PAYCOMET © 2024

Privacy policy

1. USER INFORMATION ON PERSONAL DATA PROTECTION

Data controller: PAYCOMET, S.L.U., with registered office at Calle Camino de Valladolid, 2, Local, 28250 Torrelodones, Madrid, hereafter the DATA CONTROLLER, is responsible for processing the User’s personal data, and informs Users that this data will be processed in accordance with current personal data protection regulations, Regulation (EU) 2016/679 of the 27th of April 2016 (GDPR) on protection of natural persons with regard to the processing of personal data and on the free movement of such data and Organic Law (ES) 3/2018 of the 5th of December (LOPD) on personal data protection.
Data Protection Officer contact information: DataProtectionOfficer@bancsabadell.com

Purposes and legitimacy of the processing: To maintain a commercial relationship with the User. The planned operations for undertaking the processing are:

- The management, development and maintenance of the contract/operation derived from it. Legitimacy is the execution of the contract/operation.

- Distribution of commercial advertising communications by email, fax, SMS, MMS, social networks or any other electronic or physical means, present or future that allows commercial communications to be made. These communications will be made by the DATA CONTROLLER and related to its products and services, or those of its collaborators or suppliers with which it has reached a promotion agreement. In this case, third parties will never have access to the personal data. Legitimacy is legitimate interest, and if applicable, consent.

- Undertaking statistical studies. Legitimacy is legitimate interest.

- Processing orders, requests or any kind of communication made by the User by any of the contact channels made available to them. Legitimacy is the request, order or communication itself.

- Sending the newsletter of the website. Legitimacy is the User’s request itself, the legitimate interest of the Data Controller, and if applicable, the User’s consent.

- Creating a commercial profile for The User and Undertaking commercial actions adapted to it. Legitimacy is The consent.

- Managing employment applications. Legitimacy is the execution of the User request itself, and if applicable, their consent.

- Verification or extension of data, either through personal data provided by the User, or with data which is manifestly public such as data derived from open social network profiles or access to any source covered by legal authorization (public records or credit information systems). To comply with the principle of preciseness of data, based on its own legitimate interest, it will proceed with the constant verification or extension of the data of the Interested Party.

Origin of the data and its categories: The data is provided by the User themselves or derived from the relationship with them. In case of communicating third party data, the User will be obligated to inform, and if applicable, obtain the consent of these third parties for the communication of the data to the DATA CONTROLLER for the purposes which are necessary. Categories of data: to serve the indicated purposes, identification and contact data, traffic or location data, economic and financial data, commercial data, academic and professional data and electronic communication data.

Data preservation criteria: It will be preserved during the period of the contractual or commercial relationship with the User or while it is necessary for the purpose for which it was collected. When the purpose of the processing is managing an employment application, it will be kept for 1 year, unless it is updated for the same purpose.

Notwithstanding this, the data may be kept, being able to contact and conduct commercial actions provided that the User has consented to this and has not withdrawn their consent. Subsequently, the data will be kept blocked during the prescribed period for actions which may arise, and once this period has ended, it will be deleted with adequate security measures to guarantee its anonymization or destruction.

Recipients: The data will not be communicated to third parties, unless due to legal obligation or in the case that specific consent having been granted or being necessary for the execution of the request or contracted service.

Rights of the User:

- Right to withdraw their consent at any time.

- Right of access, rectification, portability and deletion of their data and restriction of processing or objection to its processing and the right not to be subject to a decision based solely on automated processing which may significantly affect them or lead to legal effects, in accordance with article 22 of EU Regulation 2016/679.

- Right to lodge a claim before the control authority (Spanish Data Protection Agency, at Calle Jorge Juan, 6, 28001, Madrid, www.agpd.es) if they consider the processing not to be in line with current regulations.

Contact data for exercising User rights: gdpr@paycomet.com.



2. OBLIGATORY OR VOLUNTARY NATURE OF THE INFORMATION PROVIDED BY THE USER

Users, by checking the corresponding boxes and entering data in the fields marked with an asterisk (*) on the contact form or presented or download forms, expressly, freely and unequivocally accept that their data is necessary for the provider to attend to their request, the inclusion of data in the remaining fields being voluntary. The User guarantees that the personal data provided to the DATA CONTROLLER is accurate and is responsible for communicating any alteration to it.



The DATA CONTROLLER informs and expressly guarantees Users that their personal data will in no case be transferred to third parties and that whenever any type of personal data transfer is carried out, express, informed and unequivocal consent will first be requested from Users. All data requested through the website with an asterisk (*) is obligatory, as it is necessary for providing a service and/or for contracting. The voluntary data is convenient for being able to provide the User optimal service. In case of not all obligatory data being provided, it will not be possible to provide the service or to contract. In case of any voluntary data not being provided, it is not guaranteed that the information and services provided are fully adapted to Users’ needs.



3. SECURITY MEASURES

In accordance with current personal data protection regulations, the DATA CONTROLLER, in compliance with the principles of protection, integrity and security, will adopt security measures to avoid the loss, manipulation, dissemination or alteration of the data.

In some cases where it is necessary to conduct certain analysis, the personal data will be fully anonymised, making it impossible to link the information directly or indirectly with an individual. This case will involve aggregate data whose information will in no case be associated again with the affected party; that is, it is an irreversible anonymisation process. Likewise, to maximise the technical security measures, pseudonymisation processes may be conducted.