Privacy Policy


Data of the person in charge of the treatment

DAVID FERNÁNDEZ SERRANO (hereinafter GNOMY ART), with NIF 49017073W and address at Arroyo Naranjo,40 Leganes 28918 Madrid and e-mail contact data protection coordinator (

Applicable regulations: 

The privacy policy has been designed in accordance with the prescriptions of the European Regulation on Personal Data Protection RGPD 679/2016 of April 27 and the Organic Law on Personal Data Protection and Guarantee of Digital Rights LOPDGDD in 3/2018 of December 5. The aforementioned policy may vary according to regulatory and / or jurisprudential changes, announcing in such case, such situation.

Purpose of the processing of personal data.

The data is processed for the purpose of selling the product and providing the information requested by the interested party, in addition to advice on existing product offerings and sending news and updates related to the requested information and / or product purchased. 

The legal basis that legitimizes the processing of the data subject’s personal data is set forth in Article 6 of the GDPR. 

 The processing will only be lawful if at least one of the following conditions is met: 

a) the data subject consented to the processing of his or her personal data for one or more specific purposes; 

b) the processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures at the request of the data subject; 

c) the processing is necessary for compliance with a legal obligation applicable to the controller;

d) the processing is necessary to protect the vital interests of the data subject or of another natural person;

e) the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;

(f) processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, provided that such interests are not overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.

Data collected and type of legitimization.

In accordance with article 4.11 of the RGPD 679/2016 and article 6.1 of the LOPDGDD 3/2018, the data collected from the interested party are legitimized by the consent given when requesting the purchase of a product. The personal data collected are the minimum necessary to carry out the sale and that you can have timely information on the itinerary and situation in which you are. Likewise, not providing the mentioned data or not accepting the present privacy policy, implies the impossibility of making the purchase of the corresponding product and that the delivery can be made at the indicated address.

In case of making a communication, this is covered by Article 21.2 of the LSSI-CE 34/2002 and the authorization may be revoked at any time by the interested party, in accordance with Article 22 of the same law.

Accuracy and veracity of the data provided

The User who sends the information to is solely responsible for the veracity and correctness of the data included, exonerating GNOMY ART from any responsibility in this regard.

The interested parties guarantee and are responsible, in any case, for the accuracy, validity and authenticity of the personal data provided, and undertake to keep them duly updated. The user (customer, consumer), therefore, agrees to provide complete and correct information in the registration or subscription form that exists when making the purchase or in the one that may exist to request some kind of information.

GNOMY ART is not responsible for the veracity of the information that is not of its own elaboration and of which it indicates another source, as well as it does not assume any responsibility regarding hypothetical damages that could originate from the use of such information.

GNOMY ART is exonerated from liability for any loss or damage that the User may suffer as a result of errors, defects or omissions in the information provided by GNOMY ART provided that it comes from outside sources.

Recipients and transfer of data.

There is no transfer of data to third parties, except for the transfers that are required by a regulatory compliance, being in any case an administration or public entity or any entity that is necessary to complete the purchase process or information required. 

Data retention time and criteria.

The data will be stored for at least 4 years or more if there are communications and in any case until the cancellation is not requested by the person concerned. 

Storage location and security measures applied

They will remain hosted in the database of the website, in the EU, through its hosting contracted through Siteground in its Dutch server in Eemshaven (NL). In the same the security measures are applied following criteria of Confidentiality, Integrity and Availability. This is restricted access to information, applying firewall and antivirus, as well as backups and images of the relevant systems to avoid any contingency.

Exercise of Rights.

The interested parties have the right to request from the data controller access to their personal data, its rectification or deletion, limitation of its processing or to oppose to it, as well as the portability of such data, by sending the request to 

You also have the right to file a complaint with the supervisory authority (Spanish Data Protection Agency You also have the right to withdraw your consent at any time.