Responsible: Who is responsible for data processing?
Identity: Archfit®
Registered office: C / Unio 70, floor 2, door 8
NIF: 48652910K
Telephone: +34618843262
Contact: Javier Serrano Perez
Domain name:
What do we do with your information?
When you buy something from our store, as part of the purchase-sale process, we collect personal information that tells us stories such as name, phone number, address and email.

When you browse our store, we also automatically receive your device's Internet Protocol (IP) address in order to provide information that helps us learn about your browser and operating system.

Email marketing: With your permission, we may send emails about our store, new products and other updates

Purposes - for what purposes do we process your data?
In compliance with the provisions of the European Regulation 2016/679 General Data Protection, we inform you of what we will treat the data you provide us with to:
  • Manage the contracting of services performed through the Platform, as well as the corresponding billing and delivery.
  • Send notifications for services, events and news related to the activities carried out by Archfit®, by any means (telephone, postal mail or email), unless otherwise indicated or the user opposes or revokes her consent.
  • Send commercial and/or promotional information related to the contracted services sector and added value for end-users, unless otherwise indicated or the user opposes or revokes her consent.
  • Complying with legally established obligations, as well as verifying compliance with contractual obligations, includes fraud prevention.
  • Transfer of data to organizations and authorities, as long as they are required under legal and regulatory provisions.
Data categories - what data do we process?
Derived from the aforementioned purposes, at Archfit® we manage the following categories of data:
  • Identifying data
  • Electronic communications metadata
  • Commercial information data. In the event that the user provides data from third parties, have their consent and undertake to transfer the information contained in this clause, exempting an Archfit® from any responsibility in this regard.
  • However, Archfit® may carry out verifications to verify this fact, adopting the corresponding due diligence measures, in accordance with the data protection regulations.
Legitimation - What is the legitimacy for the treatment of your data?
The data processing whose purpose is to send periodic bulletins (bulletins) on services, events and news related to our professional activity is based on the consent of the interested party, expressly requested to carry out said treatments, in accordance with current regulations.
In addition, the legitimacy for the treatment of the data related to offers or collaborations is based on the consent of the user who sends their data, which can be withdrawn at any time, although it may affect the possible communication in a fluid way and obstruction of processes that you want to perform.
Finally, the data can be used to comply with the necessary legal obligations to Archfit®
Data Conservation Period - How long will we keep your data?
Archfit® retains the personal data of the users that change for the time necessary for the fulfilment of the purposes for which they were retrieved, while not revoking the consents granted. Later, if necessary, it will keep the information blocked during the legally established periods.
Recipients To which recipients will your data be communicated?
Your data may be accessed by those providers that provide services to Archfit®, such as hosting services, marketing tools and content systems or other professionals, when such communication is required by law, or for the execution of the contracted services.
Archfit® has signed the corresponding treatment order contracts with each of the providers that provide services to Archfit®, in order to guarantee that said providers will process your data in accordance with the provisions of current legislation.
They may also be transferred to the State Security Forces and Bodies in cases where there is a legal obligation.
Banks and financial entities, for the collection of services.
Public administrations with competence in the activity sectors, when so established by current regulations.
Third-party services
In general, third-party providers used by us will only collect, use, and disclose your information to the extent necessary to enable them to perform the services they provide to us.

However, some third-party service providers, such as payment channels and other payment transaction processors, have their privacy policies regarding the information we are required to provide to them for purchase-related transactions.

For these providers, we recommend that you read the privacy policies so that you can understand how your personal information will be handled.

In particular, remember that some providers may be located or have facilities that are in a jurisdiction other than you or us. So if you wish to proceed with a transaction involving the services of a third-party provider, your information may be subject to the laws of the jurisdiction (jurisdictions) in which the service provider or its facilities are located.

As an example, if you are in Canada and your transaction is processed by a payment channel based in the United States, then your personal information used to complete the transaction may be subject to disclosure under United States law, including the Patriot Act.

Once you leave our store's website or redirect to a third-party site or application, you are no longer being regulated by this Privacy Policy or the Terms of Service of our website.
Third-party data recipients
Av. Puig I Cadafalch, 181, Bj
08303 Mataró (Barcelona)
Tel: 93.757.68.09 Fax: 93.798.85.35
PACKLINK - delivery service
Packlink Shipping S.L.
Calle Amaltea 9, 3 Planta
28045 Madrid
GOOGLE ANALYTICS - web analytics service
Google LLC1600 Amphitheatre Parkway
Mountain View, CA 94043
OPTIMONK - on-site message toolkit
Optimonk International Zrt.
4028 Debrecen, Kassai út 129., Hungary
Tax number of the company: 26335498-2-09
OMNISEND - marketing platform
Omnisend Limited
Unit a3, Gateway Tower, 32 Western Gateway,
London E16 1YL

SHOPIFY - e-commerce platform
Shopify Inc.
ATTN: Chief Privacy Officer
150 Elgin St. 8th Fl. Ottawa, ON K2P 1L4 Canada

When you click on links in our store, you may be redirected outside of our site. We are not responsible for the privacy practices of other sites and we recommend that you read their privacy policies.

Our store is hosted by Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services.

Your data is stored through Shopify's data warehouse, databases and the general Shopify app. Your data is stored on a secure server behind a firewall.


If you choose a direct payment channel to complete your purchase, then Shopify stores your credit card details. It is encrypted through the Payment Card Industry Standard Data Security (PCI-DSS). Your purchase transaction data is stored only to the extent necessary to complete the purchase transaction. After it is completed, your purchase transaction information is deleted.

All direct payment channels adhere to the standards established by PCI-DSS as indicated by the PCI Security Standards Council, which is a joint effort of brands such as Visa, MasterCard, American Express and Discover.

PCI-DSS requirements help ensure the secure handling of credit card information from stores and their service providers.

For a clearer view, you may also want to read the Shopify Terms of Service or Privacy Policy.
Information Security - What security measures do we implement to take care of your data?
To protect different types of data reflected in this privacy policy, it will carry out the necessary technical security measures to prevent its loss, manipulation, dissemination or alteration.
  • Encryption of communications between the user's device and Archfit® servers
  • Encryption of information on Archfit®'s own servers
  • Other measures that prevent access to users' data by third parties.
  • In those cases in which Archfit® has service providers for the maintenance of the platform that are outside the European Union, these international transfers are regularized according to Archfit®'s commitment to the protection, integrity and security of data. Users' personal.
To protect your personal information, we take reasonable precautions and follow industry best practices to ensure there is no improper loss, misuse, access, disclosure, alteration, or destruction of it.

If you provide us with your credit card information, that information is encrypted using Secure Socket Layer (SSL) technology and stored with AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional industry-accepted standards.
Rights - What are your rights when you provide us with your data and how can you exercise them?

You have the right to obtain confirmation on whether or not we are processing personal data that concerns you at Archfit®.

You also have the right to access your personal data, as well as to request the rectification of inaccurate data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purposes that were collected.

In certain circumstances, you can request the limitation of the processing of your data, in which case we will only keep them for the exercise or defence of claims.

In certain circumstances and for reasons related to your particular situation, you may object to the processing of your data. Archfit® will stop processing the data, except for compelling legitimate reasons, or the exercise or defence of possible claims.

You also have the right to data portability, as well as withdrawal of consents provided at any time, without affecting the lawfulness of the treatment based on the consent prior to its withdrawal.

If you want to exercise any of your rights, you can contact
Finally, we inform you that you can contact the Spanish Agency for Data Protection and other competent public bodies for any claim arising from the treatment of your personal data.

We may disclose your personal information if we are required by law or if you violate our Terms of Service.


How do you get my consent?

When you provide us with your personal information to complete a transaction, verify your credit card, create an order, arrange a shipment, or make a return, we imply that you accept the collection and use for that specific reason only.

If we ask you for your personal information for a secondary reason, such as marketing, we will either directly ask for your express consent, or we will allow you to refuse.

How can I withdraw my consent?

If after accepting you change your mind, you can withdraw your consent for us to contact you, for the collection, use or disclosure of your information, at any time, by contacting us at or writing to us at Archfit® C / Unió 70, piso 2,puerta 8, Mataró, Barcelona, ​​08302, Spain
Age of consent

By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and that you have given us your consent to allow any of your dependents minors use this site.

Privacy policy modifications
Archfit® may modify this Privacy Policy at any time, with successive versions being published on the Website. In any case, Archfit® will communicate with prior notice the modifications of this policy that affect users so that they can accept them.

This Privacy Policy is updated on 06/30/2020 Archfit® (Spain). All rights reserved.

If you wish you can also consult our Cookies Policy