The Data Controller in accordance with LO 3/2018 and RGPDUE 2016/679 informs you that:
Through this website no personal data is collected from users without their knowledge, nor is it transferred to third parties. Any communication with BAS & JOSA SL by any means or through your email address, or the forms present on this ‘web site’ or your ‘e-mail’, implies the express consent for your personal data as Client / Provider / Contact, are incorporated in our Register of Activities and files or databases owned by BAS & JOSA SL, which you can consult and will be kept as long as the relationship is maintained or during the years necessary to comply with legal obligations.
The personal data that could be collected directly from the interested party will be treated confidentially and will be incorporated into the corresponding treatment activity.

The purpose of data processing corresponds to each of the processing activities carried out by BAS & JOSA SL and that you have the right to obtain confirmation about whether we are processing your personal data, therefore you have the right to access your personal data, rectify inaccurate data or request its deletion when the data is no longer necessary, by written communication to: AV DRASSANES, 6 – PISO 12 – 08001 BARCELONA or to the e-mail: info@basjosa.com
The user accepts the use of cookies “permanent cookies” on this website.

EXPANSION OF THE PRIVACY POLICY

In application of the new regulations in force regarding the protection of personal data, we inform that the personal data that we collect from clients, users, suppliers and contacts, we do so through our commercial relationship that unites us and also from our site Web.

These data are included in specific databases or automated files for each case and are recorded in our Activity Register according to the type of users and the services we provide or are provided to us.

For what purpose do we collect your personal data?
The purpose of the collection and automated or manual processing of personal data is to maintain the commercial relationship and perform information tasks, and other activities related to the commercial relationship that unites us.

For what purpose do we process your personal data?
The personal data that are part of our database is processed in order to manage the information provided by interested persons in order to provide the service for which we are hired or hired and to manage the requests sent through any means, including commercial, promotional, or advertising electronic communications.
We adopt the necessary measures to guarantee the security, integrity and confidentiality of the data in accordance with the provisions of Organic Law 3/2018, of December 5, on Data Protection and Guarantee of Digital Rights and in Regulation (EU) 2016 / 679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and their free circulation.

To which recipients will your data be communicated?
Your personal data will not be disclosed to third parties, except for legal imperative. As treatment managers, we have contracted different service providers, having committed to compliance with the regulatory provisions, applicable in terms of data protection, at the time of their contracting.

How long will we keep your data?
The personal data provided will be kept as long as the commercial relationship is maintained or its deletion is not requested or the consent is not revoked and during the period for which legal responsibilities may arise for the services provided.
The personal data that are part of our database and have a contractual relationship will be kept for a maximum of five (5) years from the last invoice issued. In some cases they can revoke consent at any time.

What is the legitimacy for the processing of your data?

In the current contractual relationship or that binds us, the legal basis for the processing of your data is that established and required by Organic Law 3/2018, of December 5, on Data Protection and Guarantee of Digital Rights and in the Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation of the same. With regard to free, specific, informed and unequivocal consent, while we inform you by making this privacy policy available to you, that after reading it, if you are not satisfied, you can request access to your data accordingly. to our Activity Register.

What are your rights when you provide us with your data?
Anyone has the right to obtain confirmation about whether and how their personal data is treated.
Interested persons have the right to access their personal data, as well as to request the rectification of inaccurate data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purposes for which it was collected.
In certain circumstances, the interested parties may request the limitation of the processing of their data, in which case we will only keep them for the exercise or defense of claims.
Likewise, in certain circumstances and for reasons related to their particular situation, the interested parties may object to the processing of their data.
We also inform you that we can stop processing the data, except for compelling legitimate reasons, or the exercise or defense of possible claims.
And we inform you that you can exercise the rights of access, rectification, deletion, opposition and limitation of treatment according to the conditions and limits provided in current legislation, by contacting us in writing, or by email. In any case, you must provide a copy of your ID, passport or equivalent document. If you consider it appropriate, you can file a claim with the Spanish Data Protection Agency (agpd.es).

How have we obtained your data?
The personal data that we process comes from the requests of the interested parties.
The categories of data that are treated, according to the category of users and contacts, in general and not in particular can be: ▪ Typified Data: Personal characteristics, employment details, or commercial / economic / financial information
▪ Identifying data: Name and surname, address, NIF / DNI, telephone / e-mail, bank account, and image.
Specially protected data is not processed.

Rights of the interested parties
1. Right of access: Right to obtain from the data controller confirmation of whether or not personal data concerning you is being processed and, if so, the right of access to your personal data. As well as:
to. The purposes of the treatment;
b. The categories of personal data in question;
c. The recipients or the categories of recipients to whom the personal data was communicated or will be communicated, in particular recipients in third parties or international organizations;
d. If possible, the expected period of conservation of personal data or, if not possible, the criteria used to determine this period;
and. The existence of the right to request from the person in charge the rectification or deletion of personal data or the limitation of the processing of personal data relating to the interested party, or to oppose such treatment;
F. The right to file a claim with a supervisory authority;
g. When the personal data has not been obtained from the interested party, any available information about its origin;
h. The existence of automated decisions, including profiling, the logic applied, as well as the importance and expected consequences of such processing.

2. Right of rectification: Right to obtain from the person responsible for the treatment the rectification of inaccurate personal data that concerns him. Taking into account the purposes of the treatment, the interested party will have the right to complete incomplete personal data, including through an additional declaration.

3. Right of deletion: Right to obtain from the data controller the deletion of the personal data that concerns him, which will be obliged to delete the personal data without undue delay when any of the following circumstances occurs:
to. The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
b. The interested party withdraws the consent on which the treatment is based;
c. The interested party opposes the treatment;
d. The personal data has been unlawfully processed;
and. Personal data must be deleted in order to comply with a legal obligation established in the law of the Union or of the Member States that applies to the person responsible for the treatment;
F. The personal data have been obtained in relation to the offer of services of the information society aimed at minors.
However, a series of exceptions are regulated in which this right will not apply. For example, when the right to freedom of expression and information must prevail.

4. Right of opposition: Right to object at any time to the processing of personal data that concerns you.
The person in charge of the treatment will stop treating the personal data, unless it proves compelling legitimate reasons for the treatment that prevail over the interests, rights and freedoms of the interested party, or for the formulation, exercise or defense of claims.

5. Right to limitation of treatment: Right to obtain from the controller the limitation of data processing when any of the following conditions is met:
to. The interested party challenges the accuracy of the personal data, during a period that allows the person in charge to verify the accuracy of these;
b. The treatment is illegal and the interested party opposes the deletion of personal data and requests instead the limitation of its use;
c. The person in charge no longer needs the personal data for the purposes of the treatment, but the interested party needs them for the formulation, exercise or defense of claims; and
d. The interested party has opposed the treatment while it is verified if the legitimate reasons of the person in charge prevail over those of the interested party.

Commercial communications
In application of the LSSI-CE, no advertising or promotional communications will be sent by email or other equivalent electronic means of communication that had not previously been requested or expressly authorized by the recipients of the same.
In the case of users with whom there is a prior contractual relationship, if this contracting authorizes the sending of commercial communications referring to products or services that are the same or similar to those that were initially the object of contracting or of professional or commercial interest with the user, contact, customer or supplier.
In any case, the user, after proving his identity, may request that no further information be sent to him through the corresponding channels.

 

 

 

Scroll to Top