PRIVACY POLICY

As you surely know, the entry into force of Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016 on the protection of personal data (hereinafter RGPD) and Organic Law 3/2018, of 5 December, Protection of Personal Data and Digital Rights Guarantee (hereinafter LOPDGDD), highlight the need to strengthen levels of security and protection of personal data.

We want to inform you that we comply with all the requirements that this legislation requires and that all data, under our responsibility, are being treated in accordance with legal requirements and with due security measures that guarantee the confidentiality of them.

However, given the legislative developments, we believe it is appropriate to inform and accept the following privacy policy:

Who is responsible for processing your data?

The person responsible for the treatment is the legal entity that determines the purposes and means of processing personal data. In other words, the person responsible decides how and for what purposes the personal data is processed. For the purposes of this Privacy Policy, the person responsible for the processing of personal data is:

Identity:

Responsible for Treatments: AUXQUIMIA, S.A.U. (hereinafter AUXQUIMIA).

CIF: A33018003

Mercantile Registry: Mercantile Registry of Asturias, Volume 1528, Book 97, Sheet number AS-8094.

Postal address effect of citations and notifications: Polygon of Baiña, Plot 23. 33682 Mieres (Asturias).

Contact email: auxquimia@perimeter-group.com.

For what purpose do we treat the personal data you provide us?

 (*) The updated list of activities and / or services associated with AUXQUIMIA is available at www.auxquimia.com.

  • Supply and Commercial Management of products and services *.
  • Internal use, performance of operations and administrative, economic and accounting management derived from the relationship with the owner (commercial and / or contractual relationship).
  • Management of the Contracting and rendering of services of the organization, as well as of the fulfillment of contractual and normative requirements linked to the organization or operation requested.
  • Management of Contact with the interested party through the means of communication provided (mail, postal address and / or telephone) in order to arrange meetings and visits, manage the inquiries that you send us through the channels enabled for this purpose, manage notices, communications related to the service (sending of technical documentation, administrative documentation, invoices, payment and collection management), coordination of activities, request for use of facilities, resolution of incidents and coordination of actions derived from the services requested by persons related to the organization and / or by treatment managers hired by the same for the purposes legitimated and / or consented.
  • Sending commercial communications about products or services similar to those contracted by the client with which there is a prior contractual relationship, legitimized according to article 21 of the LSSICE.
  • Attention to your queries and requests: Management of Response to Queries, Claims or Incidents, Requests for Information, Resources and / or Activities.
  • Quality control over our products and services, quality management of processes and activities, as well as the evaluation of the satisfaction / perception and performance results of the different interest groups of the organization.
  • Providing evidence of justification of campaigns, activities, promotions, contests, projects and grants in which the organization participates
  • Regulatory Compliance Management (applicable legal regulations, as well as mandatory internal regulations): Research, monitoring and auditing of the controls established for the prevention of crimes, and access controls may be established
    installations, as well as controls related to the use of the images captured by video surveillance systems, for the investigation of accidents and / or incidents that may occur, as well as breaches of regulations, crimes or illegal behavior. Asset Solvency and Credit Assessment in order to confirm the economic viability of the operation requested, as well as, where appropriate, the communication and management associated with the claim of the agreed amounts for the provision of the service. Consult the systems of advertising exclusion that could affect its performance, excluding from processing the data of those affected who had expressed their opposition or refusal to it by consulting the advertising exclusion systems published by the competent control authority. Associated management, including its prior communication, which could be derived from the development of any operation of structural modification of companies or the contribution or transfer of business or branch of business activity, provided that the treatments were necessary for the successful completion of the operation and guarantee, when appropriate, continuity in the provision of services. Inclusion in the complaint channel systems of the data associated with the knowledge (even anonymously) of the commission within the organization or the actions of third parties that contract with it, of acts or behaviors that may result contrary to the general or sectoral regulations that apply to it.
  • Statistical and historical purposes that allow us to improve the commercial strategy of our products and services.
  • The management and audit of management systems and regulatory compliance processes and facilities of the organization.
  • Dissemination of our best practices in relation to the services we have provided and / or the publication and / or communication of graphic material that can incorporate the image of the owner and / or staff in their charge in corporate media (with an enunciative and non-restrictive, web, social networks, newsletters, activity report, reports, presence in the media) and / or other means of public communication (sectoral publications and / or reports in the written press, TV, ….), as a dissemination of the results of the activity, promotion and dissemination, management of campaigns, activities and events and / or as accreditation of technical solvency before requests for evidence of justification in bidding processes, technical offers, projects and subsidies in which AUXQUIMIA * participates, to the extent that we would have consented unequivocally.
  • The contact and sending of personal communications, invitations to events and gifts addressed to customers, congratulations on special dates, referral of quality and satisfaction surveys, as well as to periodically inform you of news, news and corporate information, publication information of grants, contests and rates of other products and services of the organization, in order to evaluate the quality of our processes and provide you with offers of products and services of your interest by telephone, written or electronic means, depending on the means of communication provided, in the as we would have consented unequivocally.
  • Analysis of Profiles, to the extent that we would have unequivocally consented “In order to be able to offer products and services according to your interests, as well as improve your user experience, we will elaborate a” profile “, based on the information provided. Automated decisions will not be made based on said profile. “
  • Management of Visits and Video Surveillance of the Facilities, as well as of the security and the normative fulfillment in the same ones, to preserve the security of the people and goods and facilities, as well as for the exercise of the functions of control of the workers foreseen in the article 20.3 of the Workers’ Statute, the investigation of possible incidents or accidents, management of associated insurance and management of warnings or sanctions for breaches of safety regulations.
  • Communication of your personal data to private / public entities, depending on the service / product contracted, for the correct management of the provision of services agreed between the parties, to the extent that it would have consented.

Furthermore, to the extent that you are a provider / collaborator of the organization, we also treat your data with the following purposes:

  • Internal use, Commercial and relational management, Realization of operations and Administrative, economic and accounting management derived from the relationship with the supplier / collaborator
  • Communications and inquiries about the commercial offer and / or evolution of the requested service: Price request, manufacturing time, order confirmation, conditions, order confirmation, order status update, logistics management, …
  • Management of the contracting and provision of services by the supplier / collaborator, as well as compliance with contractual and regulatory requirements linked to the organization or operation requested.
  • Management of Selection, Homologation and Contracting of Suppliers / Collaborators and verification of regulatory compliance.
  • Management of Health and Safety (prevention of occupational risks and coordination of business activities), as well as the evaluation of compliance.
  • Management of Response to Queries, Claims or Incidents, Requests for Information, Resources and / or Activities that could be formulated by the interested party and / or a third party related to the organization in relation to the work and / or services provided by the supplier / collaborator to the organization.
  • Hourly and / or face-to-face control or assistance and monitoring through access records, video surveillance and confirmation of functional performance both in the organization’s facilities and in third-party facilities in which the interested party carries out functions of providing services to the organization (monitoring and control to verify the fulfillment by the supplier / collaborator of the contractual obligations).
  • Promotion and Dissemination of the Organization: The Elaboration, Publication and Communication of Statistics, Activity Reports and Information associated with the communication and transparency of its Activity, as well as the Recording and Publication of Divulgative Material, Communication and Management of Campaigns, Activities, Events , Contests and / or Recording and Publication, in the media of the organization (including web and social networks) and / or other means of public communication, videos, recordings and photos associated with the activities developed by the organization that may incorporate the image of the owner in the development of their functions “in order to provide stakeholders with information about the organization”, in cases in which the interested party consents unequivocally.
  • Quality Management of processes and activities, as well as the evaluation of satisfaction / perception and performance results of the organization’s stakeholders. Conducting surveys.
  • Management of Contact with the interested party through the corporate media provided by the organization (mail and / or telephone) in order to manage notices and coordinate actions by people related to the organization, as well as providing said means to third parties Request the contact with the interested party. In the cases in which the interested party consents unequivocally, the use and facilitation of private contact means (mail and private phones) to persons related to the organization and to third parties who request it may be carried out.
  • The management and audit of management systems and / or work safety management and regulatory compliance of processes and facilities of the organization, as well as the reservation of the right to perform periodic audits in their facilities as part of the agreements reached in the commercial relationship, in cases in which the interested party consents unequivocally.
  • Evidence Compliance with the Organization before a third party that requires it: Communication to third parties of data related to the interested party that are required by them in order to comply with the coordination of business activities, evidence of regulatory compliance of the organization and internal regulations of the third and / or for the management of access to facilities. In those cases in which the interested party consents unequivocally, the communication of the information / documentation required by the third party that is not explicitly included in the established legal or legal obligations, but in the internal regulations of the third party, may be carried out. .
  • Providing evidence of justification of campaigns, activities, promotions, contests, projects and grants in which the organization participates
  • Dissemination of our best practices regarding the services provided and / or the publication and / or communication of graphic material that may incorporate the image of the owner and / or staff in their charge in corporate media (with an enunciative and non-limiting character, web, social networks, newsletters, activity report, reports, presence in the media) and / or other means of public communication (sectoral publications and / or reports in the written press, TV, ….), as dissemination of results of the activity, promotion and dissemination, management of campaigns, activities and events and / or as accreditation of technical solvency before requests for evidence of justification in bidding processes, technical offers, projects and subsidies in which AUXQUIMIA participates, insofar as that he would have consented to us unequivocally.
  • Evidence Compliance with the Organization before a third party that requires it: Communication to third parties of data related to the interested party that are required by them in order to comply with the coordination of business activities, evidence of regulatory compliance of the organization and internal regulations of the third and / or for the management of access to facilities. In those cases in which the interested party consents unequivocally, the communication of the information / documentation required by the third party that is not explicitly included in the established legal or legal obligations, but in the internal regulations of the third party, may be carried out. .
  • Providing evidence of justification of campaigns, activities, promotions, contests, projects and grants in which the organization participates
  • Dissemination of our best practices regarding the services provided and / or the publication and / or communication of graphic material that may incorporate the image of the owner and / or staff in their charge in corporate media (with an enunciative and non-limiting character, web, social networks, newsletters, activity report, reports, presence in the media) and / or other means of public communication (sectoral publications and / or reports in the written press, TV, ….), as dissemination of results of the activity, promotion and dissemination, management of campaigns, activities and events and / or as accreditation of technical solvency before requests for evidence of justification in bidding processes, technical offers, projects and subsidies in which AUXQUIMIA participates, insofar as that he would have consented to us unequivocally.
  • Management of Contact with the interested party through the means of communication provided (mail and / or telephone) in order to manage notices and coordinate actions for the management of the selection process by persons related to AUXQUIMIA and / or third parties to whom hire the processes of selection of candidates for vacancies or jobs.
  • The performance of the tests and / or aptitude certificates that may be required for the selection of personnel, which will be optional, will be understood as an expression of the user’s consent for the inclusion of the data provided, as well as, if applicable, their evaluation. , in the database of the AUXQUIMIA Job Bank, and its automated processing in order to carry out that selection. As a consequence of the access to the facilities that may require the realization of said tests and / or aptitude certificates, treatments associated with the security of said facilities may be carried out by registering accesses and / or video-surveillance systems.
  • Management of Visits and Video Surveillance of Facilities, as well as security and regulatory compliance in them, the investigation of possible incidents or accidents, management of associated insurance and management of warnings or sanctions for breaches of security regulations.
  • Inclusion in the complaint channel systems of the data associated with the knowledge (even anonymously) of the commission within the organization or the actions of third parties that contract with it, of acts or behaviors that may result contrary to the general or sectoral regulations that apply to it.

How long do we keep the data provided?

  • The data provided will be kept as long as the legal relationship of treatment is maintained, its deletion is not requested by the interested party after the written formalization of the relationship with the interested party, with the exception of its preservation for the formulation, exercise or defense of claims of the controller or with a view to the protection of the rights of another natural or legal person and / or for reasons of legal obligation.
  • In any case, at the end of the relationship, the Data of the interested party will be duly blocked, according to the provisions of current data protection regulations.
  • Accounting and Tax Documentation – For Tax purposes: The accounting books and other books required records according to the applicable tax regulations (IRPF, VAT, IS, etc.), as well as the documentary supports that justify the entries recorded in the books (including computer programs and files and any other proof that have fiscal significance), must be kept, at least, during the period in which the Administration has the right to check and investigate and, consequently, to settle tax debt (Articles 66 to 70 General Law Tax). Period limitation of Fiscal Offenses associated with the verification of the bases or compensated or pending compensation or deductions applied or pending enforcement already Crimes against the Public Treasury and Social Security – Art. 66 bis General Tax Law and Criminal Code, respectively . – 4 years. Prescription infractions 10 years.
  • Accounting and Fiscal Documentation – For Commercial purposes: Books, correspondence, documentation and justifications concerning your business, duly ordered from the last entry made in the books, except as established by general or special provisions. This mercantile obligation extends to both mandatory books (income, expenses, investment goods and provisions in addition to the documentation and supporting documents on the book entries (invoices issued and received, tickets, corrective invoices, bank documents, etc) (Art.30 Commercial Code) – 6 years.
  • Solvency Files: Data referring to certain, past due and payable and unclaimed debts (Art. 20 of LOPDGDD) – while the breach persists, with the maximum limit of five years from the due date of the monetary, financial or credit obligation – 5 years
  • The images / sounds captured by the video surveillance systems will be suppressed within a maximum period of one month from their capture, except when they should be preserved to accredit the commission of acts that attempt against the integrity of persons, goods or facilities (in which case , the images will be made available to the competent authority within a maximum period of 72 hours after the existence of the recording was known), or are related to serious or very serious criminal or administrative infractions in matters of public safety, with a police investigation in progress or with an open judicial or administrative procedure (Instruction 1/2006, of November 8, of the AEPD, on the processing of personal data for surveillance purposes through camera systems or video cameras and Art.22 LOPDGDD) – 30 days.
  • The data included in the automated treatments created to control access to buildings (Instruction 1/1996, of March 1, of the AEPD, on automated files established with the purpose of controlling access to buildings) – 30 days
  • The data processed for the sending of commercial communications will be retained until the consent granted is revoked.
  • The data of who makes the communication of a complaint and the employees and third parties are kept in the system of complaints to decide on the appropriateness of initiating an investigation into the facts reported as well as later as evidence of the functioning of the prevention model of the commission of crimes by the legal entity, in accordance with what is established in article 24 of the LOPDGDD.
  • Solvency Files: Data referring to certain, past due and payable and unclaimed debts (Art. 20 of LOPDGDD) – while the breach persists, with the maximum limit of five years from the due date of the monetary, financial or credit obligation – 5 years
  • Documentation of Prevention of Labor Risks – Documentation on information and training for workers. Records of work accidents or occupational diseases (Royal Legislative Decree 5/2000, of August 4, approving the revised text of the Law on Infractions and Sanctions in the Social Order) – 5 years.
  • The data related to candidates who provide their CV will be kept during the calendar year associated with the date in which it was received (except in cases in which the candidate is selected in which case, they will become part of the data processing of HR of the contracting organization), as well as the legally stipulated deadlines for the exercise or prescription of any action of liability for breach of contract by the interested party or the Organization.
  • Therefore, the data will be kept as long as the commercial relationship remains in force, based on the conservation periods established by the current regulations mentioned above, as well as the legal or contractual terms foreseen for the exercise or prescription of any liability action. contractual breach by the interested party or the Organization (amendment of the Civil Code establishes a period of 5 years to be able to carry out an action for civil liability, a term calculated from the date on which compliance with the obligation may be required).

What is the legitimacy for the processing of your data?

  • The legal basis for the processing of your data is the execution of a contract: compliance with your request, offer, order and / or commercial contract. The requested data is necessary for the correct provision of it.
  • The fulfillment of legal obligations: Regulations with the rank of administrative, commercial, tax, fiscal, accounting and financial law; legislation for the defense of consumers and users and current legislation on labor matters, prevention of occupational risks (coordination of business activities), social security and regulations applicable to the sector to be contracted or applicable to the person responsible for processing.
  • Satisfying a legitimate interest of the Responsible: Data processing as part of a commercial relationship and / or contract, which are necessary for its maintenance or compliance, data transmissions within business groups for internal administrative purposes, direct marketing, fraud prevention, assumptions of legitimate interest in which the party responsible could be injured party and it is necessary to process and communicate the data of the non-compliant to third parties in order to manage the regulatory compliance and the defense of the interests of the data controller, for the purpose of video surveillance as an interest legitimate organization in the protection of their assets, the legitimate interest of direct marketing enabled by the LSSICE (sending commercial communications on products or services similar to those contracted by the client with which there is a prior contractual relationship), as well as assumptions of legitimate interest of specific treatments GRAPHICS LOPDGDD referred to in Article 19. Treatment of contact and individual entrepreneurs; Article 20. Credit information systems; Article 21. Treatments related to the performance of certain commercial operations (corporate restructuring or business transmissions) Article 22. Treatments for the purpose of video surveillance; Article 23 Advertising exclusion systems; Article 24 Internal reporting information systems).
  • In the case of data of candidates that facilitate their curriculum, the basis of legitimization of the treatment is the fulfillment of the request of incorporation to the Employment Exchange of the interested one through his self-candidacy by means of the remission of his cv by means of the channels of Contact of the organization and / or selection companies hired for the selection of candidates for vacancies or jobs, as well as satisfying a legitimate interest of the Responsible: video surveillance purposes as a legitimate interest of the organization in the protection of its assets, prevention of fraud and legitimate interest cases in which the person responsible could be a harmed party and it is necessary to process and communicate the data in case of non-compliance with third parties in order to manage regulatory compliance and defend the interests of the data controller.
  • The consent of the interested party who has provided us unequivocally through formal means and / or by checking the boxes enabled for this purpose in the data protection clauses provided in the base document that has regulated the commercial relationship according to the contact channel and / or in subsequent documents that regulate the relationship between the parties.

To which recipients can your data be communicated?

  • Organizations or persons directly contracted by the Treatment Manager for the provision of services linked to the purposes of treatment (with an enunciative and non-limiting character): Subcontracted entities for the execution of works / services subject to the contract with the client, Distributors, Collaborators, Commercial collaborators, Advertising / Marketing Agencies, Advising, Collection Management Entities and Credit Insurance, Regulatory Compliance Auditors.
  • Group companies: Perimeter Solutions, for internal management procedures.
  • Organisms or organs of the Public Administration with competences in the subjects object of the purposes of the treatment.
  • Members of the Administrative Body, in accordance with the provisions of the current Statutes of the organization.
  • Financial Entities: Domiciliation of receipts and / or collection management, effects and other means of payment.
  • Third parties that have been expressly authorized by the data owner.
  • Security Forces and Corps: To the extent that a justified access right was required in the investigation of a regulatory breach.
  • Compliance Complaints Channel (Complaints about violation of regulations and code of conduct are transmitted to the Regulatory Compliance Unit): Access to the data contained in these systems will be limited exclusively to those who, incardinated or not within the entity, develop the functions of internal control and compliance, or those responsible for the treatment that may be designated for that purpose. However, access by other persons, or even communication to third parties, will be lawful when necessary for the adoption of disciplinary measures or for the processing of judicial procedures that may be appropriate.
  • Solvency assessment entities in order to assess the creditworthiness of the interested party in the event of forms of payment or financing conditions that require it.
  • Organizations or persons directly hired by the Treatment Manager for the provision of services linked to the purposes of video surveillance treatment: video surveillance system maintenance and security companies, as well as the owner of the establishment, for legitimate interest in the protection of assets under its jurisdiction. property.
  • In the case of suppliers / collaborators: Users / Clients who hire or to whom services are provided and who require their data for the coordination of the service provided by the supplier / collaborator as manager of treatment or provider of the service object of commercial relationship.
  • Workers’ Representatives / Health and Safety Coordination, External Auditors: In compliance with the R.D. 171/2004 – Accreditation delivers risks by Coordination of Business Activities.
  • Insurance Entities: In the event of loss, incident or accident, it is provided to insurers for the investigation of the event in order to delimit the scope and coverage of the insurance premium contracted by the controller. Likewise, they will be able to communicate in the case of insurances subscribed by the organization in case of incidents.
  • In the case of data of candidates that provide their curriculum, potential recipients could also be Organizations or persons directly contracted by the Treatment Manager for the provision of services linked to the purposes of treatment (ETTs and third parties to whom the contracts are contracted). processes of selection of candidates for vacancies or jobs of AUXQUIMIA).

Under what guarantees are your data communicated?

The communication of data to third parties is made to entities that accredit the provision of a Personal Data Protection System in accordance with current legislation.

With the organizations to which international data transfers can be made, the standard contractual clauses approved by the data protection control bodies are signed.

What are your rights?

  • Anyone has the right to obtain confirmation about whether we are treating personal data that concerns them, or not.
  • Interested persons have the right to access their personal data, as well as to request the rectification of inaccurate data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purposes that were collected. “
  • In certain circumstances, interested parties may request the limitation of the processing of their data, in which case we will only keep them for the exercise or defense of claims.
  • In certain circumstances and for reasons related to their particular situation, the interested parties may object to the processing of their data, in which case the Treatment Manager will stop processing the data, except for compelling legitimate reasons, or the exercise or defense of possible claims “
  • By virtue of the right to portability, the interested parties have the right to obtain the personal data that concern them in a structured format of common use and mechanical reading and to transmit them to another person in charge “
  • In the event that you have granted consent for a specific purpose, you have the right to withdraw the consent at any time, without affecting the legality of the treatment based on the consent prior to its withdrawal.

How can rights be exercised?

If you wish to exercise your rights, please go to the channel established for the exercise of rights by the treatment manager: auxquimia@perimeter-group.com so that we can respond to your request in a managed manner. ”

  • Information required to exercise your rights
  • In order to exercise your rights, we need to prove your identity and the specific request you make to us, because we request the following information:
  • Documented information (written / email) of the request in which the request is specified.
  • Identity accreditation as the owner of the data object of the exercise (Name, surname of the interested party and photocopy of the ID of the interested party and / or of the person representing it, as well as the document accrediting such representation (legal representative, as the case may be).
  • When the person responsible for the treatment has reasonable doubts regarding the identity of the natural person who is processing the request, he / she may request that the additional information necessary to confirm the identity of the interested party be provided.
  • Address for notifications, date and signature of the applicant (in case of writing), or full name and surname (in case of email), or validation of the request in the private area of the communication channel with personal authentication key his identity).
  • When exercising the right of rectification recognized in article 16 of the RGPD, the affected party must indicate in his request to which data he refers and the correction that must be made. It must accompany, when necessary, the documentation justifying the inaccuracy or incompleteness of the data subject to treatment.
  • Also, when we treat a large amount of data concerning the affected and exercise its right of access without specifying whether it refers to all or a part of the data, the person responsible may request, before providing the information, that the affected party specify the data or treatment activities to which the request refers.

General Procedure of Exercise of your rights

Once we have received the required information, we will respond to your request in accordance with the general procedure for exercising the rights of the organization:

  • The controller will provide the interested party with information regarding their actions on the basis of an application in accordance with Articles 15 to 22 (Rights of the interested party), and, in any case, within one month of receipt of the request. application.
  • This period may be extended for another two months if necessary, taking into account the complexity and the number of applications.
  • The responsible party will inform the interested party of any such extension within one month of receiving the request, stating the reasons for the delay.
  • When the interested party submits the application by electronic means, the information will be provided by electronic means whenever possible, unless the interested party requests that it be provided otherwise.
  • Only in those cases in which the treatment systems of the responsible person allow it, the right of access can be facilitated through a system of remote, direct and secure access to personal data that guarantees, in a permanent way, access to its entirety For this purpose, the communication by the person responsible to the affected party in such a way that he / she will be able to access said system will suffice to have the request for exercise of the right considered. However, the interested party may request from the Treatment Manager the information referred to the points provided in article 15.1 of the RGPD that is not included in the remote access system.
  • If the person responsible for the processing does not comply with the request of the interested party, he / she will inform it without delay, and no later than one month after receiving the request, the reasons for not acting and the possibility of submitting a claim to an authority. of control and to take legal actions.
  • The information provided will be free, except for reasonable fees for administrative costs. When the affected party chooses a means other than the one offered to him that supposes a disproportionate cost, the request will be considered excessive, reason why said affected will assume the excess of costs that his election implies. In this case, only the Responsible for the Treatment will be required to satisfy the right of access without undue delay.
  • The data controller may refuse to act on the request, although he will bear the burden of demonstrating the manifestly unfounded or excessive nature of the request. For the purposes established in Article 12.5 of the RGPD, the exercise of the right of access may be considered repetitive on more than one occasion for a period of six months, unless there is legitimate cause for doing so.
  • In the cases in which it proceeds to the rectification or deletion exercise, the data will be blocked: The blocking of the data consists in the identification and reservation of the data, adopting technical and organizational measures to prevent its treatment, including its visualization, except for the provision of data to the judges and courts, the Public Prosecutor’s Office or the competent Public Administrations, in particular of the data protection authorities, for the requirement of possible responsibilities derived from the treatment and only for the term of prescription of the same. Once this period has elapsed, the data will be destroyed. The blocked data can not be processed for any purpose other than that indicated above. (Article 16 RGPD and art.32 LOPDGDD).
  • When the suppression derives from the exercise of the right of opposition in accordance with article 21.2 of the RGPD, the Treatment Manager may keep the necessary identification data of the affected person in order to prevent future treatments for direct marketing purposes. In cases in which you do not want your data to be processed for the sending of commercial communications, we refer you to the existing advertising exclusion systems, according to the information published by the competent control authority (AEPD) at its electronic site www. aepd.es.
  • In cases where the processing of personal data is limited, it will be clearly stated in the information systems of the Treatment Manager.
  • Given the existence of a certain debt, due and payable, a communication is sent to the debtor at the time of requesting payment about the possibility of inclusion in said systems (late payment treatments of the organization), with indication of those in the that participates (collection management entities for the management of the relevant claim …) in case the debt is not resolved within a maximum period of 15 days from the notification of the insolvency, it is informed about the possibility of exercising the rights established in articles 15 to 22 of the RGPD within thirty days following notification of the debt to the system, the data remaining blocked during that period.
  • In order to comply with the current legislation on video surveillance in Inst 1/2006 of the AEPD, we inform you that the recording period is 1 month from its capture, as we will not be able to attend formalized requests in later periods. Likewise, in order to avoid affecting the rights of third parties, in the case of requesting access, we will proceed to issue a certificate in which, with the greatest possible precision and without affecting the rights of third parties, we specify the data that has been subject to treatment. Eg “Your image was registered in our systems on the day ___ of the month of the year between _ hours and _ hours. In particular, the system records its access and exit from the installation. “

What claim ways exist?

If you consider that the exercise of your rights has not been fully satisfactory, you may submit a claim to the national control authority, for this purpose, to the Spanish Agency for Data Protection, C / Jorge Juan, 6 – 28001 Madrid.

How have we obtained your data?

The interested party or his legal representative.

  • Distributors, collaborators and other companies / persons related to AUXQUIMIA, events, fairs, colloquia and sectoral conferences organized and / or in which the organization participates, public information associated with contests / bids, legitimated commercial databases, professional social networks, search engines and databases on the internet as well as third parties with which the controller maintains a commercial relationship or provision of services, and for which he must have his personal data to process the requested service or to comply with our contractual commitments and fiscal and accounting obligations associated with the service object of contracting and / or for the verification of regulatory compliance under the responsibility of the organization.
  • In the case of data of candidates that facilitate their curriculum, the possible origin of the data could be, in addition to the interested party, temporary employment agencies, entities with which internship agreements or training programs have been established with commitment to recruitment, networks social professionals and / or third parties who are hired to select candidates for vacancies or jobs.

What category of data do we deal with?

  • In the case of clients / users / applicants: Identification and contact data for example, but not limited to: name, surname, telephone number or email address, commercial information data, economic, financial data and / or payment terms ; Other type of data: contact data of people in the organization involved or related to the service object of the contract / request.
  • In the case of suppliers / collaborators: Business data, contact persons for administrative and operational management associated with the execution of the contract / project and workers who will carry out the contracted work in terms of coordination of business activities associated with prevention of occupational risks. If there are workers who will carry out the contracted jobs in terms of coordination of business activities associated with the prevention of occupational risks; Licenses or homologations, in the case of workers who will carry out the contracted work in terms of coordination of business activities associated with the prevention of occupational risks; Data of commercial information and homologation; Economic, financial data and / or collection conditions; Goods and services provided by the affected party, Financial transactions; Other type of data (specify): Name, surnames and NIF of legal representative, contact data of people of the organization involved or related to the project object of the contract / order.
  • In the case of data of candidates that provide their curriculum, the structure of the data treated would be, but not limited to, identification and contact data (address, contact telephone number and contact e-mail); Academic and professional data related to training, qualifications and professional experience; Personal data associated with marital status, family data, date and place of birth, age, sex, nationality; Work permit; Labor status data; Other data (Professional aspirations, Leisure and hobbies). To the extent that the candidate reports on a disability condition, certificates that prove this may be required.
  • In the case of registration of access and video surveillance: image of the people who access the facilities under the responsibility of the organization, time of entry and time of departure, where appropriate.

As a general rule, the data structure we deal with does not contain data regarding convictions and criminal offenses, nor especially protected data, except in cases where the owner is a beneficiary of special conditions and has to provide documentation that incorporates such information in order to that the fulfillment of said condition can be accredited or justified.

How do you store your personal data securely?

In relation to the processing of your personal data, we inform you that the Treatment Manager takes all the necessary measures to store your personal data in a private and secure way. Only authorized persons of AUXQUIMIA, authorized personnel of third parties directly hired by the Treatment Manager for the provision of services related to the treatment purposes or authorized personnel of companies related to AUXQUIMIA (who have the legal and contractual obligation to keep all the information of securely) have access to your personal data. All the staff of AUXQUIMIA that has access to your personal data is required to commit to respect the Privacy Policy of the person responsible for Processing and the data protection regulations and all Third Party employees who have access to your personal data that they sign. the confidentiality commitments in the terms established in the current legislation. In addition, contractually ensures that third-party companies that have access to your personal data keep them safe. To ensure that your personal data are protected, AUXQUIMIA has an IT security environment and takes the necessary measures to prevent unauthorized access.

The Treatment Manager has formalized agreements to ensure that we treat your personal data correctly and in accordance with current data protection regulations. These agreements reflect the respective roles and responsibilities in relation to you, and contemplate which entity is in the best position to meet your needs. These agreements do not affect your rights under the data protection law. For more information about these agreements, do not hesitate to contact us.

In relation to personal data that AUXQUIMIA may access as a result of the contracted services, we inform you that the provision of services covered by the contract may imply physical access by the staff of AUXQUIMIA to premises or facilities capable of storing personal data of those that the client is responsible for treatment. In this sense, AUXQUIMIA has signed with its personal clauses that prohibit access to all types of confidential information and, in particular, to personal data belonging to the client, unless the service contemplates in its scope the treatment of transfer, repair, destruction and / or management of computer media that could contain personal data, in which case, AUXQUIMIA would act as the person in charge of processing them, establishing in that case the relevant contract in accordance with the current data protection regulations that would contemplate, among other aspects, the object, duration, nature, purpose, category of the data subject to treatment, security measures, duties and rights of the manager, organizational and technical security measures to guarantee confidentiality during the process, as well as the agreements adopted between client and manager in relationship with the transmission of security breaches and / or exercise cicio de derechos. The non-formalization of the personal data processing service in a contract by the client presupposes that AUXQUIMIA has no associated responsibility as the person in charge of processing them.

However, the above in the event that you get to know any type of confidential information for the purpose of providing the service, is committed to keep secret about it, not disclose it or publish it, either directly, or through third parties or companies, or to make it available to third parties. This obligation of confidentiality is indefinite, subsisting upon termination of the contract for any reason. AUXQUIMIA undertakes to communicate and enforce the personnel under its charge and hired on its own, the obligations established in matters of confidentiality.

In relation to the video surveillance systems with which the facilities are under the responsibility of AUXQUIMIA, we inform you that AUXQUIMIA takes all the necessary measures to store your personal data in a private and secure way and will attend in any case to the provisions of Law 5 / 2014, of April 4, of Private Security and its development provisions. In this regard, it establishes and informs you of the following security measures:

  • DUTY OF INFORMATION: It is informed about the existence of the cameras and recording of images, in order to comply with the duty of information provided in article 12 of the RGPD through an informative device in a sufficiently visible place identifying the existence of the treatment, the identity of the person responsible and the possibility of exercising the rights set forth in articles 15 to 22 of the RGPD. A connection code or internet address to this information may also be included in the information device. In any case, AUXQUIMIA keeps available to those affected the information referred to in the aforementioned regulation in the Privacy Policy referenced in the aforementioned device. In the event that the flagrant commission of an illegal act has been caught, the duty to inform shall be deemed fulfilled when there is at least the informative video-surveillance device.
  • LOCATION OF THE CAMERAS: AUXQUIMIA will only capture images of the public road insofar as it is essential for the purpose of security preservation. In no case does AUXQUIMIA install sound recording or video surveillance systems in places intended for rest or recreation of workers or public employees, such as changing rooms, toilets, dining rooms and the like.
  • SOUND RECEPTION: AUXQUIMIA will only carry out the recording of sounds when the risks for the safety of the installations, goods and people derived from the activity developed in the workplace are relevant and always respecting the principle of proportionality, that of minimum intervention and guarantees.
  • LOCATION OF MONITORS: The monitors where the images of the cameras are displayed are located in a space of restricted access so that they are not accessible to unauthorized third parties.
  • CONSERVATION: The images / sounds captured by the video surveillance systems will be deleted within a maximum period of one month from their capture, except when they should be conserved to accredit the commission of acts that attempt against the integrity of persons, goods or facilities (in in which case, the images will be made available to the competent authority within a maximum period of 72 hours from when the existence of the recording was known), or are related to serious or very serious criminal or administrative infractions in matters of public safety , with a police investigation in progress or with an open judicial or administrative procedure (Instruction 1/2006, of November 8, of the AEPD, on the treatment of personal data for the purpose of surveillance through camera systems or video cameras and Art. .22 LOPDGDD) – 30 days.
  • LABOR CONTROL: The treatment is carried out for the exercise of the control functions of the workers envisaged, in Article 20.3 of the Workers’ Statute, within its legal framework and with the inherent limits to it. To the extent that the cameras can be used for the purpose of labor control as provided in Article 20.3 of the Workers’ Statute, the workers and their representatives are informed about the present control measures established by the employer with indication expresses the purpose of labor control of the images captured by the cameras, in accordance with what is indicated in the inclusion notification clause and in this privacy policy.
  • RIGHT OF ACCESS TO THE IMAGES: To comply with the right of access of the interested parties, a recent photograph and the National Identity Document of the interested party will be requested, as well as the detail of the date and time to which the right of access refers. The interested party will not be given direct access to the images of the cameras in which images of third parties are shown. To avoid affecting the rights of third parties, in the case of access request, we will proceed to issue a certificate in which, with the greatest possible precision and without affecting the rights of third parties, we specify the data that has been the subject of treatment. Eg “Your image was registered in our systems on the day ___ of the month of the year between _ hours and _ hours. In particular, the system registers its access and exit from the installation. “

Acceptance and changes in Privacy Policy

AUXQUIMIA reserves the right to make, at any time, any changes, variations, deletions or cancellations in the contents and in the form of presentation of the same that it deems appropriate, because we recommend that you consult our privacy policy whenever you consider it relevant. If you do not agree with any of the changes, you can exercise your rights according to the procedure described by sending an email to auxquimia@perimeter-group.com.

In compliance with the provisions of the personal data protection regulations, we treat the information you provide us during the relationship established with the organization (as well as the personal data of other persons you may provide) with the purposes specified in this Privacy Policy. In this sense, it declares to have been informed, to consent, as well as to inform and have the consent of third parties of those who provide us with personal data for such treatment.

With the acceptance and / or validation of the process that serves as the basis for the formalization of your relationship with AUXQUIMIA, you expressly consent to the processing of data in accordance with the provisions of the clause and additional information on data protection, as well as inform and have the consent third parties who provide us with personal data for such treatment. If you have checked the corresponding consent box, the legal basis for such purposes is your consent, which you can withdraw at any time.

Likewise, and to the extent that as a result of its relationship AUXQUIMIA can access personal data and / or confidential information, it is obliged to maintain absolute confidentiality and discretion on the information obtained about the activities, interested parties and entities related to AUXQUIMIA, especially in regard to Personal Data, even after the termination of your relationship with the organization.

We use our own and third-party cookies to improve our services and show you advertising related to your preferences by analyzing your browsing habits. If you accept this notice, we consider that you accept its use. You can change the configuration or get more information by visiting our Cookies Policy and our Privacy Policy .


ACEPTAR
Aviso de cookies