Privacy and cookies policies

PRIVACY POLICY

1) Data Processing Responsible

VIDAL FORCE S.L. (“VidalForce”)
Tax Identification Number: B73830028
Address: C/ Ortega y Gasset 9, 30009 Murcia (Spain)
Murcia Mercantile Registry: Volume 3.018, Book 185, Sheet MU-84886
Phone: +34 968 81 93 29
Email: hello@vidalforce.com
Website: www.vidalforce.com

Data Protection Delegate (DPO): Not required due to volume or nature of treatments. For any privacy-related issue, you can write directly to hello@vidalforce.com.

2) Data categories we process and origin

  • Identification and contact: name, surname, ID/NIF (if applicable), shipping/billing address, email, phone.
  • Transactional: orders, amounts, shipping/return methods, incidents, warranties.
  • Payment: transaction identifiers/tokens. VidalForce does not access or store card data; Stripe, Banco Sabadell (Redsys), PayPal, Bizum, Apple Pay and Google Pay process it.
  • Navigation/analytics: IP, device, pages visited, cookie identifiers (see Cookie Policy).
  • Marketing/CRM: preferences, purchase history, email openings and clicks (Klaviyo).
  • Customer service: communications, complaints and after-sales support.

Origin: data provided by the user, generated in the contractual relationship or by the use of the website, and those derived from accepted cookies.

3) Purposes of the treatment

3.1 Purposes of the treatment

  • Manage orders, payments, shipments, returns and after-sales service.
  • Attend to queries and requests from users.
  • Manage user accounts and access to the private area.
  • Send commercial communications, promotions or newsletters (only with express consent).
  • Analyze the use of the site and improve the experience through analytics and accepted cookies.
  • Prevent fraud and ensure the security of transactions.
  • Comply with legal obligations (tax, accounting, consumer and payment security in accordance with PSD2/SCA).

Automated decisions: VidalForce does not make exclusively automated decisions with legal or significant effects for the user.
Profiling: it is only carried out with prior consent and for basic marketing purposes, for example, product recommendation or content sending according to your previous purchases or preferences.

3.2Commercial communications via WhatsApp

Use of data for communications via WhatsApp

Purpose
The contact data provided by the user (email address and mobile phone number) may be used by VidalForce to send commercial communications, promotions, news, offers, relevant information about products and services, also through WhatsApp, as long as the user has given his express consent.

Legal basis
The treatment is carried out based on the user's consent, given freely, informed, specific and unambiguous at the time of subscribing to the newsletter or registering as a customer. Multilaw+2sandra.ch+2

Consent
Consent will be collected through a form in which the user checks an unmarked box (checkbox), expressing his agreement to receive communications by email and by WhatsApp. Courier+2Partoo+2
We will keep a record of the consent given (date, time, IP address) to accredit that it was free and informed. Data Protection LOPD+1

Right of withdrawal / unsubscribing
The user can withdraw his consent at any time, without needing to justify his decision. To do this, you can:

  • Click the "Unsubscribe" link included in the emails.

  • Write to hello@vidalforce.com requesting to unsubscribe.

  • Send a message by WhatsApp indicating that you wish to stop receiving communications.

After the unsubscription request, we will stop sending all types of commercial messages through both channels. Data Protection LOPD+1

Data conservation
Data related to marketing and commercial communications will be kept as long as the user keeps his consent active. In case of unsubscribing, the data will be deleted or blocked for commercial use, except those necessary to comply with legal obligations (billing, tax, security, etc.).

Responsibility and security
VidalForce guarantees that the data processing for communications via WhatsApp complies with the applicable regulations (Regulation (EU) 2016/679 — RGPD — and Organic Law 3/2018 on Personal Data Protection and guarantee of digital rights — LOPDGDD). We apply appropriate technical and organizational measures to protect personal data against unauthorized access, loss or disclosure.

Recipients / Data Processors
As in the rest of the treatments described in this policy, data may be shared with the necessary data processors for the provision of the service, fulfillment of contractual obligations or provision of marketing services — always under contract and in accordance with the GDPR.

 

4) Legal bases (art. 6 GDPR)

  • Contract execution: order processing, shipments and returns.
  • Legal obligation: compliance with tax, accounting and consumer regulations.
  • Consent: commercial communications, newsletter and non-essential cookies.
  • Legitimate interest: security, fraud prevention and service improvement.

5) Conservation periods

  • Clients and billing: during the relationship and 6 years after (commercial and tax obligations).
  • Customer service: while it is managed and up to 3 years after.
  • Newsletter/marketing: until voluntary unsubscription or withdrawal of consent.
  • Cookies: according to the periods indicated in the Cookie Policy.

Once the periods have ended, the data is blocked to comply with possible responsibilities and then it is definitively deleted.

6) Recipients and data processors

  • Payment gateways: Banco Sabadell (Redsys), Stripe, PayPal, Bizum, Apple Pay and Google Pay (complying with the PSD2/SCA regulation for reinforced authentication).
  • Transport companies: GLS, Correos Express, Amazon Logistics or others necessary for delivery or return.
  • Marketing/CRM: Klaviyo (management and analysis of newsletters).
  • Technology providers: hosting, maintenance, cybersecurity and analytics (Google Analytics 4).
  • Fiscal and legal consultancies: for compliance with regulatory obligations.

All act as data processors (art. 28 GDPR) with contracts and adequate security measures. Data is only communicated by legal obligation or service necessity.

7) International transfers

In case of providers located outside the EEA (such as Google LLC or Klaviyo), we apply Standard Contractual Clauses approved by the European Commission and additional security measures (encryption, pseudonymization, minimization).

8) User rights (arts. 15–22 GDPR)

You can exercise your rights of access, rectification, deletion, limitation, opposition and portability, as well as withdraw consent at any time by writing to hello@vidalforce.com.
If you are not satisfied, you can file a complaint with the Spanish Data Protection Agency (AEPD).

9) Security

VidalForce applies appropriate technical and organizational measures: SSL/TLS encryption, access control, backups, internal policies, monitoring and staff training to protect personal data (art. 32 GDPR).

10) Minors

Our products and services are not intended for minors under 14 years of age. If we detect data from minors without valid consent, they will be immediately deleted.

11) Commercial communications (art. 21 LSSI)

Commercial communications will only be sent if you have given your express consent or there is a previous contractual relationship. You can unsubscribe at any time from the link included in each email or by writing to hello@vidalforce.com.

12) Cookie consent record (traceability)

To comply with the AEPD 2023 Guide, we internally record:

  • User's IP address
  • Date and time of consent
  • Unique ID generated by the system
  • Accepted or rejected categories

This data is used exclusively to accredit consent and is not transferred to third parties.

Visible example for the user:
– Required cookies: Accepted
– Analytical cookies: Accepted / Rejected
– Marketing cookies: Accepted / Rejected
– Personalization cookies: Accepted / Rejected
Consent ID: [automatically generated code]
Date: [YYYY-MM-DD hh:mm:ss]

13) Changes in this policy

This Policy may be updated due to legal or technical changes. We will post the most recent version with the update date and notify relevant modifications.

COOKIE POLICY

Last update: October 25, 2025

1) What cookies are

Cookies are small text files stored on your device to remember your preferences, improve navigation, measure traffic, and personalize the experience.

2) Types of cookies we use

  • Technical or necessary: allow navigation, the cart, payments and security.
  • Preferences or personalization: save language and country settings.
  • Analytics: allow to know the use of the site and its performance.
  • Marketing or advertising: allow to display relevant ads (only with your consent).

3) Own and third-party

Own: managed by VidalForce.
Third-party: Google (Analytics), Meta (Facebook/Instagram), Klaviyo, Stripe and Redsys (payment security).

4) Consent management

When you first access our website, a banner is displayed with the options "Accept all", "Reject all" or "Configure". We only install non-essential cookies if you give your consent, which you can modify or withdraw at any time.

5) How to disable cookies

You can block or delete cookies in your browser by following these links:

6) Cookie table (orientative reference)

Please sign in first.

Sign in

Create a free account to save loved items.

Sign in