Privacy Policy
Last updated: March 2026
Introduction
In accordance with Regulation (EU) 2016/679 (GDPR) and Organic Law 3/2018 (LOPDGDD), we inform you about how we process your personal data.
Data Controller
The data controller is the owner identified in the Legal Notice of this website. You can contact us at info@runningtourslpgc.com for any data protection matter.
Purposes and Legal Basis
Managing bookings and providing the contracted service
Legal basis: performance of a contract (Art. 6.1.b GDPR)
Processing payments through Stripe
Legal basis: performance of a contract (Art. 6.1.b GDPR)
Responding to inquiries and requests
Legal basis: pre-contractual measures (Art. 6.1.b GDPR)
Compliance with tax and accounting obligations
Legal basis: legal obligation (Art. 6.1.c GDPR)
Recipients
Your data may be shared with:
- Stripe, Inc. — payment processing
- Canary Islands Tax Authority — legal tax obligations
- Invoicing software provider — invoice management
International Transfers
Stripe, Inc. is based in the United States and is certified under the EU-U.S. Data Privacy Framework (European Commission adequacy decision of July 10, 2023), ensuring an adequate level of protection. Standard Contractual Clauses also apply as an additional safeguard. For more information: stripe.com/legal/data-privacy-framework
Data Retention
- Booking and service data: duration of the contract + 4 years (tax statute of limitations)
- Invoicing data: 6 years (Spanish Commercial Code, Art. 30)
- Inquiry data (without contract): 1 year from last contact
Your Rights
You have the right to:
- Access your personal data
- Rectify inaccurate data
- Request erasure of your data (right to be forgotten)
- Request restriction of processing
- Data portability
- Object to processing
To exercise your rights, email us at info@runningtourslpgc.com. We will respond within one month.
Right to Complain
If you believe your rights have not been properly addressed, you may file a complaint with the Spanish Data Protection Agency (AEPD) at www.aepd.es.