The protection of privacy and compliance with data protection regulations are a major concern for EPTISA SERVICIOS DE INGENIERÍA, S.L. (hereinafter “EPTISA”). Therefore, and to provide transparency in the processing of your personal data, we will explain below how we do it.
The user of the page (www.eptisa.com) hereinafter “the Web”, is informed about the processing of data provided to EPTISA through contact forms, those generated through navigation through the web and any other future ways, as well as data communications that could be made, all for the purposes indicated in this Policy.
Who is responsible for the processing of your personal data?
| IDENTITY OF THE DATA CONTROLLER | Eptisa Servicios de Ingeniería, S.L. |
| ADDRESS | Calle Emilio Muñoz, nº 35-37, C.P.28037, Madrid |
| CONTACT INFORMATION | dataprotection@eptisa.com |
What data do we keep?
EPTISA, through this Portal, obtains information about its Users. The data that are kept are:
- Identification data provided in the contact form on the Web.
- Identification, academic and professional data provided through the Job Offers published in the “Job Offers” section.
- In which sections of the web you enter and in general, the way to access and move around the Web.
- The date and time of access to the Web.
The user guarantees the accuracy and veracity of the personal data provided on the website and in the contact forms and job offers, undertaking to keep them duly updated and to inform EPTISA of any changes that may occur in them.
Likewise, EPTISA may process data of interested parties in other ways outside this Web Portal, such as in the files of customers or its own employees. Through this Policy, all types of interested parties are informed of how EPTISA treats their data.
EPTISA shall be governed, in matters of personal data protection, by the Regulation, in addition to the regulations and specific rules in force at all times in the country where the Company is established.
For what purposes do we process your personal data and on what basis do we do so?
EPTISA will process the data provided to us during the navigation and use of our Portal, as well as those collected through the corresponding form, and in its case of the customer loyalty cards for the following purposes and with the following legitimations:
| Purpose | Legitimation |
| Attend user requests or queries through EPTISA’s website. | Consent given by the user/stakeholder – art. 6.1 a) GDPRIn case of events where there is catering and may be asked about allergens, consent given by the interested party – art. 9.2 a) GDPRYou may revoke the consent given at any time by writing an email to dataprotection@eptisa.com indicating your intention to revoke the consent given. |
| Manage the resumes of those interested in job offers published on the web. | |
| Register you and/or manage your attendance, if applicable, to events and trainings. | |
| Where appropriate, sending promotional and/or commercial communications. | |
| To offer you a more personalized navigation and a better experience as a user of our website. | Satisfaction of legitimate interests, provided that such interests are not overridden by the interests or fundamental rights and freedoms of the data subject that require the protection of personal data – art. 6.1 f) RGPD. |
| Management of the data of signatories of contracts with the company. Management of the contact data of natural persons who provide their services in a legal entity. | Fulfillment of the contract signed with the data subject and the satisfaction of legitimate interests of the Company – Art 6.1 b) and 6.1 f) RGPD. |
| Send press releases and information to media contacts, agencies and magazines. | Satisfaction of legitimate interests, provided that such interests are not overridden by the interests or fundamental rights and freedoms of the data subject that require the protection of personal data – art. 6.1 f) RGPD. |
In the event that the User communicates personal data of third parties, EPTISA assumes that it has the necessary legitimacy to do so.
How long will we keep your personal data?
The personal data provided will be kept for the period of time determined on the basis of the following criteria: (i) legal obligation of conservation; (ii) duration of the contractual relationship and attention of any responsibilities derived from such relationship; (iii) request for deletion by the interested party in the cases in which it is appropriate; and (iv) revocation of the consent of the interested party in the cases in which it is appropriate.
The Entity undertakes to process and collect personal data:
- In a lawful, loyal and transparent manner,
- Adequate, relevant and limited to what is necessary,
- Accurately updated,
- For the time strictly necessary.
Likewise, the Entity undertakes to respect the guiding principles of Privacy by Design and by Default, as well as Proactive Accountability.
To whom may your data be disclosed?
We inform you that, as part of the fulfillment of the purposes directly related to our legitimate functions as a transmitter of information, your personal data may be transferred and/or communicated to other companies that may be involved in the management of your personal data in order to offer you the services of the Web in the most efficient and secure way possible.
Likewise, your personal data may be transferred to third parties that maintain a relationship of service provision with EPTISA and for whose activity is essential access to such information: by way of example and not limitation, services such as web hosting, data analysis, provision of infrastructure, and other similar services.
We will not transfer your personal data to third parties, unless we are obliged by law, a competent authority or are legally authorized to do so.
What are your rights as a data subject?
The rights that the User or interested party may exercise are those indicated below (the exercise of these rights is free of charge):
| Right of the interested party | Content of the right | Means of Application |
| Access | You may obtain confirmation as to whether EPTISA processes your personal data, as well as consult your personal data included in the Entity’s files. | You may exercise your rights by sending a written request to EPTISA Servicios de Ingeniería, S.L. Calle Emilio Muñoz 35 – 28037, Madrid – or by sending an e-mail to dataprotection@eptisa.com indicating in the request which right you wish to exercise. You should bear in mind that in order to exercise your rights you must attach a copy of your ID card or other document proving your identity.You should also bear in mind that EPTISA will reply to your request within the established legal deadlines and taking into account the current legal framework. |
| Correction | You will be able to modify your personal data when they are inaccurate, as well as complete those that are incomplete. | |
| Suppression | You may request the deletion of your personal data when, among other reasons, the data is no longer necessary for the purposes for which it was collected. | |
| Opposition | You may request that your personal data not be processed. EPTISA will stop processing the data, except for relevant legitimate reasons, or the exercise or defense of possible claims. | |
| Treatment limitation | You may request the limitation to the processing of your data in the following cases:§ As long as the contestability of the accuracy of your data is checked;§ When the processing is unlawful, the User opposes the deletion of his data, and requests the limitation of their use;§ When the Entity does not need to process the User’s data, but the User needs them for the exercise or defense of claims;§ When he has opposed the processing of his data for the fulfillment of a mission of public interest or for the satisfaction of a legitimate interest, while it is verified whether the legitimate reasons for the processing prevail over his own. | |
| Revocation of consent granted | You may revoke your consent at any time. | |
| Portability | You may receive, in electronic format, the personal data you have provided to us, as well as to transmit it to another entity. | |
| Likewise, if you consider that EPTISA has not treated your personal data in accordance with the applicable regulations, you may file a complaint with the Spanish Data Protection Agency through its website. However, please contact us beforehand through the channels indicated in order to be able to respond more quickly to your request and clarify any doubts that may arise. It is a priority for EPTISA to provide a quality service to all its users. | ||
Third party links
Our privacy policy does not apply to, and we are not responsible for, the privacy, information or other practices provided by third parties, including any third parties that may be displayed in search results and web pages accessed from this web application. The inclusion of a link on this Site does not imply endorsement of the linked web space, forum or application by us.
Applicable Law
The applicable law in case of dispute or conflict of interpretation of the terms that make up this Policy, as well as any question related to the services of this portal, will be the Spanish law.
The Entity assumes that the User is informed and accepts the conditions set forth above if he/she continues to browse the Portal, if he/she has been informed of the existence of the same by any means in a first informative layer and, if applicable, if he/she presses the “send”, “I accept” (or equivalent) button found on the data collection forms.
If you have any doubts, questions or recommendations regarding our privacy policy, please contact us by e-mail at the following address: dataprotection@eptisa.com.
