Privacy Policy

In the exercise of these responsibilities, and in order to establish the general principles that should govern the processing of personal data in the Organization, CERRAJERIA GENTO S.L. approves this Policy protection of personal data, which notifies and makes available to all its stakeholders, also respecting the following rules:

1. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (GDPR).

2. Organic Law 3/2018, of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights (LOPD-GDD).

3. Law 34/2002, of 11 July, on Information Society and Electronic Commerce Services (LSSI-CE).

This Personal Data Protection Policy will be applicable to CERRAJERIA GENTO S.L., to its administrative bodies, management and staff, as well as to all persons related to the Organisation, with expressly including service providers with access to data ("Data Processors").

The person in charge of the treatment of the personal data collected in the Organization is: CERRAJERIA GENTO S.L., provided of NIF: B53102984, whose representative is: LUIS EGIDO GREGORI (hereinafter, Responsible for the treatment). Its contact details are as follows:

Address: AVDA. ANDALUCIA, S/N. URB COLONIA XALOC, Nº 5, BENIDORM, ALICANTE, 03031

Contact telephone: 965850088

Contact email: cerrajeriagento@gmail.com

The Personal Data Protection Policy is a measure of Proactive Responsibility, which aims to ensure compliance of the applicable legislation in this area and in relation to this, respect for the right to honour and privacy in the processing of personal data of all persons who are related to CERRAJERIA GENTO S.L..

In development of the provisions of this Policy, it is established which are the Principles governing the processing of data in the organisation and in consequence, the procedures and organisational and security measures that the persons affected by this Policy undertake to implement in their area of responsibility.

In relation to the above, CERRAJERIA GENTO S.L. will ensure compliance with the following principles:

• Lawfulness, loyalty, transparency and purpose limitation.

The data processing must always be informed to the affected person, by means of established clauses and procedures; and it will only be considered legitimate if there is consent for the data processing (with special attention to the consent given by minors), or it has another valid legitimation , and the purpose of the same is in accordance with the applicable regulations.

• Data minimisation.

The data processed must be adequate, relevant and limited to what is necessary in relation to the different purposes of the processing.

• Accuracy.

The data must be accurate and, if necessary, kept up to date. In this respect, shall take the necessary measures to ensure that personal data that are inaccurate with respect to the purposes of the processing are deleted or rectified without delay.

• Limitation of the storage period.

The data will be kept in such a way as to allow the identification of the data subjects for no longer than is necessary for the purpose of the processing in question.

• Integrity and Confidentiality.

Personal data will be processed in such a way as to ensure appropriate security, including protection against unauthorised or unlawful processing, and against accidental loss, destruction or damage, by implementing appropriate technical or organisational measures. .

• Transfer of data.

It is forbidden to purchase or obtain personal data whose origin comes from illegitimate sources, or in those cases in which said data have been obtained or transferred in contravention of the law or where their legitimate origin is not sufficiently guaranteed

• Contracting suppliers with access to data.

Only suppliers that offer sufficient guarantees to apply appropriate technical and security measures in the processing of data shall be chosen for contracting. With these, the appropriate contract shall be documented at in this respect.

• International data transfers.

Any processing of personal data subject to the regulations of the European Union that involves a transfer of data outside the European Economic Area must be carried out in strict compliance with the requirements established in the applicable law.

• Rights of data subjects.

The Organisation will facilitate to the affected persons, the exercise of the rights of access, rectification, suppression, limitation of the treatment, opposition and portability, establishing for this purpose the internal procedures, and in particular, the models that for its exercise are necessary and opportune, which will have to satisfy, at least, the legal requirements applicable in each case.

CERRAJERIA GENTO S.L. will promote that the principles included in this Policy of protection of personal data are taken into account:

1. In the design and implementation of all work procedures
2. In the products and services offered
3. In all contracts and obligations that formalize or assume and
4. In the implementation of all systems and platforms that allow access of its workers or third parties and/or the collection or processing of personal data.

Respecting the provisions of articles 8 of the RGPD and 7 of the Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights, only those over 14 years of age may give their consent for the processing of their personal data in a lawful manner by CERRAJERIA GENTO S.L.. In the case of a minor under 14 years of age, the consent of the parents or guardians will be necessary for the treatment, and this will only be considered lawful to the extent that they have authorised it.

CERRAJERIA GENTO S.L. undertakes to notify the user, without undue delay, when there is a breach of security of personal data that is likely to pose a high risk to their rights and freedoms. In accordance with Article 4 of the GDPR, a breach of security of personal data shall mean any breach of security resulting in the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or the unauthorised disclosure of or access to such data.

Personal data will be treated as confidential by the Controller , who undertakes to inform and to ensure by means of a legal or contractual obligation that such confidentiality is respected by its employees, associates, and any other person to whom it makes the information accessible.

For the above, we express that the workers of CERRAJERIA GENTO S.L., are informed of this Policy, and declare aware that personal information is an asset of CERRAJERIA GENTO S.L., and in this regard adhere to it, pledging to the following:

• To carry out the awareness training in Data Protection that CERRAJERIA GENTO S.L. puts at their disposal.

• Apply the security measures at user level that apply to their job, without prejudice to the responsibilities in its design and implementation that could be attributed to them depending on their role within CERRAJERIA GENTO S.L.

• Use the forms established for the exercise of Rights by of the affected users, and inform CERRAJERIA GENTO S.L. immediately, so that the response can be effective.

• Inform CERRAJERIA GENTO S.L., as soon as they become aware of deviations from what is established in this Policy, in particular "Security breaches of the data".

CERRAJERIA GENTO S.L. will carry out an annual verification, evaluation and assessment , as well as every time there are significant changes in the processing of data, of the effectiveness of the technical and organisational measures to guarantee the security of the processing.