Privacy Policy
The protection of privacy and compliance with data protection regulations are of great concern EPTISA SERVICIOS DE INGENIERÍA, S.L. (hereinafter “EPTISA” or the “Company”), therefore we inform you, through this Policy, how we process your personal data.
The user of the website www.eptisa.com (hereinafter “the Web” )is informed of the processing of data supplied to EPTISA, through: contact forms; those generated through browsing the website and any other future means; as well as data communications that may be made to the Company by different means, all for the purposes indicated in this Policy.
A. Who is the Data Controller?
DATA CONTROLLER IDENTITY | Eptisa Servicios de Ingeniería, S.L. |
ADDRESS | Emilio Muñoz Street, nº 35-37 P.C. 28037, Madrid |
EMAIL ADDRESS |
B. What type of personal data do we process?
EPTISA, through this Web, obtains information about its users. The following personal data will be processed:
- Identifying data provided in the contact form of the Web;
- Identifying, academic and professional data provided through the Job Offers published in the section “Job Offers” or “Ofertas de trabajo”.
- How the user access and move around the Web and in which sections of the website clicks.
- The date and time of access to the Web.
The user guarantees the accuracy and veracity of the personal data provided and undertakes to keep them duly updated and to inform EPTISA of any variation that may occur in them.
EPTISA does not accept to receive information or personal data from third parties provided by the user. Therefore, in the event that the user communicates personal data from third parties, EPTISA assumes that the user has the necessary legitimacy to do so.
C. For what purposes do we process your personal data and on what basis do we do so?
EPTISA will treat the data provided to us during the navigation and use of our Portal, as well as those collected through the corresponding form, and where appropriate, the customer loyalty cards for the following purposes and with the following legitimations:
Purpose | Lawfulness of processing |
Manage the resumes of people interested in job offers published on the web | Consent given by the data subject – art. 6.1 a) GDPR In case of events where there is catering, and the data subject can be asked for allergens, consent given by the data subject – art. 9.2 a) GDPR The data subject may withdraw his/her consent at any time by sending an email to dataprotection@eptisa.com. |
Register you and/or manage your attendance, where appropriate, to events and trainings. | |
Where appropriate, sending promotional and/or commercial communications. |
|
Offer you a more personalized navigation and a better experience as a user of our website. | Processing is necessary for the purposes of the legitimate interests pursued by the Company, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data – art. 6.1 f) GDPR. |
Answer to user requests or queries via the EPTISA website. | |
Management of the data of signatories of contracts with society. | Processing is necessary for the performance of a contract to which the data subject is party and is necessary for the purposes of the legitimate interests pursued by the Company – Art 6.1 b) & f) GDPR. |
Management of the contact details of natural persons who provide their services in a legal person. | |
Send press releases and information to media contact persons, agencies and magazines. | Processing is necessary for the purposes of the legitimate interests pursued by the Company, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data – art. 6.1 f) GDPR. |
In case the User communicates personal data of third parties, EPTISA assumes that it has the necessary legitimacy to do so.
D. How long will we store your data?
In any case, they shall be kept for a certain period of time on the basis of the following criteria: (i) legal obligation for EPTISA to retain the data; (ii) duration of the relationship and consultations with the user; and (iii) request for deletion by the data subject in appropriate cases; and, if the case, (iv) withdraw of the data subject consent.
In addition, EPTISA undertakes to process and collect personal data:
- In a lawful, fair and transparent manner,
- In an appropriate, relevant and limited way,
- Exactly updated.
- For as long as is strictly necessary.
EPTISA also undertakes to respect the principles of Privacy by design and by default, as well as the accountability principle established in the data protection regulations.
E. Will we share your data with third parties outside EPTISA?
We inform you that your data may be processed by third parties outside EPTISA in two circumstances: (i) a processing order from EPTISA to a service provider, or (ii) a transfer of data to third parties by a legal obligation or by request of an Authority.
The Controller may have service providers who may process your personal data for the proper provision of their services such as, but not limited to: maintenance of the website, management of events, website hosting, data analysis, infrastructure provision, and other similar services.
The processing of data carried out by these third parties will be done to comply with the purposes of the Controller and being legitimate to do so based on a Data Processing Agreement (DPA) signed between the provider and The Controller.
We will not give your personal data to third parties unless we are required to do so by law, a competent authority or are legally entitled to do so.
F. What rights do you have with regard to the processing of your data?
The data subject may exercise his/her rights according to the following information, and with regard to the limitations of the rights included in the data protection regulations:
Rights of the data subject | Content | Ways of request |
Access | Right to obtain from the Controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to that personal data. | The data subject may exercise his/her rights by sending a communication to the attention of EPTISA to the following address Emilio Muñoz street, nº 35-37 (28037), Madrid or by sending an e-mail to dataprotection@eptisa.com In any case, the data subject shall indicate which right is exercising and if the case, the needed additional information You must bear in mind that in order to exercise your rights you must attach a copy of your ID or other document proving your identity. You should also bear in mind that EPTISA will respond to your request within the established legal deadlines and taking into account the current legal framework. |
Rectification | Right to obtain from the controller the rectification of inaccurate personal data concerning him or her. | |
Erasure | Right to obtain from the controller the erasure of personal data concerning him or her in certain circumstances. | |
Right to object | Right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on the performance of a task carried out in the public interest or in legitimate interests pursued by the controller. | |
Restriction of processing | The data subject shall have the right to obtain from the controller restriction of processing where one of the following applies:
| |
Withdraw of the given consent | The data subject shall have the right to withdraw his or her consent at any time. | |
Portability | The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller. | |
Likewise, if you consider that EPTISA has not processed your personal data in accordance with the applicable regulations, you may submit a complaint to the Data Protection Agency through its web site www.aepd.es. However, we kindly ask you to contact us prior to making a complaint, through the channels indicated, in order to be able to deal more quickly with your request and clarify any doubts that may arise. If you exercise your rights, it is possible that your data will remain blocked at the disposal of the competent authorities, in accordance with the data protection regulations, to attend to the possible responsibilities arising from the processing. For any additional questions about how we treat your data, please contact us at dataprotection@eptisa.com |
G. Third party links
Our privacy policy does not apply, and we are not responsible for the privacy, information or other practices provided by third parties, including any third parties that may be displayed in search results and web pages accessed from this web application. The inclusion of a link on this website does not imply endorsement of the linked website, forum or application by us.
H. Applicable law
The applicable law in case of dispute or conflict of interpretation of the terms that conform this Policy, as well as any question related to the services of the Web, will be the Spanish law.
The Company assumes that the user is informed and accepts the conditions established above if you continue browsing the Web, if you have been informed of the existence of the same by any means in a first informative layer and, where appropriate, if you press the button “send”, “I accept” (or equivalent) found in the data collection forms.
If you have any doubts, questions or recommendations regarding our privacy policy, please send an e-mail to the following address: dataprotection@eptisa.com