Privacy Policy

Last updated: July 11, 2026

This Privacy Policy of the Sanctuary of Our Lady of Sorrows of Chandavila (hereinafter referred to as “we,” “us,” “our,” or “the Entity”) explains how and why we may access, collect, store, use, and share (“process”) your personal information when you use our services (“Services”), including when you:

  • Visit our website: https://santuariochandavila.com/ or any other website owned by us that links to this Privacy Policy.
  • Interact with us through any related means, including communications, outreach activities, or events.

Do you have any questions or concerns?

Reading this Privacy Policy will help you understand your data protection rights and the choices available to you. We are responsible for deciding how your personal information is processed.

If you do not agree with our policies and practices, please do not use our Services.

If, after reading this policy, you still have any questions or concerns, you may contact us at:

Email: admin@santuariochandavila.com

SUMMARY OF KEY POINTS

This summary highlights the main aspects of our Privacy Policy. More detailed information can be found by consulting the table of contents and the corresponding sections below.

What personal data do we process?

When you visit, use, or browse our Services, we may process certain personal data depending on how you interact with us, the choices you make, and the products or services you use.

Do we process sensitive personal data?

No. We do not process special categories of personal data, such as information relating to racial or ethnic origin, political opinions, religious beliefs, sexual orientation, biometric data, or health-related information.

Do we collect information from third parties?

No. We do not collect personal information from third parties.

How do we use your information?

We process your personal data to:

  • provide our services;
  • improve and manage our website;
  • communicate with you;
  • ensure security and prevent fraud;
  • comply with our legal obligations;
  • and, where applicable, for other purposes with your consent.

We will only process your personal data where there is a valid legal basis for doing so.

Do we share your information with third parties?

We may share certain personal data only in the situations described in this Privacy Policy and with specific service providers or partners acting on our behalf.

How do we protect your information?

We implement appropriate technical and organisational measures to safeguard your personal data.

However, please be aware that no method of data transmission over the Internet or electronic storage system can be guaranteed to be completely secure. Therefore, we cannot guarantee that unauthorised third parties, cybercriminals, or hackers will never be able to circumvent our security measures.

What are your privacy rights?

Depending on the country from which you access our Services, applicable data protection laws may grant you specific rights regarding your personal data.

How can you exercise your rights?

You may exercise your rights by submitting a request regarding your personal data or by contacting us using the contact details provided in this Privacy Policy.

We will handle all requests in accordance with applicable data protection legislation.

TABLE OF CONTENTS

  1. What information do we collect?
  2. How do we process your information?
  3. What legal bases do we rely on to process your personal data?
  4. When and with whom do we share your information?
  5. Do we use cookies and other tracking technologies?
  6. How long do we keep your information?
  7. How do we protect your information?
  8. What are your privacy rights?
  9. Do Not Track (DNT) controls
  10. Do we update this Privacy Policy?
  11. How can you contact us?
  12. How can you access, update, or delete your personal data?

1. WHAT INFORMATION DO WE COLLECT?

Personal information you provide to us

In short: We collect the personal information that you voluntarily provide to us.

We collect personal information that you provide when you:

  • request information about our organisation, activities, or services;
  • participate in any activities offered through the website;
  • contact us;
  • or otherwise interact voluntarily with our Services.

Sensitive personal data

We do not process special categories of personal data.

Accuracy of your information

All personal information you provide must be accurate, complete, and up to date.

You are also responsible for informing us of any changes to your personal information.

Information collected automatically

In short: When you visit our website, we automatically collect certain technical information, such as your IP address or your browser and device characteristics.

When you use our Services, we automatically collect certain information that does not directly identify you but may include:

  • IP address;
  • browser type and version;
  • device characteristics;
  • operating system;
  • browser language;
  • referring URL;
  • device name;
  • country or approximate location;
  • date and time of access;
  • information about how you interact with the website;
  • and other similar technical data.

This information is mainly required to:

  • ensure the security of the website;
  • maintain its proper operation;
  • produce internal statistics;
  • improve our services.

Like most websites, we also collect certain information through cookies and similar technologies.

You can find more information in our Cookie Policy:

https://santuariochandavila.com/en/cookie-policy/

The information collected may include:

Log and usage data

Google Analytics automatically records information relating to your use of the website, including:

  • IP address;
  • browser type;
  • browser settings;
  • dates and times of access;
  • pages visited.

Device data

We also collect information about the device used to access the website, including:

  • device type;
  • browser used.

Google APIs

Whenever we use information obtained through Google APIs, such processing is carried out in accordance with the Google API Services User Data Policy, including the Limited Use requirements.

2. HOW DO WE PROCESS YOUR INFORMATION?

In short: We process your information to provide, improve, and manage our Services, communicate with you, ensure security, prevent fraud, and comply with our legal obligations. We may also process your information for other purposes where we have your consent.

We process your personal data for a variety of reasons, depending on how you interact with our Services, including:

  • Managing and maintaining the proper operation of our website.
  • Responding to the information requests you send us.
  • Communicating with you whenever necessary.
  • Ensuring the security of our systems and preventing fraudulent activities.
  • Complying with our legal obligations.
  • Protecting the vital interests of an individual whenever necessary to prevent harm or situations involving risk.

3. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR PERSONAL DATA?

In short: We only process your personal data where there is a valid legal basis to do so, in accordance with the applicable data protection legislation.

The General Data Protection Regulation (GDPR) and the UK GDPR require us to explain the legal grounds on which we rely when processing your personal data.

Depending on the circumstances, we may process your information on the following legal bases:

Consent

We may process your personal data where you have given your consent for a specific purpose.

You may withdraw your consent at any time.

Compliance with Legal Obligations

We may process your personal data where necessary to comply with a legal obligation, for example:

  • cooperating with competent public authorities;
  • responding to judicial or administrative requests;
  • exercising or defending our legal rights;
  • providing information as evidence in legal proceedings.

Vital Interests

We may process your personal data where necessary to protect your vital interests or those of another individual, particularly in situations involving potential risks to the safety or physical integrity of any person.

4. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

In short: We only share personal information in the situations described in this Privacy Policy or where it is necessary for the provision of our services.

Service Providers

We may share certain personal data with external suppliers, consultants, contractors, or other service providers acting on our behalf who require access to such information in order to perform their services.

These third parties may only process your data in accordance with our instructions and are required to comply with the applicable confidentiality and data protection obligations.

5. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

In short: Yes. We may use cookies and similar technologies to collect and store certain information about your browsing activity.

We use cookies and tracking technologies, such as web beacons and pixels, to collect information whenever you interact with our Services.

These technologies allow us to:

  • ensure the security of the website;
  • prevent technical errors and system failures;
  • remember your preferences;
  • improve the performance of the website;
  • compile website usage statistics.

In addition, certain third-party service providers may use similar technologies for analytical or advertising purposes, including to:

  • manage advertising campaigns;
  • display personalised advertisements;
  • tailor advertising to your interests;
  • remember products or services you have previously viewed.

You can find detailed information about how we use cookies and how to reject them in our Cookie Policy:

https://santuariochandavila.com/en/cookie-policy/

Google Analytics

We may share certain information with Google Analytics for the purpose of analysing the use of our website.

The Google Analytics features that may be used include:

  • Google Display Network Impression Reporting.

If you wish to prevent Google Analytics from collecting information about your browsing activity, you can install the official browser add-on available at:

https://tools.google.com/dlpage/gaoptout

You can also manage your advertising preferences through:

  • Google Ads Settings.
  • Mobile App Ads Settings.

Additional opt-out mechanisms are available at:

http://optout.networkadvertising.org/

http://www.networkadvertising.org/mobile-choice

For more information about Google’s privacy practices, please visit:

https://policies.google.com/privacy

6. HOW LONG DO WE KEEP YOUR INFORMATION?

In short: We retain your personal information only for as long as necessary to fulfil the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

We will keep your personal data only for as long as it is necessary to achieve the purposes outlined in this Privacy Policy.

We will not retain your information for longer than is strictly necessary unless we are legally required to do so, for example to comply with tax, accounting, or administrative obligations.

When we no longer have a legitimate business need to process your personal data, we will either:

  • securely delete your personal data; or
  • anonymise it so that it can no longer be associated with you.

Where immediate deletion is not possible (for example, because the information is stored in backup archives), your personal data will be securely stored and isolated from further processing until deletion becomes possible.

7. HOW DO WE PROTECT YOUR INFORMATION?

In short: We implement appropriate technical and organisational security measures to protect your personal information.

We have implemented reasonable and appropriate technical and organisational security measures designed to protect the confidentiality, integrity, and availability of the personal data we process.

These measures are intended to prevent:

  • unauthorised access;
  • accidental loss;
  • alteration of information;
  • destruction of data;
  • unauthorised disclosure.

However, despite our efforts to safeguard your information, you should be aware that:

  • no transmission of data over the Internet can be guaranteed to be completely secure;
  • no electronic storage system is entirely immune from security risks.

Accordingly, we cannot guarantee that unauthorised third parties, cybercriminals, or hackers will never be able to bypass our security measures.

Any transmission of information to or from our website is carried out at your own risk. We therefore recommend that you access our Services only through secure environments and trusted network connections.

8. WHAT ARE YOUR PRIVACY RIGHTS?

In short: Depending on your country of residence, applicable data protection legislation may grant you a number of rights regarding your personal information.

If you reside in the European Economic Area (EEA), the United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) grants you, among others, the following rights:

  • The right to access your personal data.
  • The right to rectify inaccurate personal data.
  • The right to erasure (“right to be forgotten”).
  • The right to restrict processing.
  • The right to data portability.
  • The right to object to processing.
  • The right not to be subject to automated decision-making, where applicable.

You may exercise any of these rights by using the contact details provided in the “How can you contact us?” section of this Privacy Policy.

All requests will be handled in accordance with the applicable data protection legislation.

Right to Lodge a Complaint

If you believe that we are processing your personal data in breach of the applicable legislation and you reside:

  • in a country within the European Economic Area, you have the right to lodge a complaint with your national data protection authority;
  • in the United Kingdom, you may contact the Information Commissioner’s Office (ICO);
  • in Switzerland, you may lodge a complaint with the Federal Data Protection and Information Commissioner (FDPIC).

Withdrawing Your Consent

Where we rely on your consent to process your personal data, you may withdraw that consent at any time.

The withdrawal of your consent will not affect the lawfulness of any processing carried out before your consent was withdrawn.

Nor will it affect any processing based on a legal ground other than consent.

Cookies and Similar Technologies

Most web browsers accept cookies by default.

If you prefer, you may configure your browser to:

  • delete cookies;
  • block cookies;
  • receive a warning before cookies are stored.

Please note that disabling certain cookies may affect the proper functioning of some features of the website.

For further information, please refer to our Cookie Policy:

https://santuariochandavila.com/en/cookie-policy/

 

Privacy Contact

If you have any questions about this Privacy Policy or wish to exercise any of your privacy rights, you may contact us at:

Email: admin@santuariochandavila.com

9. DO NOT TRACK (DNT)

Most web browsers, as well as some operating systems and mobile applications, include a Do Not Track (DNT) feature that allows users to indicate their preference not to have their online browsing activities monitored.

At present, there is no universally accepted technical standard for recognising and implementing Do Not Track (DNT) signals.

For this reason, our website does not currently respond to DNT browser signals or any other automated mechanism that communicates your preference not to be tracked online.

Should a recognised technical standard requiring compliance with Do Not Track signals be adopted in the future, we will update this Privacy Policy accordingly and inform users of any changes.

ℹ️ Due to issues with the live stream on YouTube, the broadcast from the Shrine will be temporarily moved to Facebook at the following link: https://www.facebook.com/santuariocodosera/videos/1354394969356652/