Guide to Business in Spain logo

2 Defining regulatory principles

2.1 Civil and Commercial Legislation

2.1.1 Civil and Commercial Codes

Electronic contracts are fully subject to the rules established by the Spanish Civil Code on obligations and contracts and by the Commercial Code.

Electronic contracts are also subject to EC Regulation 593/2008, of June 17, 2008, on the law applicable to contractual obligations (Rome I) which will apply to contractual obligations in the civil and commercial area in situations involving a conflict of laws.

2.1.2 Distance sales

  1. Equally applicable to electronic sales are the rules related to distance sales and other related relevant rules: Regarding commercial operations in which the buyer is an undertaking or a business man, the Act 7/1996 ordering the Retail Trade should be taken into consideration, in particular the Chapter regarding Distance Sales, which makes a specific referral to Title III of Book II of the Legislative Royal Decree 1/2007, of 16th of November, approved the Revised General Consumer and User Protection Law and other supplementary laws.
  2. Whenever e-commerce activities are targeted at consumers, it is necessary to comply with consumer protection legislation, regulated in the mentioned Legislative Royal Decree 1/2007, of November 16, 2007.

    This Law defines “distance sales” as sales concluded without the simultaneous physical presence of the buyer and the seller, where the seller’s offer and the buyer’s acceptance are conveyed exclusively by a means of distance communication of any nature and within a distance contract system organized by the seller.

    This Law establishes that distance sale offers (either to consumers or to undertakings) must contain at least the following:

    • The seller’s identity.
    • The special features of the product, the price, and the shipping expenses and, if applicable, the cost of using the distance communication technique if it is calculated on a basis other than the basic rate basis.
    • The payment method, and form of delivery or types of fulfillment of orders.
    • The period for which the offer remains valid and, if applicable, the minimum term of the contract.
    • The existence of a right to withdraw or terminate the contract and, if applicable, the circumstances and conditions in which the seller could supply a product of equivalent price and quality.
    • The out-of-court dispute resolution procedure, if applicable, in which the seller participates.
    • Remainder of the existence of a legal guarantee depending on the type of goods or services.
    • Information of the cases in which the Seller shall take the costs of returning the goods.

    This Royal Decree sets out, among other matters affecting the consumers, the rules governing unfair conditions of contracts concluded with consumers, and the right to withdraw that consumers have in distance sales (fourteen calendar days).

  3. It should also be noted that Law 22/2007, of July 11, 2007, on the distance marketing of consumer financial services, shall also be taken into consideration when dealing with consumers in the financial sector. The Law specifically regulates the protection granted by the general law to the users of remote financial services by establishing, among others, the generic requirement to provide the consumer with precise and exhaustive information on the financial contract prior to its signature and by granting the consumer a specific right to withdraw from the distance contract previously concluded.
  4. In making the contract, there is an intention to incorporate predisposed clauses into a plurality of contracts, regard must be had to Standard Contract Terms Law 7/1998.
  5. If the activity carried out is related to the sale of consumer goods, the aforementioned Legislative Royal Decree must be taken into consideration regarding the warranties on consumer, because it establishes the measures aimed at ensuring a minimum uniform standard of consumer protection. The Royal Decree establishes a free 2-year warranty for consumers on all consumer goods and offers consumers a range of possible remedies when the goods acquired are not in keeping with the terms of the contract, enabling consumers to demand their repair or substitution.

2.1.3 Other applicable regulations

  1. In accordance with Law 56/2007, enterprises that provide services of special economic significance to the general public and that are of a certain size are required to provide their users with an electronic means of communication which, through the use of qualified electronic signature certificates, enables them to perform at least the following steps: (a) conclude contracts electronically and amend and terminate them; (b) consult their customer data (including a record of billing covering at least the past 3 years) and the concluded contract, with its general conditions; (c) submit complaints, incidents, suggestions and claims (while guaranteeing a record of their submission and direct personal assistance); and (d) exercise the rights of access, rectification, cancellation and objection (known as ARCO rights) provided for in the data protection legislation.

    This requirement applies to enterprises providing services of special economic significance to the general public provided that they employ more than 100 workers or have an annual turnover (according to the VAT legislation) of more than €6,010,121.04. The enterprises that Law 56/2007 includes in this category are those operating in the following industries: (i) electronic communications services to consumers; (ii) financial services aimed at consumers (banking, credit or payment, investment services, private insurance, pension plans and insurance brokerage); (iii) supplying water to consumers; (iv) supplying retail gas; (v) supplying electricity to final consumers; (vi) travel agencies; (vii) carriage of travelers by road, railway, by sea, or by air; and (viii) retail trade (although for these last-mentioned ones, the electronic means of communication need only enable what is set out in letters (c) and (d) above).

  2. Due to their particular importance in electronic commerce, it is worth noting some legal provisions concerning payment services:
    1. Royal Decree-Law 19/2018, of November 23, on payment services and other urgent measures on financial matters is the law transposing in Spain the Directive (UE) 2015/2366, of November 25, on payment services in the internal market (known as PSD2 Directive). This Royal Decree-Law has repealed the Payment Services Law 16/2009, of November 13, 2009. The new payment services legislation mainly affects the payment transactions that are most commonly used in an electronic commerce environment: transfers, direct debiting and cards, establishing, as a general rule, that the payer and the payee of the transaction must each bear the charges levied by their respective payment services providers. In any event, in the case of transactions with consumers, the specific legislation (Legislative Royal Decree 1/2007) prohibits the trader from charging the consumer fees for the use of payment methods that exceed the cost borne by the trader for the use of such payment methods.

      Lastly, both the Royal Decree-Law 29/2018 and the consumer protection legislation envisage for distance contracts that, where the amount of the purchase or of a service has been charged fraudulently or incorrectly using the number of a payment card, the consumer may request the immediate cancellation of the charge.

      As one of the main news of the Royal Decree-Law 19/2018, it regulates the payment initiation services and the account information services.

    2. The legislation on interchange fees has been introduced by Royal Decree-Law 8/2014, of July 4 and Law 18/2014, of October,15. This legislation establishes a system of caps on interchange fees in transactions with credit or debit cards in Spain (applying them to POS terminals located in Spain), regardless of the trade channel used (that is, including physical and virtual POS terminals), provided that they requirethe involvement of payment services providers established in Spain.

      The caps applicable on or after September 1, 2014 are as follows:

      1. Debit cards: The interchange fee per transaction may not exceed 0.2% of the value of the transaction, subject to a cap of 7 euro cents. But if the amount does not exceed €20, the interchange fee may not exceed 0.1% of the value of the transaction.
      2. Credit cards: The interchange fee per transaction may not exceed 0.3% of the value of the transaction. But if the amount does not exceed €20, the interchange fee may not exceed 0.2% of the value of the transaction.

      These caps do not affect transactions performed with company cards or withdrawals of cash from automatic teller machines. In addition, three-party payment card systems are excluded from the application of these caps, except for certain cases identified by the legislation.

  3. Also worthy of note is Law 29/2009, of December 30, 2009, modifying the legal regime governing unfair competition and advertising in order to enhance consumer and user protection. Special mention should be made of the unfair practice status to be granted to the making of unwanted and reiterated proposals by telephone, fax, e-mail and other means of long-distance communication, unless such proposals are legally justified for the purpose of complying with a contractual obligation. Moreover, when issuing such communications, traders and professionals must use systems that enable consumers to place on record their opposition to continuing to receive commercial proposals from such traders or professionals. Thus, when making such proposals by telephone, calls must be made from an identifiable number.
  4. Finally, it is convenient to take into account the legislation deriving from the Directive (EU) 2016/1148, concerning measures for a high common level of security of network and information systems across the Union. In Spain, this Directive has been transposed by means of the Royal Decree-law 12/2018, of 7 September, concerning security of the networks and information systems, which has itself been developed by Royal Decree 43/2021, of January 26. This legislation applies to essential services operators and digital services providers, as they are defined in the regulations (digital services being the cloud computing services, online search engines and online marketplaces). In particular, these marketplaces are a more and more common way of developing e-commerce activities. We just mention this legislation because it only applies to a limited number of services, but it will be important to bear in mind that, when applicable, this regulations oblige to a previous notification and to other mandatory duties regarding security of the information.