Español

Privacy Policy

Surbit created the Surbit ECommerce app as a free app.

Surbit provides this SERVICE free of charge and is designed to be used as is.

This page is used to inform visitors of our policies with the collection, use, and disclosure of personal information if anyone chooses to use our Service.

If you choose to use our Service, you agree to the collection and use of information in relation to this policy.

The personal information we collect is used to provide and improve the Service. We will not use or share your information with anyone, except as described in this Privacy Policy.

This document may be printed for reference using the print command in any browser's configuration options (Ctrl + P).


Information Collection and Use

For a better experience, while using our Service, we may ask you to provide us with certain personally identifiable information, including, but not limited to, email, first name, last name, address, and phone number. The information we request will be retained by us and used as described in this privacy policy.

This Log Data may also include information such as your device's Internet Protocol ("IP") address, device name, operating system version, application settings when you use our Service, time and date of the use of the Service and other statistics.

The app uses third party services that may collect information used to identify you.

Link to the privacy policy of the third party service providers used by the application:

1.      Services de Google Play

2.      Services de App Store

3.      Services de App Gallery

 

Owner and Data Controller – Contact

Company name: Tu Pedido Web SRL - Surbit
RUT: 216 236 72 00 14
Adress: Park Way M18S14 – Lagomar – Canelones – Uruguay
C.P: 15000
www.surbit.uy
desarrollo@surbit.uy


Kinds of Data collected

Among the types of Personal Data that this Application collects, by itself or through third parties, there is also: geographical position; Read-only access; Tracker.

Complete information regarding each category of Personal Data that is collected is provided in the sections of this privacy policy dedicated to that purpose or through specific explanatory texts that are displayed before the collection of said Data.

Personal Data may be freely provided by the User or, in the case of Usage Data, will be collected automatically when using this Application.

All the Data requested by this Application are mandatory and the refusal to provide them may make it impossible for this Application to proceed with the provision of the Service. In cases where this Application specifically indicates that certain Data is not mandatory, Users are free not to communicate such Data without this having any consequence on the availability or operation of the Service.

The use of Cookies - or other tracking tools - by this Application or by the owners of third-party services used by this Application is intended to provide the Service requested by the User, in addition to any other purposes described in This document.

This Service does not use these "cookies" explicitly. However, the application may use third-party code and libraries that use "cookies" to collect information and improve its services. You have the option to accept or reject these cookies and know when a cookie is sent to your device. If you choose to reject our cookies, you may not be able to use some parts of this Service.

The User assumes responsibility for the Personal Data of third parties that is obtained, published or shared through this Application and hereby declares that he has the consent of said third parties to provide said Data to the Owner.

We may employ third party companies and individuals due to the following reasons:

To facilitate our Service;

To provide the Service on our behalf;

To perform services related to the Service; or

To help us analyze how our Service is used.

We want to inform users of this Service that these third parties have access to your Personal Information. The reason is to perform the tasks assigned to them on our behalf. However, they are obligated not to disclose or use the information for any other purpose.


Method and place of processing of the Data collected

Treatment Modalities

The Owner will treat the Data of the Users in an appropriate manner and will adopt the appropriate security measures to prevent unauthorized access, disclosure, alteration or destruction of the Data.

Data processing will be carried out using computers and/or IT tools, following organizational procedures and modalities strictly related to the stated purposes. In addition to the Owner, in some cases the Data may be accessed by certain categories of authorized persons, related to the operation of this Application (administration, sales, marketing, legal department and systems administration) or external contractors who provide services to the Owner (such as such as external providers of technical services, courier companies, hosting companies, IT companies, communication agencies) that will be appointed by the Owner as Treatment Managers, if necessary. An updated list of said persons may be requested from the Holder at any time..

 

Legal basis of the Treatment

The Owner may process the User's Personal Data, if one of the following conditions is met:

When Users have given their consent for one or more specific purposes. Notice: Under several different laws, the Owner may be authorized to process Personal Data until the User objects to it ("opt-out"), without the need for consent or any other legal basis. However, this will not apply when the processing of Personal Data is subject to European regulations on the protection of Personal Data;

When obtaining Data is necessary for the fulfillment of a contract between the User and/or any other pre-contractual obligation of the User;

When the treatment is necessary for the fulfillment of a legal obligation that must be fulfilled by the User;

When the treatment is related to a task carried out in the public interest or in the exercise of official powers granted to the Holder;

When the treatment is necessary for the purpose of a legitimate interest pursued by the Owner or a third party.

In any case, the Holder is at your disposal to define the specific legal bases that apply to the treatment and in particular, if the collection of Personal Data is a contractual or statutory requirement or a necessary requirement to formalize a contract.

 

Place

The Data is processed in the offices of the Holder, as well as in any other place where the parties involved in said treatment process are located.

Depending on Users' location, Data transfers may involve the transfer of Users' Data to a country other than your own. For more information on the place of processing of such transferred Data, Users may refer to the section containing the details on the processing of Personal Data.

Users will also have the right to know the legal bases of Data transfers to another country outside the European Union or to any international organization that is governed by International Public Law or that is made up of two or more countries, such as the UN, and also know the security measures taken by the Owner to safeguard their Data.

In the event that such transfer of Data takes place, Users may obtain more information by consulting the relevant sections of this document or requesting it from the Owner, through the contact information that appears in the contact section.

 

Storage period

Personal Data will be processed and kept for the time necessary and for the purpose for which they were collected.

 

Therefore:

The Personal Data collected for the formalization of a contract between the Holder and the User must be kept as such until said contract has been fully formalized.

The Personal Data collected in the legitimate interest of the Owner must be kept for the time necessary to fulfill said purpose. Users can find specific information related to the legitimate interest of the Owner by consulting the relevant sections of this document or by contacting the Owner.

The Holder may keep the Personal Data for an additional period when the User gives his consent to such treatment, provided that said consent remains in force. In addition, the Holder will be obliged to keep Personal Data for an additional period whenever it is required to comply with a legal obligation or by order from the authority.

Once the retention period has ended, the Personal Data must be deleted. Therefore, the rights of access, modification, rectification and data portability cannot be exercised once said period has expired.

 

Purpose of the Treatment of the Data collected

The Data relating to the User is collected to allow the Owner to provide its Service, comply with its legal obligations, respond to enforcement requests, protect its rights and interests (or those of its Users or third parties), detect any malicious or fraudulent activity, as well as for the following purposes: Access to third-party service accounts, Location-based Interactions, and Registration and authentication.

Users can find specific information on the Personal Data used for each purpose in the section “Detailed Information on the Processing of Personal Data”.

 

Facebook permissions requested by this Application

This Application may request Facebook permissions that allow it to perform actions on the User's Facebook account and retrieve information from it, including Personal Data. This service allows this Application to connect with the User's account on the Facebook social network, provided by Facebook Inc - Meta.

For more information about the following permissions, please refer to Facebook's permissions documentation and Facebook 's privacy policy .

The permissions requested are the following: Email address and basic public profile information such as name and surname.

 

Google permissions requested by this Application

This Application may request permissions from Google that allow it to perform actions on the User's Google account and retrieve information from it, including Personal Data.

This service allows this Application to connect with the User's account on the Google social network, provided by Google Inc.

For more information about the following permissions, please refer to Google's permissions documentation and Google 's privacy policy .

The permissions requested are the following: Email address and basic public profile information such as name and surname.


Detailed information on the Treatment of Personal Data

Personal Data is collected for the following purposes and using the following services:

 

Location-based interactions

Non-continuous geolocation (this Application)

This Application may collect, use and share Data relating to the User's geographic location, in order to provide services based on said location.

Most browsers and devices provide a default means of disabling geo-tracking. If the User has given his express authorization to such possibility, this Application may receive information about his real geographical location.

The geographical location of the User is determined on a non-continuous basis, either at the express request of the User or when the User does not indicate his current location in the appropriate field and allows the application to detect the position automatically.

Personal data processed: geographical position.

 

Access to third-party service accounts

This type of service allows this Application to access the Data of your accounts in third-party services and perform actions with them.

These services are not activated automatically but require the express authorization of the User.

Access to Facebook account (Meta Platforms, Inc.) – Optional registration or authentication

This service allows this Application to connect with the User's account on the Facebook social network, provided by Facebook, Inc.

Requested permissions: Email address and Basic information public profile.

Place of processing: USA – Privacy Policy.

 

Access to the Google account (Google Inc.) – Optional registration or authentication

This service allows this Application to connect with the User's account on the Google social network, provided by Google Inc.

Requested permissions: Email address and Basic information public profile.

Place of processing: USA – Privacy Policy.

 

Apple Account Access (Apple Inc.) – Optional Registration or Authentication

This service allows this Application to connect with the User's account to the apple store, App Store, provided by Apple Inc.

Requested permissions: Email address and Basic information public profile.

Place of processing: USA – Privacy Policy..

 

Registration and authentication

By registering or authenticating, the User allows this Application to identify him and give him access to dedicated services.

Depending on what is indicated below, the registration and authentication services may be provided by the assistance of third parties. In such case, this Application may access some Data stored by the third party service used for registration or authentication.

Some of the services listed below may also collect Personal Data for targeting and profiling purposes; For more information, please refer to the description of each service..


Gmail permissions to access User Data (OAuth plugin) (Google LLC)

To provide this service, this Application uses restricted scopes for Gmail that give access to User Data related to this Google service (as indicated below). Google LLC provides this access under strict conditions. Here is what this means for such User Data:

The use of User Data is limited to making available or improving functionalities aimed at Users. User Data will not be used to deliver advertisements, including retargeting, personalized or interest-based advertising.

User Data will only be transmitted to third parties if necessary, in order to provide or improve functionalities directed to Users and to the extent necessary to comply with applicable legislation or as part of a merger, acquisition or sale of assets with notification to Users.

 

No person will read the Data unless:

the Owner has obtained effective consent for specific messages;

it is necessary for security reasons and/or to comply with applicable legislation, or;

the use is limited to internal operations and the Data (including referrals) has been aggregated and anonymised.

Processed Personal Data: Read-only access.

Place of processing: USA – Privacy Policy..

 

Facebook Authentication (Meta Platforms, Inc.)

Facebook Authentication is a registration and authentication service provided by Meta Platforms, Inc. and connected to the Facebook social network.

Personal Data processed: as specified in the Privacy Policy of the service; Full name, email, tracker.

Place of processing: USA – Privacy Policy.

 

Registration or authentication without third parties

Personal Data processed: as specified for the functionality of the application; Full name, email, tracker address, phone.

Place of processing: USA – Privacy Policy

 

The rights of the Users

Users may exercise certain rights regarding the processing of Data by the Owner.

Especially, Users have the right to do the following:

 

Withdraw your consent at any time.

Users have the right to withdraw their consent when they have previously granted it for the processing of their Personal Data.

Objection to the processing of your Data.

Users have the right to object to the processing of their Data if such processing is carried out on a legal basis other than consent. For more information, please refer to the corresponding section below.

Access to your Data.

Users have the right to know if their Data will be processed by the Owner, to obtain information on certain aspects of the treatment, in addition to obtaining a copy of the Data subject to treatment.

Verify and request modification.

Users have the right to verify the accuracy of their Data and request that it be updated or corrected.

Restrict the processing of your Data.

Users have the right, in certain cases, to restrict the processing of their Data. In this case, the Owner will process your Data for the sole purpose of storing them.

Erase or remove Personal Data.

Users have the right, in certain cases, to obtain the elimination of their Data by the Owner.

-        To request the deletion of data from Facebook:

o   You can send an email requesting the deletion of said data or request it through the Facebook platform. (desarrollo@surbit.uy)

-        Facebook plataform:

o   Go to facebook

o   Select advanced profile options. Settings and privacy.

 

o   Select Settings.

 




o   Apps and websites



o   Select delete app.
For the example we will use BonAppetitTest, find the name of the app you want to remove its associated data and select Remove.



Our applications will never publish videos, events or publications and comments on behalf of the user.

 

o   Select Removed Apps and Sites

 

 

o   Select view for the deleted app

 

 

Select send request to make the data deletion request associated with the user to finish.

 

o   Confirmation of deleted data

 

 

By selecting View Status you can check the current status of the request.

Receive your Data and transfer it to another person in charge.

Users have the right to receive their Data in a standard, structured, mechanically readable format and, if technically possible, to have it transferred to another person in charge without any impediment. This provision will be applicable provided that the Data has been processed through automated means and that the processing is based on the User's consent, on a contract to which the User is a party or that appears in the pre-contractual obligations thereof.

Submit a claim.

Users have the right to file a claim with the competent authority for the protection of personal data.

Details on the right to object to treatment

When the processing of Personal Data is of public interest, in the exercise of official powers granted to the Holder or due to a legitimate interest of the Holder, Users may oppose said treatment explaining a reason in relation to their particular situation to justify their objection.

Users should know that, however, if their Personal Data is processed for commercial purposes, they may object at any time to such processing without the need for justification. In order to know if the Personal Data of the Users is being processed by the Holder for commercial purposes, they should consult the relevant sections of this document..

 

How to exercise these rights

Any request to exercise the rights of the User can be addressed to the Owner through the contact information provided in this document. These requests will be processed by the Holder free of charge as soon as possible and always within a period of one month.

 

Additional information on the collection of Data and its treatment

Legal defense

The User's Personal Data may be used for the legal defense of the Holder before a court or in the judicial phases prior to a possible lawsuit arising from the inappropriate use of this Application or the related Services.

The User declares to know that the Holder may be required by public authorities in order to reveal Personal Data.

 

Additional information about the User's Personal Data

In addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information regarding specific Services or the collection and processing of Personal Data.

System log and maintenance

For reasons related to operation and maintenance, this Application and any other service, provided by third parties, that is used, may collect a system log; that is, files that record the interaction with this Application and that may contain Personal Data, such as the User's IP address.

 

Information not contained in this privacy policy

Additional information on the collection and processing of Personal Data may be requested from the Owner at any time. Contact information is indicated at the beginning of this document.

 

How “Do Not Track” requests are processed

This Application does not allow “Do Not Track” requests.

To determine whether any of the third-party services you use accept "Do Not Track" requests, please review their privacy policies.

 

Modification of this privacy policy

The Owner reserves the right to modify this privacy policy at any time, notifying Users through this page and, if possible, through this Application and/or, if technically and legally possible, notifying Users directly. , in case the Holder has the necessary contact information for this purpose. It is strongly recommended that you check this page frequently, referring to the date of the last update indicated at the bottom of the page.

In the event that the changes affect the treatment activities carried out based on the User's consent, the Owner must obtain, if necessary, the User's new consent.

 

Definitions and legal references

Personal Data (or Data)

Personal data is any information that, directly, indirectly or in relation to other information – including a personal identification number – allows the identification of a natural person.

 

Links to other sites

This Service may contain links to other sites. If you click on a third party link, you will be directed to that site. Please note that these external sites are not operated by us. Therefore, we strongly recommend that you review the Privacy Policy of these websites. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party sites or services.

 

Children's privacy

These Services are not directed to persons under the age of 13. We do not knowingly collect personally identifiable information from children under the age of 13. In the event that we discover that a child under the age of 13 has provided us with personal information, we immediately delete it from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we can take the necessary action.

 

Usage Data.

The information collected automatically by this Application (or by third-party services used by this Application), may include: the IP addresses or domain names of the computers used by the User who connects to this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method used to make the request to the server, the dimensions of the file obtained in response, the numerical code indicating the status of the response from the server (successful result, error, etc.), the country of origin, the characteristics of the browser and the operating system used by the visitor, the various time coordinates of the visit (for example, the time spent on each of the pages) and the details relating to the itinerary followed within the Application ,with special reference to the sequence of pages consulted, to the parameters related to the operating system and the User's computer environment.

 

User

The individual using this Application, who, unless otherwise indicated, must coincide with the Data Subject.

 

Interested

The natural person to whom the Personal Data refers.

 

Data Processor (or Data Supervisor)

The natural or legal person, public administration, agency or any other institution, which processes Personal Data on behalf of the Data Controller, described in this privacy policy.


Responsible for the Treatment (or Owner)

The natural or legal person, public administration, agency or any other institution, acting alone or jointly with others, determines the purposes and measures of the processing of Personal Data, including the security measures related to the operation and use of this Application. Unless otherwise specified, the Data Controller is the Owner of this Application.


This application

The means through which the User's Personal Data has been collected and processed.

 

Service

The service provided by this Application, as described in the definitions and legal references (if available) and on this page or application.

European Union (or EU)

Unless otherwise stated, all references to the European Union in this document include all current Member States of the European Union and the European Economic Area.

 

Read-only access

Read all resources and their metadata—no write operations..

 

Cookie

Cookies are Trackers that consist of small amounts of data stored in the User's browser.

 

Tracker

Tracker means any technology - example Cookies, unique identifiers, web beacons, embedded scripts, entity tags and fingerprinting - that enables Users to be tracked, for example by accessing or storing information on the User's device.

Legal information

This privacy policy has been drafted based on the provisions of multiple legislations, including Arts. 13 and 14 of Regulation (EU) 2016/679 (General Data Protection Regulation).

This privacy policy refers to all the applications on behalf of Tu Orden Web SRL or Surbit available in the different stores; Play Store, App Store and App Gallery.

 

Security

We value your trust in providing us with your personal information, so we strive to use commercially acceptable means to protect it. But remember that no method of transmission over the Internet, or method of electronic storage, is 100% secure and reliable, and we cannot guarantee its absolute security.

 

Changes to this Privacy Policy

We may update our Privacy Policy from time to time. Therefore, you are encouraged to check this page periodically for changes. We will notify you of any changes by posting the new Privacy Policy on this page. These changes are effective immediately upon posting on this page.

 

April 2022

 

https://www.surbit.uy/SurbitCRM/panelControl/recursosPublicos/crm/graficos/logo.png

 

If you have any other questions regarding privacy policies and data, you can contact:
By email: desarrollo@surbt.uy or by visiting our page https://www.surbit.uy