Privacy policy

 

PRIVACY POLICY

 

SISTEMES ELECTRÒNICS PROGRÉS, S.A. is committed to protecting the privacy of users who access this website and/or any of its services. The use of the website and/or any of the services offered by SISTEMES ELECTRÒNICS PROGRÉS, S.A., implies the acceptance by the user of the provisions contained in this Privacy Policy and that their personal data will be processed as stipulated. Please note that, although there may be links from our website to other websites, this Privacy Policy does not apply to other companies or organisations to which the website is redirected. SISTEMES ELECTRÒNICS PROGRÉS, S.A. does not control the content of third-party websites nor does it accept any type of responsibility for the content or privacy policies of these websites.

 

1) OWNER INFORMATION

In compliance with Article 10 of Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce, the Owner's identification details are set out below:

 

Web:

http://www.progres.es/

Holder:

SISTEMES ELECTRÒNICS PROGRÉS, S.A.

Domicile:

Polígon Industrial, C/ de la Coma, 2 25243 - El Palau d'Anglesola

C.I.F.:

A25038449

Telephone:

973320429

Email:

info@progres.es

Registry data:

Registered in the Mercantile Registry of Lleida, Folio 87 of Book 168 of Companies, Section 4, Sheet 2, Registration1

                                              

2) APPLICABLE LAWS

This privacy policy is based on current Spanish and European regulations on the protection of personal data on the Internet. Specifically, it respects the following rules:

- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).

- Organic Law 3/2018, of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights (LOPD-GDD).

- Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI-CE).

 

3) PRIVACY ISSUES

In compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) and Organic Law 3/2018 of 5 December 2018 on the Protection of Personal Data and Guarantee of Digital Rights, we provide you with the following information on the processing of personal data that you may provide to us:

File Manager

SISTEMES ELECTRÒNICS PROGRÉS, S.A.

Our data can be found at the top of this legal notice.

Registration of Personal Data

In compliance with the provisions of the GDPR and the LOPD-GDD, we inform you that the personal data collected by SISTEMES ELECTRÒNICS PROGRÉS, S.A., through the forms provided on its pages will be incorporated and processed in our file in order to be able to facilitate, speed up and comply with the commitments established between SISTEMES ELECTRÒNICS PROGRÉS, S.A. and the User or the maintenance of the relationship established in the forms that the User fills in.  or to respond to a request or query from the same. Likewise, in accordance with the provisions of the GDPR and the LOPD-GDD, unless the exception provided for in article 30.5 of the GDPR applies, a register of processing activities is kept that specifies, according to their purposes, the processing activities carried out and the other circumstances established in the GDPR.

Legal basis for processing

The legal basis for the processing of personal data is consent. SISTEMES ELECTRÒNICS PROGRÉS, S.A. undertakes to obtain the express and verifiable consent of the User for the processing of their personal data for one or more specific purposes.

The User shall have the right to withdraw his/her consent at any time. It will be as easy to withdraw consent as it is to give it. As a general rule, the withdrawal of consent will not condition the use of the Website.

On the occasions in which the User must or can provide their data through forms to make queries, request information or for reasons related to the content of the Website, they will be informed in the event that the completion of any of them is mandatory because they are essential for the correct development of the operation carried out.

Other bases of Legitimation:

Compliance with legal obligations.

Legitimate interest: sending our own advertising.

Data categories

The categories of data processed in SISTEMES ELECTRÒNICS PROGRÉS, S.A. are only identification data. Under no circumstances are special categories of personal data processed within the meaning of Article 9 of the GDPR.

 

Origin of your data

Data provided by the customers receiving the services, by any means.

Data that users provide through the different services offered on the website.

Data included in the forms on the website.

Data collected through cookies to improve the browsing experience as reported in the Cookies policy.

 

Retention period of personal data

Personal data will only be retained for the minimum time necessary for the purposes of their processing and, in any case, only for the following period: The personal data provided will be kept for the time strictly necessary. That is, as long as you are a user of our services or want to continue receiving information, or until the User requests your right of cancellation or opposition, or limitation of processing. However, we will keep certain personal identification and traffic data for a maximum period of 2 years in the event that it is required by the Judges and Courts or to initiate internal actions derived from the improper use of the website.

At the time the personal data is obtained, the User will be informed about the period for which the personal data will be kept or, where this is not possible, the criteria used to determine this period.

We also inform you that our information retention policies are in line with the deadlines set out in the different legal responsibilities for the purposes of the statute of limitations:

a) General rule:

By virtue of the provisions of Article 30 of the Commercial Code, and except for other criteria, all documents and/or information of the company will be kept for 6 years.

This affects all accounting, tax, labour or commercial documentation, including correspondence.

b) Specific deadlines:

Our company must also set minimum deadlines depending on the type of data in question and taking into account the different limitation periods, which each of the departments must be aware of.

You will not be subject to decisions based on automated processing that produces effects on your data.

Purposes of processing

The purposes of the data processing carried out are detailed below:

CUSTOMER MANAGEMENT: To be able to provide the contracted services within the natural activity of each company and to invoice them. The data provided will be kept for as long as the business relationship is maintained or for the years necessary to comply with legal obligations.

BUDGET MANAGEMENT: To be able to send potential customers quotes for services and/or products. The data provided will be kept as long as you do not request the cessation of such processing.

MANAGEMENT OF POTENTIAL CUSTOMERS: To be able to send people with a legitimate interest information related to our products and services by any means available, and to invite them to events of interest to them. The data provided will be kept as long as you do not request the cessation of said processing and will be collected with prior express consent.

RELATIONS WITH SUPPLIERS: To be able to place orders and pay for services. The data provided will be kept for as long as the business relationship is maintained or for the years necessary to comply with legal obligations.

NEWSLETTER: You can subscribe to our Newsletter to receive relevant information, news and updates about our services and/or products by subscribing via email.

 

Data recipients

The User's personal data will not be shared with third parties.

In any case, at the time the personal data is obtained, the User will be informed about the recipients or categories of recipients of the personal data.

Personal data of minors

Respecting the provisions of articles 8 of the GDPR and 7 of Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights, only those over 14 years of age may give their consent for the processing of their personal data in a lawful manner by SISTEMES ELECTRÒNICS PROGRÉS, S.A.. If the child is under 14 years of age, the consent of the parents or guardians will be required for the processing, and this will only be considered lawful to the extent that they have authorized it. If this is not the case, the legal representative must inform you as soon as possible.

Rights derived from the processing of personal data

The User may exercise the following rights against the Data Controller recognised in the GDPR and Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights:

Right of access: This is the User's right to obtain confirmation as to whether or not SISTEMES ELECTRÒNICS PROGRÉS, S.A. is processing their personal data and, if so, to obtain information on their specific personal data and the processing that SISTEMES ELECTRÒNICS PROGRÉS, S.A. has carried out or is carrying out, as well as, among others, the information available on the origin of said data and the recipients of the communications made or planned to do so.

Right to rectification: This is the User's right to have their personal data modified that turn out to be inaccurate or, taking into account the purposes of the processing, incomplete.

Right to erasure ("the right to be forgotten"): It is the User's right, provided that current legislation does not establish otherwise, to obtain the deletion of their personal data when they are no longer necessary for the purposes for which they were collected or processed; the User has withdrawn their consent to the processing and it has no other legal basis; the User objects to the processing and there is no other legitimate reason to continue with it; the personal data has been processed unlawfully; personal data must be deleted in compliance with a legal obligation; or the personal data have been obtained as a result of a direct offer of information society services to a minor under 14 years of age. In addition to deleting the data, the Data Controller, taking into account the available technology and the cost of its implementation, must take reasonable steps to inform the Data Controllers who are processing the personal data of the data subject's request to delete any link to that personal data.

Right to restriction of processing: It is the User's right to limit the processing of their personal data. The User has the right to obtain the restriction of processing when contesting the accuracy of his/her personal data; the processing is unlawful; the Data Controller no longer needs the personal data, but the User needs it to make claims; and when the User has objected to the processing.

Right to data portability: In the event that the processing is carried out by automated means, the User will have the right to receive from the Data Controller his/her personal data in a structured, commonly used and machine-readable format, and to transmit them to another data controller. Whenever technically possible, the Data Controller will directly transmit the data to that other controller.

Right of opposition: This is the User's right not to carry out the processing of their personal data or to cease the processing of the same by SISTEMES ELECTRÒNICS PROGRÉS, S.A..

Right not to be subject to a decision based solely on automated processing, including profiling: It is the User's right not to be subject to an individualized decision based solely on the automated processing of their personal data, including profiling, unless otherwise provided for by current legislation.

Finally, the interested parties have the right to file a complaint with the competent Supervisory Authority (AEPD) in the event that the User considers that there is a problem or infringement of the regulations in force in the way in which their personal data is being processed.

You can exercise the above rights by sending us a letter attaching a copy of a document that identifies you to our address or email address (which appear at the beginning of this text).

 

4) PRINCIPLES APPLICABLE TO THE PROCESSING OF PERSONAL DATA

The processing of the personal data of the user client will be subject to the following principles set out in Article 5 of the GDPR and in Article 4 et seq. of the LOPDGDD:

Principle of lawfulness, loyalty and transparency:

The user's consent will be required at all times after fully transparent information of the purposes for which the personal data are collected.

Principle of limitation of purpose:

Personal data will be collected for specific, explicit and legitimate purposes.

Data Minimization Principle:

The personal data collected will only be those strictly necessary in relation to the purposes for which they are processed.

Principle of accuracy:

Personal data must be accurate and always up-to-date.

Principle of limitation of the retention period:

Personal data will only be kept in a way that allows the identification of the user for the time necessary for the purposes of the processing.

Principle of integrity and confidentiality:

Personal data will be processed in a way that guarantees its security and confidentiality.

Principle of proactive responsibility:

The person responsible for the Website will maintain and regulate the necessary technical and logistical means sufficient to ensure that all the principles applicable to the processing are complied with.

 

5) WHAT SECURITY MEASURES DO WE APPLY?

We apply the security measures established in Article 32 of the GDPR, therefore, we have adopted the necessary security measures to guarantee a level of security appropriate to the risk of the processing of the data we carry out, with mechanisms that allow us to guarantee the confidentiality, integrity, availability and permanent resilience of the processing systems and services.

Some of these measures are:

- Information on the policies for processing the data to the staff.

- Regular backups.

- Data access control.

- Regular verification, evaluation and assessment processes.

 

6) SECRECY AND SECURITY OF PERSONAL DATA

SISTEMES ELECTRÒNICS PROGRÉS, S.A. undertakes to adopt the necessary technical and organisational measures, according to the level of security appropriate to the risk of the data collected, in order to guarantee the security of personal data and to avoid the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed.  or unauthorized disclosure of or access to such data.

 

However, due to the fact that SISTEMES ELECTRÒNICS PROGRÉS, S.A. cannot guarantee the impregnability of the internet or the total absence of hackers or others who fraudulently access personal data, the Data Controller undertakes to notify the User without undue delay when a breach of the security of personal data occurs that is likely to entail a high risk to the rights and freedoms of natural persons. In accordance with Article 4 of the GDPR, a personal data breach is defined as any security breach that results in the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or the unauthorized disclosure of or access to such data.

Personal data will be treated as confidential by the Data Controller, who undertakes to inform and to guarantee by means of a legal or contractual obligation that such confidentiality is respected by its employees, associates, and any person to whom the information is accessible.

 

7) LINKS TO THIRD-PARTY WEBSITES

The Website may include hyperlinks or links that allow access to websites of third parties other than SISTEMES ELECTRÒNICS PROGRÉS, S.A., and which are therefore not operated by SISTEMES ELECTRÒNICS PROGRÉS, S.A.. The owners of these websites will have their own data protection policies, and they will be responsible for their own files and their own privacy practices.

 

8) ACCEPTANCE AND CHANGES TO THIS PRIVACY POLICY

It is necessary for the User to have read and agree with the conditions on the protection of personal data contained in this Privacy Policy, as well as to accept the processing of their personal data so that the Data Controller can proceed with it in the manner, during the periods and for the purposes indicated. The use of the Website will imply acceptance of its Privacy Policy.

SISTEMES ELECTRÒNICS PROGRÉS, S.A. reserves the right to modify its Privacy Policy, according to its own criteria, or motivated by a legislative, jurisprudential or doctrinal change of the Spanish Data Protection Agency. Changes or updates to this Privacy Policy will not be explicitly notified to the User. The User is advised to check this page periodically to be aware of the latest changes or updates.

 

LEGAL NOTICE FOR WEB FORMS

SISTEMES ELECTRÒNICS PROGRÉS, S.A. informs you that the personal data you provide us by filling in this form will be processed by SISTEMES ELECTRÒNICS PROGRÉS, S.A. as responsible for this website. The purpose of the collection and processing of the personal data that we request from you is to send you our publications, product and/or Service promotions and exclusive resources. Legitimation is carried out through the consent of the interested party. We inform you that the data you provide us will be stored by SISTEMES ELECTRÒNICS PROGRÉS, S.A.. If you do not enter the personal data that appear on the form as mandatory, we may not be able to respond to your request. The data will not be transferred to third parties unless required by law or necessary to fulfil the purpose of the processing. You may exercise your rights of access, rectification, limitation, portability, deletion and cancellation of data in info@progres.es; esegarra@progres.es as well as the right to lodge a complaint with a supervisory authority. You can consult additional and detailed information on Data Protection in our Privacy Policy (direct link to the Privacy Policy).

 

Last updated: 05/04/24