This Privacy Policy explains how personal data is collected, used, and protected when users access and interact with this website, in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and applicable Spanish data protection laws.

1. Data Controller

Company name: Almuñécar Mateos Invest SL
Tax ID: B18574145
Registered address: C/ Hurtado de Mendoza 5, Almuñécar (Granada), Spain
Email: info@fincadecafe.com
Phone: +34 649 881 601

The data controller is responsible for the website fincadecafe.com and the services offered through it.


2. Purpose of Data Processing

Personal data may be processed for the following purposes:

  • Providing information about the farm and its activities

  • Managing online sales of tropical fruit and related products

  • Managing bookings for guided tours, activities, and experiences

  • Responding to inquiries submitted via contact forms or email

  • Managing customer relationships and communications

  • Improving website content and user experience

  • Complying with legal and regulatory obligations

3. Legal Basis for Processing

Personal data is processed on the basis of:

  • User consent (Article 6.1.a GDPR)

  • Performance of a contract or pre-contractual measures (Article 6.1.b GDPR)

  • Compliance with legal obligations (Article 6.1.c GDPR)

  • Legitimate interest in managing and improving the website and services (Article 6.1.f GDPR)

4. Data Collected

Depending on how the website is used, the following personal data may be collected:

  • Name and surname

  • Email address

  • Phone number

  • Billing and shipping information (for purchases)

  • Booking details

  • IP address

  • Browser and device information

  • Date and time of access

5. Data Retention

Personal data will be retained only for as long as necessary to fulfill the purpose for which it was collected, or as required by applicable legal obligations.


6. Data Sharing with Third Parties

Personal data will not be shared with third parties except when:

  • It is necessary to provide the requested service

  • Required by law

  • The user has given explicit consent

  • The service is provided through external booking platforms

Bookings made through third-party platforms (such as GetYourGuide, TripAdvisor, Civitatis or Airbnb Experiences) are subject to the privacy policies of those platforms.


7. User Rights

Users have the right to:

  • Access their personal data

  • Request rectification of inaccurate data

  • Request erasure of their data

  • Request restriction of processing

  • Object to data processing

  • Request data portability

  • Withdraw consent at any time

Requests may be sent to info@fincadecafe.com, together with proof of identity if required.

Users also have the right to lodge a complaint with the relevant data protection authority.


8. Cookies

This website uses its own and third-party cookies to improve navigation, analyze traffic and personalize the user experience.

Detailed information is available in the Cookie Policy


9. Additional Information on the Use of WordPress

This website uses WordPress as a content management system. Some technical features may involve the processing of personal data for operational and security purposes.

In particular:

  • Comments:
    If users leave comments on the website, the comment and its metadata may be stored indefinitely to facilitate automatic spam detection and the approval of future comments.

  • Registered users:
    If users register on the website, the personal information provided in their user profile is stored.
    Users can view, edit or delete their personal information at any time (except the username).
    Website administrators can also view and edit this information for site management purposes.

  • Password reset:
    If a password reset is requested, the user’s IP address may be included in the reset email for security reasons.

  • Spam detection:
    Visitor comments may be checked through automated spam detection services in order to protect the website from fraudulent or abusive use.

These processes are carried out solely for technical, security and service-related purposes and are not used for unrelated commercial activities.


10. Data Security

Appropriate technical and organizational measures are implemented to protect personal data against unauthorized access, alteration, loss or misuse.


11. Changes to This Privacy Policy

This Privacy Policy may be updated to reflect legal or technical changes. The current version published on this website shall apply at all times.

Scroll to Top