Skip to main content
en_GB
en_GB es_ES

en_GB
en_GB es_ES

PRIVACY POLICY

USER INFORMATION

Who is responsible for the processing of your personal data?

Ingeniería de Protecciones y Control Eléctrico S.L. (Iprocel,S.L.) is RESPONSIBLE for the processing of the USER's personal data and informs you that this data will be processed in accordance with the provisions of Regulation (EU) 2016/679, of 27 April (GDPR), and Organic Law 3/2018, of 5 December (LOPDGDD).

What do we process your personal data for?

To maintain a commercial relationship with the user. The operations envisaged to carry out the processing are:

Process orders, requests, respond to queries or any type of request made by the USER through any of the forms of contact that are made available on the website of the RESPONSIBLE.

Why may we process your personal data?

Because the processing is legitimised by Article 6 of the GDPR as follows:

  • With the consent of the USER: Sending of communications
  • For the legitimate interest of the RESPONSIBLE: To process orders, requests, etc. at the request of the USER.

How long will we keep your personal data?

They shall be kept for no longer than is necessary to maintain the purpose of the processing or there are legal requirements dictating their safekeeping and when no longer necessary for that purpose, they shall be erased with appropriate security measures to ensure the anonymisation of the data or their total destruction.

To whom do we provide your personal data?

No communication of personal data to third parties is foreseen except, if necessary for the development and execution of the purposes of the processing, to our service providers related to communications, with whom the RESPONSIBLE has signed the confidentiality and data processor contracts required by the privacy regulations in force.

What are your rights?

The rights of the USER are:

  • Right to withdraw consent at any time.
  • The right of access, rectification, portability and deletion of your data, and the right to limit or oppose its processing.
  • The right to lodge a complaint with the supervisory authority (www.aepd.es) if you consider that the processing does not comply with the regulations in force.

Contact details for exercising your rights:

Iprocel, S.L.- C/. Mario Cesar, 17 Local 1 - 35010 Las Palmas de Gran Canaria (Las Palmas) or by e-mail rgpd@iprocel.com.

MANDATORY OR OPTIONAL NATURE OF THE INFORMATION PROVIDED BY THE USER

USERS, by ticking the corresponding boxes and entering data in the fields marked with an asterisk (*) in the contact form or presented in download forms, expressly and freely and unequivocally accept that their data are necessary to meet their request, by the provider, being voluntary the inclusion of data in the remaining fields. The USER guarantees that the personal data provided to the RESPONSIBLE are truthful and is responsible for communicating any changes to them.

The RESPONSIBLE informs that all data requested through the website are mandatory, as they are necessary for the provision of an optimal service to the USER. In the event that all the data is not provided, there is no guarantee that the information and services provided will be completely tailored to your needs.

SECURITY MEASURES

That in accordance with the provisions of the current regulations on personal data protection, the RESPONSIBLE is complying with all the provisions of the GDPR and LOPDGDD regulations for the processing of personal data under its responsibility, and manifestly with the principles described in Article 5 of the GDPR, whereby they are processed lawfully, fairly and transparently in relation to the data subject and are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.

The RESPONSIBLE guarantees that it has implemented appropriate technical and organisational policies to apply the security measures established by the GDPR and the LOPDGDD in order to protect the rights and freedoms of the USERS and has communicated the appropriate information to them so that they can exercise them.

For more information about privacy safeguards, you can contact the RESPONSIBLE PARTY at Iprocel,S.L. at the address C/. Mario Cesar, 17 Local 1 - 35010 Las Palmas de Gran Canaria (Las Palmas) or by e-mail to rgpd@iprocel.com.

WHISTLEBLOWER CHANNEL DATA PROTECTION POLICY

INFORMATION OR ENQUIRIES ABOUT REGULATORY BREACHES, NEGLIGENCE AND ILLEGAL OR UNETHICAL BEHAVIOUR:


INGENIERÍA DE PROTECIONES Y CONTROL, S.L. is responsible for the processing of personal data obtained within the framework of the Whistleblowing Channel. The personal data will be processed for the purpose of managing the Complaints Channel information system and specifically to manage, process and investigate all acts or omissions contrary to ethics, legality and the Code of Conduct and other internal corporate rules that make up the IPROCEL, as well as any other code to which the entity is adhered to, ensuring compliance and adopting the corresponding disciplinary or legal measures, and if applicable, the prosecution of criminal offences and the enforcement of criminal sanctions of the complaint received and the processing and resolution of the enquiry received.

Personal data will not be collected if it is manifestly not relevant to the processing of specific information or, if collected by accident, will be deleted immediately.

With regard to the personal data that may eventually be communicated through the Whistleblower Channel by employees of other companies of the group, the data controller, unless otherwise provided, shall be that company; IPROCEL shall be the data processor, according to the agreement to be signed between the two companies.

Reports submitted under this procedure may be anonymous, and the reporter need not be identified. Enquiries, however, may not be anonymous. Notwithstanding the foregoing, the personal data obtained on the occasion of the complaint and the internal investigation shall be treated confidentially and solely for the management and control of this procedure, applying the due guarantees and legally required privacy measures.

The legal basis for the processing of personal data is as follows:

  • For the management of a complaint: Compliance with the legal obligations applicable to the data controller Article 6.1 c) RGPD, regarding the duty to have a complaints channel and in accordance with Article 24 of Organic Law 3 /2018 on Data Protection and guarantee of digital rights. Failing this, because it is necessary for the fulfilment of a public interest, article 61 ERGPD.
  • To safeguard the legitimate interest of IPROCEL art. 6.1 f) RGPD, in order to be able to verify internal processes and protect the integrity of IPROCEL given that a query and its response may involve preventing an act or omission contrary to ethical compliance or legality.

Under no circumstances will IPROCEL carry out automated transfers based on the data submitted.

IPROCEL does not request or process any special categories of personal data such as, for example, information on health, racial or ethnic origin, religious and ideological convictions, trade union membership or sexual orientation. However, because there are free text fields in the form, you may voluntarily disclose such special categories, as well as personal data of third parties to which you refer in such communication.

In any case, and to the extent permitted by law, the data subject will not receive any data concerning the identity of the informants.

Access to the data is again limited to those within or outside IPROCEL who carry out the functions of internal control and management of the internal information system or to those in charge of the processing that may be appointed for this purpose. However, personal data may be communicated, if necessary, to interested third parties such as members of the internal information system team, employees of the organisation, external advisors or public authorities for the purposes of investigation and clarification of the facts reported, those responsible for the legal services for the determination of responsibilities, implementation of corrective actions and, where appropriate, the filing of legal and disciplinary actions required before the competent bodies in each case.

Without prejudice to the notification to the competent authority of facts constituting a criminal or administrative offence, only when disciplinary action against employees may be appropriate, access to the data shall be granted to staff with Human Resources management and control functions.

The data will be kept for the time necessary to decide whether to initiate an investigation into the facts reported. In any case, 3 months after the data have been entered, they will be deleted from the complaints system.

Complaints that have not been followed up may only be recorded in anonymised form. The rights of access, rectification, deletion and limitation of portability may be exercised under the terms specified in the current regulations by writing to C/ Mario César, 17, Las Palmas de Gran Canaria or to rgpd@iprocel.com attaching a photocopy of the DNIE indicating the specific right to be exercised. Likewise, in the case of considering that IPROCEL has not treated personal data in accordance with current regulations, it is possible to file a complaint with the Spanish Data Protection Agency (AEPD).

However, such rights shall not be exercised in the following cases:

  • The exercise of the right of access by the data subject does not include the disclosure of the informant's identification data. The right of access to the information contained in the file shall be limited to that information relating to the personal data being processed, without the exercise of this right being understood to include data relating to the informant.
  • The right of cancellation cannot be exercised by any participant during the course of the research.
  • When these rights are exercised on the basis of a report related to the prevention of money laundering and terrorist financing, the provisions of Article 32 of Law 10/2010 of 28 April on the Prevention of Money Laundering and Terrorist Financing shall apply.

Persons who make a communication through any of the channels that make up the Complaints Channel represent and warrant that the personal data provided are true, accurate, complete and updated and shall hold IPROCEL or, where appropriate, the data controller harmless from any liability that may arise from the breach of such representations and warranties.