ET Autogalería

Legal

Privacy policy

Last updated: 23 May 2026

In compliance with Regulation (EU) 2016/679 (GDPR) and Spanish Organic Law 3/2018 on Personal Data Protection (LOPDGDD), the following privacy policy applies to this website.

1. Data controller

  • Identity: Erik Abgaryan
  • Tax ID (NIF): Y5221844F
  • Address: Calle Sant Mateu 2 bajo 3, 46980 Paterna (Valencia, España)
  • Email: hola@etautogaleria.com
  • Phone: +34 643 31 48 14

2. Processing purposes

Personal data provided will be processed for the following purposes:

  • Managing commercial enquiries and requests for vehicle information.
  • Facilitating communication between the owner and potential or current customers.
  • Processing reservations and sales transactions (when applicable).
  • Complying with legal and tax obligations (invoicing, accounting, warranties).

3. Legal basis

  • Consent (art. 6.1.a GDPR) for voluntary enquiries via contact forms or channels.
  • Performance of a contract / pre-contractual measures (art. 6.1.b GDPR) for reservations and sales.
  • Legal obligation (art. 6.1.c GDPR) for tax, commercial and consumer-protection compliance.
  • Legitimate interests (art. 6.1.f GDPR) to keep a minimal record of commercial communications.

4. Data categories

Identifying data (name, phone, email) and commercial data (vehicle of interest, reservation amount when applicable). No special categories of data are processed.

5. Retention

Data is retained for the time strictly necessary to fulfil the purposes and then for the periods required by applicable law: up to 6 years for tax / commercial records; the statute of limitations for civil claims (5 years) for general contractual data.

6. Recipients and processors

The following technology providers act as processors under article 28 GDPR:

  • Vercel Inc. (US) — website hosting.
  • Supabase Inc. (US, EU infrastructure) — database.
  • Resend Inc. (US) — transactional email.
  • Stripe Payments Europe Ltd. (Ireland) — payment gateway (currently inactive; online payments are disabled).
  • Cloudflare Inc. (US) — DNS, email forwarding and CDN.

International transfers to the United States are made under the EU-U.S. Data Privacy Framework (European Commission adequacy decision of 10 July 2023) and, where applicable, under standard contractual clauses.

7. Your rights

  • Access to your personal data.
  • Rectification of inaccurate data.
  • Erasure ("right to be forgotten") when no longer necessary.
  • Restriction of processing in specific cases.
  • Data portability in a structured format.
  • Objection to processing on grounds related to your particular situation.
  • Not to be subject to automated decisions (not applicable on this site).

You may exercise these rights by written request to hola@etautogaleria.com or by post to the address listed above, providing proof of identity.

You also have the right to lodge a complaint with the Spanish Data Protection Agency (www.aepd.es).

8. Security measures

The controller has implemented technical and organisational measures appropriate to the risk of processing, including in-transit encryption (HTTPS), role-based access control, two-factor authentication on the admin panel and event logging on critical systems.

9. Changes to this policy

This policy may be updated to reflect regulatory changes or site configuration changes. The date of the last update is shown at the top of the document.