PRIVACY POLICY:
PERSON IN CHARGE OF THE TREATMENT
The Data Controller is RED GESTION Y PREVENCION DE SEGURIDAD SL, POLIGONO CANA PALAVA, NAVE 20, 07819, SANTA EULALIA DEL RIO (ILLES BALEARS).
Privacy Principles
From RED GESTION Y PREVENCION DE SEGURIDAD SL we are committed to work with you continuously to ensure privacy in the processing of your personal data, and to offer you at all times the most complete and clear information we can. We encourage you to read this section carefully before providing us with your personal data.
If you are under fourteen years of age, please do not provide us with your personal information without parental consent.
In this section we inform you about how we treat the data of people who have a relationship with our organization. Starting with our principles:
– We do not ask for personal information, unless it is necessary to provide you with the services you require.
– We never share personal information with anyone, except to comply with the law, or with your express authorization.
– We will never use your personal information for purposes other than those expressed in this privacy policy.
– Your data will always be treated with a level of protection appropriate to the legislation on data protection, and we will not subject them to automated decisions.
We have drafted this privacy policy taking into account the requirements of the current data protection legislation:
– Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons (GDPR).
– Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights (LOPD).
– Royal Decree 1720/2007, of December 21 (RLOPD).
This privacy policy is drafted as of December 6, 2018.
On the occasion of the modification of processing criteria, for the sake of making it easier to understand or to adapt it to current legislation, we may modify this privacy policy. We will update the date of the same, so that you can check its validity.
Treatments that we carry out
TREATMENT OF EMPLOYEES.
Legal Basis: GDPR: 6.1.b) Processing necessary for the performance of a contract to which the data subject is a party or for the implementation at the request of the data subject of pre-contractual measures.
GDPR: 6.1.c) Processing necessary for compliance with a legal obligation applicable to the data controller.
Royal Legislative Decree 2/2015, of October 23, approving the revised text of the Workers’ Statute Law.
Purposes of Processing: – Management of contracted personnel.
– Personal file. Time control. Training. Pension plans. Prevention of labor risks.
– Issuance of personnel payroll.
– Management of union activity.
Collective: Employees
Data categories: Name and surname, DNI/CIF/identifying document, personnel registration number, Social Security/Mutuality number, address, signature and telephone number.
Special categories of data: health data (sick leave, occupational accidents and degree of disability, without including diagnoses), union membership, for the exclusive purpose of payment of union dues (if applicable), union representative (if applicable), proof of attendance of own and third parties.
Personal characteristics data: Sex, marital status, nationality, age, date and place of birth and family data. Family circumstances data: Date of registration and leave, licenses, permits and authorizations.
Academic and professional data: Degrees, training and professional experience.
Details of employment and administrative career. Incompatibilities.
Attendance control data: date/time of arrival and departure, reason for absence.
Economic-financial data: Payroll economic data, credits, loans, guarantees, tax deductions, reduction of credits corresponding to the previous job (if applicable), judicial withholdings (if applicable), other withholdings (if applicable). Bank details.
Categories of Recipients: – Entity entrusted with the management in matters of occupational risks.
– General Treasury of the Social Security.
– Trade union organizations.
– Financial entities.
– State Agency of Tax Administration.
– Main contractors to whom we provide services as subcontractors.
International Transfers: No international transfers of data are foreseen.
Period of Suppression: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from that purpose and the processing of the data.
The economic data of this processing activity will be kept under the provisions of Law 58/2003 of 17 December, General Taxation.
Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.
TREATMENT OF CONTACTS.
Legal Basis: Consent of the data subject.
Purposes of Processing: To deal with your request, send you information and follow up on the request.
Group: Contact persons, customers, suppliers.
Categories of data: Name and surname, telephone, email address.
Categories of Recipients: No transfers of data to third parties are contemplated.
International Transfers: No international transfers of data are foreseen.
Period of Deletion: The contact data will be kept for an indefinite period of time, or until the interested party requests its deletion.
Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.
ATTENTION TREATMENT RIGHTS OF INDIVIDUALS (ARCO).
Legal Basis: GDPR: 6.1.c) Processing necessary for compliance with a legal obligation applicable to the controller.
General Data Protection Regulation.
Purpose of Processing: To respond to requests in the exercise of the rights established in the General Data Protection Regulation.
Group: Individuals who request it (employees, customers, suppliers, contact persons).
Data Categories: Name and surname, address, signature and telephone number.
Categories of Recipients: They may be communicated to the Supervisory Authority (Spanish Data Protection Agency) in the framework of an investigation for the protection of rights initiated by the interested party.
International Transfers: No international transfers of the data are foreseen.
Deletion Period: Data will be kept for a period of five years from the time of the request.
Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.
PROCESSING OF CANDIDATES SELECTION PROCESSES (HRH).
Legal Basis: GDPR: 6.1.b) Processing necessary for the performance of a contract to which the data subject is a party or for the implementation upon request of the data subject of pre-contractual measures.
Purposes of Processing: Recruitment and filling of jobs.
Collective: Candidates submitted to procedures for the provision of jobs.
Categories of data: Name and surname, ID card/CIF/identifying document, personnel registration number, address, signature and telephone number.
Special categories of data: health data (disabilities).
Personal characteristics data: Sex, marital status, nationality, age, date and place of birth and family data.
Academic and professional data: Degrees, training and professional experience.
Detailed employment data.
Categories of Recipients: No transfer of data to third parties is foreseen.
International Transfers: No international transfers of data are foreseen.
Period of Deletion: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from that purpose and the processing of the data.
Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.
PROCESSING OF SUPPLIERS.
Legal Basis: GDPR: 6.1.b) Processing necessary for the performance of a contract to which the data subject is a party or for the implementation upon request of the data subject of pre-contractual measures.
GDPR: 6.1.c) Processing necessary for compliance with a legal obligation applicable to the data controller.
Royal Legislative Decree 2/2015, of October 23, approving the revised text of the Workers’ Statute Law.
Law 58/2003, of December 17, 2003, General Tax Law.
Purposes of the Treatment: – Acquisition of products and/or services that we need for the development of our activity.
– Control of subcontractors if applicable.
Collective: – Suppliers.
– Workers of our suppliers.
Categories of Data: – Name and surname, DNI/NIF/identifying document, address, signature and telephone.
– Detailed employment data: job position. Occupational safety training.
– Economic-financial and insurance data: Bank details.
Categories of Recipients: – Financial institutions (payment of invoices).
– State Agency of Tax Administration.
International Transfers: No international transfers of data are foreseen.
Period of Suppression: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from that purpose and the processing of data, in accordance with Law 58/2003 of 17 December, General Taxation,
Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.
TREATMENT OF CUSTOMERS.
Legal Basis: GDPR: 6.1.a) The data subject consented to the processing of his or her personal data for one or more specific purposes.
GDPR: 6.1.b) Processing necessary for the performance of a contract to which the data subject is a party or for the implementation at the request of the data subject of pre-contractual measures.
GDPR: 6.1.c) Processing necessary for compliance with a legal obligation applicable to the data controller.
Royal Legislative Decree 2/2015, of October 23, approving the revised text of the Workers’ Statute Law.
Law 58/2003, of December 17, 2003, General Tax Law.
Purposes of processing: Supply of our products / services.
Collective: Customers
Data Categories: – Name and surname, DNI/NIF/identifying document, address, signature and telephone number.
– Economic-financial and insurance data: Banking data.
Categories of Recipients: – Financial institutions.
– State Agency of Tax Administration.
International Transfers: No international transfers of data are foreseen.
Period of Suppression: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from that purpose and the processing of data, in accordance with Law 58/2003 of 17 December, General Taxation,
Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.
VIDEO SURVEILLANCE TREATMENT.
Legal Basis: GDPR: 6.1.c) the processing is necessary for the satisfaction of legitimate interests pursued by the controller or by a third party.
Organic Law 2/1986, of March 13, 1986, on Security Forces and Corps.
Purposes of processing: Video surveillance and labor control.
Group: Workers, customers and suppliers, users.
Categories of Data: Image and sound.
Categories of Recipients: The recordings may be communicated to the Security Forces and Corps, in case of requirement of these, or in case they record the commission of crimes.
International Transfers: No international transfers of the data are foreseen.
Suppression Period: No more than one month.
Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.
YOUR RIGHTS
You have the right to ask us for a copy of your personal data, to rectify inaccurate data or complete them if they are incomplete, or delete them if they are no longer necessary for the purposes for which they were collected.
You also have the right to limit the processing of your personal data and to obtain your personal data in a structured and readable format.
You may object to the processing of your personal data in certain circumstances (in particular, when we do not have to process it in order to comply with a contractual or other legal requirement, or when the purpose of the processing is direct marketing).
Where you have given us your consent, you may withdraw your consent at any time. We will then stop processing your data or, as the case may be, we will stop processing it for that particular purpose. If you decide to withdraw your consent, this will not affect any processing that has taken place while your consent was in effect.
These rights may be limited; for example, if we need to disclose information about another person in order to fulfill your request, or if you ask us to delete certain records that we are required to keep by law or for a legitimate interest, such as to defend against claims. Or even in those cases where the right to freedom of expression and information must prevail.
You can contact us by any of the means indicated in the Data Controller section of this privacy policy, providing a copy of a document proving your identity (usually the ID card).
Another of your rights is the right not to be subject to a decision based solely on automated processing, including profiling that produces legal effects or affects you.
In the event of any violation of your rights, for example, if we have not complied with your request, you have the right to lodge a complaint with the supervisory authority in charge of data protection. This may be the one in your country (if you live outside Spain) or the Spanish Data Protection Agency (if you live in Spain).
Additional information
Processing of your data outside the European Economic Area.
For the indicated treatments we may use the services of the following providers outside the European Economic Area, but covered by the Privacy Shield agreement, approved by the data protection authorities of the European Union.
Amazon: More information: https://www.privacyshield.gov/participant?id=a2zt0000000TOWQAA4
Apple iOS: More information: https://www.privacyshield.gov/participant?id=a2zt0000000GnZjAAK
Dropbox: More information: https://www.privacyshield.gov/participant?id=a2zt0000000GnCLAA0
Facebook/ Instagram (FB Messenger): More information: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC
Google (Drive / Mail …): More info: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI
Linkedin: More info: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0
Mailchimp: More info: https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG
Microsoft (Drive, Skype…): More info: https://www.privacyshield.gov/participant?id=a2zt0000000KzNaAAK
monday.com Inc.: More info: https://www.privacyshield.gov/participant?id=a2zt0000000GnZjAAK
Twitter: More info: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active
Whatsapp: More info: https://www.privacyshield.gov/participant?id=a2zt0000000TSnwAAG
Zoho: More information: https://www.privacyshield.gov/participant?id=a2zt0000000TOJbAAO
Links to third party websites.
Our website may, on occasion, contain links to other websites. It is your responsibility to ensure that you read the data protection policy and legal conditions that apply to each site.
Third-party data.
If you provide us with data of third parties, you assume the responsibility to inform them in advance in accordance with the provisions of Article 14 of the GDPR.
In compliance with Art. 5 of Law 15/1999 of the Organic Law on Protection of Personal Data, Red Gestión y Prevención de Seguridad, S.L. CIF B-07542723, registered in the Mercantile Register of Ibiza, Volume 99, Folio 106, Entry 283, authorization D.G.P. 2138 (hereinafter Red Seguridad) informs you that the data you provide by e-mail or contact form on the website or by any electronic means are incorporated into a file located in Polígono Cana Palava C / Vidriers, nave 20. C.P 07819 Santa Eulalia del Río, in order to respond to your requests for information related to our products and services, and maintain an appropriate business relationship. At any time you can access your data, modify them, cancel them and oppose to their treatment by sending an e-mail to info@redseguridad.es. We also inform you that with the sole purpose of being able to respond to your requests for information, inform you of our products and services, and maintain an appropriate business relationship, your data may be shared with other companies in the Red Seguridad Group.
In compliance with art. 21 of the Law of Services of the Information Society and Electronic Commerce (LSSICE) and the Organic Law 15/1999 of protection of personal data (LOPD), we appreciate that if you do not wish to receive communications, information or future offers from Red Seguridad send an email to info@redseguridad.es writing in the subject I DO NOT ACCEPT E-MAILS FROM RED SEGURIDAD.
The copyright of the material contained in this website is the exclusive property of Red Seguridad. Access to it does not imply, under any aspect, any license for its reproduction, distribution, commercialization and/or transformation, which, in any case, will be prohibited without prior express consent of Red Seguridad.
*The present constitutes a translation of the legal terms and conditions. In situations of discrepancy or interpretative ambiguity, the stipulations drafted in the language of origin shall prevail.