1. USER INFORMATION
in accordance with the provisions of Regulation (EU) 2016/679 of 27 April 2016 (RGPD) and Organic Law 3/2018 of 5 December on the Protection of Personal Data and guarantee of digital rights, you are informed of the identity of the Data Controller, the purpose of the processing, the legitimacy for the processing of your data, the categories of recipients of transfers of your data (if any), the origin of your data processed if this is different from your voluntary submission and the rights that you have as a data subject.
2. INFORMATION CONCERNING THE CONTROLLER
Nombre del Responsable: GABINETE DE ARQUITECTURA Y CONSTRUCCIÓN 3000, S.L.
CIF : B61378204
Full address: ST. SENECA, NUM. 11, BAIXOS – 08006 BARCELONA (Barcelona)
Registered in the Mercantile Register of Barcelona, Volume 29831 folio 47 page B-162273.
Telephone: 93 321 12 12
3. INFORMATION CONCERNING THE PURPOSE AND LEGITIMACY OF PROCESSING
The operations envisaged to carry out the processing are: In the legitimate interest of the Data Controller:
Economic and accounting management, tax management, administrative management, invoicing management, customer and supplier management, management of collections, payments and related services, history of commercial relations.
By express, unambiguous and informed consent of the data subject:
Selection of candidates for employees and collaborators.
Sending commercial advertising communications by email, fax, SMS, MMS, social communities or any other electronic or physical means, present or future, that enable commercial communications to be made. These communications will be made by the RESPONSIBLE and will be related to its products and services, or those of its partners or suppliers with whom it has reached a promotional agreement. In this case, third parties will never have access to personal data.
Receipt via the web and subsequent processing of CVs of those interested in forming part of the Head’s workforce.
Conduct statistical studies.
To process orders, requests or any type of request made by the user through any of the forms of contact made available to them.
Send out the website newsletter.
Data retention criteria: Data will be retained for the duration of the business relationship between the parties. Once this commercial relationship has ended, the data will be blocked in order to prevent the possibility of access, being unblocked only in the event that such data were required to the Data Controller by any legal authority (tax, commercial, labour or judicial) and this only until the legal expiry or prescription date. They are subsequently destroyed in an appropriate manner and with adequate safeguards to ensure that they cannot be recovered.
4. INFORMATION CONCERNING THE TRANSFER OR COMMUNICATION OF DATA Personal data may be transferred for the maintenance of the commercial relationship and/or for the execution of operations, to Tax, Accounting and Commercial Consultants, Banks, Savings Banks and Financial Institutions, Tax Bodies and other competent Public Bodies. The data will not be communicated to other third parties, unless legally obliged to do so. No data are transferred to third countries outside the European Economic Area or to International Organisations.
5. INFORMATION ON THE DATA SUBJECT’S RIGHTS AND HOW TO EXERCISE THEM
Rights of the User and how to exercise them:
The data subject has the right to: Access to their data, to have their data rectified, to have their data deleted, to data portability, to limit the processing of their data, to object to the processing of their data, to withdraw the consent given, to lodge a complaint with the Supervisory Authority, to lodge a judicial appeal.
You may exercise these rights by sending a reasoned letter to the Data Controller or his representative, specifying the right you wish to exercise, accompanied by a photocopy of your identification document. You may also ask the Data Controller in advance to provide you with a standard form for the right you wish to exercise.
The exercise of rights shall not entail any administration costs for the interested party, except for the cost of postage if he/she chooses to send it by post. You may exercise your rights:
In person at the premises of the Data Controller, identifying yourself with your ID card or equivalent document. By sending an e-mail to the address given in the section on the identification of the Data Controller and enclosing a photocopy of your ID card or equivalent document. By post (preferably registered) to the address given in the section on the identification of the Data Controller and enclosing a photocopy of your ID card or equivalent document.
Contact details for exercising your rights:
ST. SENECA, NUM. 11, BAIXOS – 08006 BARCELONA (Barcelona), firstname.lastname@example.org
6. MANDATORY OR OPTIONAL NATURE OF THE INFORMATION PROVIDED BY THE USER
Users, by ticking the corresponding boxes and entering data in the fields marked with an asterisk (*) in the contact form or presented in download forms, expressly and freely and unequivocally accept that their data are necessary for the provider to deal with their request, the inclusion of data in the remaining fields being voluntary. The User guarantees that the personal data provided to the RESPONSIBLE is true and is responsible for communicating any modification of the same. The RESPONSIBLE expressly informs and guarantees users that their personal data will not be transferred under any circumstances to third parties, and that whenever any type of transfer of personal data is carried out, the express, informed and unequivocal consent of the Users will be requested beforehand. All data requested through the website are mandatory, as they are necessary for the provision of an optimal service to the User. If not all data is provided, there is no guarantee that the information and services provided will be completely tailored to your needs.
7. SECURITY MEASURES
That in accordance with the provisions of the regulations in force on personal data protection, the RESPONSIBLE is complying with all the provisions of the GDPR regulations for the processing of personal data under its responsibility, and manifestly with the principles described in Article 5 of the GDPR, whereby they are processed lawfully, fairly and transparently in relation to the data subject and in a manner that is adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed. The RESPONSIBLE guarantees that it has implemented appropriate technical and organisational policies to apply the security measures established by the GDPR in order to protect the rights and freedoms of the Users and has communicated the appropriate information to them so that they can exercise them.