GLOBOMAIL, SL (Hereinafter “Company”) wishes to inform customers and users of its website, the policy pursued for treatment and protection of personal data of those who voluntarily use the forms for information, contact or signing up for any of the services offered throughout this web portal, which requires the communication of personal data.
This policy is adapted to the new (UE) 2016/679 Regulation, known as GDPR (General Data Protection Regulation). Proceed to detail:
1. Identification of the controller.
GLOBOMAIL, SL (Hereinafter “Company”) domiciled in Seville, Spain, in Avda. Constitución, 34, 41001, provided with the CIF number B- 91240911 and registered in the Registro Mercantil de Sevilla. Is the only responsible of the management, administration and custody of all personal information.
2. Update policies
3. Purpose of the file.
The company does not request data on its Web site users to visit it, therefore, the communication of personal data by the user to the company via their website can only be understood to take place when they voluntarily use the services of test, the forms of contract or request for information to the company. All these forms announce the application of the new GDPR, providing briefly but enough information the user may need.
The data processing is performed for the following purposes: To carry out if all efforts related to the processing of high recruitment and provision of services and address and answer the submissions received, the maintenance of trade relations and historical information on commercial offerings and industry news related to the company.
The company has provide users, at the moment of filling the forms, with all demandable means so the user is completely aware of who, how and for what reason will treat its personal information. Furthermore, an actively expressed consent is required, being impossible to fill in the form otherwise. When the user sends an email or communication to the company, stating other personal data, that user will be giving their free, unequivocal, specific, informed and expressly for the treatment of personal data by the company for the purposes set forth above, as well as meeting their communication or send documentation.
To the same end, the company reports that, if the client sends an email or communication to the company’s personal information because of their position in a company, whether as administrator, manager, agent and / or other charges as contact person within the firm, it is understood that such communication involves the provision of free, unequivocal, specific, informed and express consent to the processing of personal data by the company for the purposes set forth above, as well as answering their communication or send documentation.
The user’s consent not only include transferring their personal data to the Company but to third-parties the company works with too: the final telecommunication services provider, hosting, CRM and email manager. This statement about third-parties is developed in the following chapter 5.
5. Identification of third-parties which will have access to the data.
Identification of the third-party recipients the company intends to make cessions or provide access to data:
- Public Administration in those cases in which will be requested due to the valid legislation in each matter at each moment, and equally, to other government organs.
- Email management services, at the present Google through its different tools
- CRM services, at the present with Zoho
- Data storage and hostage services
- Dialoga SA, final provider of the telecommunication service, as well as the other companies related to the group.
The company informs the user and the client that any treatment of personal data is subjected to the active legislation in Europe in the matter of data protection, established by the present GDPR. Therefore, the company is only responsible for and only guarantees the confidentiality of the personal data requested through this web portal, with no responsibility to the treatment and later uses of the personal data, third-parties providers of the company’s services may do with the information they have access to for the purpose of providing their services or performing their activity. Likewise, the company do not assume the responsibility of the data treatment third-parties may carry out, which may establish hyperlinks to the company neither of those who remit hyperlinks to the visitors.
6. Data Quality
The company warns users that, unless the existence of a legally constituted representation, any user can use the identity of another person and communicate your personal data, so the user must at all times bear in mind that can only include data for their own personal identity and that adequate, relevant, timely, accurate and true. To this end, the user is solely liable for any direct and / or indirect damage caused to third parties or the company, using another person’s personal data, or your own personal data when they are false, erroneous, not current, inadequate or irrelevant.Also the user to use the personal data of a third party liable to him for reporting requirement in Article 5.4 of the Data Protection Act for when personal data have not been obtained from the concerned and / or the consequences of failing to inform him.
7. Exercise of the following rights by the user:
- Right of access: the right to be informed and to request access to the user’s data we manage.
- Right of rectification: the right to request the modification in terms of correction or update of the data, for being incorrect or incomplete.
- Right of elimination: The right to request the elimination of all the personal data.
- Right of restriction: The right to request a restriction of the user’s data, either temporarily or permanently.
- Right of Data portability: the right to request a copy of all the data in an electronic format and concede them to a third-party so they can be used, as requested by the user.
- Right to object. the right to request an objection to the processing of the personal data.
- Right to not be subjected to automatized decision making: the right to not be subjected to the creation of profiles, when the decision could have a legal effect for the user or generate a similar effect.
The company informs the user of the possibility to exercise their rights sending an email to the address email@example.com and indicating “Personal Data Modification” as the subject of the email, or through a written application addressed to the following address: Sevilla, España, Avda Constitución, 34 – 41001.
8. Use forms to collect personal data
The company includes in all its forms a brief text which however collect all the fundamental elements for the user to understand who will manage the data, how will do it, for what purposes and with who will share it. It is mandatory for the user to check the box of consent to this data protection policy, becoming an expressed consent.
The collected personal data will remain stored as long as it is necessary for the purpose they were collected for and ultimately, as long as there is a contractual or commercial correlation. All of this unless any of the rights of modification, elimination, restriction or objection discussed before are exercised.
10.Security measures in relation to the processing of personal data.
The company informs the user that, in accordance with the provisions of the Data Protection Act and the Regulation of Security Measures, has adopted the necessary technical and organizational measures to ensure the security of personal data and prevent tampering, loss, unauthorized access or treatment, given the state of technology, the nature of the data stored and the risks they are exposed. Also the company provides the user with the duty of professional secrecy of personal data of users and the duty to save them.
The company reserves the right to amend this policy to adapt to future legislative or case law, as well as industry practices, informing users of changes that may occur. The company also reserves the termination of services, in those users who do not meet the legal terms and conditions.