Responsible: Elevate Costa Blanca SL CIF: B75595135 TLF: +34 689 056912 DIR: Avenida del Mar 37, Los Montesinos, 03187 sales@elevatecostablanca.com

Purpose: Management of requests for information through the website in order to provide professional real estate services and provide information about what you request.

Legitimation: Legitimation is based on the consent you give us by clicking the button ‘I accept the data protection policy’

Recipients: Your data will not be passed on to anyone, unless legally obliged to do so.

Rights: You may exercise your rights of access, rectification, deletion, opposition, portability and withdrawal of consent of your personal data by sending an e-mail to sales@elevatecostablanca.com.

PRIVACY POLICY

This privacy policy is adapted to current Spanish and European legislation on the protection of personal data on the Internet, and has been established in accordance with the following regulations:

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (RGPD)

Ley Orgánica 3/2018, de 5 de diciembre, de Protección de Datos Personales y Garantía de los Derechos Digitales (LOPDGDD)

Ley 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI)

The processing of personal data, as well as any other information requested from users for the management and processing of online queries within the Website, will be carried out subject to the provisions of the aforementioned legislation.

This Website is a secure space where the personal data of our users is respected and cared for. As the privacy of your data is very important to us, we communicate our guiding principles regarding your privacy:

We only ask you for personal information that is necessary to provide the services you request from us.

Apart from the cases provided for by law and for the purposes defined therein, we never share personal information about our users with anyone, unless we have your express authorisation to do so or we are fully entitled to do so, for example, for the provision of a contracted or requested service.

We never use your personal data for any purpose other than that expressed in this privacy policy.

Identity of the person responsible for the processing of personal data

ELEVATE COSTA BLANCA S.L CIF B75594135 and its commercial brands, with address for these purposes at Avenida del mar 37, 03187 Los Montesinos (Spain) with email address sales@elevatecostablanca.com

Information collected and purpose

For the purposes established in arts. 13 and 14 RGPD (Right to information in the collection of data), the customer is previously informed that the data collected when registering as a user will form part of our files, the owner of the Website being responsible for the same. The purpose of this data processing is the management, control and invoicing of orders placed by registered users through the electronic platform (Online Shop), with the collection of personal data being the result of a commercial relationship

for the purchase and sale of retail goods through a catalogue. Likewise, a record of processing activities is kept for monitoring purposes.

The user is also informed that the information provided is subject to the commercial relationship established in the electronic order and will not be used for any other purpose. However, when you register, either to contract any service or to be able to acquire a free gift or bonus, we will contact you afterwards. In the latter case, you can easily unsubscribe from these communications by clicking the Unsubscribe link in the link at the end of each email.

Likewise, with the confirmation of sending personal data through the form provided on the Website, the user should be aware that:

The processing and management of products purchased through the electronic ordering platform, invoiced by the Website controller, in accordance with the data collection form provided in the domain, are hosted on the servers owned by the Data Controller through the Active Campaign services platform https://www.activecampaign.com/about/careers/locations/dublin-office .

The digital payment platform we use is Thivecarts, which also collects data. For more information https://legal-thrivecart-com.translate.goog/platform/privacy/?_x_tr_sl=en&_x_tr_tl=es&_x_tr_hl=es&_x_tr_pto=sc which, being based in New Zealand, is entitled to process data from the EU, in accordance with the Commission's implementing decision of 19 December 2012 https://eur-lex.europa.eu/legal-ontent/ES/TXT/PDF/?uri=CELEX:32013D0065&from=ES

Some of the services required on this website may be redirected to https://dinamizadigital.com/ another of the Controller's trademarks. Likewise, by clicking on the link to the PRESENT EVENT, you will be redirected to https://eventonextt.com/.

The user may exercise their respective rights of cancellation, deletion, limitation of processing or portability of data, in accordance with the conditions set out in the legal notice of conditions of use of the e-commerce platform for orders.

In the event of non-compliance with the purposes set out in these terms and conditions by the party responsible for the Website, the user has the right to lodge a complaint with the Spanish Data Protection Agency.

Principles applicable to the processing of personal data

The processing of the user customer's personal data will be subject to the following principles set out in art. 5 of the RGPD and in article 4 and following of the LOPDGDD:

Principle of lawfulness, fairness and transparency: the consent of the user will be required at all times after fully transparent information on the purposes for which personal data are collected.

Purpose limitation principle: personal data shall be collected for specified, explicit and legitimate purposes.

Principle of data minimisation: personal data collected will be only those strictly necessary in relation to the purposes for which they are processed.

Accuracy principle: personal data must be accurate and always up to date.

Principle of limitation of the storage period: personal data shall only be kept in a form that allows the identification of the user for the time necessary for the purposes of the processing.

Principle of integrity and confidentiality: personal data shall be processed in a manner that ensures their security and confidentiality.

Principle of proactive responsibility: The controller of the Website shall maintain and regulate the necessary technical and logistical means sufficient to ensure that all the principles applicable to the processing are complied with.

Category of personal data processed

The Website manager only processes the identification data of user customers (name, surname, ID number, address, e-mail address, etc.) for the purpose of processing and managing the services contracted and purchased by them through the electronic ordering platform, which are invoiced to the customer by the Website manager, in accordance with the data collection form provided for in that domain.

Legal basis for the processing of personal data

The legal basis for the processing of personal data is the consent of the user, which is given by the user when registering on the electronic ordering platform as a registered user of the same to carry out online commerce transactions, with a unique identifier number and personal password.

Retention of personal data

The data will be kept by the person responsible for the Website, for statistical purposes regarding the volume of orders placed by the user, or until the user requests its deletion. We keep your transaction history so that you can review past purchases made, together with your registered identification data, in order to control the correct traceability of the products delivered.

In the Legal Notice of the Website that the user accepts when registering as a registered customer, information is provided about the period of conservation, processing and purpose of the personal data collected.

Personal data of minors

The person responsible for the Website does not collect data from minors under fourteen years of age; access to the electronic ordering platform is forbidden under their responsibility.

Security of personal data

The operator of the Website has taken all necessary measures, within its possibilities and the state of technology, to ensure the functioning of the electronic platform and to prevent the existence of components harmful to customers and/or users.

However, the service provider cannot guarantee that the use of the Website and/or the electronic platform will be interrupted for technical reasons. Likewise, neither can it guarantee that the information provided is free of errors, as it is merely informative in nature and is not binding on the party responsible for the Website.

Consequently, the person responsible for the Website neither guarantees nor accepts responsibility for:

The uninterrupted continuity in the use of the Website, as well as the lack of availability and/or accessibility of the same.

The absence of errors in the use of the Website.

The absence of viruses and other harmful components on the Website or on the server that supplies it.

The invulnerability of the Website and/or the impregnability of the security measures adopted therein.

Any damage or harm caused, to themselves or to a third party, by any person who infringes the conditions of use of the Website or its security systems.

Any other damages that may be caused by reasons inherent to the non-functioning or defective functioning of the Website or the links located in the domain.

The person responsible for the Website makes every effort to avoid errors in the contents published on the electronic ordering platform; in particular, those relating to the description and price of products and goods. All the contents offered through the website are up to date, and the person responsible for the website reserves the right to modify them at any time. In any case, the service provider is not responsible for the consequences that may arise from any errors that may appear in the contents of the

Website and/or electronic platform.

In turn, it is important that the registered user protects himself against unauthorised access by third parties to his password, computers and devices by means of up-to-date antivirus systems that prevent any fraud in this regard. If shared computers and devices are used, make sure that the open session is properly closed.

Duty of confidentiality and secrecy

The person responsible for the Website undertakes to keep the strictest of secrets with regard to the information collected by the user, having the duty to protect this information and undertaking not to disclose, publish, transfer, sell or otherwise directly or indirectly make it available to unauthorised third parties; maintaining this obligation even when the commercial relationship with the user ends.

The identifier and password provided to the user who registers as a customer to access the electronic ordering platform are provided exclusively for the sole purpose of enabling access to said platform and managing the placing of orders for articles marketed by the party responsible for the Website. Any use other than that authorised is expressly prohibited.

The user, registered customer, is obliged to guarantee the confidentiality of said identifier and password, and is solely responsible for the use made of them by the natural persons to whom they may have been communicated. It is expressly forbidden to communicate or reveal the identifier and password to third parties outside the client and/or who do not have any professional or employment relationship with the client, as well as to third parties who may carry out any type of activity concurrent with those

carried out by CSP or which may be in competition with the latter. It is expressly forbidden to extract, disclose, copy, distribute, disseminate or communicate to third parties any information from the electronic platform.

Rights deriving from the processing of personal data

The user may exercise the following rights against the controller of the Website:

Right of access: this is the user's right to obtain confirmation as to whether or not the Website controller is processing their personal data and, if so, to obtain information on the specific data processed and the processing that the Website controller has carried out or is carrying out, together with the information available on the origin of said data and its recipients.

Right of rectification: This is the user's right to have their personal data modified when it is inaccurate or incomplete.

Right of erasure: This is the user's right to obtain the deletion of his or her personal data, unless otherwise provided for in current legislation, when such data is no longer necessary for the purposes for which it was collected for processing.

Right to limitation of processing: This is the user's right to limit the processing of his or her personal data when the controller no longer needs the personal data or the processed data are excessive to fulfil the intended purposes.

Right to data portability: This is the user's right to receive from the controller his or her personal data in a structured format for transmission directly to another controller, where technically feasible.

Right to object: This is the user's right not to have his or her personal data processed or to cease the processing of such data, when such data is no longer necessary to fulfil the intended purposes.

The Website controller informs the user that he/she may exercise the rights of access, rectification, cancellation, opposition, suppression, limitation of processing and portability of the data under the terms provided for in current legislation, by means of an express request addressed to the Website controller, which must contain:

Name and surname(s) of the interested party, photocopy of their ID card, passport or other valid document that allows their identification.

The request in which the request is made.

Address for communication purposes.

Date and signature of the applicant.

Documents accrediting the request being made, if applicable.

The aforementioned request will be dealt with by the person responsible for the Website in accordance with the terms set out in the RGPD and its corresponding implementing regulations.

Said request may be formalised by e-mail: sales@elevatecostablanca.com

Complaints to the supervisory authority

In the event that the user considers that there is a problem or infringement of current data protection regulations, he/she will have the right to file a complaint with a supervisory authority, which in the case of Spain, is the Spanish Data Protection Agency (www.aepd.es).

Cookies Policy

The Website makes use of cookies that are accepted, rejected or expressly configured by the user at the start of the session. For further information on this subject, please click on the following link https://www.elevatecostablanca.com/es.

Changes to the privacy policy

The party responsible for the Website reserves the right to modify this Privacy and Cookies Policy, according to its own criteria, or motivated by a legislative, jurisprudential or doctrinal change of the supervisory authority. Changes or updates to this Privacy and Cookies Policy will be explicitly notified to the registered user.

The latest revision of this Privacy Policy was approved on 3 January 2023.

Responsible: Elevate Costa Blanca SL CIF: B75595135 TLF: +34 689 056912 DIR: Avenida del Mar 37, Los Montesinos, 03187 sales@elevatecostablanca.com

Purpose: Management of requests for information through the website in order to provide professional real estate services and provide information about what you request.

Legitimation: Legitimation is based on the consent you give us by clicking the button ‘I accept the data protection policy’

Recipients: Your data will not be passed on to anyone, unless legally obliged to do so.

Rights: You may exercise your rights of access, rectification, deletion, opposition, portability and withdrawal of consent of your personal data by sending an e-mail to sales@elevatecostablanca.com.

PRIVACY POLICY

This privacy policy is adapted to current Spanish and European legislation on the protection of personal data on the Internet, and has been established in accordance with the following regulations:

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (RGPD)

Ley Orgánica 3/2018, de 5 de diciembre, de Protección de Datos Personales y Garantía de los Derechos Digitales (LOPDGDD)

Ley 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI)

The processing of personal data, as well as any other information requested from users for the management and processing of online queries within the Website, will be carried out subject to the provisions of the aforementioned legislation.

This Website is a secure space where the personal data of our users is respected and cared for. As the privacy of your data is very important to us, we communicate our guiding principles regarding your privacy:

We only ask you for personal information that is necessary to provide the services you request from us.

Apart from the cases provided for by law and for the purposes defined therein, we never share personal information about our users with anyone, unless we have your express authorisation to do so or we are fully entitled to do so, for example, for the provision of a contracted or requested service.

We never use your personal data for any purpose other than that expressed in this privacy policy.

Identity of the person responsible for the processing of personal data

ELEVATE COSTA BLANCA S.L CIF B75594135 and its commercial brands, with address for these purposes at Avenida del mar 37, 03187 Los Montesinos (Spain) with email address sales@elevatecostablanca.com

Information collected and purpose

For the purposes established in arts. 13 and 14 RGPD (Right to information in the collection of data), the customer is previously informed that the data collected when registering as a user will form part of our files, the owner of the Website being responsible for the same. The purpose of this data processing is the management, control and invoicing of orders placed by registered users through the electronic platform (Online Shop), with the collection of personal data being the result of a commercial relationship

for the purchase and sale of retail goods through a catalogue. Likewise, a record of processing activities is kept for monitoring purposes.

The user is also informed that the information provided is subject to the commercial relationship established in the electronic order and will not be used for any other purpose. However, when you register, either to contract any service or to be able to acquire a free gift or bonus, we will contact you afterwards. In the latter case, you can easily unsubscribe from these communications by clicking the Unsubscribe link in the link at the end of each email.

Likewise, with the confirmation of sending personal data through the form provided on the Website, the user should be aware that:

The processing and management of products purchased through the electronic ordering platform, invoiced by the Website controller, in accordance with the data collection form provided in the domain, are hosted on the servers owned by the Data Controller through the Active Campaign services platform https://www.activecampaign.com/about/careers/locations/dublin-office .

The digital payment platform we use is Thivecarts, which also collects data. For more information https://legal-thrivecart-com.translate.goog/platform/privacy/?_x_tr_sl=en&_x_tr_tl=es&_x_tr_hl=es&_x_tr_pto=sc which, being based in New Zealand, is entitled to process data from the EU, in accordance with the Commission's implementing decision of 19 December 2012 https://eur-lex.europa.eu/legal-ontent/ES/TXT/PDF/?uri=CELEX:32013D0065&from=ES

Some of the services required on this website may be redirected to https://dinamizadigital.com/ another of the Controller's trademarks. Likewise, by clicking on the link to the PRESENT EVENT, you will be redirected to https://eventonextt.com/.

The user may exercise their respective rights of cancellation, deletion, limitation of processing or portability of data, in accordance with the conditions set out in the legal notice of conditions of use of the e-commerce platform for orders.

In the event of non-compliance with the purposes set out in these terms and conditions by the party responsible for the Website, the user has the right to lodge a complaint with the Spanish Data Protection Agency.

Principles applicable to the processing of personal data

The processing of the user customer's personal data will be subject to the following principles set out in art. 5 of the RGPD and in article 4 and following of the LOPDGDD:

Principle of lawfulness, fairness and transparency: the consent of the user will be required at all times after fully transparent information on the purposes for which personal data are collected.

Purpose limitation principle: personal data shall be collected for specified, explicit and legitimate purposes.

Principle of data minimisation: personal data collected will be only those strictly necessary in relation to the purposes for which they are processed.

Accuracy principle: personal data must be accurate and always up to date.

Principle of limitation of the storage period: personal data shall only be kept in a form that allows the identification of the user for the time necessary for the purposes of the processing.

Principle of integrity and confidentiality: personal data shall be processed in a manner that ensures their security and confidentiality.

Principle of proactive responsibility: The controller of the Website shall maintain and regulate the necessary technical and logistical means sufficient to ensure that all the principles applicable to the processing are complied with.

Category of personal data processed

The Website manager only processes the identification data of user customers (name, surname, ID number, address, e-mail address, etc.) for the purpose of processing and managing the services contracted and purchased by them through the electronic ordering platform, which are invoiced to the customer by the Website manager, in accordance with the data collection form provided for in that domain.

Legal basis for the processing of personal data

The legal basis for the processing of personal data is the consent of the user, which is given by the user when registering on the electronic ordering platform as a registered user of the same to carry out online commerce transactions, with a unique identifier number and personal password.

Retention of personal data

The data will be kept by the person responsible for the Website, for statistical purposes regarding the volume of orders placed by the user, or until the user requests its deletion. We keep your transaction history so that you can review past purchases made, together with your registered identification data, in order to control the correct traceability of the products delivered.

In the Legal Notice of the Website that the user accepts when registering as a registered customer, information is provided about the period of conservation, processing and purpose of the personal data collected.

Personal data of minors

The person responsible for the Website does not collect data from minors under fourteen years of age; access to the electronic ordering platform is forbidden under their responsibility.

Security of personal data

The operator of the Website has taken all necessary measures, within its possibilities and the state of technology, to ensure the functioning of the electronic platform and to prevent the existence of components harmful to customers and/or users.

However, the service provider cannot guarantee that the use of the Website and/or the electronic platform will be interrupted for technical reasons. Likewise, neither can it guarantee that the information provided is free of errors, as it is merely informative in nature and is not binding on the party responsible for the Website.

Consequently, the person responsible for the Website neither guarantees nor accepts responsibility for:

The uninterrupted continuity in the use of the Website, as well as the lack of availability and/or accessibility of the same.

The absence of errors in the use of the Website.

The absence of viruses and other harmful components on the Website or on the server that supplies it.

The invulnerability of the Website and/or the impregnability of the security measures adopted therein.

Any damage or harm caused, to themselves or to a third party, by any person who infringes the conditions of use of the Website or its security systems.

Any other damages that may be caused by reasons inherent to the non-functioning or defective functioning of the Website or the links located in the domain.

The person responsible for the Website makes every effort to avoid errors in the contents published on the electronic ordering platform; in particular, those relating to the description and price of products and goods. All the contents offered through the website are up to date, and the person responsible for the website reserves the right to modify them at any time. In any case, the service provider is not responsible for the consequences that may arise from any errors that may appear in the contents of the

Website and/or electronic platform.

In turn, it is important that the registered user protects himself against unauthorised access by third parties to his password, computers and devices by means of up-to-date antivirus systems that prevent any fraud in this regard. If shared computers and devices are used, make sure that the open session is properly closed.

Duty of confidentiality and secrecy

The person responsible for the Website undertakes to keep the strictest of secrets with regard to the information collected by the user, having the duty to protect this information and undertaking not to disclose, publish, transfer, sell or otherwise directly or indirectly make it available to unauthorised third parties; maintaining this obligation even when the commercial relationship with the user ends.

The identifier and password provided to the user who registers as a customer to access the electronic ordering platform are provided exclusively for the sole purpose of enabling access to said platform and managing the placing of orders for articles marketed by the party responsible for the Website. Any use other than that authorised is expressly prohibited.

The user, registered customer, is obliged to guarantee the confidentiality of said identifier and password, and is solely responsible for the use made of them by the natural persons to whom they may have been communicated. It is expressly forbidden to communicate or reveal the identifier and password to third parties outside the client and/or who do not have any professional or employment relationship with the client, as well as to third parties who may carry out any type of activity concurrent with those

carried out by CSP or which may be in competition with the latter. It is expressly forbidden to extract, disclose, copy, distribute, disseminate or communicate to third parties any information from the electronic platform.

Rights deriving from the processing of personal data

The user may exercise the following rights against the controller of the Website:

Right of access: this is the user's right to obtain confirmation as to whether or not the Website controller is processing their personal data and, if so, to obtain information on the specific data processed and the processing that the Website controller has carried out or is carrying out, together with the information available on the origin of said data and its recipients.

Right of rectification: This is the user's right to have their personal data modified when it is inaccurate or incomplete.

Right of erasure: This is the user's right to obtain the deletion of his or her personal data, unless otherwise provided for in current legislation, when such data is no longer necessary for the purposes for which it was collected for processing.

Right to limitation of processing: This is the user's right to limit the processing of his or her personal data when the controller no longer needs the personal data or the processed data are excessive to fulfil the intended purposes.

Right to data portability: This is the user's right to receive from the controller his or her personal data in a structured format for transmission directly to another controller, where technically feasible.

Right to object: This is the user's right not to have his or her personal data processed or to cease the processing of such data, when such data is no longer necessary to fulfil the intended purposes.

The Website controller informs the user that he/she may exercise the rights of access, rectification, cancellation, opposition, suppression, limitation of processing and portability of the data under the terms provided for in current legislation, by means of an express request addressed to the Website controller, which must contain:

Name and surname(s) of the interested party, photocopy of their ID card, passport or other valid document that allows their identification.

The request in which the request is made.

Address for communication purposes.

Date and signature of the applicant.

Documents accrediting the request being made, if applicable.

The aforementioned request will be dealt with by the person responsible for the Website in accordance with the terms set out in the RGPD and its corresponding implementing regulations.

Said request may be formalised by e-mail: sales@elevatecostablanca.com

Complaints to the supervisory authority

In the event that the user considers that there is a problem or infringement of current data protection regulations, he/she will have the right to file a complaint with a supervisory authority, which in the case of Spain, is the Spanish Data Protection Agency (www.aepd.es).

Cookies Policy

The Website makes use of cookies that are accepted, rejected or expressly configured by the user at the start of the session. For further information on this subject, please click on the following link https://www.elevatecostablanca.com/es.

Changes to the privacy policy

The party responsible for the Website reserves the right to modify this Privacy and Cookies Policy, according to its own criteria, or motivated by a legislative, jurisprudential or doctrinal change of the supervisory authority. Changes or updates to this Privacy and Cookies Policy will be explicitly notified to the registered user.

The latest revision of this Privacy Policy was approved on 3 January 2023.

Responsible: Elevate Costa Blanca SL CIF: B75595135 TLF: +34 689 056912 DIR: Avenida del Mar 37, Los Montesinos, 03187 sales@elevatecostablanca.com

Purpose: Management of requests for information through the website in order to provide professional real estate services and provide information about what you request.

Legitimation: Legitimation is based on the consent you give us by clicking the button ‘I accept the data protection policy’

Recipients: Your data will not be passed on to anyone, unless legally obliged to do so.

Rights: You may exercise your rights of access, rectification, deletion, opposition, portability and withdrawal of consent of your personal data by sending an e-mail to sales@elevatecostablanca.com.

PRIVACY POLICY

This privacy policy is adapted to current Spanish and European legislation on the protection of personal data on the Internet, and has been established in accordance with the following regulations:

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (RGPD)

Ley Orgánica 3/2018, de 5 de diciembre, de Protección de Datos Personales y Garantía de los Derechos Digitales (LOPDGDD)

Ley 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI)

The processing of personal data, as well as any other information requested from users for the management and processing of online queries within the Website, will be carried out subject to the provisions of the aforementioned legislation.

This Website is a secure space where the personal data of our users is respected and cared for. As the privacy of your data is very important to us, we communicate our guiding principles regarding your privacy:

We only ask you for personal information that is necessary to provide the services you request from us.

Apart from the cases provided for by law and for the purposes defined therein, we never share personal information about our users with anyone, unless we have your express authorisation to do so or we are fully entitled to do so, for example, for the provision of a contracted or requested service.

We never use your personal data for any purpose other than that expressed in this privacy policy.

Identity of the person responsible for the processing of personal data

ELEVATE COSTA BLANCA S.L CIF B75594135 and its commercial brands, with address for these purposes at Avenida del mar 37, 03187 Los Montesinos (Spain) with email address sales@elevatecostablanca.com

Information collected and purpose

For the purposes established in arts. 13 and 14 RGPD (Right to information in the collection of data), the customer is previously informed that the data collected when registering as a user will form part of our files, the owner of the Website being responsible for the same. The purpose of this data processing is the management, control and invoicing of orders placed by registered users through the electronic platform (Online Shop), with the collection of personal data being the result of a commercial relationship

for the purchase and sale of retail goods through a catalogue. Likewise, a record of processing activities is kept for monitoring purposes.

The user is also informed that the information provided is subject to the commercial relationship established in the electronic order and will not be used for any other purpose. However, when you register, either to contract any service or to be able to acquire a free gift or bonus, we will contact you afterwards. In the latter case, you can easily unsubscribe from these communications by clicking the Unsubscribe link in the link at the end of each email.

Likewise, with the confirmation of sending personal data through the form provided on the Website, the user should be aware that:

The processing and management of products purchased through the electronic ordering platform, invoiced by the Website controller, in accordance with the data collection form provided in the domain, are hosted on the servers owned by the Data Controller through the Active Campaign services platform https://www.activecampaign.com/about/careers/locations/dublin-office .

The digital payment platform we use is Thivecarts, which also collects data. For more information https://legal-thrivecart-com.translate.goog/platform/privacy/?_x_tr_sl=en&_x_tr_tl=es&_x_tr_hl=es&_x_tr_pto=sc which, being based in New Zealand, is entitled to process data from the EU, in accordance with the Commission's implementing decision of 19 December 2012 https://eur-lex.europa.eu/legal-ontent/ES/TXT/PDF/?uri=CELEX:32013D0065&from=ES

Some of the services required on this website may be redirected to https://dinamizadigital.com/ another of the Controller's trademarks. Likewise, by clicking on the link to the PRESENT EVENT, you will be redirected to https://eventonextt.com/.

The user may exercise their respective rights of cancellation, deletion, limitation of processing or portability of data, in accordance with the conditions set out in the legal notice of conditions of use of the e-commerce platform for orders.

In the event of non-compliance with the purposes set out in these terms and conditions by the party responsible for the Website, the user has the right to lodge a complaint with the Spanish Data Protection Agency.

Principles applicable to the processing of personal data

The processing of the user customer's personal data will be subject to the following principles set out in art. 5 of the RGPD and in article 4 and following of the LOPDGDD:

Principle of lawfulness, fairness and transparency: the consent of the user will be required at all times after fully transparent information on the purposes for which personal data are collected.

Purpose limitation principle: personal data shall be collected for specified, explicit and legitimate purposes.

Principle of data minimisation: personal data collected will be only those strictly necessary in relation to the purposes for which they are processed.

Accuracy principle: personal data must be accurate and always up to date.

Principle of limitation of the storage period: personal data shall only be kept in a form that allows the identification of the user for the time necessary for the purposes of the processing.

Principle of integrity and confidentiality: personal data shall be processed in a manner that ensures their security and confidentiality.

Principle of proactive responsibility: The controller of the Website shall maintain and regulate the necessary technical and logistical means sufficient to ensure that all the principles applicable to the processing are complied with.

Category of personal data processed

The Website manager only processes the identification data of user customers (name, surname, ID number, address, e-mail address, etc.) for the purpose of processing and managing the services contracted and purchased by them through the electronic ordering platform, which are invoiced to the customer by the Website manager, in accordance with the data collection form provided for in that domain.

Legal basis for the processing of personal data

The legal basis for the processing of personal data is the consent of the user, which is given by the user when registering on the electronic ordering platform as a registered user of the same to carry out online commerce transactions, with a unique identifier number and personal password.

Retention of personal data

The data will be kept by the person responsible for the Website, for statistical purposes regarding the volume of orders placed by the user, or until the user requests its deletion. We keep your transaction history so that you can review past purchases made, together with your registered identification data, in order to control the correct traceability of the products delivered.

In the Legal Notice of the Website that the user accepts when registering as a registered customer, information is provided about the period of conservation, processing and purpose of the personal data collected.

Personal data of minors

The person responsible for the Website does not collect data from minors under fourteen years of age; access to the electronic ordering platform is forbidden under their responsibility.

Security of personal data

The operator of the Website has taken all necessary measures, within its possibilities and the state of technology, to ensure the functioning of the electronic platform and to prevent the existence of components harmful to customers and/or users.

However, the service provider cannot guarantee that the use of the Website and/or the electronic platform will be interrupted for technical reasons. Likewise, neither can it guarantee that the information provided is free of errors, as it is merely informative in nature and is not binding on the party responsible for the Website.

Consequently, the person responsible for the Website neither guarantees nor accepts responsibility for:

The uninterrupted continuity in the use of the Website, as well as the lack of availability and/or accessibility of the same.

The absence of errors in the use of the Website.

The absence of viruses and other harmful components on the Website or on the server that supplies it.

The invulnerability of the Website and/or the impregnability of the security measures adopted therein.

Any damage or harm caused, to themselves or to a third party, by any person who infringes the conditions of use of the Website or its security systems.

Any other damages that may be caused by reasons inherent to the non-functioning or defective functioning of the Website or the links located in the domain.

The person responsible for the Website makes every effort to avoid errors in the contents published on the electronic ordering platform; in particular, those relating to the description and price of products and goods. All the contents offered through the website are up to date, and the person responsible for the website reserves the right to modify them at any time. In any case, the service provider is not responsible for the consequences that may arise from any errors that may appear in the contents of the

Website and/or electronic platform.

In turn, it is important that the registered user protects himself against unauthorised access by third parties to his password, computers and devices by means of up-to-date antivirus systems that prevent any fraud in this regard. If shared computers and devices are used, make sure that the open session is properly closed.

Duty of confidentiality and secrecy

The person responsible for the Website undertakes to keep the strictest of secrets with regard to the information collected by the user, having the duty to protect this information and undertaking not to disclose, publish, transfer, sell or otherwise directly or indirectly make it available to unauthorised third parties; maintaining this obligation even when the commercial relationship with the user ends.

The identifier and password provided to the user who registers as a customer to access the electronic ordering platform are provided exclusively for the sole purpose of enabling access to said platform and managing the placing of orders for articles marketed by the party responsible for the Website. Any use other than that authorised is expressly prohibited.

The user, registered customer, is obliged to guarantee the confidentiality of said identifier and password, and is solely responsible for the use made of them by the natural persons to whom they may have been communicated. It is expressly forbidden to communicate or reveal the identifier and password to third parties outside the client and/or who do not have any professional or employment relationship with the client, as well as to third parties who may carry out any type of activity concurrent with those

carried out by CSP or which may be in competition with the latter. It is expressly forbidden to extract, disclose, copy, distribute, disseminate or communicate to third parties any information from the electronic platform.

Rights deriving from the processing of personal data

The user may exercise the following rights against the controller of the Website:

Right of access: this is the user's right to obtain confirmation as to whether or not the Website controller is processing their personal data and, if so, to obtain information on the specific data processed and the processing that the Website controller has carried out or is carrying out, together with the information available on the origin of said data and its recipients.

Right of rectification: This is the user's right to have their personal data modified when it is inaccurate or incomplete.

Right of erasure: This is the user's right to obtain the deletion of his or her personal data, unless otherwise provided for in current legislation, when such data is no longer necessary for the purposes for which it was collected for processing.

Right to limitation of processing: This is the user's right to limit the processing of his or her personal data when the controller no longer needs the personal data or the processed data are excessive to fulfil the intended purposes.

Right to data portability: This is the user's right to receive from the controller his or her personal data in a structured format for transmission directly to another controller, where technically feasible.

Right to object: This is the user's right not to have his or her personal data processed or to cease the processing of such data, when such data is no longer necessary to fulfil the intended purposes.

The Website controller informs the user that he/she may exercise the rights of access, rectification, cancellation, opposition, suppression, limitation of processing and portability of the data under the terms provided for in current legislation, by means of an express request addressed to the Website controller, which must contain:

Name and surname(s) of the interested party, photocopy of their ID card, passport or other valid document that allows their identification.

The request in which the request is made.

Address for communication purposes.

Date and signature of the applicant.

Documents accrediting the request being made, if applicable.

The aforementioned request will be dealt with by the person responsible for the Website in accordance with the terms set out in the RGPD and its corresponding implementing regulations.

Said request may be formalised by e-mail: sales@elevatecostablanca.com

Complaints to the supervisory authority

In the event that the user considers that there is a problem or infringement of current data protection regulations, he/she will have the right to file a complaint with a supervisory authority, which in the case of Spain, is the Spanish Data Protection Agency (www.aepd.es).

Cookies Policy

The Website makes use of cookies that are accepted, rejected or expressly configured by the user at the start of the session. For further information on this subject, please click on the following link https://www.elevatecostablanca.com/es.

Changes to the privacy policy

The party responsible for the Website reserves the right to modify this Privacy and Cookies Policy, according to its own criteria, or motivated by a legislative, jurisprudential or doctrinal change of the supervisory authority. Changes or updates to this Privacy and Cookies Policy will be explicitly notified to the registered user.

The latest revision of this Privacy Policy was approved on 3 January 2023.

Responsible: Elevate Costa Blanca SL CIF: B75595135 TLF: +34 689 056912 DIR: Avenida del Mar 37, Los Montesinos, 03187 sales@elevatecostablanca.com

Purpose: Management of requests for information through the website in order to provide professional real estate services and provide information about what you request.

Legitimation: Legitimation is based on the consent you give us by clicking the button ‘I accept the data protection policy’

Recipients: Your data will not be passed on to anyone, unless legally obliged to do so.

Rights: You may exercise your rights of access, rectification, deletion, opposition, portability and withdrawal of consent of your personal data by sending an e-mail to sales@elevatecostablanca.com.

PRIVACY POLICY

This privacy policy is adapted to current Spanish and European legislation on the protection of personal data on the Internet, and has been established in accordance with the following regulations:

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (RGPD)

Ley Orgánica 3/2018, de 5 de diciembre, de Protección de Datos Personales y Garantía de los Derechos Digitales (LOPDGDD)

Ley 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI)

The processing of personal data, as well as any other information requested from users for the management and processing of online queries within the Website, will be carried out subject to the provisions of the aforementioned legislation.

This Website is a secure space where the personal data of our users is respected and cared for. As the privacy of your data is very important to us, we communicate our guiding principles regarding your privacy:

We only ask you for personal information that is necessary to provide the services you request from us.

Apart from the cases provided for by law and for the purposes defined therein, we never share personal information about our users with anyone, unless we have your express authorisation to do so or we are fully entitled to do so, for example, for the provision of a contracted or requested service.

We never use your personal data for any purpose other than that expressed in this privacy policy.

Identity of the person responsible for the processing of personal data

ELEVATE COSTA BLANCA S.L CIF B75594135 and its commercial brands, with address for these purposes at Avenida del mar 37, 03187 Los Montesinos (Spain) with email address sales@elevatecostablanca.com

Information collected and purpose

For the purposes established in arts. 13 and 14 RGPD (Right to information in the collection of data), the customer is previously informed that the data collected when registering as a user will form part of our files, the owner of the Website being responsible for the same. The purpose of this data processing is the management, control and invoicing of orders placed by registered users through the electronic platform (Online Shop), with the collection of personal data being the result of a commercial relationship

for the purchase and sale of retail goods through a catalogue. Likewise, a record of processing activities is kept for monitoring purposes.

The user is also informed that the information provided is subject to the commercial relationship established in the electronic order and will not be used for any other purpose. However, when you register, either to contract any service or to be able to acquire a free gift or bonus, we will contact you afterwards. In the latter case, you can easily unsubscribe from these communications by clicking the Unsubscribe link in the link at the end of each email.

Likewise, with the confirmation of sending personal data through the form provided on the Website, the user should be aware that:

The processing and management of products purchased through the electronic ordering platform, invoiced by the Website controller, in accordance with the data collection form provided in the domain, are hosted on the servers owned by the Data Controller through the Active Campaign services platform https://www.activecampaign.com/about/careers/locations/dublin-office .

The digital payment platform we use is Thivecarts, which also collects data. For more information https://legal-thrivecart-com.translate.goog/platform/privacy/?_x_tr_sl=en&_x_tr_tl=es&_x_tr_hl=es&_x_tr_pto=sc which, being based in New Zealand, is entitled to process data from the EU, in accordance with the Commission's implementing decision of 19 December 2012 https://eur-lex.europa.eu/legal-ontent/ES/TXT/PDF/?uri=CELEX:32013D0065&from=ES

Some of the services required on this website may be redirected to https://dinamizadigital.com/ another of the Controller's trademarks. Likewise, by clicking on the link to the PRESENT EVENT, you will be redirected to https://eventonextt.com/.

The user may exercise their respective rights of cancellation, deletion, limitation of processing or portability of data, in accordance with the conditions set out in the legal notice of conditions of use of the e-commerce platform for orders.

In the event of non-compliance with the purposes set out in these terms and conditions by the party responsible for the Website, the user has the right to lodge a complaint with the Spanish Data Protection Agency.

Principles applicable to the processing of personal data

The processing of the user customer's personal data will be subject to the following principles set out in art. 5 of the RGPD and in article 4 and following of the LOPDGDD:

Principle of lawfulness, fairness and transparency: the consent of the user will be required at all times after fully transparent information on the purposes for which personal data are collected.

Purpose limitation principle: personal data shall be collected for specified, explicit and legitimate purposes.

Principle of data minimisation: personal data collected will be only those strictly necessary in relation to the purposes for which they are processed.

Accuracy principle: personal data must be accurate and always up to date.

Principle of limitation of the storage period: personal data shall only be kept in a form that allows the identification of the user for the time necessary for the purposes of the processing.

Principle of integrity and confidentiality: personal data shall be processed in a manner that ensures their security and confidentiality.

Principle of proactive responsibility: The controller of the Website shall maintain and regulate the necessary technical and logistical means sufficient to ensure that all the principles applicable to the processing are complied with.

Category of personal data processed

The Website manager only processes the identification data of user customers (name, surname, ID number, address, e-mail address, etc.) for the purpose of processing and managing the services contracted and purchased by them through the electronic ordering platform, which are invoiced to the customer by the Website manager, in accordance with the data collection form provided for in that domain.

Legal basis for the processing of personal data

The legal basis for the processing of personal data is the consent of the user, which is given by the user when registering on the electronic ordering platform as a registered user of the same to carry out online commerce transactions, with a unique identifier number and personal password.

Retention of personal data

The data will be kept by the person responsible for the Website, for statistical purposes regarding the volume of orders placed by the user, or until the user requests its deletion. We keep your transaction history so that you can review past purchases made, together with your registered identification data, in order to control the correct traceability of the products delivered.

In the Legal Notice of the Website that the user accepts when registering as a registered customer, information is provided about the period of conservation, processing and purpose of the personal data collected.

Personal data of minors

The person responsible for the Website does not collect data from minors under fourteen years of age; access to the electronic ordering platform is forbidden under their responsibility.

Security of personal data

The operator of the Website has taken all necessary measures, within its possibilities and the state of technology, to ensure the functioning of the electronic platform and to prevent the existence of components harmful to customers and/or users.

However, the service provider cannot guarantee that the use of the Website and/or the electronic platform will be interrupted for technical reasons. Likewise, neither can it guarantee that the information provided is free of errors, as it is merely informative in nature and is not binding on the party responsible for the Website.

Consequently, the person responsible for the Website neither guarantees nor accepts responsibility for:

The uninterrupted continuity in the use of the Website, as well as the lack of availability and/or accessibility of the same.

The absence of errors in the use of the Website.

The absence of viruses and other harmful components on the Website or on the server that supplies it.

The invulnerability of the Website and/or the impregnability of the security measures adopted therein.

Any damage or harm caused, to themselves or to a third party, by any person who infringes the conditions of use of the Website or its security systems.

Any other damages that may be caused by reasons inherent to the non-functioning or defective functioning of the Website or the links located in the domain.

The person responsible for the Website makes every effort to avoid errors in the contents published on the electronic ordering platform; in particular, those relating to the description and price of products and goods. All the contents offered through the website are up to date, and the person responsible for the website reserves the right to modify them at any time. In any case, the service provider is not responsible for the consequences that may arise from any errors that may appear in the contents of the

Website and/or electronic platform.

In turn, it is important that the registered user protects himself against unauthorised access by third parties to his password, computers and devices by means of up-to-date antivirus systems that prevent any fraud in this regard. If shared computers and devices are used, make sure that the open session is properly closed.

Duty of confidentiality and secrecy

The person responsible for the Website undertakes to keep the strictest of secrets with regard to the information collected by the user, having the duty to protect this information and undertaking not to disclose, publish, transfer, sell or otherwise directly or indirectly make it available to unauthorised third parties; maintaining this obligation even when the commercial relationship with the user ends.

The identifier and password provided to the user who registers as a customer to access the electronic ordering platform are provided exclusively for the sole purpose of enabling access to said platform and managing the placing of orders for articles marketed by the party responsible for the Website. Any use other than that authorised is expressly prohibited.

The user, registered customer, is obliged to guarantee the confidentiality of said identifier and password, and is solely responsible for the use made of them by the natural persons to whom they may have been communicated. It is expressly forbidden to communicate or reveal the identifier and password to third parties outside the client and/or who do not have any professional or employment relationship with the client, as well as to third parties who may carry out any type of activity concurrent with those

carried out by CSP or which may be in competition with the latter. It is expressly forbidden to extract, disclose, copy, distribute, disseminate or communicate to third parties any information from the electronic platform.

Rights deriving from the processing of personal data

The user may exercise the following rights against the controller of the Website:

Right of access: this is the user's right to obtain confirmation as to whether or not the Website controller is processing their personal data and, if so, to obtain information on the specific data processed and the processing that the Website controller has carried out or is carrying out, together with the information available on the origin of said data and its recipients.

Right of rectification: This is the user's right to have their personal data modified when it is inaccurate or incomplete.

Right of erasure: This is the user's right to obtain the deletion of his or her personal data, unless otherwise provided for in current legislation, when such data is no longer necessary for the purposes for which it was collected for processing.

Right to limitation of processing: This is the user's right to limit the processing of his or her personal data when the controller no longer needs the personal data or the processed data are excessive to fulfil the intended purposes.

Right to data portability: This is the user's right to receive from the controller his or her personal data in a structured format for transmission directly to another controller, where technically feasible.

Right to object: This is the user's right not to have his or her personal data processed or to cease the processing of such data, when such data is no longer necessary to fulfil the intended purposes.

The Website controller informs the user that he/she may exercise the rights of access, rectification, cancellation, opposition, suppression, limitation of processing and portability of the data under the terms provided for in current legislation, by means of an express request addressed to the Website controller, which must contain:

Name and surname(s) of the interested party, photocopy of their ID card, passport or other valid document that allows their identification.

The request in which the request is made.

Address for communication purposes.

Date and signature of the applicant.

Documents accrediting the request being made, if applicable.

The aforementioned request will be dealt with by the person responsible for the Website in accordance with the terms set out in the RGPD and its corresponding implementing regulations.

Said request may be formalised by e-mail: sales@elevatecostablanca.com

Complaints to the supervisory authority

In the event that the user considers that there is a problem or infringement of current data protection regulations, he/she will have the right to file a complaint with a supervisory authority, which in the case of Spain, is the Spanish Data Protection Agency (www.aepd.es).

Cookies Policy

The Website makes use of cookies that are accepted, rejected or expressly configured by the user at the start of the session. For further information on this subject, please click on the following link https://www.elevatecostablanca.com/es.

Changes to the privacy policy

The party responsible for the Website reserves the right to modify this Privacy and Cookies Policy, according to its own criteria, or motivated by a legislative, jurisprudential or doctrinal change of the supervisory authority. Changes or updates to this Privacy and Cookies Policy will be explicitly notified to the registered user.

The latest revision of this Privacy Policy was approved on 3 January 2023.