Privacy Policy – Drisar Consulting SL
PRIVACY – EXTENDED INFORMATION
The Privacy Policy is part of the General Conditions that govern this Website.
Who is responsible for processing your data?
Drisar Consulting SL CIF: B19644848
Address: Avenida Miramar 33, local 5, CP 29640, Fuengirola.
Tel: 680337914
E-Mail: Info@drisarasesores.com
You can contact us in any way to communicate with us.
We reserve the right to modify or adapt this Privacy Policy at any time. We recommend that you review it, and if you have registered and access your account or profile, you will be informed of the changes.
If you are one of the following groups, consult the following information:
+ WEB OR EMAIL CONTACTS
What data do we collect through the Web?
We can treat your IP, what operating system or browser you use, and even the duration of your visit, anonymously.
If you provide us with information in the contact form, you will identify yourself so that we can contact you, if necessary.
For what purposes are we going to process your personal data?
-
Answer your questions, requests or requests.
-
Manage the requested service, answer your request, or process your request.
-
Information by electronic means, that relate to your request.
-
Commercial information or events by electronic means, as long as there is express authorization.
-
Perform analysis and improvements on the Web, about our products and services. Improve our commercial strategy
What is the legitimacy for the processing of your data?
The acceptance and consent of the interested party: In those cases where to make a request it is necessary to fill in a form and click on the send button, the completion of the same will necessarily imply that you have been informed and have expressly granted your consent to the content. of the clause attached to said form or acceptance of the privacy policy.
All our forms have the symbol * in mandatory data. If you do not fill in these fields, or do not check the checkbox to accept the privacy policy, the information will not be sent. It usually has the following formula: “□ I am over 14 and I have read and accept the Privacy Policy.”
You may revoke your consent at any time.
+ CLIENTS
For what purposes are we going to process your personal data?
-
Preparation of the budget and monitoring thereof by means of communications between both parties.
-
Information by electronic means, that relate to your request.
-
Commercial information or events by electronic means, as long as there is express authorization.
-
Manage the administrative, communications and logistics services performed by the Responsible.
-
Carry out the corresponding transactions. Billing and declaration of the appropriate taxes. Control and recovery procedures.
What is the legitimacy for the processing of your data?
The legal basis is your contractual consent.
+ SUPPLIERS.
For what purposes are we going to process your personal data?
-
Information by electronic means, that relate to your request.
-
Commercial information or events by electronic means, as long as there is express authorization.
-
Manage the administrative, communications and logistics services performed by the Responsible.
-
Carry out the corresponding transactions. Billing and declaration of the appropriate taxes. Control and recovery procedures.
What is the legitimacy for the processing of your data?
The legal basis is the acceptance of a contractual relationship, or otherwise your consent to contact us or offer your products by any means.
+ PARTNERS
For what purposes are we going to process your personal data?
-
Organization of the actions necessary to achieve the aims of the company
-
Internal management and legal compliance with it.
-
Call for meetings.
-
Carry out the corresponding transactions.
-
Declaration of the appropriate taxes.
What is the legitimacy for the processing of your data?
The legal basis is contractual, the acceptance of a contract for the sale of shares or similar, or participation in the incorporation of the company.
+ SOCIAL NETWORKS CONTACTS
For what purposes are we going to process your personal data?
-
Answer your questions, requests or requests.
-
Manage the requested service, answer your request, or process your request.
-
Connect with you and create a community of followers.
What is the legitimacy for the processing of your data?
The acceptance of a contractual relationship in the environment of the corresponding social network, and in accordance with its Privacy policies:
Facebook http://www.facebook.com/policy.php?ref=pf
Instagram https://help.instagram.com/155833707900388
Twitter http://twitter.com/privacy
LinkedIn http://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv
Pinterest https://about.pinterest.com/es/privacy-policy
Google* http://www.google.com/intl/es/policies/privacy/
* (Google+ and YouTube)
How long are we going to keep personal data?
We can only consult or cancel your data in a restricted way by having a specific profile. We will treat them as long as you leave us following us, being friends or giving “like”, “follow” or similar buttons.
Any rectification of your data or restriction of information or publications must be made through the configuration of your profile or user in the social network itself.
+ VIDEO SURVEILLANCE
For what purposes are we going to process your personal data?
-
Video surveillance of our facilities.
-
Control of our employees.
-
Sometimes they can be transferred to the courts and tribunals for the exercise of legitimate actions.
What is the legitimacy for the processing of your data?
The unequivocal consent of the interested party when accessing our facilities after viewing the information poster of the video-monitored area.
+ JOB SEEKERS
For what purposes are we going to process your personal data?
-
Organization of selection processes for hiring employees.
-
Cite yourself for job interviews and evaluate your candidacy.
-
If you have given us your consent, we can keep your CV for new job openings.
-
If you have given us your consent, we can assign it to collaborating or related companies, with the sole purpose of helping you find a job.
What is the legitimacy for the processing of your data?
The legal basis is your unequivocal consent, when you give us your CV and receive and sign information related to the treatments that we are going to carry out.
– – – – – – – – – – – – –
Do we include personal data of third parties?
No, as a general rule we only process the data provided by the owners. If you provide us with data from third parties, you must first inform and request their consent from said people, or otherwise you exempt us from any responsibility for the breach of this requirement.
And data of minors?
We do not process data of minors under 14 years of age, therefore, please refrain from providing them if they are not that old.
Will we make communications by electronic means?
-
They will only be made to manage your request, if it is one of the means of contact that you have provided us.
-
If we carry out commercial communications, they will have been previously and expressly authorized by you.
What security measures do we apply?
You can rest assured: We have adopted an optimal level of protection of the Personal Data that we handle, and we have installed all the means and technical measures at our disposal according to the state of technology to avoid loss, misuse, alteration, unauthorized access and Theft of Personal Data.
To which recipients will your data be communicated?
Your data will not be transferred to third parties, except legal obligation. Specifically, they will be communicated to the State Tax Administration Agency and to banks and financial entities for the collection of the service provided or product purchased, as well as to those in charge of the treatment necessary for the execution of the agreement.
In case of purchase or payment, if you choose any application, web, platform, bank card, or any other online service, your data will be transferred to that platform or will be treated in your environment, always with maximum security.
When we order it, the web development and maintenance company or the hosting company will have access to our website. They will have signed a contract to provide services that requires them to maintain the same level of privacy as we do.
We use applications that may involve an international transfer of data to the United States. This will only be carried out to entities that have adhered to the USA-EU Data Privacy Framework, or failing that, to those that have demonstrated that they comply with the regulations, and have committed through standard contractual clauses (SCCs) to comply with the level of protection and guarantees in accordance with the parameters and requirements provided for in current European regulations on data protection, such as the European Regulation, or failing that, when there is legal authorization to carry out the international transfer.
What rights do you have?
-
To know if we are treating your data or not.
-
To access your personal data.
-
To request the rectification of your data if they are inaccurate.
-
To request the deletion of your data if they are no longer necessary for the purposes for which they were collected or if you withdraw the consent granted.
-
To request the limitation of the processing of your data, in some cases, in which case we will only conserve them in accordance with current regulations.
-
To carry your data, which will be provided in a structured, commonly used or mechanical reading format. If you prefer, we can send them to the new manager you designate. It is only valid in certain cases.
-
To file a claim with the Spanish Data Protection Agency, if you think we have not treated you correctly.
-
To revoke consent for any treatment for which you have consented, at any time.
If you modify any information, we thank you for telling us to keep them updated.
Do you want a form for the exercise of Rights?
-
We have forms for the exercise of your rights, ask for them by email or if you prefer, you can use the ones elaborated by the Spanish Data Protection Agency or third parties.
-
These forms must be signed electronically or accompanied by a photocopy of the DNI.
-
If someone represents you, you must attach a copy of your ID, or sign it with your electronic signature.
-
The forms can be presented in person, sent by letter or by mail at the address of the person responsible at the beginning of this text.
How long does it take us to reply to the Exercise of Rights?
It depends on the right, but at most one month from your request, and two months if the subject is very complex and we notify you that we need more time.
How long are we going to keep your personal data?
-
Personal data will be maintained while you are still connected with us.
-
Once you disassociate yourself, the personal data processed for each purpose will be kept for the legally stipulated periods, including the period in which a judge or court may require them, taking into account the statute of limitations for legal actions.
-
The data processed will be maintained as long as the aforementioned legal deadlines do not expire, if there is a legal maintenance obligation, or if the legal term does not exist, until the interested party requests their suppression or revocation of the consent granted.
-
We will keep all the information and communications related to your purchase or the provision of our service, while the guarantees of the products or services last, to attend to possible claims.
-
In each treatment or type of data, we provide you with a specific period, which you can consult in the following table:
File |
Document |
Conservation |
Clients |
Invoices |
10 years |
Forms and coupons |
15 years |
|
Contracts |
5 years |
|
Human Resources |
Payroll, TC1, TC2, etc. |
10 years |
Resumes |
Until the end of the selection process, and 1 more year with your consent |
|
Docs of severance pay. Contracts Temporary worker data. |
4 years |
|
Worker file. |
Up to 5 years after withdrawal. |
|
Marketing |
Databases or website visitors. |
While the treatment lasts. |
Suppliers |
Invoices |
10 years |
Contracts |
5 years |
|
Access control and video surveillance |
Visitors list |
30 days |
Videos |
30 days lock 3 years destruction |
|
Accounting |
Accounting books and documents. Partner agreements and boards of directors, company statutes, minutes, board of directors regulations and delegated committees. Financial statements, audit reports Grant-related records and documents |
6 years |
Tax law |
Keeping of the company's administration, rights and obligations related to the payment of taxes. Administration of dividend payments and tax withholdings. |
10 years |
Information on the intra-group price establishments |
18 years 8 years for intra-group transactions for price agreements |
|
Security and health |
Workers' Medical Records |
5 years |
Environment |
Information on chemical or substantially hazardous substances |
10 years |
Documents related to environmental permits While the activity is carried out. |
3 years after the closing of the activity 10 years (statute of limitations) |
|
Records on recycling or waste disposal |
3 years |
|
Grants for cleaning operations must retain documents of rights and obligations, receipts and payments. |
4 years |
|
Accident reports
|
5 years |
|
Insurance |
Insurance policies |
6 years (general rule) 2 years (damage) 5 years (personal) 10 years (life) |
Purchases |
Register all deliveries of goods or provision of services, intra-community acquisitions, imports and exports for VAT purposes. |
5 years |
Legal |
Intellectual and Industrial Property Documents. Contracts and agreements. |
5 years |
Permits, licenses, certificates |
6 years from the expiration date of the permit, license or certificate. 10 years (criminal statute of limitations) |
|
Confidentiality and non-competition agreements |
Always the term of the obligation or confidentiality |
|
LOPD |
Processing of personal data, if it is different from the treatment notified to the AEPD |
3 years |
Personal data of employees stored in the networks, computers and communications equipment used by them, access controls and internal management / administration systems |
5 years |