+34 684 61 10 05
Villa Dalias
Privacy policy

Privacy policy

This Privacy Policy describes how Javier Marín Bernal (hereinafter, "we" or "the controller") processes the personal data of users of the website villadalias.com, in compliance with Regulation (EU) 2016/679 (GDPR) and Spanish Organic Law 3/2018 on Personal Data Protection (LOPDGDD).

Last updated: 30/05/2026

1. Data controller

  • Controller: Javier Marín Bernal
  • Tax ID: ES77759458T
  • Address: Camino de Murcia, 91, 2ºE, 30530 Cieza, ES
  • Email: [information not available]
  • Website: villadalias.com

2. Personal data we process

The website villadalias.com is informational and does not include sign-up forms or direct sale of services. We process the following categories of data:

  • Navigation data: truncated IP address, browser, operating system, pages visited and visit duration. Collected in aggregated, anonymous form via a cookieless analytics tool that does not identify users.
  • Data voluntarily provided by the user: name, email and message when contacting us via the form or by email.
  • Booking data: accommodation is typically booked through external platforms (Booking.com, Airbnb, etc.). Data provided on those platforms is processed by them according to their own privacy policies.

3. Purposes of processing

The personal data we collect is processed for the following purposes:

  • To answer queries, information requests and communications received via the contact form or by email.
  • To manage the booking and stay of the guest, when made directly with us.
  • To produce anonymous usage statistics to improve our services.
  • To comply with applicable legal obligations (invoicing, taxation, guest registry, etc.).

We do not build profiles or make automated decisions producing legal effects on the user.

4. Legal basis

  • Consent of the data subject (Art. 6.1.a GDPR) when the user voluntarily writes to us.
  • Performance of a contract (Art. 6.1.b GDPR) when the user books directly with us.
  • Legitimate interest (Art. 6.1.f GDPR) for anonymous statistics and Site security.
  • Compliance with a legal obligation (Art. 6.1.c GDPR) for tax and administrative duties.

5. Retention period

Personal data will be kept for the time strictly necessary to fulfil the purpose for which it was collected, as well as for the time needed to handle any liabilities arising from the processing.

  • Query or contact data: until the query is resolved, and then for the statutory limitation period (normally 3 years).
  • Booking data: 6 years due to tax obligations.
  • Guest registry data: 3 years (Spanish Royal Decree 933/2021).

6. Recipients and disclosures

We do not share personal data with third parties for commercial purposes. Only the following service providers acting as data processors, duly bound to confidentiality and security, may access personal data:

  • Web hosting and email provider.
  • Provider of the web analytics tool (cookieless and without full IP processing).
  • Tax advisor for accounting obligations.
  • Spanish State Security Forces for the guest registry transmission (only for direct bookings).

When bookings are made through external platforms (Booking.com, Airbnb…), the disclosure of data is governed by their terms and privacy policies.

7. International transfers

Personal data is stored on servers located within the European Economic Area (EEA). Should any processor be located outside the EEA, appropriate safeguards under the GDPR (Standard Contractual Clauses, adequacy decisions, etc.) will be ensured.

8. Rights of the data subject

Any person has the right to:

  • Access: obtain confirmation as to whether we are processing their personal data.
  • Rectification: request correction of inaccurate or incomplete data.
  • Erasure ("right to be forgotten"): request deletion of their data when no longer necessary or consent has been withdrawn.
  • Objection: object to the processing of their data on grounds relating to their particular situation.
  • Restriction: request restriction of processing in certain cases.
  • Portability: receive their data in a structured, commonly used and machine-readable format, or request transmission to another controller.
  • Withdraw consent at any time without affecting the lawfulness of prior processing.

9. How to exercise your rights

To exercise any of these rights, you can contact us by email at [information not available] or by post at Camino de Murcia, 91, 2ºE, 30530 Cieza, ES, clearly stating the right you wish to exercise and attaching a copy of your ID.

Your request will be answered within a maximum period of one month from receipt, extendable by a further two months depending on the complexity or number of requests received.

10. Complaint to the supervisory authority

If you consider that the processing of your personal data does not comply with the regulations or that your rights have not been respected, you have the right to file a complaint with the Spanish Data Protection Agency (AEPD):

  • Website: www.aepd.es
  • Address: C/ Jorge Juan, 6, 28001 Madrid, Spain

11. Changes to this policy

This Privacy Policy may be updated to reflect legal or operational changes. When significant changes occur, users will be informed via a prominent notice on the Site.