PRIVACY POLICY DETAILED INFORMATION ON DATA PROTECTION

This Privacy Policy has been established in agreement and is regulated by Regulation (EU) 2016/679, of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation of these data (hereinafter “RGPD”), and with Organic Law 3/2018, of December 5, on the protection of personal data and guarantee of digital rights (hereinafter “LOPDGDD”).

This Privacy Policy is applicable to different groups of people in relation to which their personal data is obtained and processed (hereinafter, “the interested party” or “the interested parties”) by JAG Alcaide SL in their professional activity of facilities and repairs of water, gas, electricity, air conditioning and heating (hereinafter, “the Responsible”) and not only to visitors to the website jagalcaide.com (hereinafter, “the website”). Hence this Privacy Policy is structured into two sections: general information to any group of stakeholders and specific information that differ according to the group .

The general information applicable to all groups refers to the identification of the Responsible Party, the trademark, the Data Protection Officer, the description of the groups of interested parties, international transfers and the rights of the interested parties.

Specific information as the group of stakeholders refers to the processed data, the Finali ties of the treatment and the legal basis that legitimizes the period of data retention and transfer of data to third parties.

Different groups of stakeholders included in this document are web users interested in the activity of the charge, subscribers to the newsletter and other recipients of commercial communications, social networking followers, customers, suppliers and professional contacts . You can check the definition of each group here . You can consult the definition of each group here.

The user is requested to carefully read all the common information, as well as the specific information that corresponds to their user profile, which are listed below:

Important notice: In those cases in which the legal basis of the data processing is the consent of the interested party, it is understood that this consent is granted in the terms and conditions indicated in both the general information section of this document and in the section specific information specific to the group to which the interested party belongs.

1. GENERAL INFORMATION

1.1. Identification of the Responsible
1.2. Data Protection Officer
1.3. Description of the group s of interested
1.4. Description of the categories of data processed
1.5. Communication of data to third parties
1.6. International transfers
1.7. Rights of the interested parties

2. SPECIFIC INFORMATION ACCORDING TO THE STAKEHOLDER GROUP

2.1. Web users
2.2. Interested in the activity of the Responsible
2.3. Subscribers to the newsletter and other recipients of commercial communications
2.4. Followers on social networks
2.5. Customers
2.6. Providers
2.7. Professional contacts

1. GENERAL INFORMATION
1.1. Identity and contact details of the Data Controller

Identity: JAG Alcaide SL
Address: Calle Torrent de L’olla, 129 – BJ, Barcelona 08012
Email: info@jagalcaide.com
Telephone: 93 218 58 47

1.2. Data Protection Officer

The Data Controller does not have a Data Protection Delegate, in accordance with Regulation (EU) 2016/679, of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons in relation to to the processing of personal data and the free circulation of these data (hereinafter “RGPD”), and with Organic Law 3/2018, of December 5, on the protection of personal data and guarantee of digital rights (hereinafter, “LOPDGDD”).

1.3. Description of the groups of interested parties

The Responsible processes personal data of individuals of the groups indicated below when acting in the name and self-interest, as well as individuals who act in the name and representation of other natural or legal persons (normally, by working for them).

Customers Natural or legal persons who have a contractual relationship with the Responsible or have initiated the contracting procedure. For the purposes of this privacy policy, budget requestors and indirect clients are included in this category (see definition in section 2.5).
Providers Natural or legal persons from whom the Person in Charge purchases goods or contracts the provision of services, has initiated the contracting procedure with them or considers that it may do so in the future.
Professional contacts Individuals who maintain contact with the Responsible Party for having an interest, those or this, in the activity of the other party for purely professional purposes.
Collaborators Natural or legal persons who collaborate with the Responsible in the provision of their services and who normally have, in relation to the interested parties from whom the Responsible processes data, the status of Data Processors. On certain occasions, of which the interested parties will be previously informed, the collaborators may have the status of Responsible or Co-responsible for the treatment because they are assignees of the data.
Users and interested parties Natural or legal persons who visit this website and / or are interested in the professional and / or teaching activity of the Responsible Party and maintain contact with it by any means of communication, including those who use the contact form on this website.

People who become “followers” of the Responsible’s profile on social networks.
Recipients of commercial communications Individuals interested in receiving newsletters ( newsletter ), offers similar services or other commercial communications by the charge and, when required by the law, have previously authorized the sending of such communications.
1.4. Description of the categories of data processed

The personal data processed by the Responsible can be classified into the following categories:

  • Identification data : name, surname and, eventually, DNI or other official identification document.
  • Contact information : postal and electronic address, telephone and fax.
  • Labor or professional data : position held in the corresponding company or information on the commercial or professional activity carried out and / or address of the corresponding website.
  • Datos financieros y de seguros: entidad bancaria y número de cuenta corriente donde se realizan o del que proceden pagos realizados en el marco de una relación contractual existente entre el interesado y el Responsable, y los datos relativos a todo tipo de seguros que sean de aplicación a la relación contractual citada.
  • Specific data object of the provision of services or sale of products by the Responsible: any type of data that is necessary for the provision of the contracted services or the delivery of the products purchased by the interested party or the third natural or legal person to whom This represents, such as, for example, the postal address where the service must be provided or the product delivered, the characteristics of the property, the number of occupants and any other information necessary or convenient to adequately determine the client’s needs.
  • Images : photographs, drawings or videos in which the interested party appears alone or together with other people.
  • Data related to social networks : username on social networks and data published by the person interested in these networks.
1.5. Communication of data to third parties

The data may be communicated to third parties that, for each group of interested parties, are indicated in the specific information of each group that is described in section 2 of this Privacy Policy.

In addition, and for all groups of interested parties, the data may be communicated in the following cases:

(a) In the event of a legal obligation in this regard, the data may be communicated to Public Administrations and / or security forces and bodies.

(b) In case of exercise or defense by the Responsible for rights or legal actions, the data may be communicated to lawyers, attorneys, courts, tribunals, notaries, experts and / or bodies and security forces that may intervene in the corresponding procedure.

Interested parties are informed that the Controller has contracted with third parties to provide certain services that require the processing of the personal data for which he is responsible, with which the corresponding Treatment Manager contract has been formalized. Among others, web hosting service, email service, messaging services, accounting and tax management of the Responsible’s professional activity, and services of professional collaborators have been contracted.

1.6. International data transfers

The processing of personal data does not entail its transfer to countries or international organizations that are not members of the European Union, except by legal obligation.

1.7. Rights of the interested party

Every person in reference to whom personal data is processed has the following rights:

  • Right of access : allows the interested party to know if their personal data is subject to treatment, obtain information regarding the characteristics and scope of the treatment carried out and receive a copy of the data processed.
  • Right of rectification : allows you to correct errors and modify the data that turns out to be inaccurate or incomplete.
  • Right of deletion: allows the data to be deleted, among other cases, when they turn out to be inadequate or excessive for the purpose of the treatment, the consent granted is revoked or there is unlawful treatment thereof, and provided that none of the assumptions concur of need for the treatment legally provided as exceptions to the right of deletion.
  • Right of opposition : allows the interested party, in certain circumstances and for reasons related to their particular situation, to prevent the processing of their personal data. The right of opposition includes the possibility of the interested party to object, at any time, to the processing of their data for the purpose of direct marketing, including the preparation of profiles.
  • Right to the limitation of the treatment: it allows the interested party to claim, in certain cases, the limitation of the treatment to the data conservation operations and to those treatments consented by the interested party or that are necessary for the formulation, exercise or defense of claims, protection of the interests of other natural or legal persons, or in the event of the existence of certain reasons of public interest.
  • Right to data portability : allows you to request that the data processed automatically and by virtue of the consent of the interested party, be delivered in digital format or directly transmitted to a third party responsible for the treatment.
  • Right not to be subject to automated individual decisions (including profiling) : allows you not to be the subject of a decision based on the automated processing of data that produces legal effects for the data subject or affects it significantly in a similar way, and provided that the automated decision is not necessary for the conclusion or execution of a contract between the data subject and a data controller, is authorized by regulations applicable to the data controller or there is explicit consent of the data subject.
  • Right to revoke the consent given to the processing of your data , which may be exercised at any time.

These rights can be exercised by submitting the corresponding request by any of the following means:

  • Postal letter sent to the attention of JAG Alcaide SL to the address Calle Torrent de L’olla, 129 – BJ, Barcelona 08012
  • Email sent to the address: info@jagalcaide.com

Please indicate clearly, in the letter or in the subject of the email, the mention “EXERCISE OF RIGHTS PERSONAL DATA”.

It is reported that the Data Controller has model application forms for the different rights available to the interested parties, who can request them by any of the two means provided for the exercise of rights or by telephone and indicating a postal address or an email where to send them. The use of these forms is not mandatory. The use of these forms is not mandatory.

Likewise, the interested party can, voluntarily, use the forms for exercising the different rights published by the Spanish Agency for Data Protection which can be downloaded at the following address

https://www.aepd.es/reglamento/derechos/index.html

In any case, the interested party must attach a copy of their National Identity Document, passport or other official identification document to the exercise of the corresponding right, or, in case of exercise of the right by email, they may choose to digitally sign the Quoted in writing through any electronic signature that can be verified by the Responsible.

Likewise, the interested parties have the right to file a claim with the supervisory authority if they consider that their rights in relation to the protection of their data may have been violated. In general, the competent control authority is the Spanish Data Protection Agency, located at Calle Jorge Juan 6, 28001 Madrid, which has a service for the electronic submission of complaints at its electronic headquarters, to which you can have access through its website:

https://www.aepd.es/

2.1. SPECIFIC INFORMATION ACCORDING TO THE GROUP TO WHICH THE STAKEHOLDER BELONGS
2.1. Web users

Data is collected from web visitors by installing various cookies on the hardware used to navigate.

The type of cookies on this website, their origin, the need or not for prior consent by the user for them to be installed, the way to reject their installation, the purposes of each cookie, their expiration and other aspects of their operation and data processing derived from them, are detailed in the Cookies Policy of this website.

The rejection by the visitor of all or part of the cookies that we use may limit some of the functionalities of the web (such as, for example, the use of the contact form) and / or generate errors and errors in navigation.

If you use the contact form on the web or subscribe to our newsletter , also see sections 2.2. (Interested in the activity of the charge) or 2.3. (Subscribers to the newsletter r and other recipients of commercial communications), respectively.

In the case of using the budget request form existing on the web, see also section 2.5 (customers).

2.2. Interested in the activity of the Responsible

The Responsible party will collect and process data from those who contact it through the web contact form, sending postal or electronic mail, the use of digital instant messaging systems or through social networks, or verbally by telephone conversation or personal interview.

Data processed and whether or not to supply them :

The minimum data that will be requested to admit the communication of an interested party will be the name and surname, the email address or, depending on the means of communication used, the postal address, the username and / or the telephone number. In addition, in case of exercise of a right by the interested party, a copy of the official identity document or the use of a digital signature will be requested. The refusal of the interested party to provide these data may lead to the rejection or return of the communication sent by the interested party and / or the non-attention or resolution of the request, suggestion, complaint or other request of the interested party.

Additionally, all other categories of data that the interested party provides during the communication will be treated either voluntarily or at the request of the Responsible. In this second case, at the time of requesting additional data, the Controller will inform the interested party of whether or not they are an essential requirement to attend to and resolve their request and what are the possible consequences of not providing them.

Purpose of the treatment and legal basis that legitimizes it :

The data will be processed in order to provide a customer service and, in particular, attend to and respond to any suggestion, request, complaint or other request of any kind that the interested party may make.

In addition, in the event that an interested party sends their CV or offers to work with the Responsible Party by any means of communication, their data will be processed in order to study the possible application and carry out, when appropriate, the corresponding process of selection of staff or collaborator.

The legal basis that legitimizes the treatment for these purposes is the consent of the interested party, which will have been requested either in the corresponding web contact form or through the communication channel that was initially used by the interested party.

In case of using the contact form existing on the web, the interested party must necessarily authorize the treatment described by marking the corresponding box located at the bottom of the form.

In the case of a phone call, at the beginning of the same, a mention of this privacy policy will be made and you will be asked to grant your consent. For these purposes, the call may be recorded.

In case of using any other means of communication at the initiative of the interested party, the Responsible Party will acknowledge receipt of the initial communication sent by the interested party, providing them with the information in this Privacy Policy and requiring the express granting of their consent to process the data. In the event that the interested party does not communicate the effective granting of consent, the Responsible will proceed to delete the communication received, not carrying out any treatment of the personal data included in it.

In the event that the interested party acts on behalf of or on behalf of a third natural or legal person, the legal basis that legitimizes the processing of their personal data is the existence of the Responsible’s legitimate interest in communicating with the third person that the interested party represents, provided there is consent from this third party represented. For these purposes, the interested party undertakes and obliges to have sufficient powers of representation, considering that the consent expressed by him is in the name and representation of the third party he represents.

Data retention period :

The data of the interested parties that have sent us a communication will be kept for a period of three years after the time strictly necessary to attend to and respond to their request and as long as the interested party does not request its suppression in advance in exercise of their rights, or for that longer period that is legally applicable or necessary for the exercise or defense of rights or legal actions by the Responsible.

The CVs or other information provided in order to participate in a process for selecting workers or collaborators, will be kept for a period of two years as long as the interested party does not request its suppression in advance in exercise of their rights.

Communication of data to third parties :

The data of the interested parties who communicate with the Responsible may be transferred to one or more collaborators when their intervention is necessary to attend to and respond to the request made by the interested party.

For these purposes, the consent to the treatment granted by the interested party necessarily includes the authorization of assignment to the aforementioned collaborators. However, the Responsible will inform the interested party of the identity of the participating collaborators.

2.3. Destiaries of commercial communications

The Responsible will obtain and process the data of those people who authorize the sending of commercial communications by any other means.

Data processed and whether or not to supply them :

The only data requested to subscribe to the newsletter or, in general, to receive commercial communications, are the name and surname, and the email address.

The provision of these data is an indispensable requirement and the refusal of the interested party to supply them will imply the impossibility of sending the newsletter and the rest of commercial communications.

Purpose of the treatment and legal basis that legitimizes it :

The data will be processed for the purpose of making commercial communications regarding the services provided by the Responsible Party, as well as all kinds of information of interest on public law and related matters.

Commercial communications will be made only by email

The legal basis that legitimizes the treatment for this purpose is the consent of the interested party, which will be expressly requested. By exception and in accordance with Law 34/2002, of July 11, on services of the information society and electronic commerce, commercial communications may be sent to the Responsible’s clients when they refer to services provided by this similar to those previously contracted by the client.

In case of using the subscription form to the existing newsletter on the web, the interested party must necessarily authorize the treatment described by marking the corresponding box located at the bottom of the form.

In the event that authorization is requested by another means, the request will inform of this Privacy Policy and the interested party may grant their consent by any means that allows the Responsible to keep proof of it.

In the event that the interested party acts on behalf of or on behalf of a third natural or legal person, the legal basis that legitimizes the processing of their personal data is the existence of the Responsible’s legitimate interest in communicating with the third person that the interested party represents, provided there is consent from this third party represented. For these purposes, the interested party undertakes and obliges to have sufficient powers of representation, considering that the consent expressed by him is in the name and representation of the third party he represents.

Data retention period :

The data of the interested parties will be kept as long as they do not express their wish not to receive any more commercial communications.

Communication of data to third parties :

The data will not be communicated to any third party.

2.4. Followers on social networks

The Responsible participates in the social networks Linkedin, Twitter, Facebook through which he can contact other users, either on their own initiative or on their own initiative, in accordance with the rules of use and privacy policies of each platform. .

Interested parties are informed that the person in charge of the main treatment of the data of the users of social networks is the owner of said platforms and that JAG Alcaide becomes the Secondary Person in charge of participating in them, a condition that, however , does not allow you to exercise all the rights and powers corresponding to a data controller on a regular basis. For these purposes, interested parties are requested to consult the privacy policies and conditions of use of the aforementioned social networks, which they can access through the following links:

(a) Linkedin: Terms of use and Privacy Policy .

(b) Twitter: Terms of use and Privacy Policy .

(c) Facebook: Terms of use and Privacy Policy .

The Responsible will collect and, eventually, process data from those who become contacts or followers in the social networks in which the Responsible participates , obtaining them by consulting the existing information on the corresponding platform.

Data processed and whether or not to supply them :

The minimum data necessary to contact on social networks will be those determined by their owners, usually the name and user name. Their supply is an essential requirement to contact the network and the refusal of the interested party to supply them will entail the impossibility of becoming a follower or contact of the Responsible’s profile in the social network in question.

The rest of the data that may be processed by the Data Controller will be determined by the data subject in the configuration of the privacy parameters of their profile in the network in question, as well as those that they voluntarily communicate to the Data Controller individually or make public. or partially in the network.

Purpose of the treatment and legal basis that legitimizes it :

The data will be processed in order to establish professional relationships, so that the interested parties contacted become, if appropriate, clients, suppliers or collaborators, as well as to inform of the services provided by the Responsible Party and to disseminate news or information of interest. related to the installation and sale of air conditioning devices, essential supplies of water, gas and electricity and general reforms.

The legal basis that legitimizes the treatment for the indicated purposes is the consent of the interested party that he grants when establishing or admitting contact on the network in the terms and conditions of the conditions of use and the privacy policies of the platform in question .

Data retention period :

The minimum contact data will be kept until the condition of follower or contact is terminated either by the interested party, by the Responsible, or higher period established by the corresponding platform.

The rest of the data shared on the network will be kept as determined by the owner of the platform in question. For these purposes, the interested parties are informed that the Data Controller only processes their data through the platforms of each social network and does not incorporate them separately into their own information systems. By exception, identification and contact data, as well as work or professional data, may be incorporated into the information systems themselves and be treated independently of the operation of the platform in question, provided that the conditions of use so allow. and the privacy policy of the social network, and with the same purpose and legal basis.

Communication of data to third parties :

The data will not be specifically assigned to any third party. However, they will be public for the other users of the social network, being, likewise, susceptible to dissemination to non-users of the network in accordance with its functionalities and in the terms provided in the conditions of use and the policy of platform’s own privacy. For this reason, interested parties are recommended to properly configure the privacy parameters of their profiles on social networks and publish only those personal data that they consider suitable for public dissemination.

2.5. Customers

The Responsible processes data from natural and legal persons who contract any of their services or acquire any of the products that the Responsible sells, becoming their clients and, where appropriate, the natural persons they may represent.

Likewise, for the purposes of this privacy policy, those who request a quote for the contracting of a service or purchase of a product marketed by the Responsible are included in this category of customers.

On certain occasions, the Responsible party processes data from third-party natural and legal persons who, without having the direct status of client, are affected and / or beneficiaries of the services or products marketed by the Responsible Party. Such is the case, for example, of the residents of a property in relation to which its community of owners contracts with the Responsible and that for the purposes of this clause we call “indirect clients”.

How to obtain the data :

The data is directly provided by the interested party, in his own name or in the name and representation of the third party recipient of the services or products for which a quote is requested or are actually contracted and who actually holds the status of client or indirect client . The interested party can use the means of communication that they consider appropriate and, usually, is the use of the contact forms or request for a quote on the web, its sending by email or its verbal transmission in face-to-face meetings, telephone conversations and / or or through the use of instant messaging systems.

Data processed and whether or not to supply them :

The Responsible will process the following data of the interested party and / or the third person that he represents: identification and contact data, , postal address where the service must be provided or the product delivered, financial and insurance data and other specific data that are the object of the provision of services or supply of products by the Responsible or that are necessary to adequately determine the needs of the client (characteristics of the property, number of occupants, intended uses, history of consumption of water, gas or electricity supplies, etc.).

In general, the data is provided upon request by the Controller and its supply is mandatory as it is a contractual requirement for the provision of services or the sale of products and / or a legal obligation. The refusal of the interested party to supply the data will entail the impossibility of adequately providing the services or supplying the product,

In the case of requesting additional information that is not essential to provide the services or supply the products, the Person Responsible will indicate this circumstance at the time of the request.

Purpose of the treatment and legal basis that legitimizes it :

The data is processed for the following purposes:

  • Administrative management of the client’s condition of the interested party or of the third person that he represents and adoption of pre-contractual measures: Carry out the necessary administrative procedures for contracting the services provided by the Responsible party by the client and, where appropriate, adoption of pre-contractual measures that the client may request.
    The legal basis that legitimizes the treatment for this purpose is the existence of the contractual relationship established as a result of the contracting of services provided by the Responsible or the adoption of pre-contractual measures requested by the interested party or the third person whom it represents.
  • Provision of the contracted services and / or supply of the purchased products: Execution of the contractual relationship that could be formalized as a result of the acceptance of a quote or an offer of services made by the Responsible to a client.
    The legal basis that legitimizes the treatment for this purpose is the existence of the contractual relationship established as a result of contracting services provided or acquiring products marketed by the Responsible.
  • Compliance with the legal obligations of the Responsible Party: Compliance by the Responsible Party with labor, accounting, tax, prevention of money laundering obligations or, in general, derived from any applicable legal norm, derived from the contractual relationship established for the provision of the contracted services or the supply of the purchased products.
    The legal basis that legitimizes the treatment for this purpose is the existence of an obligation imposed on the Responsible party by the regulations that are applicable at all times and, especially, by the General Tax Law, the consolidated text of the General Law on Social Security, the Law on the prevention of occupational risks and the Law on the prevention of money laundering and the financing of terrorism.

When the interested party acts in the name and representation of the third natural or legal person who has the status of client, their data will be processed in order to communicate with the client and allow compliance with the purposes indicated in the preceding paragraphs. The legal basis that legitimizes the data processing in these cases is the existence of the Responsible party’s legitimate interest in communicating with the third person that the interested party represents, provided that there is a contract with this third party represented or the latter has requested the application of measures pre-contractual.

Data retention period :

The data provided by the person requesting a quote will be kept for a period of 1 year, without prejudice to the fact that in case of acceptance, the data is kept as provided in the following paragraphs for customers with whom a contract has actually been formalized.

The identification and contact data of the clients will be kept for the period of five years after the end of the provision of the last service contracted by the client, except that the interested party or the third person whom he represents requires its suppression beforehand. .

In any case, the identification and contact data and the financial and insurance data will be kept for a period of six years from the last invoice issued by the Responsible.

The data determined by the Law on the prevention of money laundering and the financing of terrorism will be kept for a period of ten years after the end of the provision of the last contracted service or supply of product purchased by the client.

Without prejudice to the provisions of the following two paragraphs, the indirect customer data will be kept for the period strictly necessary to provide the service or supply the product by the Responsible.

All the data processed, including the specific data object of the provision of services or supply of products by the Responsible, will be kept during the period after the end of the provision of service or supply of products in which the client or third parties may claim any type of responsibility of the Responsible or there is the possibility of being subject to an administrative sanction.

All the periods indicated above may be extended because there is an obligation to preserve them for a longer period due to legal imperative, as well as to allow the exercise or defense of rights and / or legal actions by the Responsible.

Communication of data to third parties :

The identification and financial data may be communicated to banks or payment platform managers, as well as to insurers or intermediaries thereof.

All or part of the data will be transferred to public administrations when there is a legal communication obligation.

All or part of the data, including the specific data object of the provision of services by the Responsible, may be transferred to third natural or legal persons who are affected by the services provided (being a signing party to a contract with the client, be contrary party in a judicial or extrajudicial claim, etc.), as well as all those third parties whose intervention is required for the adequate provision of services, such as courier companies, public registries, administrations or other public entities, notaries, solicitors, lawyers , etc

All or part of the data, including the specific data object of the provision of services or supply of products by the Responsible, may be transferred to third parties or legal entities whose intervention is required for the proper provision of services or delivery of products, such as external industrialists who must participate in the work, courier companies, public registries, administrations or other competent public or private entities.

2.6. Providers

The Responsible processes data of the natural and legal persons who provide services or supply goods, becoming their suppliers and, where appropriate, of the natural persons who may represent them as possibly their workers.

The data is directly provided by the interested party, in his own name or in the name and representation of the third person who actually holds the status of supplier. The interested party can use the means of communication that they consider appropriate and, usually, is its public dissemination on its website or in any other dissemination instrument used by the provider, its sending by email or its verbal transmission in face-to-face meetings, conversations by phone and / or through the use of instant messaging systems.

Data processed and whether or not to supply them :

The Responsible will process the following data of the interested party and / or the third person he represents: identification and contact data, labor or professional data and financial and insurance data.

In case it is essential for the execution of the corresponding contract, the Responsible will process the identification, contact, labor and any other data that is imperatively determined by the labor regulations, of the workers assigned to the execution of the contract.

In general, the data is provided at the initiative of the provider itself or upon request of the Responsible, and its supply is mandatory as it is a contractual requirement of the provision of services or supply of goods by the provider and / or an obligation of a character legal. The refusal of the interested party to supply the data will entail the impossibility of contracting the supplier or, if the contract has already been formalized, it will be a reason for its termination for a cause attributable to the supplier.

In the case of requesting additional information that is not essential to contract the supplier, the Responsible will indicate this circumstance at the time of the request.

Purpose of the treatment and legal basis that legitimizes it :

The data is processed for the following purposes:

  • Administrative management of the condition of supplier of the interested party or of the third person whom it represents and adoption of pre-contractual measures: Carry out the necessary administrative procedures for contracting the services or acquiring the goods offered by the supplier and, in its case, adoption of pre-contractual measures that the supplier may request.
    The legal basis that legitimizes the treatment for this purpose is the existence of the contractual relationship established as a result of the contracting of the supplier or the adoption of pre-contractual measures requested by it.
  • Receipt of services or acquisition of goods contracted from the provider: Execution of the contractual relationship that could be formalized as a result of the acceptance of a collaboration proposal, a budget or an offer of services or goods made by the provider.

The legal basis that legitimizes the treatment for this purpose is the existence of the contractual relationship established as a result of contracting the provider.

  • Compliance with the legal obligations of the Responsible Party : Compliance by the Responsible Party with labor, accounting and tax obligations or, in general, derived from any applicable legal norm, that derive from the contractual relationship established with the supplier.
    The legal basis that legitimizes the treatment for this purpose is the existence of an obligation imposed on the Responsible by the regulations that are applicable at all times and, especially, by the General Tax Law, the consolidated Text of the General Security Law Social and the Occupational Risk Prevention Law.
    When the interested party acts in the name and representation of the third natural or legal person who has the status of provider, their data will be processed in order to communicate with the provider and allow compliance with the purposes indicated in the preceding paragraphs. The legal basis that legitimizes the data processing in these cases is the existence of the Responsible party’s legitimate interest in communicating with the third person that the interested party represents, provided that there is a contract with this third party represented or the latter has requested the application of pre-contractual measures.

Data retention period :

The identification and contact data and the labor or professional data will be kept as long as the Responsible may have an interest in contracting the services or acquiring the goods offered by the supplier, unless the interested party or the third person whom it represents requires its deletion with previously or communicate the completion of your professional or commercial activity.

In any case, the identification and contact data and the financial and insurance data will be kept for a period of six years from the last invoice issued by the provider.

The data of the supplier’s workers assigned to the execution of a contract will be kept for the period determined by the applicable labor, social security or occupational risk prevention regulations at any time.

All the data processed will be kept during the period after the end of the provision of the service or the supply of the goods by the provider in which the Controller or third parties can claim any type of liability, both from the provider and the Responsible, or there is the possibility that the Responsible is subject to administrative sanction.

All the periods indicated above may be extended because there is an obligation to preserve them for a longer period due to legal imperative, as well as to allow the exercise or defense of rights and / or legal actions by the Responsible.

Communication of data to third parties :

The identification and financial data may be communicated to banks or payment platform managers, as well as to insurers or intermediaries thereof.

All or part of the data will be transferred to public administrations when there is a legal communication obligation.

All or part of the data may be transferred to third parties or legal entities affected by the services provided or the goods supplied by the provider, as well as to all third parties whose intervention is required for the adequate provision of services, such as companies. courier, public records, administrations or other public entities, notaries, solicitors, lawyers, etc.

All or part of the data may be transferred to collaborators of the Responsible when they require them to provide the services object of collaboration and do not intervene as a simple Data Processor, but rather treat the data transferred as a Responsible or Co-Responsible

2.7. Professional contacts

The Responsible processes data from natural or legal persons who maintain contact with the Responsible for having an interest, those or this, in the activity of the other party for purely professional purposes.

The data is directly provided by the interested party himself, who can use the means of communication he deems appropriate and which is usually public dissemination on his website or in any other dissemination tool that he may use, sending it by email or its verbal transmission in face-to-face meetings, telephone conversations and / or through the use of instant messaging systems.

Data processed and whether or not to supply them :

The Responsible processes the identification and contact and labor or professional data of the interested party, who provides them voluntarily.

Purpose of the treatment and legal basis that legitimizes it :

The data is processed for the purpose of maintaining professional relations with the interested party and the legal basis that legitimizes this treatment is the consent of the interested party itself, granted at the time of supplying their data.

Data retention period :

The data will be kept for a period of ten years counting from its collection or, if later, from the last expression of interest in maintaining professional contact by the interested party.

Communication of data to third parties :

The data will not be communicated to third parties.