1. Identification of the Data Controller
In compliance with Regulation (EU) 2016/679, the General Data Protection Regulation (GDPR), Organic Law 3/2018 on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD), and Law 34/2002 on Information Society Services and Electronic Commerce (LSSICE), we inform you that the data controller for this website is:
Data Controller: Cristian Antonio Navarro García
NIF/CIF: 74372435A
Email: info@elalegrevagabundo.com
Website: https://elalegrevagabundo.com
2. Purposes of Processing
The personal data provided through this website will be processed for the following purposes:
Contact form: to manage inquiries, professional requests, press inquiries, contracts, collaborations, workshops, general communications or residencies sent by the user.
Communications subscription: managing subscriptions to news, archive of works, programming, tours, materials, or communications related to El Alegre Vagabundo, when the user expressly requests to receive them.
Technical operation of the site: maintaining security, availability, navigation, abuse prevention, form management, and normal WordPress operation.
Audiovisual or embedded content: displaying videos, galleries, or external content when using third-party services such as YouTube.
No automated profiles are created, nor are automated decisions with legal effects made on users.
3. Data processed
Depending on the form or functionality used, the following data may be processed:
- First and last name.
- Email address.
- Subject or type of inquiry.
- Message sent voluntarily.
- IP address, technical browsing data, and logs necessary for site security and operation.
- Email used for communications subscription.
- Preferences or consents given, where applicable.
No special categories of data are requested. Users should avoid including sensitive information in the form’s free fields.
4. Legal Basis
The legal basis for processing is:
Consent of the data subject: for sending forms, information requests, and subscriptions to communications.
Legitimate interest: to maintain site security, prevent abuse, retain minimal evidence of communications, and ensure proper technical functioning.
Execution of pre-contractual measures or relationship requested by the user: when the contact is for the purpose of contracting, reservations, scheduling, press inquiries, collaborations, or professional requests.
Legal obligation: when it is necessary to retain information to comply with legal obligations.
5. Data Retention
Data from the contact form will be retained for the time necessary to manage the inquiry and, where applicable, for the periods required to address potential legal obligations.
Subscription data will be retained while the user maintains an active subscription or until they request to unsubscribe.
Technical and security logs will be retained for the period necessary to ensure site security and address any incidents.
6. Recipients and Processors of Data Processing
Data may be processed by providers necessary to provide the service, such as:
- Web hosting provider.
- WordPress and plugins installed on the site.
- Email or SMTP service used to send forms.
- Subscription or newsletter management service, if active.
- Technical providers necessary for maintenance, security, or backups.
Personal data will not be sold or transferred to third parties for commercial purposes.
When using external services such as YouTube, the user may connect to servers of these third parties. These services may process data in accordance with their own policies.
7. International Transfers
Some technology providers may be located outside the European Economic Area or process data from third countries. In such cases, the data controller will ensure that appropriate safeguards are in place in accordance with the GDPR, such as adequacy decisions, standard contractual clauses, or other legally established mechanisms.
In particular, embedded content from YouTube or other third parties may involve the technical transmission of data, such as IP address or browser information, to those providers.
8. User Rights
Users may exercise their rights of access, rectification, erasure, objection, restriction of processing, data portability, and withdrawal of consent by writing to:
The request must specify the right the user wishes to exercise and allow for verification of the requester’s identity when necessary.
You can also file a complaint with the Spanish Data Protection Agency:: https://www.aepd.es
9. Security
The data controller applies reasonable technical and organizational measures to protect personal data against loss, misuse, unauthorized access, alteration, or disclosure. However, no system connected to the Internet can guarantee absolute security.
10. Commercial Communications
Informative or promotional communications will only be sent when the user has expressly requested or authorized them, or when there is a prior relationship that allows it in accordance with the LSSICE (Spanish Law on Information Society Services and Electronic Commerce).
The user may unsubscribe or revoke their consent at any time through the link or mechanism provided in each communication, or by writing to info@elalegrevagabundo.com.
Cookie Policy
This site uses its own cookies necessary for its technical operation and may use third-party technologies when displaying embedded content, videos, or external resources.
Necessary Technical Cookies
These are essential for navigation, security, session management, abuse prevention, form submission, or basic WordPress operation. These cookies do not require prior consent when they are strictly necessary.
Third-Party Cookies and Embedded Content
The site may display videos or content from third parties, especially YouTube or YouTube NoCookie. When playing or loading this content, these third parties may install cookies or similar technologies and receive technical information from the user, such as IP address, browser, or interaction with the content.
If analytics, advertising pixels, maps, external players, or other non-essential services are enabled, they must be blocked until valid user consent is obtained through a cookie settings panel.
Consent Management
Users can accept, reject, or configure non-essential cookies through the cookie management panel, when available. They can also delete or block cookies through their browser settings.