Privacy Policy

PRIVACY POLICY:

RESPONSIBLE FOR TREATMENT

The Data Controller is LABOR, C.B., Calle Bucarelli, 4 , 41006 Sevilla (SEVILLA).

Privacy Principles

From LABOR, C.B. we are committed to working continuously to guarantee privacy in the processing of your personal data, and to offer you at all times the most complete and clear information we can. We encourage you to read this section carefully before providing us with your personal data.

If you are under fourteen years of age, please do not provide us with your data without your parents' consent.

In this section we inform you of how we treat the data of people who have a relationship with our organization. Starting with our principles:

- We do not request personal information, unless it is necessary to provide you with the services you require.

- We never share personal information with anyone, except to comply with the law, or with your express authorization.

- We will never use your personal data for purposes other than those expressed in this privacy policy.

- Your data will always be treated with a level of protection appropriate to the legislation on data protection, and we will not subject them to automated decisions.

We have drafted this privacy policy taking into account the requirements of current data protection legislation:

- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons (GDPR).

- Organic Law 3/2018, of December 5, Protection of Personal Data and guarantee of digital rights (LOPD).

- Royal Decree 1720/2007, of 21 December (RLOPD).

This privacy policy is drafted on December 6, 2018.

Due to the modification of treatment criteria, in order to facilitate their understanding or adapt it to current legislation, we may modify this privacy policy. We will update the date of it, so you can check its validity.

Treatments we perform

EMPLOYEE TREATMENT

Legal basis: RGPD:  6.1.b) Treatment necessary for the execution of a contract to which the interested party is a party or for the application at the request of the latter of pre-contractual measures.

GDPR: 6.1.c) Processing necessary for compliance with a legal obligation applicable to the controller.

Royal Legislative Decree 2/2015, of 23 October, approving the revised text of the Workers' Statute Law.

Purposes of the Treatment:  - Management of contracted personnel.

- Personal file. Time control. Formation. Pension plans. Prevention of occupational risks.

- Issuance of staff payroll.

- Management of trade union activity.

Collective:  Employees

Data Categories:  - Name and surname, DNI/CIF/Identification document, personnel registration number, Social Security number/Mutuality, address, signature and telephone number.

- Special categories of data: health data (sick leave, accidents at work and degree of disability, not including diagnoses), trade union membership, for the sole purpose of paying union dues (where appropriate), trade union representative (where appropriate), proof of attendance from their own and third parties.

- Personal characteristics data: Sex, marital status, nationality, age, date and place of birth and family data. Data on family circumstances: Date of registration and cancellation, licenses, permits and authorizations.

- Academic and professional data: Qualifications, training and professional experience.

- Detailed data on employment and administrative career. Incompatibilities.

- Presence control data: date/time entry and exit, reason for absence.

- Economic-financial data: Economic data of payroll, credits, loans, guarantees, tax deductions, reduction of salaries corresponding to the previous job (if applicable), judicial withholdings (if applicable), other withholdings (if applicable). Bank details.

Categories of Recipients:  - Entity entrusted with the management of occupational risks.

- General Treasury of the Social Security.

- Trade unions.

- Financial institutions.

- State Tax Administration Agency.

- Main contractors to whom we provide services as subcontractors.

International Transfers:  No international transfers of data are planned.

Deletion period:  They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and the processing of the data.

The economic data of this treatment activity will be kept under the provisions of Law 58/2003, of December 17, General Tax.

Security Measures:  Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

CONTACT PROCESSING

Legal basis:  Consent of the interested party

Purposes of the Treatment:  Attend to your request, send you information and follow up on the request.

Collective:  Contact persons, customers, suppliers

Data Categories:  Name and surname, telephone, email address

Categories of Recipients:  No transfers of data to third parties are contemplated.

International Transfers:  No international transfers of data are planned.

Deletion period:  The contact data will be kept for an indefinite period, or until the interested party requests its deletion.

Security Measures:  Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

CARE TREATMENT RIGHTS OF PEOPLE (ARCO)

Legal Basis: GDPR:  6.1.c) Treatment necessary for compliance with a legal obligation applicable to the controller.

General Data Protection Regulation.

Purposes of the Treatment:  Respond to requests in the exercise of the rights established by the General Data Protection Regulation.

Collective:  Individuals who request it (employees, customers, suppliers, contact persons)

Data Categories:  Name and surname, address, signature and telephone.

Categories of Recipients:  They may be communicated to the Control Authority (Spanish Agency for Data Protection) within the framework of an investigation for protection of rights initiated by the interested party.

International Transfers:  No international transfers of data are planned.

Deletion period:  They will be kept for a period of five years from the time of the request.

Security Measures:  Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

TREATMENT OF CANDIDATES SELECTION PROCESSES (HR)

Legal Basis: GDPR:  6.1.b) Treatment necessary for the execution of a contract to which the interested party is a party or for the application at the request of this of pre-contractual measures.

Purposes of the Treatment:  Selection of personnel and provision of jobs.

Collective:  Candidates submitted to procedures for the provision of jobs.

Data Categories:  - Name and surname, DNI/CIF/Identification document, personnel registration number, address, signature and telephone number.

- Personal characteristics data: Sex, marital status, nationality, age, date and place of birth and family data.

- Academic and professional data: Qualifications, training and professional experience.

- Employment detail data.

Categories of Recipients:  No transfers of data to third parties are planned.

International Transfers:  No international transfers of data are planned.

Deletion period:  They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and the processing of the data.

Security Measures:  Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

PROVIDER TREATMENT

Legal basis: RGPD:  6.1.b) Treatment necessary for the execution of a contract to which the interested party is a party or for the application at the request of the latter of pre-contractual measures.

GDPR: 6.1.c) Processing necessary for compliance with a legal obligation applicable to the controller.

Royal Legislative Decree 2/2015, of 23 October, approving the revised text of the Workers' Statute Law.

Law 58/2003, of 17 December, General Tax.

Purposes of the Treatment:  - Acquisition of products and / or services that we need for the development of our activity.

- Control of subcontractors if applicable.

Collective:  - Suppliers.

- Workers of our suppliers.

Data Categories:  - Name and surname, DNI/NIF/Identification document, address, signature and telephone number.

- Employment detail data: job title. Training in occupational safety.

- Economic and financial and insurance data: Bank details.

Categories of Recipients:  - Financial institutions. (Bill Pay)

- State Tax Administration Agency.

International Transfers:  No international transfers of data are planned.

Deletion period:  They will be kept for the time necessary to comply with the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and the processing of the data, in accordance with Law 58/2003, of December 17, General Tax,

Security Measures:  Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

CLIENT TREATMENT.

Legal basis: GDPR:  6.1.a) The interested party gave his consent for the processing of his personal data for one or more specific purposes.

GDPR: 6.1.b) Processing necessary for the execution of a contract to which the interested party is a party or for the application at the request of the latter of pre-contractual measures.

GDPR: 6.1.c) Processing necessary for compliance with a legal obligation applicable to the controller.

GDPR: 6.1.f) Processing necessary for the purposes of the controller's legitimate interests.

Royal Legislative Decree 2/2015, of 23 October, approving the revised text of the Workers' Statute Law.

Law 58/2003, of 17 December, General Tax.

Purposes of Processing:  Supply of our products / services

Collective:  Clients

Data Categories:  - Name and surname, DNI/NIF/Identification document, address, signature and telephone number.

- Economic and financial and insurance data: Bank details

Categories of Recipients:  - Financial institutions.

- State Tax Administration Agency.

International Transfers:  No international transfers of data are planned.

Deletion period:  They will be kept for the time necessary to comply with the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and the processing of the data, in accordance with Law 58/2003, of December 17, General Tax,

Security Measures:  Adapted to the requirements of Regulation (EU) 2016/679, General Data Protection Regulation.

YOUR RIGHTS

You have the right to request a copy of your personal data, to rectify inaccurate data or complete them if they are incomplete, or, where appropriate, delete them, when they are no longer necessary for the purposes for which they were collected.

You also have the right to restrict the processing of your personal data and to obtain your personal data in a structured and readable format.

You can object to the processing of your personal data in some circumstances (in particular, where we do not have to process it to comply with a contractual or other legal requirement, or where the object of the processing is direct marketing).

Once you have given us your consent, you can withdraw it at any time. At that time we will stop processing your data or, where appropriate, we will stop doing so for that specific purpose. If you decide to withdraw your consent, this will not affect any processing that took place while your consent was in force.

These rights may be limited; For example, if in order to fulfill your request we have to disclose data about another person, or if you ask us to delete some records that we are obliged to keep due to a legal obligation or a legitimate interest, such as the exercise of defense against claims. Or even in those cases where the right to freedom of expression and information must prevail.

You can contact us by any of the means indicated in the Treatment Manager section of this privacy policy, providing a copy of a document that proves your identity (usually the DNI).

Another of your rights is not to be subject to a decision based solely on automated processing, including profiling that produces legal effects or affects you.

In the event of any violation of your rights, such as, for example, that we have not responded to your request, you have the right to file a claim with the Data Protection Control Authority. This can be your country (if you live outside Spain) or the Spanish Data Protection Agency (if you live in Spain).

Additional information

Processing of your data outside the European Economic Area.

We do not use resources from companies covered by the Privacy Shield.

Links to Third Party Websites.

Our website may, from time to time, contain links to other websites. It is your responsibility to ensure that you read the data protection policy and legal conditions that apply to each site.

Third Party Data.

If you provide us with data from third parties, you assume the responsibility of informing them in advance as established in article 14 of the RGPD.

Follow us on Facebook

Facebook