top of page


Basic information on Data Protection

  • Responsible: ELVIRA GUARDIA

  • Purpose: Provision of online services, Management of web users, Commercial communications related to our services

  • Legitimation: Express consent and legitimate interest

  • Recipients: No data is transferred to third parties, except legal obligation

  • Rights: Access, rectify and delete data, as well as other rights, as explained in the additional information

  • Additional information: You can consult the additional and detailed information on Data Protection in the attached clauses found atítico-privacidad/

At ELVIRA GUARDIA, we work to provide you with the best possible experience through our products and services. In some cases, it is necessary to collect information to achieve this goal. We care about your privacy and believe that we should be transparent about it.

Therefore, and for the purposes set forth in REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016 (hereinafter, "GDPR") on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and LAW 34/2002, of July 11, on Information Society Services and Electronic Commerce (hereinafter, "LSSI"), JORDI BORDAS SLU informs the user that, as the data controller, it will incorporate the personal data provided by users into an automated file.

Our commitment starts by explaining the following:

  • Your data is collected to improve the user experience, attending to your interests and needs.

  • We are transparent about the data we obtain about you and the reason why we do it.

  • Our intention is to offer you the best possible experience. Therefore, when we use your personal information, we will always do so in compliance with regulations, and when necessary, we will request your consent.

  • We understand that your data belongs to you. Therefore, if you decide not to authorize us to process it, you can ask us to stop processing it.

  • Our priority is to ensure your security and treat your data in accordance with European regulations.

If you would like more information about the processing of your data, please refer to the different sections of the privacy policy below:

Who is responsible for processing your personal data?

  • Identity: Elvira Perez Guardia

  • Registered office: Calle Trafalgar 19, 4-2A 08010 BARCELONA

  • C.I.F. No.: 47875830L

  • Email:


ELVIRA GUARDIA has appointed a Data Protection Officer or an internal contact person within its organization. If you wish to make a query regarding the processing of your personal data, you can contact him by email

What personal data do we collect?

The personal data that the user may provide:

  • Name, address, and date of birth.

  • Phone number and email address.

  • Location.

  • Information regarding payments and returns.

  • IP address, date and time of access to our services, internet browser used, and data about the device's operating system.

  • Any other information or data that you decide to share with us.

In some cases, filling out the registration form is mandatory to access and enjoy certain services offered on the website. Likewise, not providing the requested personal data or not accepting this data protection policy implies the impossibility of subscribing, registering, or participating in any promotions that require personal data.

Why and for what purpose do we process your data?

At ELVIRA GUARDIA, we process the information provided by interested individuals for the following purposes:

  • Managing orders or contracting any of our services, whether online or in physical stores.

  • Managing the sending of requested information.

  • Developing commercial actions and maintaining and managing the relationship with the user, as well as managing the services offered through the website and information tasks, which may include automated assessments, profile gathering, and customer segmentation to personalize treatment according to their characteristics and needs and improve the customer's online experience.

  • Developing and managing contests, sweepstakes, or other promotional activities that may be organized.

  • In some cases, it will be necessary to provide information to authorities or third parties for audit purposes, as well as handle personal data from invoices, contracts, and documents to respond to customer claims or Public Administrations.

We inform you that the personal data obtained as a result of your registration as a user will be part of the Record of Activities and Treatment Operations (RAT), which will be periodically updated in accordance with the provisions of the GDPR.

What is the legitimacy for the processing of your data?

The processing of your data may be based on the following legal grounds:

Consent of the interested party for the contracting of services and products, for contact forms, requests for information, or subscription to newsletters.

Legitimate interest for the processing of data from our clients in direct marketing actions and express consent of the interested party for everything related to automatic evaluations and profile elaboration.

Compliance with legal obligations for fraud prevention, communication with public authorities, and claims from third parties.

How long do we keep your data?

The processing of data for the purposes described will be maintained for the time necessary to fulfill the purpose of its collection (for example, for the duration of the business relationship), as well as to comply with legal obligations arising from the processing of the data.

To whom are your data disclosed?

n some cases, only when necessary, ELVIRA GUARDIA will provide user data to third parties. However, data will never be sold to third parties. External service providers (for example, payment providers or delivery companies) that ELVIRA GUARDIA works with may use the data to provide the corresponding services, but they will not use this information for their own purposes or for transfer to third parties.

ELVIRA GUARDIA ensures the security of personal data when it is sent outside the company and ensures that third-party service providers respect confidentiality and have appropriate measures to protect personal data. Such third parties are obligated to ensure that the information is handled in accordance with data privacy regulations.

In some cases, the law may require that personal data be disclosed to public authorities or other parties; only the information strictly necessary to fulfill these legal obligations will be disclosed.

The personal data obtained may also be shared with other companies within the group.

Where are your data stored?

As a general rule, data is stored within the EU. Data sent to third parties outside the EU will ensure that they provide an adequate level of protection, either because they have Binding Corporate Rules (BCRs) or because they have adhered to the "Privacy Shield".

In accordance with what is established by the RGPD, you can request:

  • Right of access: You can request information about the personal data we have about you.

  • Right of rectification: You can communicate any changes to your personal data.

  • Right to erasure and to be forgotten: You can request the deletion, subject to prior blocking, of personal data.

  • Right to restriction of processing: This involves limiting the processing of personal data.

  • Right to object: You can withdraw consent for the processing of data, objecting to further processing.

  • Right to data portability: In some cases, you can request a copy of personal data in a structured, commonly used, and machine-readable format for transmission to another controller.

  • Right not to be subject to automated individual decision-making: You can request that decisions not be based solely on automated processing, including profiling, which produces legal effects or significantly affects the data subject.

  • In some cases, the request may be refused if you ask for the deletion of data necessary to fulfill legal obligations.

  • Likewise, if you have any complaints about the processing of data, you can file a complaint with the data protection authority.

Who is responsible for the accuracy and veracity of the data provided?

  • The user is solely responsible for the accuracy and correctness of the data provided, releasing ELVIRA GUARDIA from any liability in this regard. Users guarantee and respond, in any case, for the accuracy, validity, and authenticity of the personal data provided, and agree to keep it properly updated. The user agrees to provide complete and correct information in the registration or subscription form. ELVIRA GUARDIA reserves the right to terminate contracted services with users if the data provided is found to be false, incomplete, inaccurate, or not updated.

  • ELVIRA GUARDIA does not guarantee the accuracy of information that is not self-prepared and from other sources, therefore it does not assume any responsibility for potential damages that may arise from the use of such information.

  • ELVIRA GUARDIA reserves the right to update, modify, or delete the information contained on its web pages, including limiting or not allowing access to such information. ELVIRA GUARDIA is not liable for any damage or harm that users may suffer as a result of errors, defects, or omissions in the information provided by ELVIRA GUARDIA, provided that it originates from external sources.

  • Furthermore, the user certifies that they are over 14 years of age and possess the necessary legal capacity to consent to the processing of their personal data.

How do we handle personal data of minors?

In principle, our services are not specifically aimed at minors. However, in the event that any of them are aimed at children under the age of fourteen, in accordance with Article 8 of the GDPR and Article 7 of the LO3/2018, of December 5 (LOPDGDD), ELVIRA GAUDIA will require valid, free, unequivocal, specific, and informed consent from their legal guardians to process the personal data of minors. In this case, the ID card or another form of identification of the person providing consent will be required.

In the case of individuals over fourteen years of age, data processing may proceed with the consent of the user, except in cases where the law requires the assistance of legal guardians or guardianship holders.

What security measures do we apply to protect your personal data?

ELVIRA GUARDIA has adopted the legally required levels of security for the protection of Personal Data, and seeks to install any other additional means and technical measures at its disposal to prevent the loss, misuse, alteration, unauthorized access and theft of the Personal Data provided. to ELVIRA GUARDIA.

ELVIRA GUARDIA is not responsible for hypothetical damages or losses that may arise from interferences, omissions, interruptions, computer viruses, telephone breakdowns or disconnections in the operational functioning of this electronic system, caused by causes beyond the control of ELVIRA GUARDIA; of delays or blockages in the use of this electronic system caused by deficiencies or overloads of telephone lines or overloads in the Data Processing Center, in the Internet system or in other electronic systems, as well as damages that may be caused by third parties. people through illegitimate interference beyond the control of ELVIRA GUARDIA. However, the user must be aware that Internet security measures are not impregnable.

Links to other websites

On the website, there may be links to other web pages. By clicking on one of these links and accessing an external website, your visit will be subject to the privacy policy of that website, with ELVIRA GUARDIA being released from any responsibility regarding its privacy policy.

How do we use cookies?

The website and social media channels of ELVIRA GUARDIA use cookies to optimize and personalize your browsing experience. Cookies are physical information files stored on the user's device, and the information collected through cookies helps facilitate navigation on the portal and optimize the browsing experience. The data collected through cookies may be shared with their creators, but under no circumstances will the information obtained by them be associated with personal data or data that can identify the user.

However, if the user does not wish to have cookies installed on their hard drive, they have the option to configure their browser to prevent the installation of these files. For more information, please refer to our Cookie Policy at

Can the privacy policy be modified?

This privacy policy may be subject to change. We recommend that you review the privacy policy periodically.

bottom of page