Privacy Policy
Information on the Personal Data Protection Regulations:
We inform you that our entity complies with European and Spanish data protection regulations (RGPD 679/2016 and LOPD-GDD 3/2018). That is why your personal data will be treated only to relate to us, to meet your requests, to send you commercial communications and provide you with our services. Your data will be kept as long as this relationship exists, we are required by law and to meet any liabilities arising from such treatment. Your data will not be transferred to third parties unless we are required by law, or it is essential to provide our services or meet your requests. When you wish, you can contact us to oppose the processing of your data, know what data we have about you, limit their use, rectify or delete them, you have the right to request the transfer of your information to another entity and to exercise any of these rights, do it in writing to our company, by email to [email protected], attaching a photocopy of your ID to identify you. If you understand that your rights have been disregarded, you can complain to the Spanish Data Protection Agency, at C/ Jorge Juan, 6, 28001 Madrid or at www.aepd.es.
Digital Rights:This e-mail is sent according to the sender's schedule and time management criteria. If you receive it during your rest period, please read and attend to it during your working hours.
Confidentiality:
The entire contents of this e-mail are secret and may not be disclosed to third parties. If you receive this email in error, please inform us and destroy it.
Cibersecurity:
Check if the sender is trustworthy and carefully analyze the need to open attachments or links.
1. Purpose
The purpose of this Privacy Policy is to disclose how we collect, process and protect the personal data that you as a User have provided to us, through our website or blog (hereinafter Website) and freely decide whether you want us to treat them.
It also aims to comply with the General Regulation on the protection of personal data 2016/679 (hereinafter RGPD) and the Organic Law 3/2018 on the protection of personal data and guarantee of digital rights (hereinafter LOPDGDD).
2. Identification of the Data Controller / Information Society Services Provider
Identity - Entity | MISTRAL BUSINESS SOLUTIONS, S.L.U. |
CIF/NIF | B98539083 |
Adress | Av. Corts Valencianes, 26, Bl. 5, Es.1, Entr. 2, Of. 1, CP 46015 Valencia. Spain |
Phone | 961 48 69 16 |
[email protected] | |
Corporate Social Purpose | Computer Consulting |
Website | https://www.mistralbs.com/ |
Registry details | Inscribed in Registro Mercantil de Valencia, Tomo 9633, Libro 6915, Folio 49, Hoja V-154049 |
3. Processing of personal data
The personal identification and contact data that you have provided us, through our contact forms, email, etc., will be treated confidentially and only by personnel authorized by our company.
All categories and types of personal data processed will be duly identified in the corresponding processing activities owned by our company.
4. Purpose
In general, the purpose of the processing of personal data carried out by our company is to maintain the relationship with different groups of people, such as our customers, suppliers, our staff, job applicants, users of our website/blog or social networks and interested parties in general who contact our company through our web forms, email, telephone or in person.
Such treatment is intended to comply with the maintenance of the existing relationship with each group of people. Depending on this relationship, the treatment of your data obeys to different purposes as it may be to respond to requests for information, complaints, claims and others that proactively send us the interested parties, also to comply with our contractual, commercial, legal obligations or for the attention to the exercise of rights.
If you are a customer or supplier, your personal data will be processed for the sole purpose of maintaining the business, contractual or commercial relationship, either for the provision of services, for accounting and billing management, or other purposes to which we are obliged to fulfill such relationship.
We do not send advertising without the prior consent of the interested parties, except to our customers with a current relationship and always about services or products related to those already provided or purchased.
If you are a potential customer or an information requester, we will process your data exclusively to attend your requests, including in our reply commercial information related to your request.
If you are a job applicant, we will process your data to include you in our selection processes and job vacancies.
The purposes that motivate the processing of personal data will be duly identified in the corresponding processing activities owned by our company.
5. Legitimation
The processing of your personal data by our company is carried out on the following legitimate bases:
a. Your express, free, informed and unequivocal consent, since we inform you of this privacy policy that after reading it and if you agree, you can voluntarily authorize us to process your data by checking the boxes provided for this purpose on our forms.
In this regard, we inform you that at any time you can change your mind and withdraw your consent by contacting our postal address or by e-mail.
b. The fulfillment of the commercial or contractual relationship with you, in case you are a customer, supplier or part of our staff.
c. To comply with our legal obligations.
If the user is under 14 years of age, it will be necessary to have the consent of parents, guardians or legal representative, to treat their data.
The user is solely responsible for the accuracy of the data he/she sends us.
6. Data Retention
The personal data provided will be kept for the time necessary to fulfill the purpose for which they are collected, for the time required by law and as long as necessary to purge possible liabilities arising from the processing mentioned in the purposes.
In the case of job applications, data will be kept for a maximum period of one year or until the interested party asks us to delete their data.
7. Profiling
We do not create profiles using your personal data, but if we do, we will inform you and ask for your prior permission to do so.
Anyway, you have the right to object to this type of treatment at any time.
8. Transfer of data
As a rule, our company does not transfer personal data to third parties, although there may be cases where this is necessary:
If you are a customer or supplier, your personal data may be transferred to third parties by legal obligation (e.g. Tax Agency), or in those cases entities necessary to provide our services or pay invoices (e.g. banks).
Also, your personal data as a customer or supplier may be processed by certain suppliers to whom we delegate some of our obligations (e.g. accountants). All of them have committed, by means of a data processor contract, to comply with the same security measures implemented by our company, as well as to submit to the duty of secrecy and confidentiality of the personal data processed, among other obligations regarding the protection of personal data.
If you are a job applicant, your data may be transferred to other companies in our group, although we will request your authorization to do so.
If you are an information seeker or user of our website, your data will not be transferred to third parties, unless we are legally obliged to do so.
In case of transfers to other entities or to other countries outside the EEA, we will inform you and ask for your prior express consent.
9. Security Measures
Our entity has implemented all the necessary technical and organizational measures to protect the personal data processed, preventing its loss, theft or unauthorized use.
Dichas medidas se han creado en función del tipo de datos tratados y las finalidades que motivan dicho tratamiento. Estas son verificadas periódicamente en nuestros controles internos de cumplimiento de la normativa de protección de datos personales y mediante auditorías externas.
10. Rights of the interested parties
You have the right to know if our entity is processing your personal data; therefore, you have the right to access your data, rectify it if it is inaccurate or request its deletion when the data is no longer necessary, if it is legally possible.
You can also exercise your right of opposition, limitation or portability if you deem it appropriate you can do so in writing by email to [email protected], attaching a copy of your ID to provide identification.
If you have any suggestions or questions about the processing of your personal data, you can contact our data protection consultants, indicating the name of our company or trade name:
BUSINESS ADAPTER, S.L.
Ronda Guglielmo Marconi, 11, 26, (Parque Tecnológico) 46980 Paterna (Valencia).
E-mail: [email protected]
Form of attention to the interested party
If the person who wishes to exercise their rights is under 14 years of age, they may do so through their parents, guardians or legal representative.
If you want to make a claim for understanding that your rights have been violated, you can do so before the Spanish Data Protection Agency, C/ Jorge Juan, 6, 28001 Madrid or at www.aepd.es.
11. Commitment to Personal Data Protection
Scope of application
Our commitment to the protection of personal data will be mandatory for all departments, employees of our company and those acting on our behalf.
Object
We have established protocols for the processing of personal data, in accordance with the provisions of European and Spanish regulations on data protection.
Principles
Lawfulness, Loyalty, Transparency, Minimization of data, Accuracy, Limitation of the conservation period, Integrity, Confidentiality and Active responsibility.
Special category of data
The processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, the processing of genetic or biometric data, data concerning health or data concerning sexual orientation is prohibited, except in the legally authorized exceptions and with the prior consent of the data subject.
User rights
Data subjects shall have the right of access to their personal data, as well as the right to rectify them when they are inaccurate, to delete them when they are no longer necessary or when their processing is no longer desired, to limit them to certain processing, to have the possibility to receive their data easily and in structured and commonly used formats from the data controller, as well as to have their data used for profiling purposes and to object to the processing at any time.
Register of Activities, Impact Assessment and Security Measures
Our company will keep a record of processing activities and analyze the purposes of processing, categories of data subjects and data, recipients, international transfers, storage periods, etc., to assess the risks of processing and implement the necessary security measures to ensure the confidentiality, integrity and availability of personal data.
We have also analyzed the need to prepare an Impact Assessment and appoint a Data Protection Delegate, establishing, if necessary, that the person appointed to this position has sufficient knowledge and experience in accordance with the provisions of current legislation.
Control
We also have external consultants who monitor any publication made by the competent control bodies and other European and Spanish entities related to data protection regulations, to comply with these regulations at all times.
12. Updating of this Policy
Our entity reserves the right to modify this Policy without prior notice. Therefore, we recommend that you consult it every time you visit our website.
Updated on October 19, 2022