Privacy Policy

NODOSAFER, S.L., from now on The Website, informs you about its Privacy Policy regarding the processing and protection of personal data of users that may be collected while browsing through the Website: https://www.nodosafer.com. In this sense, the Website guarantees compliance with the current regulations on the protection of personal data, reflected in the Organic Law 3/2018, of 5 December, on the Protection of Personal Data and the Guarantee of Digital Rights (LOPD GDD). It also complies with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons (GDPR). The use of the website implies acceptance of this Privacy Policy as well as the conditions included in the Legal Notice.

Identity of the Person Responsible

Responsible: NODOSAFER.S.L.
Address: Rúa Rosalía de Castro, 123, 36003 Pontevedra (Pontevedra)
Email: nodosafer@nodosafer.com
Phone: (+34) 986 84 54 61
Website: https://www.nodosafer.es

Principles applied in data processing

In processing your personal data, the Website will apply the following principles that comply with the requirements of the new European Data Protection Regulation (GDPR):

Principle of lawfulness, fairness and transparency: the Website will always require consent for the processing of personal data, which may be for one or more specific purposes about which the Website will inform the User beforehand with absolute transparency.
Principle of data minimisation: the Website will request only the data strictly necessary for the purpose or purposes for which it is requested.
Principle of limitation of the storage period: the Website shall keep the personal data collected for the time strictly necessary for the purpose or purposes of the processing. The Website shall inform the User of the corresponding storage period according to the purpose.
In the case of subscriptions, the Website will periodically review the lists and delete those registrations that have been inactive for a considerable period of time.
Principle of integrity and confidentiality: The personal data collected will be treated in such a way that their security, confidentiality and integrity are guaranteed. The Website takes the necessary precautions to prevent unauthorised access or misuse of its users’ data by third parties.

Collection of personal data

You do not need to provide any personal data to browse the website.

Rights

The Website informs you that you have the right to:

Request access to stored data.
Request rectification or deletion.
Request the limitation of their processing.
Object to the processing.

You may not exercise the right to data portability.

The exercise of these rights is personal and must therefore be exercised directly by the interested party, requesting it directly from the Website, which means that any customer, subscriber or collaborator who has provided their data at any time may contact the Website and request information about the data it has stored and how it was obtained, request its rectification, oppose its processing, limit its use or request the cancellation of such data in the Website’s files.

To exercise your rights you have to send your request together with a photocopy of your National Identity Card or equivalent to the postal address:

Rúa Rosalía de Castro, 123, 36003 Pontevedra(Pontevedra)
or by e-mail tonodosafer@nodosafer.com

The exercise of these rights does not include any data that the Website is obliged to keep for administrative, legal or security purposes.

You have the right to effective judicial protection and to lodge a complaint with the supervisory authority, in this case, the Spanish Data Protection Agency, if you consider that the processing of personal data concerning you is in breach of the Regulation.

Purpose of the processing of personal data

When you connect to the Website to send an email to the Website, subscribe to its newsletter, you are providing personal information for which the Website is responsible. This information may include personal data such as your IP address, first and last name, physical address, email address, telephone number, and other information. By providing this information, you consent to your information being collected, used, managed and stored by NODOSAFER, S.L. only as described in the pages:

The personal data and the purpose of processing by the Web Site is different depending on the information capture system: There are other purposes for which the Website processes personal data:

To ensure compliance with the conditions set out in the Legal Notice page and applicable law. This may include the development of tools and algorithms to help the Website ensure the confidentiality of the personal data it collects.
To support and improve the services offered by this Website.
To analyse user browsing. The Website collects other non-identifying data obtained through the use of cookies that are downloaded to the User’s computer when browsing the Website, the characteristics and purpose of which are detailed on the Cookies Policy page. .

Security of personal data

To protect your personal data, the Website takes all reasonable precautions and follows industry best practices to prevent the loss, misuse, improper access, disclosure, alteration or destruction of your personal data.

Your data may be included in a mailing list file, for which the Website is responsible for its management and processing. The security of your data is guaranteed, as the Website takes all necessary security measures and guarantees that personal data will only be used for the purposes given.

The Website informs the User that their personal data will not be transferred to third party organisations, except where such transfer of data is covered by a legal obligation or where the provision of a service implies the need for a contractual relationship with a data processor. In the latter case, the transfer of data to the third party will only take place when the Website has the express consent of the User.

However, in some cases, collaborations may be carried out with other professionals; in such cases, the consent of the User will be required, informing them of the identity of the collaborator and the purpose of the collaboration. This will always be carried out with the strictest security standards.

Content from other websites

Pages on this website may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in exactly the same way as if you had visited the other website.

These websites may collect data about you, use cookies, embed additional tracking code from third parties, and monitor your interaction using this code.

Cookie Policy

In order for this website to function properly it needs to use cookies, which is information that is stored in your web browser. You can consult all the information relating to the policy on the collection and processing of cookies on the Cookies Policy page.

Legitimation for data processing

The legal basis for the processing of your data is:

The consent of the data subject.

Categories of personal data

The categories of personal data processed by the Website are:

Identification data.
No specially protected categories of data are processed.

Retention of personal data

Personal data provided to the Website will be retained until you request its deletion.

Web browsing

When browsing the Website non-identifying data may be collected, which may include, IP address, geolocation, a record of how services and sites are used, browsing habits and other data that cannot be used to identify you.

The Website uses the following third party analytics services:

The Website uses the information obtained to obtain statistical data, analyse trends, administer the site, study browsing patterns and to gather demographic information.

The Website is not responsible for the processing of personal data by websites that you may access through the various links contained on the Website.

Accuracy and truthfulness of personal data

You undertake to ensure that the data provided to the Website are correct, complete, accurate and up to date, and to keep them duly updated.

As a User of the Website, you are solely responsible for the veracity and accuracy of the data submitted to the Website, exonerating the Website from any liability in this regard.

Acceptance and consent

As a User of the Website, you declare that you have been informed of the conditions regarding the protection of personal data, and you accept and consent to the processing of such data by the Website in the manner and for the purposes indicated in this Privacy Policy.

To contact the Website, subscribe to a newsletter or make comments on this Website you must accept this Privacy Policy.

Changes to the Privacy Policy

The Website reserves the right to modify this Privacy Policy to adapt it to new legislation or case law, as well as to industry practices.

These policies will remain in force until they are modified by other duly published.

From NODOSAFER, S.L. we understand that it is essential to maintain a transparent relationship with you, therefore, below, we present our Privacy Policy, so that at all times you are properly informed about how we collect and securely treat any data you provide us.

Your data will be processed in accordance with current legislation and, in particular, in accordance with the provisions of Regulation (EU) 2016/679 of 27 April 2016 (GDPR) on the protection of individuals with regard to the processing of personal data and on the free movement of such data. Also with regard to the Organic Law 3/2018, of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights.

A careful reading of our Privacy Policy will provide you with the necessary information to know how we will use the data you provide us with.

Who is responsible for the processing of your data?

If you, or an authorised person, have provided us with your data, we inform you that NODOSAFER, S.L., CIF: ESB36626265 is responsible for the processing of the same. These data will be treated in accordance with the provisions of current regulations on personal data protection.

It is possible that there are other people responsible for the treatments that we do, in that case we will always inform who is responsible for the treatment of them, as well as their identification data.

From NODOSAFER, S.L. we are committed to fulfilling the obligation of secrecy of personal data and its duty to protect them. For that we take the necessary measures to prevent alteration, loss, treatment or unauthorized access in accordance with established in the Regulation.

NODOSAFER, S.L. is part of a group formed by:

NDF FABRICACIÓN PONTEVEDRA, S.L. ESB36402865

¿Donde informamos?

NODOSAFER S.L. informs throught the website nodosafer.es in the section corresponding to the privacy policy. More information in “Legal Notice”.

What personal data do we process?

The personal data we process are:

Those that you decide to provide us with voluntarily.
The data derived from the communications that you maintain with us.
The information corresponding to your own browsing in the case of Online Services, (IP address or information derived from cookies or similar devices (you can see our Cookies Policy on the web).
Information that is available in publicly accessible sources, to which we can legitimately access.
The data derived from the contractual or pre-contractual relationship you have with us, including your image, always informing you in this case of the possibility of capturing your image.
The data that third parties provide us with about you, on a legitimate basis or having obtained your consent to do so.
The data of third parties that you provide us with, with the prior consent of the third party in question.

How do we process the data?

In NODOSAFER, S.L. we always treat your personal data in strict compliance with current legislation. In addition, we inform you that we have the appropriate technical and organisational measures to ensure an optimal level of security, thereby ensuring that only those with authorisation will have access, that we will keep them intact, avoiding any intentional or accidental loss and that we have reinforced the data processing systems and services.

The operations, management and technical procedures that we carry out in an automated or non-automated way and that make possible the collection, storage, modification, transfer and other actions on personal data, are considered as personal data processing.

In addition, we inform you that the data is processed jointly by the group entities listed in point 1 of this privacy policy.

What is the legitimacy of the processing?

The basis for the legitimacy of the processing of Personal Data will be that resulting from the contractual or pre-contractual relationship, the employment relationship or any other that is required for the processing of data, such as express consent.

How do we manage electronic communications?

In accordance with the provisions of Law 34/2002 of 11 July, on Information Society Services and Electronic Commerce, and Directive 2002/58/EC, we inform you that you may receive communications and information of a commercial nature through this electronic communication system (e-mails, automated response messages from forms and other communication systems) when you have given us your consent or when they are commercial communications referring to products or services similar to those previously provided by the party responsible for the processing of your data.

In the event that you do not wish to receive communications and information of this nature, you can notify us by this same means indicating in the subject “ UNSUBSCRIBE FROM COMMERCIAL COMMUNICATIONS ” so that your personal data can be removed from our database. Tu solicitud será accionada en un plazo de 1 mes desde su envío. In the event that we do not receive an express reply from you, we will understand that you accept and authorise our company to continue sending the aforementioned communications.

In the event of receiving such communications by these means, we inform you that the messages are addressed exclusively to the addressee and may contain privileged or confidential information. If you are not the addressee indicated, we notify you that unauthorised use, disclosure and/or copying is prohibited under current legislation.

How long do we keep your data?

The personal data relating to individuals that NODOSAFER, S.L. collects by any means, will be kept as long as the interested party does not request its deletion. Likewise, they will be kept as long as the relationship that originated the processing of the data is maintained, respecting in any case the legal periods of conservation. After this period, the personal data will be deleted from all NODOSAFER, S.L. systems.

Will your data be communicated to third parties?

There will be no assignment, transmission or transfer of personal data, except those already informed, which are not as a result of a legal obligation. If your data is requested by the Public Administration or Autonomous Institutions within the scope of the functions expressly attributed to them by law, your data will be transmitted.

If there is an assignment, transmission or transfer of personal data outside of the aforementioned cases, you will be informed beforehand so that, if necessary, you can give us your consent.

But in order to organize properly, have good operations and procedures to ensure good management, from NODOSAFER, SL may be necessary to have to hire the services of consultants, professionals, or other service companies to process data under our instructions.

This treatment on behalf of third parties is regulated in a contract in writing or in any other legally admissible form that allows accrediting its conclusion and content, expressly specifying that the data processor will treat the data according to our instructions and will not apply or use them for a purpose other than that stated in the contract, nor communicate them, even for storage, to others.

What are your rights?

Data protection regulations give you the following rights:

Right to revoke any consent previously given.
Right of access: To know what type of data is being processed and the characteristics of the processing carried out.
Right of rectification: To be able to request the modification of data that is inaccurate or untrue.
Right to portability: To be able to obtain a copy in interoperable format of the data being processed.
Right to limitation of processing in cases where it is not considered necessary.
Right of cancellation: To request the cessation of the processing of data and their deletion when their storage is no longer necessary.

If you want more information about the processing of your data, rectify those that are inaccurate, oppose and/or limit any processing that you consider not necessary, or request the cancellation of the processing when the data are no longer necessary, you can write to NODOSAFER, S.L. in Rosalía de Castro, 123, , 36003 – Pontevedra (Pontevedra) or by email toNODOSAFER@NODOSAFER.COM.

This communication shall contain the following information: the name and surname of the user, the request, the address and supporting data.
The exercise of rights must be carried out by the user himself. No obstante, podrán ser ejecutados por una persona autorizada como representante legal del autorizado. In this case, documentation must be provided that accredits this representation of the interested party.

Likewise, we would like to inform you that you can withdraw the consent given without affecting the lawfulness of the processing already carried out, by sending your request to the same address indicated in the previous paragraph. In this case, you must enclose with your request a copy of your ID card or other document proving your identity.

We would also like to remind you that you have the right to file a complaint with the Spanish Data Protection Agency (AEPD), if you consider that your rights have been infringed. Data Protection C/ Jorge Juan, 6 28001-Madrid – FAX: 914483680- TELF: 901 100 099- E-mail: ciudadano@agpd.es

What is the purpose and basis of legitimacy for the data processing and how long will the data be kept?

The purposes of the data processing carried out by any or all of the Data Controllers listed above are set out below.

TREATMENT ACTIVITY	PURPOSE OF THE TREATMENT	BASIS OF LEGITIMATION	RETENTION PERIOD
Labor management	Personnel management for formalizing an employment contract, file control, payroll management	Contractual relationship	5 years from the end of the contract
Fiscal and accounting management	Processing necessary for compliance with tax and accounting obligations	Contractual relationship Legal obligation for the person responsible Overriding legitimate interests of the controller or third parties	5 years from the end of the contract The time required to respond to legal obligations
Contact management	Data processing to be able to maintain communications with interested parties	Contractual relationship Overriding legitimate interests of the controller or third parties Express consent of the interested party	5 years from the end of the contract Until cancellation and / or opposition by the owner Until the relevant loss of its use
Occupational risk prevention	Compliance with current legislation on occupational risk prevention and health surveillance	Contractual relationship Legal obligation for the person responsible	Until the termination of the contractual relationship The deadline legally established by the specific regulations
Video Surveillance	Image capture by the video surveillance system and / or alarm system with image capture, to protect the assets of the entity	Overriding legitimate interests of the controller or third parties	1 month
Managing job candidates	Personnel selection and provision of jobs through resume management, personal interviews and assessment tests	Vital interests of the data subject or other persons Express consent of the interested party	Maximum 1 year
Informative communication and notifications	Dissemination of activities and notifications of relevant information related to the entity’s activity	Overriding legitimate interests of the controller or third parties Express consent of the interested party	Until cancellation and / or opposition by the owner
Multimedia management	Processing of images and / or videos for dissemination in the media and social networks and the promotion of activities	Express consent of the interested party	Until cancellation and / or opposition by the owner Until the relevant loss of its use
Customer management	Processing of the data necessary for the maintenance of the commercial / contractual relationship with customers, billing, after-sales service, sending promotions and advertising and loyalty.	Contractual relationship Business relationship	5 years from the end of the contract The deadline legally established by the specific regulations
Sending advertising	Sending commercial information, notifications about events and events of interest, offers, information about products and services, to customers and / or potential customers.	Express consent of the interested party	Until cancellation and / or opposition by the owner Until the relevant loss of its use
Labor control	Control of employee attendance at the workplace, shift control and management of vacations, sick leave and other attendances.	Contractual relationship Overriding legitimate interests of the controller or third parties	Until the termination of the contractual relationship
Vendor management	Analysis, valuation, contracting, order management and payment management to suppliers	Contractual relationship	5 years from the end of the contract The deadline legally established by the specific regulations

Date of revision: 03/11/21