal data by third parties
In relation to the management of services, Users' data may be processed by companies that provide the Owner with various services, including shipping, courier, accounting, consulting, computer maintenance, or any other that, due to their status as Data Processor, it is essential or unavoidable for them to access or process this data. This processing will not be considered in any case as a transfer of data.
Confidentiality
Information of any kind that the parties exchange with each other, that which they agree is of such nature, or that which simply relates to the content of such information, shall be considered confidential. The viewing of data through the Internet will not imply direct access to them, unless expressly consented to by the owner for each occasion.
Photographs
In compliance with the provisions of the current regulations on the Protection of Personal Data, we inform you that photographs in which people appear are considered personal data. With this communication, it is reported that photographs of people may appear on this Website for promotional purposes and that they have voluntarily agreed to it. If, in any case, any person who appears in them wishes not to show a photograph, please contact them and they will be removed as soon as possible. This clause shall not apply to persons who have provided their image in the context of a professional service or to persons who have assigned their image rights to the Owner.
This policy was updated as of September 6, 2023.