PREFABRICATS PUJOL, S.A.U. would like to inform users of the website about its policy on the processing and protection of user and customer personal data.
It guarantees that at all times it will respect and uphold in full the obligations under the data protection and information society services regulations: Regulation (EU) 2016/679 of the European Parliament and of the Council, dated 27 April 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data (GDPR), Spanish Organic Law 3/2018, dated 5 December, on Personal Data Protection and the guarantee of digital rights (LOPDGDD for its Spanish abbreviation) and Spanish Law 34/2002, dated 11 July, on Information Society Services and Electronic Commerce (LSSICE for its Spanish abbreviation).
DATA CONTROLLER
PREFABRICATS PUJOL, S.A.U.
Tax Identification Code: A25015140
Registered in the Mercantile Registry of Lleida, Folio 112, Volume 85 General, Book 57, Sheet a89
PUJOL ELEMENTS, S.A.
Tax Identification Code: A43013309
Registered in the Mercantile Registry of Lleida, Folio 203, Volume 1157 General, Sheet L-22977
Address: Carretera de Miralcamp, Km.1, 25230 Mollerussa (Lleida)
Telephone No.: (+34) 973 60 11 00
Email: lopd@prefabricadospujol.com
In other words, PREFABRICATS PUJOL, S.A.U. and PUJOL ELEMENTS, S.A. are Joint Data Controllers. This means that we have made arrangements and are jointly responsible for processing and protecting your data.
PURPOSE OF THE DATA PROCESSING
The data provided by the User are used for the different purposes set out below:
Purpose of the processing | Legal basis for the processing |
Handling of queries or any type of request that may be made through the contact forms provided on the website. | Legitimate interest of the Company in responding to information requests received through the website. Express consent provided at the time the data are collected through website forms. |
Sending of newsletters, commercial notifications and promotions. | Express consent provided at the time the data are collected through website forms. |
Handling of the staff selection process and the relationship as job candidate. | Express consent provided at the time the data are collected through website forms. |
Creating and managing your registration as User. | Creating and managing your registration as User. |
Managing website incidents and maintenance. | Legitimate interest of the Company. |
DATA RETENTION PERIOD
Purpose of the processing | Retention period |
Handling of queries or any type of request that may be made through the contact forms provided on the website. | Managing website incidents and maintenance. |
Sending of newsletters, commercial notifications and promotions. | We will process your data until you unsubscribe. |
Handling of the staff selection process and the relationship as job candidate. | We will process your data for a maximum of 24 months. |
Creating and managing your registration as User. | We will process your data for as long as you remain a registered user (i.e., until you decide to cancel). |
Managing website incidents and maintenance. | We will process your data for the time necessary to comply with the statute of limitation periods that apply to them. |
RECIPIENTS OF THE DATA
To fulfil the purposes specified in this Privacy Policy, we must allow access to your personal data by the third parties (Data Processors) who provide support for us in the services we offer you with.
The Data Processors, for the execution of a contract or provision of a service to the Controller, must follow its instructions and ensure the same security levels.
STAFF SELECTION PROCESSES
The data provided though the “Send your CV” form will be processed by ASEPSA PUJOL, S.A.U. as joint data controllers. This means that we process and protect your data jointly.
RIGHTS OF USERS
The user has the right to:
- Request access to their personal data that are being processed and receive that information in writing through the method requested.
- Request the rectification of inaccurate personal data or, where appropriate, request their deletion when, among other reasons, the data are no longer necessary for the purpose for which they were collected.
- Request the restriction of the processing of their data.
- Object to the processing of their personal data where appropriate, in which case their data will only be processed for legitimate purposes.
- The right to the portability of their personal data when the processing is based on consent and is carried out automatically. The data will be provided in a structured format for common use and computerised reading.
- Right to revoke the consent given.
- Right to complain to the Spanish Data Protection Agency.
The User may exercise the rights set out above by sending a letter or email to the address of the Controller, identifying themselves through a scanned copy of their Spanish National Identification Document or equivalent document and specifying the right that they wish to exercise.
SOURCE OF DATA
The personal data will be provided by the data subjects themselves on an entirely voluntary basis. Any failure to provide certain data or answer questions raised during the registration processes or in the different electronic forms presented to the User may prevent access to certain services which can only be provided with the personal data. In this case the Controller shall notify of the requirement and/or need to provide the personal data for operation of the service.
The Controller guarantees Users the confidentiality of their personal data and guarantees their security, adopting the measures necessary to prevent their alteration, loss, processing or unauthorised access.
INFORMATION PROVIDED BY THE USER
Minors under the age of 18 cannot provide their personal data without the prior consent of their parent(s) and/or legal guardians.
Users, by entering their data in the contact forms or including them in the downloadable forms, expressly, freely and unequivocally accept that their data are necessary for the Controller to respond to their request, the inclusion of data in the remaining fields being voluntary.
The User guarantees that the personal data provided are accurate and accepts responsibility for notifying of any changes to them.
All the data requested through the website are necessary for the provision of the best possible service to the User. If not all the data are provided, the Controller cannot guarantee that the information and services it provides will be completely adapted to their needs.
SECURITY MEASURES
In accordance with the provisions of the current personal data protection regulations, the Controller complies with all the provisions of the GDPR and LOPDGDD regulations for the processing of personal data for which it is controller, which are processed lawfully, fairly and transparently in relation to the data subject and are suitable, relevant and restricted to what is necessary in relation to the purposes for which they are processed.
The Controller guarantees that it has implemented the appropriate technical and organisational policies to apply the security measures established in the GDPR and LOPDGDD in order to protect the rights and freedoms of Users and that it has communicated to them the appropriate information they need to exercise these.
SECURITY BREACHES
The Controller shall notify, within 72 hours of detecting a breach, each and every one of the people whose data may have been affected and the authorities of any security breach affecting the database used by this website or that affects any of our third-party services.
APPLICABLE LEGISLATION AND JURISDICTION
It reserves the right to lodge the civil or criminal actions that it deems necessary if there is any misuse of the Website and Contents.
The relationship between the User and the Controller will be governed by the current regulations applicable on Spanish territory. For any disputes relating to the interpretation and/or application, the parties will submit their conflicts to the ordinary jurisdiction, submitting to the corresponding judges and courts specified by law.