Privacy Policy

Protection of personal data.

1. Who are we?

Dayra Group (Vending Integal Solana S.L.) is a limited company under Spanish law with a capital of 3,010.00 euros, whose registered office is located at Calle EZEQUIEL SOLANA 116, 28017 MADRID, SPAIN. It is registered in the Mercantile and Companies Registry of Madrid. And EUID tax identification number B86291093: ES28065.081144523This Personal Data Protection Policy has been drafted in accordance with European Regulation 2016/679 of 27 April 2017 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (the "Regulation"),  as well as those of Law No. 78-17 of 6 January 1978 on Information Technology, Files and Liberties, as last amended by Law No. 2018-493 of 20 June 2018 enacted on 21 June 2018 (the "Data Protection Act"), to inform you about the data we collect about you and how we use it,  without prejudice to your user experience. This Privacy Policy may be updated from time to time. Changes are applicable and effective as of the date of posting. We invite you to consult it periodically on our website www.dayrabeauty.comThis Personal Data Protection Policy aims to:
- Describe the methods that DAYRA GROUP, in its capacity as Data Controller, uses on its behalf as part of the collection, use, protection and exchange of the personal data of customers who use its website,  place an order. - Inform you of your rights and how you can exercise them. This Personal Data Protection Policy forms an integral part of the General Terms and Conditions of Use. 

2. Who is responsible for the processing of your data?Who is responsible for the processing of your data?

DAYRA GROUP, in its capacity as Data Controller, collects personal data.
DAYRA GROUP does not sell any of your personal data and only shares it in the ways stipulated in this Data Protection Policy or if required by law.
DAYRA GROUP will not rent, distribute or sell your personal data to third parties without your prior consent.
DAYRA GROUP guarantees that your data is only accessible to the recipients listed below.

3. What data do we collect? What kind of data do we collect?

DAYRA GROUP collects the data necessary to fulfil a specific purpose. The data collected may have the following legal bases:- Your consent, which may be revoked at any time;- The execution of the contractual relationship- The execution of the contractual relationship or pre-contractual measures;- The fulfilment of a legal obligation to which DAYRA GROUP is subject;- The legitimate interest pursued by the Data Controller,  with due respect for their interests and rights. The following table sets out the information to be provided when data is collected from the data subject (Article 12 of the Regulation)

4. What processing operations are carried out?

Type of processing - Purpose

Data Category

Legal basis

Retention period

Use of the account on the website

- Customer identity data (surname, first name, date of birth, gender) - Browsing data - Public IP address (Internet Protocol)


3 years since last activity

Management of orders for products or services

- Customer contact details (postal address, phone number)


3 years since last activity

Transaction History - Invoices

- Orders placed


Legal obligation 3 years from the last activity.10 years for accounting documents (invoice, purchase order).

Personalization of services (emails, product recommendations on our site) by DAYRA GROUP.

- Customer's e-mail address after acceptance of electronic communications from DAYRA GROUP.

Legitimate Interest

3 years since last activity

Electronic commercial prospecting:- Sending messages by e-mail or SMS

- Telephone details- Email address

Legitimate Interest

3 years since last activity

Statistical data

Audience measurement statistics and raw traffic data on the website and apps 


3 years since last activity

Fraud Prevention - Test Facts

- Copy of identity document- Proof of address- Bank card details

Legitimate interestLegal obligation

3 years from inclusion on an alert list

Subscribing to a newsletter

- Email Address- Subscription Date


3 years since the last activity.

Customer Feedback Management - Satisfaction Survey




- Identification data- Connection data- IP address



Security of the Site and Services

- Profile Data- Connection Data- IP Address

Legitimate Interest

6 months since last activity


- Candidate's profile- Contact details- Curriculum vitae- Professional life- Family and property situation.

2 years from the last contact with the applicant, unless the applicant formally agrees to authorise a longer retention period.

Recording of phone calls (Customer Service - After-sales Service).

- Telephone conversation

Legitimate Interest

6 months maximum.

Contact Forms

- Identification data - Date and subject of the request

Pre-contractual or contractualLegitimate interest

For the duration of the processing of the application

Online browsing (cookies)

- Browsing data

ConsentLegitimate Interest

13 months from the first deposit on the user's terminal equipment after consent.

Affiliation (cookies)

- Billing Data- Connection Data- Identification Data

Pre-contractual or contractualConsent

13 months from the first deposit on the user's terminal equipment after consent

5. Who are the recipients - Access to personal data?

DAYRA GROUP, in its capacity as Data Controller, does not sell or share your data with third-party business partners. In order to achieve the purposes indicated above, we communicate your Personal Data only to:- Companies of the group to which DAYRA GROUP belongs to optimize navigation through the site, manage orders, provide customer service - Technical subcontractors for the proper functioning of the site in order to limit technical malfunctions;- Employees, agents and managers of the DAYRA GROUP;- Providers of means of payment or payment assurance at the time of placing the order in order to ensure its correct execution;- Delivery service providers in order to ensure that the delivery of the order is carried out in the best conditions;- The judicial and administrative authorities requesting information;- Customs authorities in the case of deliveries abroad;- Business partners for the correct execution of the service, the order or for the correct navigation of the site  ;- Market sellers - Sites associated with the DAYRA GROUP that operate services linked to the site  ;- Insurance, financial or credit companies in case of subscription to these services- Partners of opinion and customer satisfaction surveys of the DAYRA GROUP; Affiliate Partners;- Social Networks.

6. What are the retention periods? What are the retention periods?

DAYRA GROUP retains Personal Data for a period no longer than is necessary for the purposes for which they were collected, in accordance with the provisions of the LOPD and the Regulations.Personal Data may be kept at a later date in the following cases in which its retention is necessary:- To exercise the right to freedom of expression and information; To comply with a legal obligation- Compliance with a legal obligation;- To carry out a task in the public interest or in the exercise of public authority entrusted to the Data Controller;- For reasons of public interest in the field of public health;- For archiving purposes in the public interest;- For the purposes of scientific or historical research or for statistical purposes;- Or for the establishment,  Exercising or defending legal claims. Accounting and tax data are kept for a period of 10 years in accordance with legal obligations. 

6.1.Bank cardThe bank card is only registered after an explicit request from the Customer, on the payment page when the option is offered.
Bank details are stored in a secure area at the payment service provider in order to improve the Customer's shopping experience when placing a new order. The Client is free to remove the bank card registered on the payment page at any time.

6.2.CookiesA cookie is a small file stored by a server on a user's terminal and associated with a web domain. This file is automatically returned on subsequent contacts with the same domain.
Cookies can be used to store your customer ID, the current contents of your shopping cart, an identifier that allows you to track your browsing for statistical or advertising purposes, etc. Some of these uses are strictly necessary for the functions expressly requested by the user or to establish communication, so they are exempt from consent. Others, which do not meet these criteria, require your consent before reading or writing them. The website uses cookies for the following purposes:- Use of the site: to allow your browser to be recognised after a first visit, and to record your login details so that you do not have to log in every time you visit the site;- Social networks: to check if you are connected to third-party services such as Facebook,  Google+, etc. - Segmentation: to allow us to segment (sending emails, enriching the database) after the fact or in real time You consent to the deposit of cookies, the information of which is provided to you in the cookie information banner visible when you connect to the site for the first time by clicking on the "Accept" button on the banner;

You consent to the deposit of cookies by clicking on the "Accept" button on the banner. You can access the terms and conditions of use. For more information, please visit our dedicated page on our Cookies policy.

7.Se does your data transfer outside the European Union?

Personal Data is not transferred to third countries and remains hosted within the European Union.As for the functionalities linked to the use of social networks, it is likely that the publications will be accessible outside the European Union. For more information, we invite you to consult the data management policy of the networks in question.

8. Personal Data of Minors

The services of the Marketplace are not intended for minors, so DAYRA GROUP does not process data specifically referring to minors. No marketing profile is created in relation to minors. It is up to the parents and any person exercising parental authority to decide whether the minor child is authorized to use the Marketplace services.

9. Applicable Law - Competent Jurisdiction

This Data Protection Policy is governed by Spanish law, without regard to conflict of law provisions. The Spanish courts shall have exclusive jurisdiction to hear any dispute related to this Policy.In the event that one of the clauses of this Data Protection Policy is rendered ineffective as a result of a change in legislation, regulations or by judicial decision, the nullity will not affect the validity and compliance with the rest of this Data Protection Policy.

10.How to Contact Us

If you have any questions about this Personal Data Protection Policy, you can contact us:By email:

11. Complaints

If, after contacting us, you feel that your rights and those protected by the Regulation are not respected, you can lodge a complaint with a supervisory authority. In Spain, the Spanish Data Protection Agency.

12. Deletion of your personal data - Right to erasure


For all requests for the right to erasure, you can contact us:By email:

Product added to wishlist
Product added to compare.