0. Introduction

In order to navigate through www.rarepuzzles.com it is not necessary to provide any personal data. However, users need to share personal data in order to register on the website, reserve a puzzle at an online store, or request information through a form or email.

Personal data are protected by law, which requires those responsible for its custody to meet certain requirements and inform users about them. Currently, Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016, is the legal text that regulates the processing of personal data in the European Union, and it is known as General Data Protection Regulation (GDPR).

In this document, users can get information about the Privacy Policy of www.rarepuzzles.com, in order to know what personal data are collected, how they are treated, and for what purposes. Before providing any personal information, users will have to accept this Privacy Policy.

This Privacy Policy is subject to changes and modifications in order to adapt to future legislative developments as well as industry practices. In that case, 15 days before the amendment is applied, users will be informed by a notice in the website. In addition, registered users will also be notified via email. When amendments concern correction of typographical errors or edition improvements but not changes in the content, then there won’t be any notification or change in the date of the version. In any case, it is important that users know the last version of this policy. The date of the last update always appears at the bottom of this page.

1. Responsibility

The website www.rarepuzzles.com is owned and operated by Jorge Gallego (from now on, the Owner), residing at 8600 Tuscany Ave #217, Playa del Rey, CA, USA, telephone +13104331652, and email [email protected].

The Owner informs users of www.rarepuzzles.com of the policy regarding the treatment and protection of the personal data of users that can be collected by browsing or reserving products through the website.

In this regard, the Owner ensures compliance with current regulations regarding the protection of personal data, reflected in Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016, known as General Data Protection Regulation (GDPR).

The simple use of the website means the implicit acceptance of this Privacy Policy. Furthermore, in order to register at www.rarepuzzles.com or to reserve a puzzle, or to fill an online form at the website, users will also need to accept the Terms & Conditions, which include the acceptance of this Privacy Policy.

2. Data Collected and Purpose

The personal data collected in the registration process, or when the user signs up for a newsletter or when he fills out a contact form at www.rarepuzzles.com will be the Email Address and the First Name, which the Owner assumes is the real name.

When the user reserves a puzzle at an online store, he will also need to provide the Last Name, Address, and a Phone Number. However, if the user reserves a puzzle through direct communication with the Owner via email, then no other information will be required.

The data requested through forms or fields with an asterisk (*) are necessary in order to process the users’ requests. When there are forms with fields marked as mandatory, users will understand that they are necessary to process the request. Users assume that providing the required personal information, even in the cases in which the website describes it as mandatory, will always be voluntary. Users can choose not to complete these fields described as mandatory, in which case they assume that the Owner will be unable to process the request. For example, the Owner can not email a newsletter if the user refuses to provide his email address. It is in this sense that the email field is described as mandatory information. The same is true about the user’s shipping address, which is essential for a vendor to make the shipment. If the user chooses not to provide the shipping address, the vendor cannot ship the order. In this sense, the address field is marked as mandatory. However, despite this description, users accept that they provide the data voluntarily.

The Owner informs users that the purpose of the processing of the data collected is to fulfill the requests made by users, and to manage communications with buyers and vendors, so that puzzles can be processed and shipped.

3. Communication to Third Parties

The Owner informs users that their personal data will never be disclosed to third parties, except when disclosing the data is forced by a legal obligation or when the service involves the need to share the data.

When users use an online store to reserve puzzles, they accept that the Owner will share their personal data with the vendor of that store, so that he can communicate directly with the buyer, provide a shipping quote, manage the payment, and ship the puzzle afterwards.

In this case, users also understand and agree that the vendor will have to give some personal data to the shipping companies responsible for completing the delivery of the puzzles. The data shared will very likely be the First Name, Last name, Delivery Address, Email and Phone Number. Email is normally required so that users can receive tracking information, and the phone number is normally required so that the shipping company can contact the user in case there is any incident during delivery.

4. Consent of the User

When a user employs any means of communication in order to contact www.rarepuzzles.com, he accepts and consents that all his personal data contained in such communication will be managed and treated, either automatically or manually. The user that sends information to www.rarepuzzles.com is the only responsible person with regards to the truth and correctness of the data included. Users guarantee the exactness and authenticity of the personal data provided, and they commit themselves to maintaining them updated within their users’ accounts at www.rarepuzzles.com. Users will provide true and correct information during registration. The Owner is not responsible for the veracity of any information that has not been facilitated by himself or any information that is marked as coming from other sources. For the same reason, the Owner assumes no liability whatsoever for possible damage that may arise from the use of such information. Furthermore, www.rarepuzzles.com is exonerated from liability for any loss or damage that might happen as a result of errors, defects or omissions in the information that appears at www.rarepuzzles.com when such information comes from outside sources.

5. Rights of the Users

The General Data Protection Regulation gives users the ability to exercise certain rights related to the processing of personal data.

As long as the users’ personal data are processed by the Owner, users may exercise their rights of access, portability, rectification, deletion, limitation and opposition, in accordance with the provisions of current legislation on the protection of personal information.

To make use of the exercise of these rights, users should communicate with the Owner in written form. They can send an email to the address [email protected] from the email address used during registration at www.rarepuzzles.com, or by traditional mail to Jorge Gallego, 8600 Tuscany Ave #217, Playa del Rey, CA, 90293, USA. If done by traditional mail, users must include a photocopy of a legal document in order to verify their identity.

The exercise of such rights shall be performed by the User himself whenever possible. However, they may be performed by an authorized person as a legal representative of the User. In such cases, some documentation proving such representation must be provided.

6. Security

The Owner maintains high levels of personal data protection security, and he has established all the technical means at his disposal to prevent loss, alteration, unauthorized access and/or theft of the data that users provide through the website or through any other means of communication with www.rarepuzzles.com. The processing of personal data, and the sending of communications by electronic means are in accordance with the General Data Protection Regulation and Law 34/2002, of July 11, on services of the Information Society and Electronic Commerce (B.O.E. of July 12, 2002).


(Last Update: May 4, 2018).