Desert Leaves Logo

Privacy Policy

In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR), and Spanish Organic Law 3/2018 (LOPDGDD), users are informed of the following:

1. Data Controller

Entidad: Asociación Desert Leaves
Tax ID (CIF): G16728560
Address: PTDA DEL MAR 100, 46132 ALMASSERA, VALENCIA, Spain
Contact Email: info@desertleaves.org

2. Purpose of Data Processing

We collect personal data for the following purposes:

  • To respond to contact requests.
  • To send information about our activities, if the user has given consent.
  • To manage donations or collaborations.

We do not create user accounts or profile users. No commercial profiling or automated decision-making is performed.

3. Legal Basis

Data processing is based on the user’s consent and, in some cases, on the legitimate interest of the association in carrying out its mission.

4. Data Recipients

Data will not be shared with third parties unless required by law or when necessary to provide services (e.g., secure payment platforms, newsletter services, etc.).

5. User Rights

Users may exercise the following rights:

  • Access to their personal data
  • Rectification of inaccurate data
  • Deletion of data (right to be forgotten)
  • Restriction of processing
  • Objection to processing
  • Data portability

To exercise these rights, users may email info@desertleaves.org, clearly stating their request and providing proof of identity.

6. Data Retention

Personal data will be retained for as long as the relationship with the user remains active and for the time necessary to comply with legal obligations.

7. Security Measures

Desert Leaves implements appropriate technical and organizational measures to ensure the confidentiality, integrity, and availability of personal data.

8. Supervisory Authority

If a user believes their rights have been violated, they may file a complaint with the Spanish Data Protection Authority (AEPD): www.aepd.es

9. International Transfers

Personal data may be transferred outside the European Economic Area, particularly to the United States, through providers like Mailchimp (Intuit Inc.). These transfers are carried out under Standard Contractual Clauses approved by the European Commission to ensure adequate data protection.

Last updated: May 2025