PRIVACY POLICY AND COOKIES

  • 1.RESPONSIBILITY
  • 2.COLLECTION
  • 3.PURPOSES
  • 4.LEGITIMATION
  • 5.RECIPIENTS
  • 6.ADMINISTRATION AND MANAGEMENT
  • 7.PERSONAL DATA RETENTION PERIOD
  • 8.RIGHTS
  • 9.COOKIES

1.Responsibility

Who is responsible for the processing of Personal Data?

BIMBA & LOLA, S.L. processes Personal Data collected by BIMBA & LOLA SINGAPORE, PTE. LTD. (Company Registration Number. 201133710E), headquartered at 12 Marina View, #12-05, Asia Square Tower 2, Singapore 018961 (BIMBA & LOLA, S.L. and BIMBA & LOLA SINGAPORE, PTE. LTD., collectively, “BIMBA Y LOLA”, "us", "we" and "our").

2.Collection

What Personal Data do we collect and how do we collect it?

BIMBA & LOLA SINGAPORE, PTE. LTD. collects Personal Data as data processor in the name and on behalf of BIMBA & LOLA, S.L., the latter acting as data controller.

In connection with your access or use of the Website and/or the Services (as defined in the Conditions which can be found here), we may collect personal data from you, including but not limited to:

a) name;
b) the number of your national registration identity card, driving license or passport (or copies of the same);
c) contact details (including telephone number, mailing and delivery addresses and email);
d) birth date;
e) network and device data (including your IP address and device or advertising identifiers);
f) shopping or browsing behaviors;
g) financial information (e.g. credit or debit card numbers or bank account information); and
h) any other personally identifiable information which you have provided to us in any form that you may have submitted to us, or in the course of any other form of interaction between you and us, including data, whether true or not, about you or any other individual who can be identified from: (i) that data; or (ii) that data and other information to which we have or are likely to have access,

(hereinafter referred to as “Personal Data”).

a) when you become a registered user, and you access and use the Website or the Services;
b) when you accept our cookies (see Section 9 below) on the device used by you to access the Website;
c) when you interact with any of our employees, agents or representatives, for example, our customer service representatives;
d) when you interact with us on any form of social media; and
e) where you voluntarily submit Personal Data to us for any reason.

If you provide us with Personal Data of a third party, you guarantee that you have the authority to handle and provide us with said Personal Data to be used for the purposes set out in this Privacy Policy and Cookies. Likewise, you are obliged to inform said third party of the processing of their Personal Data according to this Privacy Policy and Cookies.

We generally rely on Personal Data provided by you. In order to ensure that Personal Data collected by us is current, complete and accurate, please update us if there are changes to such Personal Data by informing our Data Protection Officer (as defined below) in writing or via email at the contact details provided below.

3.Purposes

Why do we collect, use, disclose and process Personal Data?

In compliance with the applicable laws, including the Personal Data Protection Act 2012 of Singapore (“PDPA”), and, if applicable, the provisions of the European General Data Protection Regulation 2016/679, we inform you that we collect, use, disclose and process any Personal Data you provide us with for the following purposes:

a) to administer or process your registration as a user and enable you to access and use the Website and the Services, and for the correct and proper management of the same and in respect of the number of your national registration identity card, driving license or passport (or copies of the same), to accurately establish or verify your identity to a high degree of fidelity (“Purpose 1”);
b) to send commercial communications about the Products (as defined in the Conditions) (including emails, phone calls, SMS, PUSH notifications, post, etc.) (“Purpose 2”);
c) for the preparation of commercial profiles based on information from internal and external sources, with the aim of analyzing your purchasing behavior and sending you personalized advertising (“Purpose 3”);
d) for abuse and fraud prevention (including fraudulent activities, denial-of-service attacks, among others) (“Purpose 4”); and
e) for disclosure of data to public bodies and authorities (administrative or judicial), provided that this is required under the legal and statutory provisions, and for such other compliance with the PDPA or other applicable laws (“Purpose 5”), (hereinafter referred to as “Purposes”).

The Purposes may continue to apply even in situations where your relationship with us has been terminated or altered in any way, for a reasonable period thereafter (including, where applicable, a period to enable us to enforce our rights under any contract with you).

We will seek your consent before collecting any additional Personal Data and before using Personal Data for a purpose which has not been notified to you (except where permitted or authorized by the PDPA or other applicable laws).

4.Legitimation

What is the legitimation of the processing of Personal Data?

The legal bases for the processing of Personal Data corresponding to each of the Purposes are as follows:
- Purpose 1: The execution of a contract with us in relation to the purchase of Products.
- Purpose 2: Consent expressly given to us at the time Personal Data is collected.
- Purpose 3: Consent expressly given to us at the time Personal Data is collected in relation to the preparation of profiles based on external sources and the satisfaction of a legitimate interest pursued by us in relation to the preparation of profiles based on internal sources.
- Purposes 4 and 5: The legal discharge of responsibilities applicable to us.

5.Recipients

To which recipients will Personal Data be communicated?

Personal Data will not be disclosed to any third party, except to those third parties whose intervention is necessary to enable your access and use of the Website and the Services, and for the correct and proper management of the same, which may include:

a) our employees, consultants, agents, contractors, or other service providers;
b) payment processors and other financial institutions who process payments on the Website;
c) transport and other logistic companies who deliver the Products;
d) our professional advisors and consultants;
e) any other person whom you authorize us to disclose Personal Data to;
f) social network providers; and
g) other companies of the same group of companies as us.

In addition, Personal Data may be disclosed in circumstances where such disclosure does not require consent under the applicable laws, for example, to public bodies and authorities (administrative or judicial) pursuant to a legal regulation.

6.Administration and management

How will we protect and store Personal Data?

We will put in place reasonable security arrangements to ensure that Personal Data is adequately protected and secured. This includes putting in place reasonable measures to prevent any unauthorized access, collection, use, disclosure, copying, modification, leakage, damage or alteration of Personal Data. However, we will not be liable for any unauthorized use of Personal Data by third parties which is attributable to factors beyond our reasonable control.

When Personal Data in our possession is no longer required for any reason connected to the Purpose that it was originally collected, or retention by us is no longer necessary for any other legal or business purposes, we will exercise measures to ensure such Personal Data is either destroyed or anonymized. If Personal Data is transferred out of Singapore, we will protect Personal Data to a standard acceptable to the protection accorded to Personal Data under the PDPA by ensuring that that the recipient is either in a jurisdiction which has comparable data protection laws to Singapore, or is contractually bound to protect Personal Data to a comparable standard.

Please be aware that no method of transmission over the Internet or method of electronic storage is completely secure. While security cannot be entirely guaranteed, we strive to protect the security of Personal Data and are constantly reviewing and enhancing our data security measures.

7.Personal data retention period

How long will we keep Personal Data?

Personal Data will be kept by us for as long as it is necessary for the longer of the following periods:

a) the duration of the Contract (as defined in the Conditions) (i.e. up until its termination or cancellation);
b) the time necessary to comply with our legal obligations; and
c) as required or permitted by applicable laws.

8.Rights

What are your rights when you provide us with Personal Data and how can you exercise them?

You have the right to the following:

a) to access any Personal Data, as well as to request the update or rectification of inaccurate Personal Data;
b) to request their suppression when, among other reasons, the Personal Data are no longer necessary for the purposes for which they were collected;
c) to withdraw any consent given by you for the collection, use and/or disclosure of any Personal Data, that is in our possession or under our control;
d) to request the limitation of the processing of Personal Data, in which case we only will keep them for the exercise or defense of claims;
e) to oppose the processing of Personal Data. We will cease to process Personal Data, except for imperative legal reasons, or for the exercise or defense of possible claims; and/or
f) in the same way, you can exercise your right to data portability, as well as to withdraw the consents given at any time, without this affecting the legality of the processing based on the consent given prior to its withdrawal.

If you wish to exercise any of your rights according to the PDPA and other applicable laws, you can contact Mr. Guillermo Zulueta Sánchez, Legal Department Director (“Data Protection Officer”) in writing at our email address lopd@bimbaylola.com, at our address BIMBA Y LOLA, Parque Tecnológico y Logístico de Vigo, nave D13 (36315 – Vigo – Spain) or by telephone at +65 62612505. In this regard, we may require you to provide a copy of an official document that identifies you (i.e. your national registration identity card, driving license or passport) to verify your identity before processing your request.

Finally, we inform that you can also contact the Personal Data Protection Commission and other competent public authorities in Singapore regarding any claim deriving from the processing of Personal Data.

Upon receipt of any written request from you to withdraw your consent, we may require reasonable time (depending on the complexity of the request and its impact on our relationship with you) for your request to be processed and for us to notify you of the consequences of us acceding to the same, including any legal consequences which may affect your rights and liabilities. While we respect your decision to withdraw your consent, please note that depending on the nature and scope of your request, we may not be in a position to continue providing the Services and Products to you and we shall, in such circumstances, notify you before completing the processing of your request. Should you decide to cancel your withdrawal of consent, please inform us in writing in the manner described above. Please note that withdrawing your consent does not affect our right to continue to collect, use, disclose and/or process Personal Data where such collection, use and/or disclosure without consent is required or permitted under the PDPA or other applicable laws.

9.COOKIES

This Privacy Policy and Cookies only refers to the treatment of Personal Data by us through your interaction with the Website or application. Other websites that may redirect to the Website have their own privacy policies, for this reason we encourage you to review the privacy policies offered by third parties’ websites before providing them with your information.

The use of ‘cookies’ in connection with the Website and the Services is as follows:

Web browsing (cookies)

A cookie is a small data file that is stored on your computer, mobile or other device when you visit a website and contains information on your web browsing.

When we mention the word “cookies,” we also refer to other technologies similar to cookies that similarly allow you to store certain information on your device.

The website www.bimbaylola.com (hereinafter, the “bimbaylola.com”) and its mobile application (hereinafter the "app"), are the property of Bimba & Lola, S.L., use first-party and third-party cookies to personalize your browsing experience and to improve our services, and for analytical purposes and to show you advertising related to your preferences based on your browsing habits and profile.

The cookies are those sent to the user's computer or device from a computer or domain managed by Bimba & Lola, S.L.

Third-party cookies are those sent to the user's computer or device from a computer or domain that is not managed by Bimba & Lola, S.L., but by another entity that processes the data obtained through cookies.

The purpose of this Cookie Policy is to provide information on cookies so that you can decide on their management and use.

Strictly necessary cookies

These cookies are necessary for the website to function correctly and cannot be disabled on our systems. They are usually configured to respond to actions you have taken to receive services, such as adjusting your privacy preferences, logging in to the site and/or app, or filling out forms. You can set your browser to block or alert the presence of these cookies, but some parts of the website and/or app will not work.

Name Guest Type Duration
__cq_uuid bimbaylola.com First-party 1 year
__cq_dnt www.bimbaylola.com First-party 1 day
dwsid www.bimbaylola.com First-party 1 day
_vis_opt_test_cookie bimbaylola.com First-party 1 day
cquid www.bimbaylola.com First-party 1 day
_dc_gtm_UA-xxxxxxxx bimbaylola.com First-party 1 day
cqcid www.bimbaylola.com First-party 1 day
dw_dnt www.bimbaylola.com First-party 1 day
_ga_xxxxxxxxxx bimbaylola.com First-party 1 year
OptanonConsent bimbaylola.com First-party 1 year
_gid bimbaylola.com First-party 1 day
dwanonymous_xxxxxxxx www.bimbaylola.com First-party 6 months
ga bimbaylola.com First-party 2 years
dwac_XXXXX www.bimbaylola.com First-party 1 day
OptanonAlertBoxClosed bimbaylola.com First-party 1 year
dispatcher www.bimbaylola.com First-party 1 day
X-Salesforce-CHAT d.la2-c1-cdg.salesforceliveagent.com First-party 1 day
test_cookie doubleclick.net Third-party 1 day
IDE doubleclick.net Third-party 1 year

Targeted cookies

These cookies can be placed throughout the website by third parties. These third parties can use them to create a profile of your interests and show you relevant ads on other sites. If you do not allow these cookies, you will have less targeted advertising.

Name Guest Type Duration
_fbp bimbaylola.com First-party 3 months
_gcl_au bimbaylola.com First-party 2 months
_pin_unauth bimbaylola.com First-party 1 year
_ttp bimbaylola.com First-party 1 year
_tt_enable_cookie bimbaylola.com First-party 1 year
sid www.bimbaylola.com First-party 1 day
cee fbapi.bimbaylola.com First-party 2 months
eupubconsent-v2 bimbaylola.com First-party 1 year
__cq_seg bimbaylola.com First-party 1 month
uuid cquotient.com Third-party 1 year
ar_debug pinterest.com Third-party 1 year
_ttp tiktok.com Third-party 1 year

Performance Cookies

These cookies allow us to count the visits and sources of traffic in order to measure and improve the performance of our website and app. They help us to know which pages are the most or least popular and see how many people visit the site. If you do not allow these cookies, we will not know when you visited our website and/or app.

Name Guest Type Duration
_vwo_ds bimbaylola.com First-party 3 months
_vwo_sn bimbaylola.com First-party 1 day
_vwo_uuid_v2 bimbaylola.com First-party 1 year
_vwo_referrer bimbaylola.com First-party 1 year
_vwo_uuid bimbaylola.com First-party 10 years
_vis_opt_s bimbaylola.com First-party 3 months
BrowserId_sec force.com Third-party 1 year
CookieConsentPolicy service.force.com Third-party 1 year
BrowserId force.com Third-party 1 year
LSKey-c$CookieConsentPolicy service.force.com Third-party 1 year

Functionality cookies

These cookies allow the site to offer better functionality and customization. They can be established by us or by third parties whose services we have added to our website and app. If you do not allow these cookies, some of our services will not work correctly.

Name Guest Type Duration
weird_get_top_level_domain bimbaylola.com First-party 1 day

Transfer of data to a third country

Some of the third-party cookies transfer your data to countries located outside the European Union and the European Economic Area. This data transfer will only be carried out in countries with an appropriate level of protection or where adequate guarantees have been established for the transfer of data, such as through the Standard Contractual Clauses adapted by the European Commission in accordance with Articles 44 to 49 of the European Data Protection Regulation 2016/679.

If you would like more information on transfer of data to third countries carried out by third parties, you can check their corresponding cookie policies.

Deactivation and elimination of cookies

Go to the link at the end of the Privacy Policy to disable specific cookies on your device at any time.

You can also configure your browser to disable cookies and, if applicable, delete them. Nonetheless, if you select this configuration, you may not be able to access certain parts of bimbaylola.com or enjoy some of Bimba & Lola's services. Unless you have set up your web browser to reject cookies, the system will produce cookies when you connect to bimbaylola.com.

To do this, you must modify the set-up of the web browser for cookie use from the "Preferences”, “Options” or “Tools” menu (the namonth of the menus and the procedure to access the cookie options vary depending on the web browser you use). For more information on how to set up cookies in the main web browsers, click on the following links: