Privacy Policy
1. The data protection policy
This data protection policy is applicable to all personal data processing carried out by the controller, both through the www.aritmosagro.com website and for the rest of the processing.
Therefore, before providing us with personal data, it is essential that you are aware of our data protection policy.
If you have any questions about the data protection policy, you can contact this email: seguridad@aritmosagro.com
The user declares to have been informed of this personal data protection policy, accepting the processing of personal data by the responsible party for the purposes described.
The applicable regulations are as follows:
a. GDPR: Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons.
b. LOPDGDD: Organic Law 3/2018, of 5 December, Organic Law on the Protection of Personal Data and Guarantee of Digital Rights.
c. LSSI: Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce.
2. The identity of the person responsible
The data controller is Informàtica del Segre, S.L., with CIF B25035080, address at Calle Térmens, 8 · 25190, Lleida, telephone +34 973 188 300, e-mail seguridad@aritmosagro.com, registered in the Mercantile Registry of Lleida folio 184, volume 188, page I-2002, entry 3.
3. Processing of personal data
The processing of personal data that we carry out as controllers is described below.
to. Clients
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing: To establish and execute the legal relationship with the client related to the services or products contracted, compliance with legal, accounting, tax obligations and all those related or linked to the established legal relationship, to answer their doubts or questions and for the management, control, administration, expansion, execution and improvement of the relationship.
Advertising purpose: The data will be processed for advertising purposes in order to send you advertising by any means, including e-mail, sms, ems, mms, fax or equivalent means, of the data controller’s products and/or services related to the IT, technology, security and training sector. If you wish your personal data to be processed for advertising purposes, please give your express consent by ticking the corresponding box.
The legitimacy of the processing: The performance of a contract and consent.
The data collected: Name, surname, ID, professional contact address, email, NIF.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
b. Leads
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing: Your personal data will be processed in order to respond to your doubts or questions, derived from your contact with the controller.
The legitimacy of the processing: The performance of a contract and consent.
The data collected: Name, surname, ID, professional contact address, email, NIF.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
c. Suppliers
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing: Establish and execute the legal relationship related to the services or products contracted with the supplier, compliance with legal, accounting, tax obligations and all those related or linked to the established legal relationship, answer your doubts or questions and for the management, control, administration, expansion, execution, and improvement of the relationship.
The legitimacy of the processing: The performance of a contract and consent.
The data collected: Name, surname, ID, professional contact address, email, NIF.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
d. Human Resources
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing: Management of the employment relationship with employees.
Advertising purpose: The data will be processed for advertising purposes in order to send you advertising by any means, including e-mail, sms, ems, mms, fax or equivalent means, of the data controller’s products and/or services related to the IT, technology, security and training sector. If you wish your personal data to be processed for advertising purposes, please give your express consent by ticking the corresponding box.
The legitimacy of the processing: The execution of a contract.
The data collected: Name, ID card, social security number, address, email, telephone / mobile, marital status, date and place of birth, age, sex, nationality, bank account, profession, experience, education and skills.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
and. Access Control
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing: to control access and the management of the internal security of the controller’s facilities through the data provided for access control to the controller’s buildings.
The legitimacy of the processing: Legitimate interest in ensuring the security of people, goods and facilities on the part of the controller, which justifies the processing of data through access control.
The data collected: name, surname, telephone number and ID card.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
f. Personnel selection
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing: to manage the interested party’s candidacy for published selection processes, or for other vacant positions in accordance with their professional profile that may arise in the future within the activities of the data controller.
The legitimacy of the processing: provision of the consent of the interested party for registration in the personnel selection service.
The data collected: name, surname, telephone number, e-mail, CV, cover letter and any other personal data associated with the CV or professional profile.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
g. Video surveillance
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing:
Guarantee the safety of people, property and facilities.
Compliance with emergency plans
Use of video surveillance as a means of company control of both access and the presence of the worker in the workplace, and to verify compliance with their work obligations and duties.
The legitimacy of the processing: Legitimate interest
The data collected: Imagery.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
h. Contacts via web form
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing: to attend to the user’s queries and contact requests received through the website, to manage the requested service and to respond to them.
The legitimacy of the processing: the consent given by the user to the controller by ticking the corresponding box with a click.
The data collected: name, telephone, email, query, IP address, operating system and duration of the visit.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
i. Newsletter
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing: The sending of information, news, reminders and promotions that may be of interest to you, related to the activities of the data controller.
The legitimacy of the processing: provision of the consent of the interested party.
The data collected: email address, name and surname.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
j. Social Media
Identity of the person responsible: Informàtica del Segre S.L. with address at Polígon Activa Park, calle Térmens, número 8, C.P. 25190, telephone 973 188 300 and e-mail seguridad@aritmosagro.com.
The purpose of the processing: registration and monitoring of the corporate accounts of the controller’s social networks.
The legitimacy of the processing: the consent given by the user when registering on the social network.
The data collected: the personal data provided by the user or the social network when they become a follower of the same, such as name, surname, NIF, address, email and contact telephone number.
The recipients: In general, the controller will not transfer personal data to third parties, unless there is a legal obligation or we have the express consent of the interested party.
Specifically, personal data may be transferred to:
a. Public Administrations, Judges and Courts for the fulfilment of the legal obligations to which the responsible party is subject for its activity.
b. To financial institutions for the fulfilment of the obligations arising from the contract between the controller and the interested party.
c. To third parties in all cases in which it is necessary for the development, compliance, execution and control of the contract between the controller and the interested party.
d. To the data processors, access that in no case will imply a transfer of data, when it is necessary to access their personal data for the provision of the services that the controller has contracted with said processors, and with whom they have signed a data processor contract.
Retention periods: the controller will process personal data only for the time necessary to carry out the purposes for which they were collected, as long as the consent granted is not revoked. Once the relationship has ended, the information will be kept blocked for the legally established periods that are necessary for the formulation, exercise or defence of possible claims and will subsequently be deleted, unless there is a reason for conservation.
Rights: The interested party may exercise the rights of access, rectification, deletion, request that the processing of their personal data be limited, oppose the processing, request portability, not be subject to profiling or automated individual decisions and revoke the consent given without retroactive effects, by sending a written communication to the address of the data controller, providing the ID card or official document accrediting the identity of the interested party, indicating the request or right being exercised.
The interested party may file a complaint with the Spanish Data Protection Agency through the website www.agpd.es
The full text of the data protection policy, with the rest of the information in Article 13 of the GDPR, can be found on the following website: https://aritmosagro.com/politicas-de-privacidad/
K. Legal Notice Email
This message and its annexes are addressed exclusively to its recipient, it contains confidential information that constitutes a trade secret (Law 1/2019, on trade secrets), information that the controller has an interest in protecting, so its disclosure is legally prohibited. If you are not the recipient, have received it by mistake or are not authorized, please know that you cannot read, copy, save, disclose or make use of it, so we ask you to notify the seguridad@aritmosagro.com email as soon as possible or forward it to the sender’s address, and then proceed to delete the email and its attachments without reading them. Infringement of this notice may result in the commission of a crime of disclosure of secrets under article 197 et seq. of the Criminal Code (Law 10/1995).
In accordance with the regulations on the protection of personal data, we inform you that the personal data collected or generated during communication with the controller, such as the email address and any other information contained therein, will be processed by the controller in order to manage your request, both within the framework of a commercial relationship (contractual obligation) or potential relationship, as well as in the event of receiving an email spontaneously from you (legitimate interest). The data will be kept for as long as the relationship remains in force and, subsequently, as long as there are legal or contractual responsibilities. You can exercise your rights of access, rectification, deletion, limitation, portability and opposition at the address of the data controller. For more information you can review the data protection policy on this website: https://aritmosagro.com/politicas-de-privacidad/
5. Security measures
The controller has implemented the appropriate technical and organisational measures to ensure an adequate level of security, as well as to prevent the loss, misuse, alteration and unauthorised access of the data provided by the user.
6. Quality and updating of personal data
We inform you that it is mandatory that you provide us with the personal data we request, since the consequence of not doing so is that we cannot process your personal data.
The user is also obliged to ensure that the data provided to the controller is current, real and true and therefore to notify the controller of any update or modification thereof.
If the user communicates personal data of a third party, he/she is obliged to inform them beforehand under the terms of articles 13 and 14 of the GDPR, to obtain their prior, express and written consent and to process the data for the purposes authorised by the third party.
The User is solely responsible for any damage or harm caused to the controller or to third parties by the processing of personal data of a third party, or their own data when they are false, erroneous, not current, inadequate, excessive or irrelevant.
7. Minors
The contents of this Website are aimed at people of legal age, so people under 18 years of age are not allowed to provide us with personal data.
8. Modification of the Data Protection Policy
The controller may update or modify the data protection policy at any time, in accordance with applicable legislation, new case law or business practice, by publishing the modification thereof on this website.
Version 8, Release Date April 2021
All rights reserved © Informàtica del Segre, S.L. 2021, Lleida