Cookies help us deliver our services. By using our services, you agree to our use of cookies.

Politica de Privacidad

PRIVACY POLICY:



 PRIVACY POLICY: RESPONSIBLE FOR THE TREATMENT The Responsible for the Treatment is PETUNIA SL, Cap, S / N, Cala Vadella, 07830, Sant josep de Sa Talaia (ILLES BALEARS). Privacy principles From PETUNIA SL we are committed to working continuously to protect privacy in the treatment of your personal data, and to offer at all times the most complete and clear information they can. We encourage you to read this section carefully before providing your personal data. If you are under fourteen years old, please do not provide us with your information without your parents' consent. In this section we inform you of how we treat the data of people who are related to our organization. Starting with our principles: - We do not request personal information, unless it is necessary to provide the services that we require. - We never share personal information with anyone, except to comply with the law, or we have your express authorization. - We will never use your personal data for purposes other than those expressed in this privacy policy. - Your data will always be treated with a level of protection appropriate to the legislation on data protection, and we will not subject them to automated decisions. We have drafted this privacy policy taking into account the requirements of the current data protection legislation: - Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons (RGPD). - Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights (LOPD). - Royal Decree 1720/2007, of December 21 (RLOPD). This privacy policy is written on December 6, 2018. Due to the modification of treatment criteria, in order to facilitate its understanding or to adapt the current legislation, we may modify this privacy policy. We will update the date of the same, so that you can verify its validity. TREATMENTS WE CARRY OUTEMPLOYEE TREATMENT Legal basis: RGPD: 6.1.b) Necessary treatment for the execution of a contract in which the interested party is a party or for the application at its request of pre-contractual measures. GDPR: 6.1.c) Treatment necessary for compliance with a legal obligation applicable to the controller. Royal Legislative Decree 2/2015, of October 23, which approves the consolidated text of the Workers' Statute Law. Treatment Purposes: - Management of contracted personnel. - Personal file. Time control. Training. Pension plans. Prevention of occupational hazards. - Issuance of staff payroll. - Management of union activity. Collective: Employees Data Categories: - Name and surname, DNI / CIF / Identification document, personnel registration number, Social Security / Mutuality number, address, signature and telephone. - Special categories of data: health data (sick leave, accidents at work and degree of disability, not including diagnoses), union affiliation, for the exclusive purposes of paying union dues (if applicable), union representative (in his case), supporting documents from their own and from third parties. - Personal characteristics data: Sex, marital status, nationality, age, date and place of birth and family data. Family circumstances data: Date of registration and cancellation, licenses, permits and authorizations. - Academic and professional data: Degrees, training and professional experience. - Details of employment and administrative career details. Incompatibilities. - Presence control data: date / time entry and exit, reason for absence. - Economic-financial data: economic data of payroll, credits, loans, guarantees, tax deductions, withdrawal of assets corresponding to the previous job (if applicable), judicial withholdings (if applicable), other withholdings (if applicable). . Bank data. Categories of Recipients: - Entity to whom the management of occupational risks is entrusted. - General Treasury of Social Security. - Union organizations. - Financial entities. - State Tax Administration Agency. - Primary contractors we serve as subcontractors. International Transfers: No international data transfers are foreseen. Deletion Period: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and from the data treatment. The economic data of this treatment activity will be kept under the provisions of Law 58/2003, of December 17, General Tax. Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation. CONTACT TREATMENT Legal Basis: Consent of the interested party Purposes of the Treatment: To attend to your request, send you information and monitor the request. Collective: Contact persons, clients, suppliers Data Categories: Name and surname, telephone, email address Recipient Categories: No transfer of data to third parties is contemplated. International Transfers: No international data transfers are foreseen. Deletion Period: Contact details will be kept for an indefinite period, or until the interested party requests their deletion. Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation. TREATMENT OF ATTENTION RIGHTS OF PERSONS (ARCO) Legal basis: RGPD: 6.1.c) Treatment necessary for compliance with a legal obligation applicable to the controller. General Data Protection Regulation. Purposes of Treatment: Address requests in the exercise of the rights established by the General Data Protection Regulation. Collective: Individuals who request it (employees, clients, suppliers, contact persons) Data Categories: Name and surname, address, signature and telephone. Categories of Recipients: They may be communicated to the Control Authority (Spanish Data Protection Agency) in the framework of an investigation for the protection of rights initiated by the interested party. International Transfers: No international data transfers are foreseen. Suppression Period: They will be kept for a period of five years from the moment of the request. Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation. TREATMENT OF CANDIDATES SELECTION PROCESSES (HR) Legal basis: RGPD: 6.1.b) Treatment necessary for the execution of a contract in which the interested party is a party or for the application at its request of pre-contractual measures. Treatment Purposes: Selection of personnel and provision of jobs. Collective: Candidates presented to procedures for the provision of jobs. Data Categories: - Name and surname, DNI / CIF / Identification document, personnel registration number, address, signature and telephone. - Personal characteristics data: Sex, marital status, nationality, age, date and place of birth and family data. - Academic and professional data: Degrees, training and professional experience. - Job detail data. Recipient Categories: No data transfers to third parties are foreseen. International Transfers: No international data transfers are foreseen. Term of Deletion: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and the treatment of the data. Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation. PROVIDER TREATMENT Legal basis: RGPD: 6.1.b) Treatment necessary for the execution of a contract in which the interested party is a party or for the application at its request of pre-contractual measures. GDPR: 6.1.c) Treatment necessary for compliance with a legal obligation applicable to the controller. Royal Legislative Decree 2/2015, of October 23, which approves the consolidated text of the Workers' Statute Law. Law 58/2003, of December 17, General Tax. Treatment Purposes: - Acquisition of products and / or services that we need for the development of our activity. - Control of subcontractors if applicable. Collective: - Suppliers. - Workers of our suppliers. Data Categories: - Name and surname, DNI / NIF / Identification document, address, signature and telephone. - Details of employment details: job title. Training in occupational safety. - Economic, financial and insurance data: Bank data. Recipient Categories: - Financial entities. (Payment of invoices) - State Tax Administration Agency. International Transfers: No international data transfers are foreseen. Suppression Period: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and the treatment of the data, in accordance with Law 58/2003, of 17 December, General Tax, Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation. CUSTOMER TREATMENT Legal basis: RGPD: 6.1.a) The interested party gave their consent for the processing of their personal data for one or more specific purposes. RGPD: 6.1.b) Necessary treatment for the execution of a contract in which the interested party is a party or for the application at its request of pre-contractual measures. GDPR: 6.1.c) Treatment necessary for compliance with a legal obligation applicable to the controller. RGPD: 6.1.f) Treatment necessary to satisfy the legitimate interests of the data controller. Royal Legislative Decree 2/2015, of October 23, which approves the consolidated text of the Workers' Statute Law. Law 58/2003, of December 17, General Tax. Treatment Purposes: Supply of our products / services Collective: Clients Data Categories: - Name and surname, DNI / NIF / Identification document, address, signature and telephone. - Economic, financial and insurance data: Bank data. Recipient Categories: - Financial entities. - State Tax Administration Agency. International Transfers: No international data transfers are foreseen. Suppression Period: They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and the treatment of the data, in accordance with Law 58/2003, of 17 December, General Tax, Security Measures: Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation. YOUR RIGHTS You have the right to request a copy of your personal data, to rectify the inaccurate data or to complete it if it is incomplete, or, where appropriate, to delete it, when it is no longer necessary for the purposes for which it was collected. You also have the right to limit the processing of your personal data and to obtain your personal data in a structured and readable format. You can object to the processing of your personal data in some circumstances (in particular, when we do not have to process it to comply with a contractual or other legal requirement, or when the purpose of the treatment is direct marketing). When you have given us your consent, You can withdraw it at any time. At that time we will stop processing your data or, where appropriate, we will stop doing it for that specific purpose. If you decide to withdraw your consent, this will not affect any treatment that has taken place while your consent was in force. These rights may be limited; For example, if to fulfill your request we had to disclose data about another person, or if you ask us to delete some records that we are obliged to maintain due to a legal obligation or a legitimate interest, such as the defense of claims. Or even in those cases where the right to freedom of expression and information must prevail.You can contact us by any of the means indicated in the Treatment Manager section of this privacy policy, providing a copy of a document that proves your identity (normally the DNI) .Another of your rights is that of not being the subject of a decision based solely on automated treatment, including the elaboration of profiles that produce legal effects or affect you. Against any violation of your rights, such as, for For example, if we have not responded to your request, you have the right to file a claim with the Data Protection Control Authority. This may be that of your country (if you live outside of Spain) or the Spanish Data Protection Agency (if you live in Spain). Additional Information Processing of your data outside the European Economic Area. For the indicated treatments we can use the services of the following providers outside the European Economic Area, but subject to the Privacy Shield agreement, approved by the data protection authorities of the European Union. Dropbox: More information: https://www.privacyshield.gov/participant?id=a2zt0000000GnCLAA0Facebook/ Instagram (FB Messenger): More information: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAACGoogle (Drive / Mail. ..): More information: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAIMicrosoft (Drive, Skype ...): More information: https://www.privacyshield.gov/participant?id=a2zt0000000KzNaAAKTwitter: Micro message social network More information: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=ActiveWhatsapp: Mobile instant messaging More information: https://www.privacyshield.gov/participant?id=a2zt0000000TSnwAAG Links to third party websites. Our website may, on some occasions, contain links to other websites. It is your responsibility to ensure that you read the data protection policy and the legal conditions that apply to each site. Third party data. If you provide us with data from third parties, you assume the responsibility of informing them previously as established in article 14 of the GDPR.