In accordance with the provisions of current legislation on data protection, the regulation (UE) 2016/679, of the European Parliament and the Council, of 27 April 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation of these data (From now on, GDPR), as well as in the Organic Law 3/2018, of 5 December, Data Protection and guarantee of digital rights (From now on, LOPD-GDD), The user is informed in accordance with the provisions of the articles 13 of the GDPR and 11 of the LOPD-GDD:

  1. RESPONSIBLE

Who is responsible for processing your data??

  • Company name: RADIA GUEDDOURA
  • CIF: Z0188575A
  • Home:  WITH CIVIL GUARDIA 16, VALENCIA 46020 VALENCIA
  • Email: CONTACT@SUERTELOCA.ES
  • Web page: WWW.SUERTELOCA.ES
  1. PURPOSE

For what purpose will we process your personal data??

RADIA GUEDDOURA processes your information to:

  1. Maintenance of the commercial relationship and provision of the contracted service.
  1. Making a budget adjusted to your needs.
  1. Manage email communications with interested parties.
  1. Carry out the company selection processes.
  1. Management of employees and human resources of the company.
  1. Sending commercial information linked to our sector:  GIFT SHOP
  1. Control the security of the facilities (video surveillance).
  1. Manage training activities

How long will we have your data?

The personal data you provide us will be kept as long as the current commercial relationship is maintained.. However, to have maximum transparency with you, we indicate that the general calculations with which we work are:

  • Generic identification data (email, name, surnames, telephone, etc.): for the duration of the business relationship or until consent is revoked. In any case, They will be eliminated when they are not going to be used for the purpose for which they were collected..
  • Law on Infractions and Sanctions in the Social Order (membership obligations, high, lows, price, payment of salaries…); Arts. 66 and on. General Tax Law (accounting books…): four (4) years.
  • Personal actions without special deadline (article 1964 Civil Code): cinco (5) years
  • Accountant, tax and labor (article 30 Commercial Code – accounting books, invoices…): six (6) years.
  • Labor: contracts, journey records, salary and contribution receipts, identification documents, four (4) years; in the case of occupational risk prevention reports, illness or accident records, contracts with prevention services, cinco (5) years.
  • Data subject to the Law on the Prevention of Money Laundering and Financing of Terrorism (article 25): diez (10) years.
  • Selection processes: of the (2) years from the delivery of the curriculum vitae.
  • Video surveillance: thirty (30) days, except recording of an infraction and/or crime.
  • In addition, given the sending of commercial information, even if the relationship between the parties ends, The person responsible will continue to keep your information for the sending of newsletters linked to our products and services[1]. You can always exercise the rights recognized by current regulations by contacting us through the means that is most convenient for you..
  • Disaggregated and anonymized data: no deadline

Despite the existence of these general deadlines, We inform you that we will periodically review our systems to proceed to eliminate data that is not legally necessary..

  1. LEGITIMATION

What is the legitimacy for the processing of your data??

According to the purposes of collecting our data, the processing of your data is necessary:

  1. Manage the commercial relationship that you have signed and contracted with us.
    1. Execution of a contract (enabled by article 6.1.b GDPR)
    2. Consent of the interested party (inhabited by article 6.1.a GDPR)
  1. Making a budget adjusted to your needs.
    1. Execution of a contract and/or pre-contractual relationship (enabled by article 6.1.b GDPR)
  1. Manage email communications with interested parties.
    1. Consent of the interested party (inhabited by article 6.1.a GDPR)
    2. Legitimate interest (enabled by article 6.1.f GDPR)
  1. Carry out the company selection processes.
    1. Consent of the interested party (inhabited by article 6.1.a GDPR)
  1. Management of employees and internal human resources of the company
    1. Contractual execution (enabled by article 6.1.b GDPR)
  1. Sending commercial communications
    1. Consent of the interested party (enabled by article 6.1. GDPR)
    2. Consent of the interested party (enabled by article 20 LSSICE)
    3. Legitimate interest (enabled by article 6.1.f GDPR and 21.2 LSSICE)
  1. Control the security of the facilities (video surveillance)
    1. Legitimate interest (enabled by article 6.1.f GDPR)
  1. Manage training activities
    1. Execution of a contract (enabled by article 6.1.b GDPR)
    2. Consent of the interested party (inhabited by article 6.1.a GDPR)

In addition, All data collected is necessary for the provision of the service. Nevertheless, those data that are marked with an asterisk (*) will be mandatory. In the event that the mandatory data were not provided , the person responsible will not be able to provide you with the contracted service.

Finally, We inform you that only people over the age of 10 may provide personal data on this website. 14 years. As required by the LOPD and GDD, in case of minors 14 years, The consent of your parents or guardians will be a mandatory condition so that we can process your personal data..

Besides, Only people over the age of 10 will be able to hire our services. 18 years. In case of minors 18 years, The consent of your parents or legal guardians will be a mandatory condition so that we can provide the services offered., unless the minor is emancipated.

  1. RIGHTS THAT ASSIST THE INTERESTED PEOPLE

What rights do I have regarding data protection??

In accordance with the provisions of the articles 13 RGPD y 11.2.c) Lopdgdd, You can exercise any of the following rights by notifying us at the postal address C/ GUARDIA CIVIL 16, VALENCIA 46020 VALENCIA or to the email address CONTACT@SUERTELOCA.ES . In any case, According to current regulations, you have the following rights recognized in accordance with what is contained in the articles 15 a 22 GDPR and 12 a 18 Lopdgdd:

  • Right to request access to personal data relating to the interested party.
  • Right to request rectification or deletion.
  • Right to request limitation of processing.
  • Right to object to treatment.
  • Right to portability.

You can request the forms from the Controller to exercise your rights., through the email address indicated in the data of the person responsible. Additionally, You can file a claim with the Spanish Data Protection Agency (AEPD). More information in Section VII of this document.

  • RECIPIENTS

To which recipients will your data be communicated?

You will always be informed and, when appropriate, Your express consent will be requested to transfer your personal data or make international transfers in accordance with current regulations. (arts. 13.1.e) y 44 GDPR, as well as art. 11.1 y 40 Lopdgdd 3/2018). For this reason, We inform you that the third parties with which the Controller works have their servers located within the EU., EEA or Switzerland, having adequate security measures to guarantee adequate and confidential data processing.

Outside of the aforementioned cases and except for legal obligation, Your data will not be transferred or communicated to any third party., except in the cases legally provided or when strictly necessary for the provision of a service. In a generic way, The data may be transferred to:

  • Technology service providers.
  • Payment service providers.
  • Courier and parcel companies.
  • Third parties or intermediaries, as service providers, that operate in our own name (management, advice, self-employed collaborators…).
  • Third parties in charge of treatment, collaborators or with a close commercial relationship with the person responsible for the exclusive purpose of providing our services.

Data transfers will occur respecting the strictest confidentiality, using the necessary measures, such as signing confidentiality contracts, or adherence to their privacy policies established on their respective websites. The User may refuse to transfer their data to the Data Processors., by written request, by any of the aforementioned means. The person responsible will not transfer or communicate your data to any third party., except in the cases legally provided for or when the provision of a service implies the need for a contractual relationship with a Data Processor.. So, The User accepts that some of the personal data collected be provided to these Data Processors. (paid platforms, management, intermediaries, etc.), when necessary for the effective performance of a contracted service or purchased product. The User also accepts that, in case of provision of services, these can be, totally or partially, subcontracted to other people or companies, who will be considered Data Processors, with whom the corresponding confidentiality contract has been agreed, or adhered to their privacy policies, established on their respective web pages. The User may refuse to transfer their data to the Data Processors., by written request, by any of the aforementioned means.

  • ORIGIN OF YOUR DATA

How have we obtained your data?

The personal data you use RADIA GUEDDOURA come from the interested party himself, thus complying with the provisions of the articles 13 GDPR and 11 LOPDGDD already mentioned, or of group companies or collaborators, about which you can obtain more information by writing to the email address CONTACT@SUERTELOCA.ES or in the office of the Controller at the postal address indicated in this document.

What categories of data do we handle??

The categories of personal data that are processed:

Identification data

Name

Surnames

DAYS / NO / Passport or equivalent document

Postal addresses

Electronic addresses

Sex

Birthdate

place of birth

Contact phone (mobile / fixed)

Commercial information: own and third parties

Economic data

Bank account number

Credit Card Number

Curriculum vitae

Academic data

Qualifications

Hobbies

Membership in associations or clubs

Video surveillance

Image

The processing of sensitive data will be carried out in accordance with the provisions of the articles 9 GDPR and 9 Lopdgdd, In all cases, informing the interested party about what data will be used by the person responsible..

  • ADDITIONAL INFORMATION
  • Security measures: Users of the website of the person responsible are informed that security measures have been adopted, technical and organizational measures at our disposal to avoid the loss, misuse, disturbance, Unauthorized access and data theft, and thus guarantee confidentiality, integrity and quality of the information contained therein, in accordance with the provisions of current regulations on data protection. The personal data collected in the forms are subject to processing, only, by the staff of the person responsible or the designated Data Processors. The Website also has SSL encryption that allows the User to securely send their personal data through the website's contact or registration forms..
  • Social networks: The data controller has a profile on some of the main social networks on the Internet. (Facebook, Instagram), recognizing itself in all cases as Responsible for the processing of the data of its followers, fans, subscribers, commentators and other User profiles (From now on, followers) published by the person in charge.

The purpose of data processing by the controller, when the law does not prohibit it, will be to inform your followers about your activities and offers, by any means that the social network allows, as well as providing personalized customer service to the User. The legal basis that legitimizes this treatment will be the consent of the interested party., which may be revoked at any time.

In no case will the person responsible extract data from social networks, unless the User's consent to do so was promptly and expressly obtained. (For example, to hold a contest).

  • Confidentiality: The information provided by the User will have, in any case, the consideration of confidential, without it being able to be used for purposes other than those described here.. The person responsible undertakes not to disclose or reveal information about the User's claims., the reasons for the advice requested or the duration of your relationship with it.
  • Veracity of the data: The User declares that all the data provided by him is true and correct and undertakes to keep it updated.. The User will be responsible for the veracity of their data and will be solely responsible for any conflicts or litigation that may arise due to their falsehood.. It is important that, so that we can keep personal data up to date, The User informs the person responsible whenever there has been any modification in them..
  • Documentation made by LegalDPO (https://legaldpo.es/), based on the information provided by the Data Controller. The content complies with the regulations in force in February of the year 2023, may vary according to legislative changes or jurisprudential criteria., It is the obligation of the owner to verify the validity of the regulations at all times..
  • CONTROL AUTHORITY

We make every effort to comply with data protection regulations as it is the most valuable asset for us.. Nevertheless, We inform you that in the event that you understand that your rights have been diminished, You can file a claim with the Spanish Data Protection Agency (AEPD), located at C/ Jorge Juan, 6. 28001 – Madrid. More information about the AEPD. http://www.agpd.es/. Documentation carried out by LegalDPO. https://legaldpo.es/