Privacy Policy

Privacy and Data Protection Policy:

The National Perfumery and Cosmetics Association (hereafter, Stanpa), in accordance with the relevant legislation on Personal Data Protection, informs the users of the website (hereafter, the Website) of its Privacy and Data Protection Policy, which will apply to the processing of the personal data voluntarily provided by users when accessing the website or mobile app.

By providing Stanpa with their personal data via online forms on the Website, contacts sections and, if applicable, by ticking the box to indicate acceptance, users expressly consent to the processing of their data by Stanpa, in accordance with the terms of this clause of the Privacy and Data Protection Policy and for the purposes stated herein.

Stanpa informs the Website users that their personal data may only be obtained for processing when appropriate, pertinent and not excessive in relation to the explicit, legitimate purpose and sphere for which they were obtained. Their data will be cancelled when no longer necessary or pertinent for that purpose, or when the data subject exercises their right of cancellation.

Stanpa states its commitment to complying with the applicable legislation on data protection, specifically Organic Law 15/1999 of 13 December, the Personal Data Protection Act; Royal Decree 1720/2007 of 21 December, approving the implementing regulations of Organic Law 15/1999; Regulation (EU) 2016/679 of the European Parliament and Council of 27 April 2016; and other applicable legislation.

The personal data provided will be included in the manual or automated files registered by the Spanish Data Protection Agency, under the ownership of Stanpa, and will be used according to the following.


Data protection information

Basic information

Additional information

Data Controller National Perfumery and Cosmetics Associatio C.I.F.: G28541167
BUSINESS ADDRESS: Plaza Santa Bárbara 3, 28004, Madrid
TELEPHONE: (+34) 91 571 16 40
Main purposes  

Attending to queries


Attending to the queries of Users who contact us via the Contact sections or web forms.

If the data needed for these purposes are not provided, it will be impossible to provide them with our services. The data will be stored as long as the relationship is maintained and the user does not request their erasure and, in all cases, until the legally applicable expiry data.

Legitimate interest and storage Legal basis for processing The legal basis for processing the data is the consent given by the User by ticking the relevant checkbox to indicate acceptance.
Additional purposes Sending information The User’s contact information and email address may be used to send them information about our services, as long as they have authorised this by ticking the corresponding checkbox.
Legitimate interest and storage Legal basis for processing Their email address will be used according to the terms indicated above only if they have given their consent by ticking the corresponding checkbox. The data will be stored as long as the relationship is maintained and the user does not request their erasure and, in all cases, until the legally applicable expiry data.
Recipients of transferred data The following data is expected to be transferred There are no plans to transfer data.
Rights of data subjects Exercise of rights Data subjects may exercise their rights to access, rectification, erasure, portability, restriction and objection by writing to Stanpa, indicating “exercise of data protection rights”, or via the following email address:
Data subjects have the right to withdraw their consent.
Data subjects have the right to lodge a complaint with the Controlling Authority (Agencia Española de Protección de Datos,

Users will be solely responsible for the accuracy of the information provided to Stanpa.

Fields marked with an asterisk (*) in the forms provided on the Website are required, so the form cannot be sent if any are not completed.

Stanpa manages its server environment appropriately, with a strictly compliant firewall infrastructure. It uses current technologies at all times to ensure that the confidentiality and privacy of the information is not compromised.

To do this, it adopts the necessary technical and organisational measures to guarantee the security of the personal data on the servers and to avoid their alteration, loss, unauthorised processing or access, taking into account the state of the technology, the type of data and the risks to which they are exposed.

Any change made to the Privacy Policy and to the information management practices will be shown in a timely manner, and Stanpa may add to, change or eliminate the Privacy Policy when it deems this to be necessary.

At all events, Stanpa will never change its policies or practices to make them less effective at protecting the previously stored personal data of our clients, without the previous consent of the affected clients.

Last updated: 24 May 2018