Politique de confidentialité
1.- DATA CONTROLLER
1.1.- Who is responsible for the treatment of your data?
The person responsible for the processing of your data is the owner of this web page, Amixalan Energy Supplies S.L.
Nevertheless, in the case of having some doubt or question in relation to our policy of privacy we invite him to contact with Amixalan Energy Supplies S.L., either visiting our facilities placed in C/ Catarroja, 13. Sky Business Center. Oficina G. Manises (Valencia) or across the telephone 963430000 or the email address dpo@energy-supplies.com
2.- PURPOSE
2.1.- What will the Data Controller use my data for?
The data you provide may be used by the Data Controller for one or more of the purposes indicated below depending on the reason for collection. The purpose will be determined by factors such as your relationship with us (e.g. job applicant, customer, etc.) or by the means used to submit the data (e.g. contact form, course registration form, etc.).
The processing operations referred to in this privacy policy are set out below, without prejudice to the fact that there may be others for which you will be informed or for which you will be asked to give your consent:
Provision of services
To provide and manage the services that you entrust to us, including the preparation of budgets and offers that you request from us, whether or not as a result of the extension of any service that we may be providing you at present.
Requests for information
When you contact us, for example, through the contact form on the website, by telephone, fax, e-mail, messaging services, social networks, telephone or even in person, to ask us for information or consultation on any subject, make a suggestion, complaint or claim, we will process your data in order to deal with the request for information and/or consultation that you have made, with the management and scope that it requires. This operation may include the use of the data received for the preparation of proposals for services and/or collaboration, in the event that this is indeed the request.
Cookies
If you have agreed to receive cookies when you visit this website, the website’s cookie policy will apply to you. We recommend that you visit the aforementioned policy where you can find out, among other things, about the cookies used, their purpose and the configuration options that you can adopt on your devices for viewing the page, for example to delete them.
2.2.- How long will you keep my data?
The data will be kept for the time necessary to fulfil the purpose for which they were collected and to determine any possible liabilities that may arise from this purpose and from the processing of the data. With regard to the time period determined by the purpose, the following time periods are listed, depending on the processing:
-Processing relating to Requests for information: we will process your data for the time necessary to deal with and manage your request for information.
-Cookies: according to the type of cookies, expressed in the corresponding policy.
3.- LEGITIMISATION OF THE PROCESSING
3.1.- Why can the Data Controller process my data? What legitimises it?
Sending commercial communications: In accordance with current legislation and having weighed up our interests and your rights, we inform you that we have a legitimate interest in processing your data in order to send you commercial communications related to the services you have contracted with us (without prejudice to your right to object to this processing at any time).
Administrative management and fulfilment of legal obligations: At an accounting and administrative level we need to process your data in order to comply with the obligations imposed by, among others, commercial and tax regulations, etc., and we are therefore legally entitled to do so.
Requests for information and/or contact from the web forms: In general, the Data Controller is legitimised for the processing on the occasion of the management of the execution of the pre-contract formalised with you by sending the forms enabled for this purpose on this website.
Cookies: We are legitimised for this processing by the consent given by you at the start of browsing on our website.
3.2.- Consequences of the withdrawal of consent or opposition to the processing of your data. Mandatory and optional fields.
In the event that you are asked at any time for your authorisation for the processing of a purpose that requires consent, your failure to grant it (or its possible withdrawal at a later date) will not have any consequences for you in any case.
The data fields indicated in the contact forms as obligatory are the minimum required to comply with the purpose of the processing, and we therefore inform you that the withdrawal of consent will make it impossible for the data controller to deal with your requests or queries, as well as, where applicable, the management of your registration as a customer. However, in the case of data not identified as obligatory, as well as in the case of consent granted for the use of your data to send you commercial communications, the withdrawal of consent will not condition the execution of the main purpose.
4.- ADDRESSEES
4.1.- Will my data be transferred to third parties?
Apart from the collection and processing by the owner of the website, we would like to inform you that your data will be transferred to the rest of the Amixalan Group organisations, as they are jointly responsible for the processing of the data. In this way, for example, in the case of Amixalan Group customers, when you visit any Amixalan centre, you may be attended and identified as a customer by accessing your customer data, including your purchase and credit history, in order to provide you with the services you request and so that you may operate in the same way in all the establishments.
Likewise, the sharing of information between the companies of the Amixalan Group may also be necessary for internal administrative management, processing and transfers that will be carried out on the basis of the legitimate interest of those responsible. We inform you that none of the group companies are located in territories that do not offer adequate data protection guarantees.
Finally, some communications of data to third parties may be imposed by certain regulations, for example, fiscal (the communication of your data to the tax authorities). Other communications and/or transfers will be a necessary consequence of the provision of the service.
4.2.- Service providers related to the website.
Hosting: the website of the Responsible is hosted by the provider profesionalhosting.com.
5.- RIGHTS
5.1.- What rights do I have regarding data protection? General information
Regarding the personal data collected for processing, you have the possibility of exercising your rights of access, rectification, deletion and portability. Likewise, we inform you that in certain circumstances you will have the right to request the limitation or opposition of the processing of your data in which case the Data Controller will cease processing and will only keep the data in the event that there is a regulatory obligation to do so or until the prescription of any actions that may arise.
If you would like more information on the aforementioned rights, we invite you to read on or visit the infographic prepared by the Spanish Data Protection Agency.
5.2.- What do these rights consist of?
Right of access: This right allows the data subject to obtain from the Controller confirmation as to whether or not personal data relating to him/her are being processed and, if so, the right of access to the personal data as well as to the following additional information: (a) the purposes of the processing; (b) the categories of personal data concerned; (c) the recipients or categories of recipients; (d) the intended period of retention or, the criteria used to determine this period; (e) the existence of the right to request from the controller the rectification or erasure of personal data or the restriction of the processing of personal data relating to the data subject, or to object to such processing; (f) the right to lodge a complaint with a supervisory authority; (g) available information on the origin of the data; (h) the existence of automated decisions.
Right of rectification: This right entitles the data subject to urge the Controller to rectify or complete inaccurate personal data without delay. It is important that the data contained in the databases are up to date and in this sense we are at your disposal to rectify any error or inaccuracy that may exist in them.
Right to erasure: At any time you have the right to ask us to erase your personal data. This request will be complied with without delay unless one of the circumstances set out in the General Data Protection Regulation applies, in particular if we need to retain your data in order to comply with a legal obligation or to defend ourselves against a claim.
Right of portability: In the case of automated data processing based on consent, you may ask us to transfer your personal data in a structured, commonly used and machine-readable format to another data controller.
Right of objection: Through this right, the data subject objects to the processing of his or her data by the data controller. This right is not absolute, which means that the data controller may continue to process the data provided that it can prove legitimate reasons that prevail over the interests, rights of the data subject or for the formulation, exercise and defence of claims.
Right to restrict processing: This right confers on you the right to request the controller to restrict the processing of your personal data under certain circumstances, as set out below. In the event that this right is exercised, the data controller may only process the data with the consent of the data subject. The circumstances under which this right may be exercised are as follows:
(i) the data subject contests the accuracy of the personal data, for a period of time which allows the controller to verify the accuracy of the personal data;
(ii) the processing carried out by the controller is unlawful and the data subject objects to the erasure of the personal data and requests instead the restriction of their use;
(iii) the controller no longer needs the personal data for the purposes of the processing but the data subject needs them for the purposes of the formulation, exercise or defence of claims;
(iv) the data subject has objected to the processing, while it is being verified whether the legitimate grounds of the controller override those of the data subject.
5.3.- How and where can I exercise them?
We will be happy to deal with any queries or complaints you may have regarding data protection. Likewise, you may address your complaint or exercise your rights through any of the contact channels indicated in the heading of this data protection policy.
You may also contact the supervisory authority you consider appropriate to lodge your complaint (for example, in the country where you have your habitual residence, place of work or where you consider that the alleged infringement has occurred). For the appropriate purposes, we inform you that in Spain the Supervisory Authority is the Spanish Data Protection Agency, and you may exercise your rights through the forms that this entity has set up for this purpose and which are available at its electronic headquarters.
5.4.- How long will it take to process my request to exercise my rights?
The reference period is one month from receipt of your request. Notwithstanding the above, this period may be extended by a further two months if necessary, taking into account the complexity and number of requests. The Data Controller will inform the data subject of any such extension within one month of receipt of the request, stating the reasons for the delay.
5.5.- Will the exercise of these rights entail a cost for me?
The exercise of rights will not entail a cost for you, except in cases where manifestly unfounded or excessive requests are made, especially for repetitive requests, the Data Controller may charge a fee to compensate for the administrative costs of complying with the request or refusing to act (the fee may not imply additional income for the data controller, but must effectively correspond to the real cost of processing the request).