logotype
logotype

Unique Digital Ideas for Successful Business

CONTACT US

SUBSCRIBE

Our expertise, as well as our passion for web design, sets us apart from other agencies.

Privacy Policy

flecha derecha
flecha izquierda

PRIVACY POLICY

DATOS IDENTIFICATIVOS DEL RESPONSABLE DEL TRATAMIENTOIDENTIFICATION DATA OF THE CONTROLLER

  • Controller: FRANCISCO JAVIER AUTRAN PARDO (AUTRAN CONSULTORES)
  • NIF: 32786987-G
  • Business address: Avenida de Galicia, 209 – 24411 – Ponferrada (León)
  • Phone: 646 180 191
  • Email: info@autranconsultores.com
  • Activity developed: Data protection consultancy and advisory services

INFORMATION TO USERS

In accordance with the European Data Protection Regulation (EU) 2016/679 and with Organic Law 3/2018 on Protection of Personal Data and Guarantee of Digital Rights, this privacy policy informs users about the policy that will be applied for the processing of information with personal data that may be provided by users when using the means of contact indicated on the website, a phone number and an e-mail address.

The data controller informs the data subjects that, as the applicable legislation prescribes, they will apply to the processing activities of personal data that could be carried out the appropriate technical and organizational security measures, which have been implemented following the relevant risk analysis process.

This privacy policy will apply to all users of the website, whether or not they are customers, in compliance with a principle of transparency and the duty of information contained in the applicable regulations.


WHAT PERSONAL DATA IS COLLECTED?

Users are informed that there are no contact forms or registration systems on the web, so that no information with personal data is collected directly through the site. The sole purpose of this privacy policy is to inform about the policy that will be applied for the treatment of information with personal data that may be provided by users who communicate using the telephone number and/or the address of mail-Please contact us, but we also recommend reading this policy to all who access the site to be informed in an appropriate and complete way.

Below is a description of the types or categories of personal data that could be requested from users to contact using the means enabled on the web, and that the data will be strictly necessary to respond to queries and/or requests for information or requests for a budget: telephone numbers, e-mail addresses, first names, surnames and ID cards, business and/or tax addresses, data on training and professional experience.

No data will be collected that are unnecessary or not necessary for answering queries or requests for information or budgets made or for the development and management of contracted services.


FOR WHAT PURPOSE WILL THE PERSONAL DATA THAT MAY BE COLLECTED BE PROCESSED?

The personal data that may be provided by the interested parties who communicate using the means of contact enabled on the website will be processed for specific purposes in each case and in accordance with what is indicated below.

Data obtained through the enabled contact channels: there is a telephone and a contact email to make queries, requests for quotations, suggestions or for the professional contact with the site manager. In this case the data collected will be processed in order to respond by phone or email to requests or queries received and send the information required by the user, and only the data strictly necessary to comply with the specific request will be collected.

Data recorded in connection with the processing and management of the contracting of services: in this case the strictly necessary personal identification and contact data will be requested and in order to enable the contracting of services requested by the user.

Data recorded for sending commercial communications: commercial communications will only be sent to those users who have expressly requested it, and in this case the data provided by the user will be used for the sole purpose of managing the sending of information related to the specific commercial communications requested, as well as facilitating the revocation of the consent previously given by the user for the communications to be sent to him, or his opposition to the processing of his data for the indicated purposes.


WHAT IS THE LEGAL BASIS FOR PROCESSING THE DATA COLLECTED?

The legal basis of legitimation that allows us to perform the processing of personal data that could be provided by users who communicate using the means of contact indicated on the website is supported under the conditions indicated in art.6 GDPR and as such is specified below.

In relation to requests for information on services developed and requests for budgets, the basis of legitimation shall be the adoption of pre-contractual measures at the request of the interested parties (art. 6.1.b GDPR) and the consent of the data subjects for the processing of their data for one or more specific purposes (art. 6.1.a GDPR) in those cases in which this was necessary.

In relation to customer requests, the processing of data will be based mainly on the execution of a contract to which the data subject is a party and the adoption of pre-contractual measures (art. 6.1.b GDPR), and additionally in the fulfilment of obligations applicable to the owner of the website (art. 6.1.c GDPR) and in the consent of the data subjects for the processing of their data for one or more specific purposes (art. 6.1.a GDPR) in cases where this was necessary to legitimise the treatment.

In the case of sending commercial communications to the user, the legal basis for the processing of their data will be based on the express and informed consent of the data subject (art. 6.1.a GDPR), collected and granted in accordance with the conditions indicated in art. 7 GDPR, according to which data subjects shall have the right to withdraw at any time such prior consent.

With regard to the implementation of the appropriate technical and organisational security measures necessary for the protection of personal data recorded and compliance with the applicable general and sectoral regulations, the basis of legitimation shall be based on compliance with legal obligations applicable to the website owner (art. 6.1.c GDPR) and, where appropriate, on the legitimate interest of AUTRAN CONSULTORES (art.6.1.f GDPR).


HOW LONG WILL WE KEEP THE PERSONAL DATA COLLECTER?

The personal data that could be provided by the interested parties that communicate using the means of contact enabled on the website will be treated in general as long as the data is needed to respond to the query or request received, as long as the formal service relationship is maintained and the data are needed for the execution of the specific services contracted by the user, and until the deletion of the data is requested by the user or the previously granted consent to perform those data treatments that would have required it is revoked, such as those relating to the sending of commercial communications on request.

With respect to the personal data provided by users, the specific limitation periods provided for by the applicable law shall apply in each case, with a generic period of 5 years for personal actions without a special time limit, 6 years for invoices and accounting records and 10 years for the provisions of the Law on Prevention of Money Laundering and Financing of Terrorism (art.25). During the limitation periods indicated, the data shall be kept in custody and available to the competent authorities and public administrations, and blocked in the event that their deletion is requested, and once the applicable limitation periods have expired, the data will be deleted.


QUALITY OF DATA PROVIDED BY STAKEHOLDERS

Data subjects are advised that, unless there is a sufficiently proven legal representation, no user may use the identity of another person and communicate their personal data, so that users of the website should take into account that they can only communicate to AUTRAN CONSULTORES personal data of their own and that they are appropriate, relevant, accurate, up-to-date and true.

Users shall be liable for direct and indirect damages caused to third parties or to the website controller by the use of personal data of another user, or by the use of their own personal data if they are false, erroneous, inappropriate, improper or outdated.

Users who communicate personal data of third parties must have an informed consent of the third party and in accordance with the provisions of this Privacy Policy, and will be liable to the owner of the site and to the third party, exempting the website owner from any liability in this regard.


WHAT RIGHTS CAN THOSE WHO PROVIDE YOUR DATA EXERCISE?

In accordance with the European Data Protection Regulation (EU) 2016/679 and Organic Law 3/2018 on Protection of Personal Data and Guarantee of Digital Rights, data subjects shall have the right to obtain confirmation as to whether or not we are processing personal data concerning them and to exercise the rights recognised by the applicable rules on their data.

The persons concerned shall in particular be entitled to:

  • Request access to personal data concerning you

  • Request rectification and/or deletion of data

  • Request limitation of data processing

  • Object to the processing of data

  • Request the portability of data

In the event that the data subject has given his consent for a specific purpose, he shall have the right to withdraw the previously granted consent at any time, and without affecting the lawfulness of treatments based on the consent given prior to their withdrawal (art.7.3 GDPR).

If If the data subjects consider that their personal data have not been processed in accordance with the above-mentioned rules, and if they understand that their request for exercise of rights has not been satisfied, may submit a complaint to the Spanish Data Protection Agency as a national supervisory authority at the address of the organisation at Calle Jorge Juan, 6 – 28001 – Madrid or at the contact points indicated on the institution’s website (www.aepd.es), including the electronic headquarters https://sedeagpd.gob.es/sede-electronica-web/.

For the exercise of all the rights indicated above, the interested parties may use the above contact addresses to request the application form provided by the website owner for this purpose and in compliance with their legal obligations, form which the person concerned must accompany when presented or sent with a copy of his ID or equivalent document proving his identity and that of his representative where applicable. The exercise of the rights will be free, and the request can be delivered by hand to the responsible, or sent by post or by mail to the contact addresses indicated.

The data controller informs the data subjects that it has established and implemented specific protocols and measures for compliance with the data protection regulations of theRegulation (EU) 2016/679 of the European Parliament and of the Council (General Data Protection Regulation) and Organic Law 3/2018 on Protection of Personal Data and Guarantee of Digital Rights. Specific physical and logical access control measures are applied to minimize the risks associated with the registration and storage of information with personal data of interested third parties.


USER RIGHTS IN RELATION TO COMMERCIAL COMMUNICATIONS

AUTRAN CONSULTORES informs that users who have expressly authorized the sending of commercial or promotional communications via e-mail, or any other means of communication equivalent or similar, shall have the right to object to the processing of your personal data for commercial or promotional purposes, as well as the right to revoke the consent previously granted for that purpose, with the simple notification to the responsible in this regard and by sending an e-mail to info@autranconsultores.com.


TO WHICH RECIPIENTS COULD YOUR DATA BE COMMUNICATED?

The personal data provided by the users will only be processed in general by the website manager and by authorized own staff or freelance collaborators who may have hired, who shall be required to enter into a corresponding confidentiality commitment and to comply with the duty of secrecy with regard to the personal data to which they may have access in the performance of their duties.

Transfers of data to third parties will only be carried out in cases expressly authorised by the interested parties themselves and in cases of legal obligation, as in the case of transfers to authorities and public administrations, State security forces and bodies, and courts and tribunals.

The website manager undertakes in any case to inform the interested parties about the need to make extraordinary data transfers to third parties to manage the provision of services so that the interested parties can express their consent to the transfer of data as a prerequisite for the transfer.


INTERNATIONAL DATA TRANSFERS

There will be no international data transfers outside the territory of the European Union unless the express consent of the interested parties is available and under the protection of the international conventions in force at all times, of standard contractual clauses and/or binding corporate rules ensuring compliance with European data protection policies on privacy, confidentiality and data security.


SECRECY AND DATA SECURITY

AUTRAN CONSULTORES is committed to the proper use and treatment of users’ personal data, respecting their confidentiality, and to use these in accordance with the purpose of such processing that has been communicated, as well as to comply with its obligation to keep the data and to take all measures provided to prevent alteration, loss, processing or unauthorized access, and in accordance with the provisions of current data protection regulations.

The responsible cannot guarantee the absolute impregnability of the Internet network and therefore the violation of the data through fraudulent access to them by third parties.

Regarding the confidentiality of data processing, AUTRAN CONSULTORES will ensure that any person who is authorized to record and process customer and/or user data, including staff, collaborators and suppliers, is under the corresponding obligation and commitment of confidentiality, either legal or contractual.

When a security incident occurs, once AUTRAN CONSULTORES becomes aware of it it will notify without undue delay those concerned who have been affected and provide timely information related to the security incident.


ACCURACY AND VERACITY OF DATA

The user is solely responsible for the veracity and accuracy of the personal data that he sends and provides through the contact channels indicated on the website, exonerating AUTRAN CONSULTORES of any responsibility in this regard. Users guarantee and respond, in any case, to the accuracy, veracity, validity and authenticity of the personal data provided, and undertake to keep them duly updated. The user agrees to provide complete and correct information through the contact channels indicated on the website.


CHANGES TO THE PRIVACY POLICY

AUTRAN CONSULTORES reserves the right to modify this privacy policy to adapt it to legislative or jurisprudential developments, as well as industry practices. In such cases, changes will be announced on the website in good time before implementation.


Privacy Policy updated on May 16, 2023.