PRIVACY POLICY

Overview

ForeverBarcelona is committed to protecting your privacy online. This Privacy Policy describes the personal information we collect through this website at https://www.foreverbarcelona.com (the “Site”), and how we collect and use that information.

The terms “we,” “us,” and “our” refers to ForeverBarcelona. The terms “user,” “you,” and “your” refer to site visitors, customers, and any other users of the site.
The term “personal information” is defined as information that you voluntarily provide to us that personally identifies you and/or your contact information, such as your name, phone number, and email address.

The term “Service” refers to all the services provided in this website, such as (bot not limited to), private tours, digital products, consultancy sessions and newsletters.

Use of ForeverBarcelona, including all materials presented herein and all online services provided by ForeverBarcelona, is subject to the following Privacy Policy. This Privacy Policy applies to all site visitors, customers, and all other users of the site. By using the Site or Service, you agree to this Privacy Policy, without modification, and acknowledge reading it.

We comply with the Spanish law of personal data protection and we guarantee that we respect the obligations established by the Ley Orgánica 15/1999 of December 13, on Personal Data Protection, the Real Decreto 1720/2007 of December 21 approving the Rules for Developing Personal Data Protection, the Ley 34/2002 of July 11, on Information Society and Electronic Commerce Services, the General Regulation of Data Protection (Eu) 2016/679 Of The European Parliament And Of The EU Council of 27 April 2016, as well as any other law that might apply at the moment. We strive to guarantee the correct use and treatment of the users’ personal data.

We comply with the safety levels established by the Ley Orgánica 15/1999 and other applicable laws. However, we won’t be liable for any damage that third parties might cause to our software, computer systems, email platforms or user files.

We implement a variety of security measures to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information. We offer the use of a secure server. All supplied sensitive/credit information is transmitted via Secure Socket Layer (SSL) technology and then encrypted into our Payment gateway providers database only to be accessible by those authorized with special access rights to such systems, and are required to keep the information confidential. After a transaction, your private information (credit cards, social security numbers, financials, etc.) will not be stored on our servers.

Changes to our Privacy Policy

You acknowledge and agree that it is your responsibility to review this Site and this Policy periodically and to be aware of any modifications. We will notify you of any changes to this privacy policy by posting those changes on this page.

User Rights

No user personal data will be stored unless at least one of the following actions takes place:

  • User signs up to receive content from us
  • User starts filling up a booking form to book a tour with us
  • User books our services or buys a product from us
  • User contacts us via email or contact form or telephone
  • User enters a comment in our blog

We only add a contact to an email list (newsletters or marketing) after the user has filled up a subscription form, expressly requested that by email, or indicated that upon booking a tour. Any other collected personal and travel data will be used for statistic purposes only.

When you willingly submit your personal and travel data by the means described above, you are accepting this Privacy Policy and authorizing us to use it, store it, as well as discard it totally or partially after having used it.

Users will only have access to their own data.

You have the right to access your data and request a modification or cancellation or limitation, or exercise your rights as described on the Article 5 of the LOPD, by contacting:

Marta Laurent Veciana
Baixada de la Gloria, 26
08023 Barcelona
(Spain)
[email protected]

In exercising your right to data portability you’ll have the right to require your personal and travel data to be transmitted to another provider. The exercise of the right shall not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority and shall not adversely affect the rights and freedoms of others.

You have the right to present a complaint before a Control Authority.

Non providing the required personal and travel data may result in ForeverBarcelona not being able to:

  • Communicate with you.
  • Organize a tour/s for you.
  • Send you relevant information to help you prepare your trip to Barcelona.
  • Create statistics for internal use that help us understand and improve our company and site performance, in order to serve you and our users better.

Information We Collect

We collect information willingly entered by you when you place an order / booking, use our online booking system / shopping cart, subscribe to our newsletter / mailing lists, comment in our blog, fill out a form or send us an email. By performing such actions you are consenting to our treatment of your data, according to the Article 6 of the LOPD. You are also consenting to any required international data transfer covered by the LOPD (when our providers are physically located outside of Spain).

When ordering, sending a form or registering on our site, as appropriate, you may be asked to enter personal and travel data such as: name, e-mail address, mailing address, phone number or credit card information, as well as information related to the tours you wish to book with us (including but not limited to: hotels, flight information, itineraries, dates, number of people traveling with you…).

Fields marked with a * are mandatory, and the action won’t take place unless they the required data are provided. 

You may, however, visit our site anonymously.

We assume that all received data have been submitted by either its owner or authorized representative agent, and that they are accurate. It is the responsibility of the user to keep such data updated. We decline any responsibility for issues related to the inaccuracy of submitted data if relevant changes haven’t been communicated to us. If we detect that any data has been entered by unauthorized third parties, or that they don’t belong to the designated user, we will apply the necessary measures to correct it.

We’ll store your personal and travel data in a file rightfully declared in the Registro General de Protección de Datos de la Agencia Española de Protección de Datos, responsibility of the ForeverBarcelona owner.

We’ll store your personal and travel data for an undetermined period of time, as long as we consider them necessary for the finality they were stored.

We reserve the right to cancel or modify our stored data when they are found to be wrong, inaccurate or they stop being necessary for the finality they were stored. This is in conformity with the Ley Orgánica 15/1999, of December 13, on Personal Data Protection.

We may record non-personally identifiable visitor information relating to your use of the Site, such as the searches you undertake, the pages you view, your browser type, IP address, requested URL, referring URL, and timestamp information. We use this type of information to administer the Site and provide the highest possible level of service to you. We also use this information in the aggregate to perform statistical analyses of user behavior and characteristics in order to measure interest in and use of the various areas of the Site.

What Do We Use Your Information For?

In accordance with the Article 5 of the LOPD, we inform you that our users and clients database file will solely be used in the following ways:

  • To personalize your experience (your information helps us to better respond to your individual needs)
  • To improve our website (we continually strive to improve our website offerings based on the information and feedback we receive from you)
  • To improve customer service (your information helps us to more effectively respond to your customer service requests and support needs)
  • To administer a contest, promotion, survey or other site feature
  • To send emails with the purpose of:
    • sending information related to our tours,
    • sending information related to the visitor’s bookings and shopping carts
    • email our blog posts or other website content
    • stay in touch with former clients
    • occasionally send other content that we might consider of interest,
    • enable communication between the user and the ForeverBarcelona team
    • The email address you provide during your booking process, may be used to send you information and updates pertaining to your order and ask for a review, in addition to receiving occasional company news, updates, related product or service information, etc.
  • To process transactions

Your information, whether public or private, will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without your consent, other than for the express purpose of delivering the purchased product or service requested or to elaborate statistics for internal use that allow us to improve our company’s performance.

Note: If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email. Please note you might unsubscribe from one list but still be subscribed to other lists: to unsubscribe from all of us, please contact us.

Additional Leads and Tour Users Privacy Policy

The following points are in addition to our privacy policy and apply to leads:

Leads are those users who contact us via email or contact form but may not end up booking a tour for whatever reason.

  • We might collect information about your inquiry for internal use and statistics that help us understand better our online reputation and image and take steps to improve our performance.
  • We will maintain a communication with you about your inquiry for as long as it’s understood that you are interested in our services. We might send you a couple of gentle reminders if communication is lost, after which communication will be ceased.
  • You will not be added to our email list (unless you’ve separately subscribed to it).

The following points are in addition to our privacy policy and apply to customers having booked tours with us:

  • We might collect information about your inquiry for internal use and statistics that help us understand better our online reputation and image and take steps to improve our performance.
  • We might also collect information relevant for your tours from our email exchanges.
  • We might send you an email after your tour is over asking for feedback about your tour and a review (a third party might be used to process such email).
  • After the tour is over, we might send you quarterly emails to stay in touch, as well as occasional relevant news about our company that might be of interest to you. You can unsubscribe any time from such emails by clicking on the link at the bottom of the email.
  • Our clients list is different from our weekly newsletters list: if you are subscribed to both and you unsubscribe from one, you’ll still be receiving emails from the other list.
  • Testimonials: Your emails might be used as testimonials in our website upon receiving your consent by email, using the name or nickname provided by you. Testimonials about us on Tripadvisor and other travel sites and forums might be used providing the user nickname or signature of the person who published such public testimonial. We won’t reveal the identity of the reviewer unless we receive written permission for that or their identity coincides with the nickname or signature used to publish the review.

Third Parties

We do share your information with trusted third parties who assist us in operating our website, conducting our business and servicing clients and visitors. These trusted third parties agree to keep this information confidential.

We may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others rights, property, or safety.

Your personal information will never be shared with, transferred, sold or traded to unrelated third parties.

Please note that there is no technology available yet that can 100% guarantee that online communications won’t be intercepted and used by third parties, with or without yours and our consent. This is why you are are revealing your personal and travel data under your own responsibility.

However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

The Site may contain links to third party websites. Except as otherwise discussed in this Privacy Policy, this document only addresses the use and disclosure of information we collect from you on our Site. Other sites accessible through our site via links or otherwise have their own policies in regard to privacy. We are not responsible for the privacy policies or practices of third parties.

By using / buying / booking our Services or browsing our Website, you authorize ForeverBarcelona to share your data with our trusted parties.

FREELANCE EMPLOYEES

ForeverBarcelona uses trusted freelance employees to help running the business and who might access the data you sent to complete their tasks. They are committed to treat it with total confidentiality, and will cease having access to it when their professional relationship with ForeverBarcelona ends.

SITE GROUND

Our website is hosted in a server located in Amsterdam, Holland, managed by  SiteGround Spain S.L. Such company acts only as a hosting provider, storing but not processing your personal data nor store it for their own use.  SiteGround Spain S.L. complies with the U.S.-EU Safe Harbor Framework. You can learn more about their privacy policy here. They work with two server and data center providers: Softlayer and SingleHop.

WP ENGINE (UNTIL FEBRUARY 2018)

Our website was hosted in a server located in London, UK, managed by WPEngine Inc. Such company acts only as a hosting provider, storing but not processing your personal data nor store it for their own use. WPEngine Inc. complies with the U.S.-EU Safe Harbor Framework. You can learn more about their privacy policy here.

DROPBOX

We store some of our files containing personal data on Dropbox, a service provided by Dropbox, Inc (San Francisco, CA, USA), so they can be accessed remotely by our workers and freelance assistants. They store our files, but do not collect your personal information in them for their own use. More about their privacy policy here.

GOOGLE APPS

Our e-mail service is managed via Gmail by Google Inc (Santa Clara, CA, USA). They store all our e-mails, and therefore any personal data sent by you to us via e-mail. They act as a platform to process, send, receive and store e-mails, but they don’t collect data from the content of the emails for their own use. Google Google adheres to the U.S. Safe Harbor Privacy Principles of Notice, Choice, Onward Transfer, Security, Data Integrity, Access and Enforcement. Check their privacy policy here.

AUTHORIZE.NET (UNTIL 2016)

Our money transactions were processed by the payment gateway Authorize.net LCC, a subsidiary of CyberSource Corporation, located in Cheshire, UK. Cybersource Corporation is compliant with the Payment Card Industry Data Security Standard (“PCI DSS”) as a Level 1 service provider. More about Cybersource privacy policy here.

Authorize.net shares with us personal data entered by you such as Name, Last Name, Address, Phone Number, Type of Credit Card used for payment. We DO NOT have access to your Credit Card Number, Expiration Date, CSC / CVV or Pin Number entered by you in our website to complete a payment.

When orders were made by phone, we did not store your credit card information in our files, but it was still processed via Authorize.net.

When orders were made online, we could have used third party apps or plugins to connect with Authorize.net. Such third parties didn’t have access to your credit card information either, but might have collected personal and travel data and requested you to accept our Terms & Conditions, if applicable, on our behalf.

BANCO SANTANDER / REALEX

Our money transactions are currently processed via  a virtual POS provided by Banco Santander (Santander, Spain), that works with Realex Payments (London, UK), an international online payment gateway.

Banco Santander complies with the Ley Orgánica de Protección de Datos de Carácter Personal (LO 15/1999, December 13), and you’ll find their privacy policy here.

As for Realex, they comply with the Data Protection Acts 1998 and 2003 as well as the European Communities (Electronic Communications Networks and Services) (Privacy and Electronic Communications) Regulations 2011 (together “Data Protection and Privacy legislation”). You’ll find their privacy policy here.

Banco Santander and Realex share with us personal data entered by you such as Name, Last Name, Address, Phone Number, Type of Credit Card used for payment. We DO NOT have access to your Credit Card Number, Expiration Date, CSC / CVV or Pin Number entered by you in our website to complete a payment.

When orders are made by phone, we will not store your credit card information in our files, but it will still be processed via Banco Santander and Realex.

When orders are made online, we might use third party apps or plugins to connect with Banco Santander and Realex. Such third parties don’t have access to your credit card information either, but might collect personal and travel data and request you to accept our Terms & Conditions, if applicable, on our behalf.

PAYPAL

We might occasionally (upon customer request or if other payment systems are temporarily down) use PayPal Pte. Ltd (San José, CA, USA) to process money transactions. In such case, we send the client a Money Request in which Paypal handles the payment card information on our behalf complying with PCI DSS. Client must have a Paypal account to send the payment, therefore it is Paypal who is handling their credit card and personal data, not us. Paypal shares with us only personal information relevant for our invoicing and booking, but not any kind of credit card information. Learn more about their privacy policy here.

BOOKEO

Our online booking system is managed by Bookeo Pty Ltd, located in Londi, Australia (although the accounts of their European customers are hosted on servers located in Europe). Bookeo has been awarded TRUSTe’s Privacy Seal and adheres to the Safe Harbor Framework. They collect personal and travel information related to the tour/services booked. They also collect credit card details that are securely transmitted to our payment processor for the sole purpose of processing payments on behalf of the Business. Bookeo does not store such credit card details. more about their privacy policy here.

MAILCHIMP

Our e-mail subscription and newsletter system is run by Mailchimp (Rocket Science Group, LLC d/b/a MailChimp), from Georgia, USA. Mailchimp has TRUSTe’s Privacy Seal and complies with the Safe Harbor Framework, therefore offering an adequate level of data protection according to the LOPD. More about their privacy policy here.

TRIPADVISOR

We might share your email with TripAdvisor LLC (Newton, MA, USA) to use the Tripadvisor Review Express service to send our tour clients an email and possibly a reminder after their tour is over, asking them to write a review about their tour. The addresses remain stored in a TripAdvisor server, for campaign tracking and proper filtering of future email campaign lists. Addresses are stored separately and securely, and access is limited to specific people on the TripAdvisor team. Tripadvisor doesn’t use those e-mail addresses for any other purpose, and no Tripadvisor membership will be automatically created for Review Express recipients. More about their privacy policy here.

[notice ]Tripadvisor does not adhere to the EU-US Safe Harbor List. This is why in compliance with the LOPD we inform you that by booking a tour with us and accepting our Terms & Conditions, you are giving ForeverBarcelona unequivocal, explicit and expressed consent to share your e-mail with TripAdvisor LLC.[/notice]

WEBSITE PLUGINS

We may use third party plugins to create contact forms and opt-ins, and back up data and other actions that might involve collecting and storing personal or travel information willingly submitted by you. Such plugins only process and/or store your personal data but do not collect or store it for their own use.

They might however install cookies in your browser to collect information about how you interact with the site and these plugins. Learn more about our Cookie Policy here.

Cookie Policy

This site uses cookies. Learn here what cookies are.

By browsing our website you are implicitly accepting them. If you don’t wish to accept them, please leave our website and delete any cookies that might have already been downloaded to your browser. This Site does not respond to Do Not Track signals from your browser.

Instructions to enable, block and/or delete cookies for the most popular browsers:

Internet ExplorerMozilla FirefoxChrome Opera Safari

  • Do we use cookies? Yes, our site uses own and third party cookies to improve your overall experience. Cookies are files that are installed on the users browser in order to track your activity in a website and improve your experience. In compliance with the Real Decreto-ley 13/2012 Spanish law, we inform you that:
    • Some of the cookies we install are “technical cookies” that enable a correct navigation within our website and/or allow us to provide a service required by you (i.e. bookings, payments, login…). This includes “session cookies” that allow us to prevent robots from sending spam on the blog comments and website forms.
    • Some other cookies are used for other uses (analytic purposes, storing navigation preferences for an easier user experience, enabling social media interactions and more… see list below). They do not track sensitive personal information.
  • DISCLAIMER:
    • This website and its legal representatives are not responsible of the content or the honesty of the privacy policies of third part cookies.
    • Browsers are responsible for storing cookies: users must exercise their right to eliminate or deactivate cookies. This website and its legal representatives can’t guarantee the correct manipulation or use of cookies installed by the user’s browsers.
    • It might be necessary to install cookies so the browser remembers if the user accepted or denied the use of cookies in this website.
    • Google Analytics cookies are stored in servers located in the US and they agree not to share the information with third parties, unless it is necessary for the correct performance of the system or if they were forced by law. According to Google, they do not store the user’s IP address. Google Inc. is a company that adheres to the Safe Harbor Arrangements ensuring that all transferred data will receive a protection level complying with the EU law. You can check more information about that here. For more information on Google cookie usage, check here.
    • For any question about our cookie policy, please contact us.

* This Cookie list is regularly manually updated. If you detect a cookie installed by our website that is not listed below or can provide more information about unknown cookies, please contact us.

CookieTypeDurationDescription
_gaTracking2 yearsCookie used to track unique clients. Installed by Bookeo. https://developers.google.com/analytics/devguides/collection/analyticsjs/domains
_galiPerformance2 yearsThese cookies are set up by Google Analytics and they are used to collect information about how visitors use our website. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website and blog, where visitors have come to the website from and the pages they visited.
_gatPerformance1 dayThese cookies are set up by Google Analytics and they are used to collect information about how visitors use our website. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website and blog, where visitors have come to the website from and the pages they visited.
_gidPerformance2 daysThese cookies are set up by Google Analytics and they are used to collect information about how visitors use our website. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website and blog, where visitors have come to the website from and the pages they visited.
bp_user-registeredUnknownPermanentUnknown.
bp_user-roleUnknownPermanentUnknown.
bp_ut_sessionSecurity1 sessionThis cookie ensures the users leaving comments on the website are humans instead of robots, preventing spam.
PHPSESSIDStrictly Necessary1 SessionCookie generated by applications based on the PHP language. This is a general purpose identifier used to maintain user session variables. It is normally a random generated number, how it is used can be specific to the site, but a good example is maintaining a logged-in status for a user between pages.
popupally-cookie-12Unknown1 dayThis cookie is installed by the plugin PopupAlly Pro, to regulate when and how often a popup should show to the user.
wp-settings-3Unknown1 yearUnknown (maybe necessary for correct work of WordPress environment, but that's just a guess). http://cookiepedia.co.uk/cookies/wp-settings-8
wp-settings-time-3UnknownUnknownUnknown (probably necessary for the correct function of wordpress environment, but that's just my guess). http://cookiepedia.co.uk/cookies/wp-settings-time-7

This information is an adapted translation from Carlos Doral’s plugin by webartesanal.com.

Para el original en español, visite nuestra web en castellano.