- What are cookies?
Cookies are files stored on the device of a user browsing the internet or other types of platforms and applications (for example, smartphone and tablet apps) that, in particular, contain a number, which allows the user's device to be reliably identified, even when the location or IP address of the device changes.
We may also use similar data storage and recovery technologies such as local shared objects, flash cookies1, web beacons, bugs and pixels 2, or any other any other device fingerprinting technology.
Broadly speaking, these technologies are designed for many different purposes, such as allowing Site browsing, enabling functions and services, recognising the user as a customer or potential customer of the Bank, gleaning information about the device, browsing habits or behaviour on the Site, collecting information that the user provides in forms or simulators, or even displaying personalised ads based on the information received. The specific uses we make of these technologies are described below.
The Site is accessible without any need to activate cookies to let the user browse and use the different options or services available on the Site. However, if the user disables or does not enable certain cookies, some services and therefore some functions may be limited.
- How to enable cookies on your browser
The user of this Site may edit or reject the use of all cookies that are not for technical, preferential or personalisation purposes. The user selects the settings for personalisation cookies, which are used for communicating between the user's system and the network, and are thus essential for basic Site operation and providing services that the user expressly requests. The Site uses these cookies to enable the operation and provision of the services offered therein and the user does not need to be informed of them or provide their consent. They therefore cannot be disabled, since they are strictly necessary for browsing the Site and for the provision of the requested service.
These exempted cookies include cookies used to manage and run the Site, as well as to enable its functions and services, such as monitoring data traffic and communications, identifying sessions, accessing restricted areas, reminding users of items in an order, going through the process of making an order, managing payments, monitoring fraud associated with the security of the service, making a request to sign up or participate in an event, counting visitors when billing software licences for the software used to provide some services, using security components during browsing, storing content to disseminate videos or sound, enabling dynamic content (for example, animations to load a text or image) or sharing content via social media.
This category also includes cookies that, due to their technical nature, allow this Site to manage, as efficiently as possible, advertising spaces which appear on the Site, application or platform as a design or "layout" element of the service offered to the user, based on criteria such as edited content, without collecting information from users for different purposes, such as personalising the advertising content or other types of content.
Similarly, this category of cookies includes, as long as the user chooses the characteristics, cookies that allow the Site to remember information so the user can access the service with specific characteristics which make their experience unique to them, for example, in terms of language, the number of results shown when the user performs a search, the appearance or content of the service, depending on the type of browser used to access the service, the region from which the user accesses the service, etc.
- What type of cookies do we use?
Users browsing the Site may encounter cookies that are directly installed from a Bank domain or unit, or cookies that have been installed by third-party entities, as per the information provided below:
3.1. According to purpose.
Below are the different categories of cookies that can be installed on the user's device, according to their purpose, and considering that such cookies can be installed by the Site owner or by third parties, according to the information on the table describing each specific cookie:
- Technical cookies. Cookies that allow the user to browse the Site and use its different options or services, including those used to manage and run the Site and enable its functions and services. These cookies are used, for example, to monitor data traffic and communications, identify the session, access restricted areas, remind users of items in an order, go through the process of making an order, manage payments, monitor fraud associated with the security of the service, make a request to sign up or participate in an event, count visitors when billing software licences for the software used to run the Site, use security components during browsing, store content to disseminate videos or sound, enable dynamic content (for example, animations to load a text or image) or share content via social media.
This category also includes cookies that, according to their technical nature and provided that they are not used for other non-exempt purposes, allow advertising spaces to be managed in the most efficient way possible, which are included in the Site, application or platform as a design or "layout" element of the service offered to the user, based on criteria such as the edited content, without collecting information from users for different purposes, such as personalising the advertising content or other types of content.
- Personalisation or preference cookies. . These cookies remind the user of information when they access the service with specific characteristics, such as to differentiate their experience from that of other users, for example, in terms of the language, number of results to show when the user makes a search, the appearance or content of the service, according to the type of browser used to access the service, the region from which the user accesses the service, etc.
However, if the user chooses these characteristics (for example, if the user selects the website language by clicking on the corresponding flag icon), and only for such purposes, this will be considered as a service that has been expressly requested by the user and consent to store the cookies will not be requested.
These cookies also allow the user to personalise the appearance or content of the service depending on the type of browser or log-in permissions and to browse the page.
- Analysis or measurement cookies: These cookies are processed by the Bank or third parties and allow the behaviour of users of the Site to be tracked and analysed. They are also used to quantify the impact of ads. The information collected by these cookies is used for the statistical measurement of activity on the Site (for example, finding out which pages are visited the most or least and how visitors browse the website), so that improvements can be made based on the analysis of browsing and of usage data created by users of the service. We also use these cookies to develop analytical models, in accordance with our Further Information on Data Protection.
- Behavioural advertising cookies: Cookies that are processed by the Bank or by third parties and which store information about the model and operating system of the terminal equipment (for example, a computer, a mobile phone or a tablet, used to connect to the Site), and the behaviour of users obtained through the ongoing observation of their browsing habits online, which allows a specific profile to be developed in order to tailor ads. However, the decision to show targeted advertising based on the creation of such profiles shall never involve automated individual decision-taking with legal effects for the user, or the taking of decisions that affect users in a similar way, by the Bank. For this purpose, similar technologies, such as pixels, may also be used to complement the information obtained by certain cookies of this nature.
- Cookies sharing user IDs: These cookies share the user's unique ID with our analytical and advertising cookie partners so they can interact with the user in accordance with their cookies policies and if the user has consented to installing their cookies.
3.2. According to the entity managing the cookies:
- First-party cookies: : cookies stored on the user's terminal from a unit or domain managed by the owner of the Site, from which the service requested by the user is provided.
- Third-party cookies: cookies sent to the user's terminal from a unit or domain not managed by the owner of the Site but by an entity that processes the data obtained by the cookies.
3.3. According to the period of time they remain active:
- Session cookies: cookies designed to collect and store data while the user is visiting a Site. These cookies are not stored in the user's terminal when the session expires or the browser is closed.
- Persistent cookies: these cookies store data on the user's terminal when the user leaves the Site and can be accessed and processed during the period of time defined by the controller of the cookie, which may range from minutes to several years.
The cookies we use are detailed below:
- Basic information on personal data protection
Who is the data controller for your data?
Banco Santander, S.A. (hereinafter “the Bank” or “Banco Santander”).
Postal address: C/ Juan Ignacio Luca de Tena, 11-13, 28027 Madrid.
Data Protection Officer/Privacy Office: firstname.lastname@example.org
Why do we process data?
How do we obtain your data?
Whom do we communicate data to?
We transfer your personal data to:
- Bank collaborators: Only with your consent. You can access the complete list of third-party collaborating entities of the Bank to which we will communicate your data through the following link.
Users can find out about any transfers made by these third parties, including international data transfers, where applicable, in their corresponding cookies policies.
- Bank service providers: The Bank works in partnership with some third-party service providers who have access to the personal data of users and who process this data, in their capacity as data processors, on behalf of the Bank as part of their services. For example, Google Ireland Limited (“Google”).
The Bank follows strict criteria for selecting service providers in order to comply with its data protection obligations and undertakes to enter into a corresponding data processing agreement with them, which shall impose the following obligations on them: the application of appropriate technical and organisational measures; the processing of personal data for the agreed purposes and only in line with the Bank's documented instructions; and the deletion or return of the data to the Bank once the provision of services is completed.
Some of the services the Bank outsources to third-party providers include the assessment of audiences or ads, analytical services, advertising, etc.
Can data be transferred to other countries?
If the user consents to the installation of cookies, they should bear in mind that first-party cookies and other cookies will be installed, whose services are provided by our provider Google. When installing these cookies, Google may disclose data to the United States, which could lead to, in very isolated and specific cases, the authorities in the United States accessing the data in connection with their investigation and national security work.
However, the Bank shall only transfer the data to other countries if there is an adequacy decision which determines that the country has a comparable level of protection to the European Union, or failing that, by applying appropriate safeguards in accordance with data protection regulations, such as the signing of standard contractual clauses or binding corporate rules. The data subject may request additional information on these appropriate safeguards using the contact details indicated in the section What rights do Users have?
How long will we retain your data?
What rights do users have?
The user may exercise their rights of access, rectification, erasure, objection, restriction of processing and portability or submit any question they may have about the processing of their personal data by emailing the Bank at email@example.com or writing to: C/ Juan Ignacio Luca de Tena, 11-13, 28027 Madrid (A/A. Delegado de Protección de Datos/Oficina de Privacidad).
The user can find detailed information about the processing of their data on our website at https://www.bancosantander.es/en/informacion-proteccion-datos or by contacting the Bank's Data Protection Officer/Privacy Office.
In they accept the use of third-party cookies, the user must take into account that these will be subject to the third party's own specific conditions, including their data protection policies, which are beyond the control of the Bank.
- How to disable or delete cookies
The user may revoke or adjust the consent related to cookies at any time, by clicking on the "Cookies Settings" button referred to in section 2 and which can be found at the beginning of this Policy, as well as through common platforms that may exist for this purpose or through their browser.
If the user wishes to revoke consent on the browsers, this must be configured as follows:
(i) Microsoft Internet Explorer: in the menu option "Tools", selecting "Internet Options" and accessing "Privacy".
(ii) Firefox, for Mac in the menu option "Preferences", selecting "Privacy", selecting "Show cookies", and for Windows, in the menu option "Tools", selecting "Options", accessing "Privacy" and then "Use custom settings for history".
(iii) Safari, in the Safari option, select "Preferences", and "Privacy".
(iv) Google Chrome, in the Tools menu option or Chrome tab (for Mac), select "Options" ("Preferences" on Mac), accessing "Advanced Settings" and then in the "Privacy and security" and "Site Settings" option, and finally checking "Cookies and Site Data".
(v) Microsoft Edge, in the "Settings and more" menu option, selecting "Settings", going to "Cookies and site permissions" and then "Manage and delete cookies and site data".
Keep in mind that, if you have accepted the third-party cookies, you must delete them from the browser's options. We recommend checking the help section on your browser or visiting the help websites for the main browsers for more information at the following links:
You can also use tracking cookie blocking tools of the "do not track" type. Users can read more about revoking consent given or about the procedure that must be followed to disable cookies and ask questions about the Site's Cookies Policy by contacting the addresses listed in section 4. Basic personal data protection information.
- Effective date of the Policy.
In order to keep users informed at all times about the cookies we use and their purposes, we recommend that you access the content of this policy when you visit our Site.
1. Local shared objects or flash cookies: cookies that can store much more data than traditional cookies. They are browser-independent and therefore more difficult to locate, view or delete. They can therefore be used, for example, to regenerate standard cookies.
2. Web beacons or bugs (also referred to as web pixels or beacons): inconspicuous images, in terms of size and colour, which are downloaded when visiting a website but stored on a secondary website, thus allowing the owner of the secondary website to record the user's visit based on the information provided by the user's browser when downloading the image (IP address, operating system, browser version, etc.)