Privacy policy

Please read our Privacy Policy carefully before using our site.

General

The Data Controller is SafeMapp Protection S.L., Avenida de Cartagena 1, entresuelo, 03195, Elche (ALICANTE).

Privacy principles

At SafeMapp Protection S.L. we are committed to working with you continuously to guarantee privacy in the processing of your personal data, and to provide you with the most complete and clear information we can at all times. We encourage you to read this section carefully before providing us with your personal data.

If you are under fourteen years of age, please do not provide us with your data without parental consent. In this section we inform you about how we handle the data of people who have a relationship with our organisation. Starting with our principles:)

  • We do not ask for personal information, unless it is necessary to provide you with the services you request from us.
  • We never share personal information with anyone, except to comply with the law, or with your express permission.
  • We will never use your personal information for purposes other than those stated in this privacy policy.
  • Your data will always be treated with a level of protection that complies with data protection legislation and will not be subject to automated decisions.

We have written this privacy policy taking into account the requirements of current data protection legislation:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 regarding the protection of natural persons (RGPD).
  • Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights (LOPD).
  • Royal Decree 1720/2007, of December 21 (RLOPD).

This privacy policy is written on December 6, 2018.

On the occasion of the Modification of treatment criteria, in order to facilitate its understanding or to adapt it to current legislation, we may modify this privacy policy. We will update the date of it, so you can check its validity.

Treatments we carry out

TREATMENT OF EMPLOYEES

Legal Basis:

  • RGPD: 6.1.b) Treatment necessary for the execution of a contract in which the interested party is a party or for the application at the request of the latter of pre-contractual measures.
  • RGPD: 6.1.c) Necessary processing for the fulfillment of a legal obligation applicable to the data controller.
  • Royal Legislative Decree 2/2015, of October 23, approving the consolidated text of the Workers' Statute Law.

Purposes of Treatment:

  • Management of hired personnel.
  • Personal file. Time control. Training. Pension plans. Prevention of occupational hazards.
  • Issuance of staff payroll.
  • Management of trade union activity.

Group: Employees

Data Category:

  • Name and surnames, DNI/CIF/Identification document, personnel registration number, Social Security/Mutuality number, address, signature and telephone.
  • Special categories of data: health data (sick leave, work accidents and degree of disability, without including diagnoses), union affiliation, for the exclusive purposes of payment of dues trade union representatives (if applicable), trade union representative (if appropriate), proof of attendance of own and third parties.
  • Personal characteristics data: Sex, marital status, nationality, age, date and place of birth and family data. Data on family circumstances: Date of registration and withdrawal, licences, permits and authorizations.
  • Academic and professional data: Qualifications, training and professional experience.
  • Employment details and administrative career. Incompatibilities.
  • Presence control data: entry and exit date/time, reason for absence.
  • Economic-financial data: Economic data on payroll, credits, loans, guarantees, deductions tax, loss of salaries corresponding to the previous job (if applicable), legal withholdings (if applicable), other withholdings (if applicable). Bank details.
  • Categories of Recipients:

  • Entity entrusted with the management of occupational risks.
  • General Treasury of Social Security.
  • Trade unions.
  • Financial entities.
  • State Tax Administration Agency.
  • Main contractors to whom we provide services as subcontractors.

International Transfers: International data transfers are not planned.

Deletion period: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and from the processing of the data. The economic data of this treatment activity will be kept under the provisions of Law 58/2003, of December 17, General Tax. Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

CONTACT TREATMENT

Legal Basis: Consent of the interested party

Purposes of Treatment: Address your request, send you information and follow up on the request.

Group: Contact persons, customers, suppliers

Data Categories: Name and surname, telephone, email address

Categories of Recipients: Data transfers to third parties are not contemplated.

International Transfers: International data transfers are not foreseen.

Deletion Period: The contact data will be kept for an indefinite period, or until the interested party requests its deletion.

Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

PERSONAL RIGHTS CARE PROCESSING (ARCO)

Legal Basis:

  • RGPD: 6.1.c) Treatment necessary for the compliance with a legal obligation applicable to the data controller. General Data Protection Regulation.

Purposes of Treatment: Respond to requests in the exercise of the rights established by the General Data Protection Regulation.

Collective: Individuals who request it (employees, customers, suppliers, contact persons)

Data Categories: Name and surnames, address, signature and telephone.

Recipient Categories: They may be communicated to the Control Authority (Spanish Agency for the Protection of Data) within the framework of an investigation for the protection of rights initiated by the interested party.

International Transfers: No international transfers of data are planned.

Deletion period: They will be kept for a period of five years from the time of request.

Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

TREATMENT OF CANDIDATES SELECTION PROCESSES (HR)

Legal Basis:

  • RGPD: 6.1.b) Treatment necessary for the execution of a contract in which the interested party is a party or for the application at the request of the latter of pre-contractual measures.

Purposes of Treatment: Selection of personnel and provision of jobs .

Group: Candidates submitted to job provision procedures.

Data Categories:

  • Name and surnames, DNI/CIF/Identification document, pe registration number rsonal, address, signature and telephone.
  • Personal data: Sex, marital status, nationality, age, date and place of birth and family data.
  • Academic and professional data: Qualifications, training and professional experience.
  • Employment detail data.

Recipient Categories: Your data will be used in the selection processes of the Teralco group companies : Teralco Solutions SL, with CIF B42617829 and address at C/ Severo Ochoa 46, Planta 2, 03203, Elche (Alicante). Teralco Gestión SL, with CIF B42614982 and address at C/ Severo Ochoa 46, Planta 2, 03203, Elche (Alicante). Gexflow Solutions SL, with CIF B42617803 and address at C/ Severo Ochoa 46, Planta 2, 03203, Elche (Alicante). Devcenter SL, with CIF B42549303 and address at Av. de Cartagena, 1, 03195, El Altet- Elche (Alicante). Data transfers to third parties are not foreseen.

International Transfers: International data transfers are not planned.

Deletion period: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that could derive from said purpose and from the processing of the data.

Security Measures: Adapted to the requirements of Regulation (EU) 2016/679 , General Data Protection Regulation.

PROCESSING OF SUPPLIERS

Legal Basis:

  • RGPD: 6.1.b ) Treatment necessary for the execution of a contract in which the interested party is a party or for the application of pre-contractual measures at the request of the interested party.
  • RGPD: 6.1.c) Treatment necessary for the fulfillment of a legal obligation applicable to the data controller.
  • Royal Legislative Decree 2/2015, of October 23, approving the consolidated text of the Law of the Workers' Statute.
  • Law 58/2003, of December 17, General Tax Law.

Purposes of Treatment:

  • Acquisition of products and/or services that we need for the development of our activity.
  • Control of subcontractors, if applicable.

Group:

  • Suppliers.
  • Workers of our suppliers.

Data Categories:

  • Name and surnames, DNI/NIF/Identification document , address, signature and telephone.
  • Employment detail data: job position. Training in occupational safety.
  • Economic, financial and insurance data: Bank data.

Recipient Categories:

  • Financial entities. (Invoice payment)
  • State Tax Administration Agency.

International Transfers: International data transfers are not planned.

Deletion period: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and from the treatment of the data, in accordance with Law 58/2003, of December 17, General Tax.

Security Measures: Adapted to the requirements of Regulation (EU) 2016/679 , General Data Protection Regulation.

CUSTOMER TREATMENT

Legal Basis:

  • RGPD: 6.1.a) The interested party gave their consent for the processing of their personal data for one or more specific purposes .
  • RGPD: 6.1.b) Treatment necessary for the execution of a contract in which the interested party is a party or for the application of pre-contractual measures at the request of the interested party.
  • RGPD: 6.1.c) Processing necessary to comply with a legal obligation applicable to the data controller.
  • RGPD: 6.1.f) Processing necessary to satisfy the legitimate interests of the data controller.
  • Royal Legislative Decree 2/2015, of October 23, approving the revised text of the Workers' Statute Law.
  • Law 58/2003, of December 17, General Tax .

Purposes of Treatment: Development of custom software projects

Collective: Clients

Data Categories:

  • Name and surnames, DNI/NIF/Identification document, address, signature and telephone.
  • Economic, financial and insurance data: Bank data

Categories of Recipients:

  • Financial entities.
  • State Tax Administration Agency.

International Transfers: No international data transfers are planned.

Deletion Period: They will be kept during the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that could derive from said purpose and the processing of the data, in accordance with Law 58/2003, of December 17, General Tax,

Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

SECURITY BREACH NOTIFICATION PROCESSING

Legal Basis:

  • RGPD: 6.1.c) Processing necessary for compliance with a legal obligation applicable to the controller.
  • General Data Protection Regulation. Articles 33 and 34

Purposes of Treatment: Management and evaluation of security breaches that occur in our organisation. occurring in our organisation.

Collective: Variable: Employees, Customers, Suppliers, Contact Persons (depending on the security breach)

Data Categories: Variable. (It will depend on the security breach)

Recipient Categories:

  • Spanish Data Protection Agency.
  • State Security Forces and Corps.

International Transfers: No transfers are planned international of the data.

Deletion period: They will be kept for the time necessary to comply with the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and the treatment of the data. The provisions of the regulations on archives and documentation.

Security Measures: Adapted to the requirements of the Regulation (EU) 2016/679, General Data Protection Regulation.

TREATMENT OF SAFEMAPP USERS

Legal Basis:

  • RGPD: 6.1.a) The interested party gave his consent for the treatment of his data for one or more specific purposes.
  • RGPD: 6.1.b) Treatment necessary for the execution of a contract in the that he interested party is part or for the application at the request of the latter of pre-contractual measures.
  • RGPD: 6.1.c) Treatment necessary for the fulfillment of an obligation legal applicable to the responsible of treatment.
  • RGPD: 6.1.f) Treatment necessary for the satisfaction of interests legitimate of responsible for treatment.
  • Royal Legislative Decree 2/2015, of October 23, approving the text Consolidation of the Workers' Statute Law. Law 58/2003, of December 17, General Tax.

Purposes of Treatment: Provide the SafeMapp Service so that users users of the mobile application can request help, or help other users. Eventually, in the case of a complaint for the commission of a crime, collaborating with the Competent Security Forces. We keep anonymized statistical information in order to know the number of users of the app in each geographical area.

Collective: Users of the SafeMapp application.

Data Categories:

  • Username, email address.
  • GPS location: Our system records the positions of users that requesting help and of the users who provide the help, only during the time in that application remains open. We exclusively record the last position of each user with the purpose of that, when a person asks for help, to be able to locate the closest users that can provide that help. We do not keep the location history of each user, nor do we none profiling processing.

Categories of Recipients: Security forces, in case of commission of crimes.

International Transfers: No transfers are planned international of the data.

Deletion period: They will be kept for the time necessary to comply with the goal for which they were collected and to determine the possible responsibilities that may be could derive from said purpose and the processing of the data.

Security Measures: Adapted to the requirements of the Regulation (EU) 2016/679, Regulation General Data Protection.

Your rights

You have the right to request a copy of your personal data, to rectify inaccurate data or complete them if they are incomplete, or if applicable, delete them, when they are no longer necessary for the purposes for which that were collected.

You also have the right to limit the processing of your personal data and to obtain your personal data in a structured and readable format.

You can object to the processing of your personal data at some circumstances (in particular, where we do not have to process them to comply with a contractual or other legal requirement, or where the purpose of the processing is direct marketing).

When you have given us your consent, you can withdraw it at any time. At that time we will stop processing your data or, where appropriate, we will stop doing so for that specific purpose. If you decide to withdraw your consent, this will not affect any processing that took place while your consent was in force.

These rights may be limited; For example, if to fulfill your request we had to reveal data about another person, or if you ask us to delete some records that we are obliged to keep due to a legal obligation or legitimate interest, such as the exercise of defense against claims. Or even in those cases where the right to freedom of expression and information should prevail.

You can contact us by any of the means indicated in the section Responsible for Treatment of this privacy policy, providing a copy of a document that proves your identity (normally the DNI).

Another of your rights is not to be the subject of a decision based solely on automated processing, including profiling that produces legal effects or affects you.

In the face of any violation of your rights, such as, For example, if we have not responded to your request, you have the right to file a claim with the Control Authority regarding data protection. This can be your country (if you live outside of Spain) or the Spanish Data Protection Agency (if you live in Spain).

Additional information

Links to third-party websites

Our website may, on occasion, contain links to other websites. It is your responsibility to make sure you read the data protection policy and the legal conditions that apply to each site.

Third-party data

If you provide us with third-party data, you assume responsibility to inform them in advance as established in article 14 of the RGPD.