Privacy Policy
Last updated: 2026
1. Website Owner
In accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and Spanish Organic Law 3/2018 on the Protection of Personal Data (LOPDGDD), users of this website are informed of the following:
Website: https://canlumeibiza.com
Business name: JIMENEZ HARMSEN INVERSIONES, SOCIEDAD LIMITADA
Address: Diseminado Can Teo, 9982, 07830 Sant Josep de sa Talaia, Balearic Islands, Spain
Contact email: info@canlumeibiza.com
This website provides information about Can Lume, a private wellness retreat villa located in Ibiza offering accommodation and curated experiences.
2. Purpose of Data Collection
Personal data provided through this website will be used exclusively for the following purposes:
- Responding to inquiries submitted through the contact form
- Providing information about the villa, availability and stays
- Managing communication with potential guests
- Improving the functionality and security of the website
The information collected will only be used for the purposes described above.
3. Legal Basis for Processing Data
The legal basis for processing personal data is the consent provided by the user when submitting a contact request through the website.
By completing the contact form and submitting your information, you agree that your data may be used to respond to your request.
4. Data Collected
When users submit a message through the contact form, the website may collect the following personal data:
- Name
- Email address
- Any information voluntarily provided in the message
No sensitive personal data is requested or required to use this website.
5. Data Retention
Personal data will be stored only for the time necessary to respond to inquiries or maintain communication regarding potential stays at Can Lume.
Data will not be retained longer than necessary for the purposes described in this policy unless required by legal obligations.
6. Data Sharing
Personal data collected through this website will not be sold, rented or shared with third parties, except when required by law or necessary to respond to a user’s request.
The website may use technical service providers (such as hosting providers) that process data on behalf of the website owner solely for operational purposes.
7. Embedded Content
This website may include embedded content such as images, videos or other media from third-party websites.
Embedded content from other websites behaves in the same way as if the visitor had visited the other website directly. These websites may collect data about you, use cookies, embed additional third-party tracking and monitor your interaction with that content.
8. Cookies
This website may use basic technical cookies necessary for the proper functioning of the site.
Cookies are small text files stored in the user’s browser that help ensure the website works correctly and securely.
No cookies are used to collect personal information for advertising purposes.
Users can configure their browser settings to refuse or delete cookies at any time.
9. Data Security
The website owner takes appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure or destruction.
10. User Rights
Under the GDPR, users have the right to:
- Access their personal data
- Request correction of inaccurate data
- Request deletion of their data
- Request limitation of processing
- Object to data processing
- Request portability of their data
Users may exercise these rights by contacting:
Requests will be handled in accordance with applicable data protection regulations.
11. Changes to This Privacy Policy
The website owner reserves the right to update this privacy policy at any time to reflect legal, technical or operational changes.
Users are encouraged to review this page periodically to stay informed about how their data is protected.