The purpose of this policy is to inform data subjects of the different processing activities carried out by this organisation via the website and which affect your personal data, pursuant to the provisions of Law Organic 3/2018, of 5 December, on Personal Data Protection and the guarantee of digital rights, and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016.

1. DATA CONTROLLER IDENTIFICATION AND CONTACT DETAILS.

The organisation NATIONAL ASSOCIATION FOR CHILDREN’S FASHION AND CHILDCARE, ASEPRI, with registered address at PLAZA DEL AYUNTAMIENTO Nº 8, 2º, 4ª (46002 VALENCIA) VALENCIA, with Tax ID G46993044, telephone: 96 392 51 51 and email: asepri@asepri.es

SEGURIDAD Y PRIVACIDAD DE DATOS S.L. , with registered address at Avenida Cortes Valencianas Edificio Géminis Center, nº 39,13º C y D 46015 Valencia, telephone: 900 85 85 50 and email: infodpo@forlopd.es.

2. PURPOSES FOR PROCESSING YOUR PERSONAL DATA

CONTROLLER WEBSITE USERS/BROWSERS.

We will process the personal data provided on our web forms to:

  • Deal with requests, complaints and incidents sent via our contact channels on the website.
  • Understand browsing habits in order to detect possible computer attacks on our website.
  • Comply with legal obligations that are directly applicable and regulate our activity.
  • Protect and exercise our rights, or respond to any claims of any nature.
  • Where appropriate, send commercial communications on the assets and services included in our activities, and/or news or newsletters related to our sector.
  • Manage and send quotes requested.
  • Manage your data to schedule a requested appointment.
  • Manage and supervise your activity on the website blog/forum.
CLIENTS.

We will process the personal data provided on our web forms to:

  • Manage the commercial relationship.
  • Provide services contracted.
  • Formalities related to sending and receiving products purchased on our website.
  • Administrative, accounting and tax management.
  • Deal with requests, complaints and incidents sent via our contact channels on the website.
  • Understand browsing habits in order to detect possible computer attacks on our website.
  • Where appropriate, conduct quality surveys to assess our service.
  • Conduct prize draws, if any.
  • Where appropriate, send commercial communications on the assets and services included in our activities, and/or news or newsletters related to our sector.
  • Comply with legal obligations that are directly applicable and regulate our activity.
  • Protect and exercise our rights, or respond to any claims of any nature.
SUPPLIERS.
  • Commercial relationship management.
  • Deal with requests, complaints and incidents sent via our contact channels on the website.
  • Understand browsing habits in order to detect possible computer attacks on our website.
  • Comply with legal obligations that are directly applicable and regulate our activity.
  • Protect and exercise our rights, or respond to any claims of any nature.
  • Where appropriate, send commercial communications on the assets and services included in our activities, and/or news or newsletters related to our sector.
JOB VACANCY CANDIDATES OR JOB APPLICANTS.

We will process the personal data provided on our web forms to:

  • Manage your application.
  • Communicate with you to inform you of the progress of the selection process and your candidacy.
  • Understand browsing habits in order to detect possible computer attacks on our website.
  • Protect and exercise our rights, or respond to any claims of any nature.
  • Send communications related to new job offers that adapt to your needs, provided you have previously authorised us to send such information.
  • Transfer your data to group entities.

3. LEGAL BASIS FOR PROCESSING.

CONTROLLER WEBSITE USERS/BROWSERS.
  • In the consent provided to process your data for the purposes indicated. Failure to provide personal data will make it impossible to process your data for the purposes mentioned.
  • To comply with applicable legal obligations. In this case, the data subject may not oppose the processing of their personal data.
  • In our legitimate interest to protect our image, business and trajectory, preventing attacks on our website. In this case, the data subject may not oppose the processing of their personal data, although they may exercise the rights recognised in section eight of this policy.
CLIENTS.
  • Execute a contract to which you are party or apply pre-contractual measures. Failure to provide personal data will make it impossible to process your data for the purposes mentioned.
  • In the consent provided to process your data regarding purposes external to the development or execution of the existing contract. Failure to provide personal data will make it impossible to process your data for the purposes mentioned.
  • To comply with applicable legal obligations. In this case, the data subject may not oppose the processing of their personal data.
  • In our legitimate interest to protect our image, business and trajectory, preventing attacks on our website. In this case, the data subject may not oppose the processing of their personal data, although they may exercise the rights recognised in section eight of this policy.
SUPPLIERS.
  • Execute a contract to which you are party or apply pre-contractual measures. Failure to provide personal data will make it impossible to process your data for the purposes mentioned.
  • In the consent provided to process your data regarding purposes external to the development or execution of the existing contract. Failure to provide personal data will make it impossible to process your data for the purposes mentioned.
  • To comply with applicable legal obligations. In this case, the data subject may not oppose the processing of their personal data.
  • In our legitimate interest to protect our image, business and trajectory, preventing attacks on our website. In this case, the data subject may not oppose the processing of their personal data, although they may exercise the rights recognised in section eight of this policy.

JOB VACANCY CANDIDATES OR JOB APPLICANTS.

  • In the consent provided to process your data for the purposes indicated. Failure to provide personal data will make it impossible to process your data for the purposes mentioned.
  • To comply with applicable legal obligations. In this case, the data subject may not oppose the processing of their personal data.
  • In our legitimate interest to protect our image, business and trajectory, preventing attacks on our website. In this case, the data subject may not oppose the processing of their personal data, although they may exercise the rights recognised in section eight of this policy.

4. DATA RETENTION TERM OR CRITERIA.

The personal data provided will be stored for the time necessary to comply with the purposes for which they were initially collected.

Once they are no longer necessary for the processing in question, they will be stored duly blocked in order to, where appropriate, disclose them to competent Public Bodies, Judges and Courts or the Public Prosecutor’s Office, according to the statute of limitations for actions arising from the relationship with the client and/or storage terms provided in law.

If you have sent us your curriculum, we will store your data for a maximum term of one year from receipt by the entity, unless you have authorised us to maintain your data for a longer period.

Data blocking term:

  • CIVIL CODE. From 5 to 15 years as appropriate, according to the provisions of Article 1964.2 of the above mentioned legal text.
  • CODE OF COMMERCE. For 6 years, according to the provisions of Article 30 of the above mentioned legal text. Applicable to commercial information related to (invoices issued and received, receipts, corrected invoices, bank documents, etc.).
  • GENERAL TAX ACT. For 4 years according to the provisions of Articles 66 to 70 of the above mentioned legal text. Applicable to information related to tax obligations.
  • LAW 10/2010, OF 28 APRIL, ON PREVENTION OF MONEY LAUNDERING AND THE FINANCING OF TERRORISM. For 10 years, according to the provisions of Article 10 of the law.

5. AUTOMATED DECISIONS AND PROFILING.

The website does not make automated decisions nor create profiles.

6. RECIPIENTS.

During the term of processing your personal data the organisation may transfer your data to the following recipients.

  • Judges and Courts.
  • State Security Forces.
  • Other competent public authorities or bodies when the data controller is legally obliged to provide the personal data.
  • Banks and Financial Institutions in the event of a contract.
  • SEPBLAC.

7. INTERNATIONAL DATA TRANSFERS.

The organisations conducts international data transfers to entities that have a sufficient level of protection and offer all necessary guarantees according to data protection regulations. Authorisation for these transfers is established in Article 49 of the GDPR. Transfers are sent to entities worldwide.

8. RIGHTS.

Data subjects may exercise at any time and free of charge their rights to access, rectification and erasure, and request the restriction of the processing of their personal data, oppose such processing, request portability (whenever technically possible) or withdraw the consent provided, and where appropriate, to not be subject to decisions made only by automated processing, including profiling.

To do so, you may use the forms provided by the organisation, or write to the postal address or email address provided above. In any case, your request must be accompanied by a photocopy of your ID card or equivalent document, in order to accredit your identity.

Should you feel your personal data protection rights have been violated, especially if you are not satisfied when exercising your rights, you may file a complaint with the competent Data Protection Control Authority (Spanish Data Protection Agency) on its website: www.agpd.es.

In compliance with the provisions of Article 21 of Law 34/2002 on information society and electronic commerce services, if you do not want to receive more information on our services, you can unsubscribe by sending an email to the address , with the subject “UNSUBSCRIBE” or by clicking on the email section *to unsubscribe*.

9. VERACITY OF DATA.

The data subject guarantees that the data provided are true, correct, complete and updated; they undertake to inform of any change in the data, which they will provide via the channels provided for this purpose and indicated in section one of this policy. The data subject will be liable for any damages, whether direct or indirect, caused as a result of failure to comply with this obligation.

Should the user provide third party data, they declare that they have the data subject’s consent and undertake to convey the information contained in this clause to them, exempting the organisation from any liability arising due to failure to comply with this obligation.

Last review: Tuesday, August 6, 2019