Privacy Policy

fFrom KINSY, S.L. we understand that it is essential to maintain a transparent relationship with you, therefore, below, we present our Privacy Policy, so that you are duly informed at all times about how we collect and securely treat any data you provide us.

Your data will be processed in accordance with current legislation and, specifically, in accordance with the provisions of Regulation (EU) 2016/679 of April 27, 2016 (RGPD) regarding the protection of natural persons with regard to the processing of personal data and the free circulation of these data. Also in relation to Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights.

A careful reading of our Privacy Policy will provide you with the necessary information to know what destination we will give to the data you provide us.

1. WHO IS RESPONSIBLE FOR THE PROCESSING OF YOUR DATA?

If you, or an authorized person, have provided us with your data, we inform you that KINSY, S.L., with CIF: ESB30296990 is responsible for their handling. These data will be handled in accordance with the provisions of current regulations on the protection of personal data.

 

It is possible that there are other controllers in the processing we carry out, in which case we will always inform who is responsible for the processing thereof, as well as their identification data.

The Website may include hyperlinks or links that allow access to websites of third parties other than www.kinsy.es, and therefore are not operated by KINSY, S.L. The owners of said websites will have their own data privacy protection policies, being themselves, in each case, responsible for their own handling and their own privacy practices.

From KINSY, S.L. We are committed to complying with the obligation of secrecy of personal data and the duty to save them. For this, we adopt the necessary measures to avoid its alteration, loss, handling or unauthorized
access in accordance with the provisions of the Regulations.

 2. WHERE DO WE REPORT?

From KINSY, S.L. We inform you through the website www.kinsy.es in the section corresponding to the privacy policy. More information in “Legal Warning”.

3. WHAT PERSONAL DATA DO WE PROCESS?

The personal data that we process are:

  • Those that you decide to provide us voluntarily

  • The data derived from the communications you maintain with us.

  • The information corresponding to your own navigation in the case of Online Services, (IP address or information derived from cookies or similar devices (you can see our Cookies Policy on the web).

  • That information that is available in sources accessible to the public, to which we can legitimately access.

  • The data derived from the contractual or pre-contractual relationship that you maintain with us, including your image, always informing you in this case of the possibility of capturing your image.

  • Those that third parties provide us about you, there being a legitimate basis for it or having obtained your consent for it.

  • The data of third parties that you provide us with the prior consent of the third party in question.

4. HOW DO WE PROCESS DATA?

At KINSY, S.L. We always treat your personal data in strict compliance with current legislation. In addition, we inform you that we have the appropriate technical and organizational measures to guarantee an optimal level of security, thereby guaranteeing that only authorized persons will have access, that we will keep them intact, avoiding any intentional or accidental loss, and that we have reinforced the data processing systems and services.

However, because KINSY, S.L. cannot guarantee the impregnability of the Internet or the total absence of hackers or others who fraudulently access personal data, for this reason it undertakes to communicate without undue delay when a personal data security breach occurs that is likely to involve a high risk to the rights and freedoms of natural persons. Following the provisions of article 4 of the RGPD, a breach of the security of personal data is understood to be any breach of security that causes the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or unauthorized communication or access to said data.

The operations, management and technical procedures that we carry out in an automated or non-automated manner and that enable the collection, storage, modification, transfer and other actions on personal data, are considered personal data processing.

5. WHAT IS THE LEGITIMATION OF THE TREATMENT?

The basis of the legitimacy of the processing of Personal Data will be that resulting from the contractual or pre-contractual relationship, the employment relationship or any other that is required for the processing of data, such as express consent.

6. HOW DO WE MANAGE ELECTRONIC COMMUNICATIONS?

In accordance with the provisions of Law 34/2002 of July 11, on Services of the Information Society and Electronic Commerce, and Directive 2002/58/EC, we inform you that you can receive communications and information of a commercial nature through this electronic communication system (emails, automated form response messages and other communication systems) when you have given us your consent or in the case of commercial communications referring to products or services similar to those previously provided by your data controller.

In the event that you do not wish to receive communications and information of this nature, you can notify us by this same means indicating in the subject “UNSUBSCRIBE COMMERCIAL COMMUNICATIONS” so that your personal data is removed from our database. Your request will be activated within a period of 1 month from its submission. In the event that we do not receive an express response from you, we will understand that you accept and authorize our entity to continue making the aforementioned communications.

In the case of receiving such communications by these means, we inform you that the messages are addressed exclusively to their recipient and may contain privileged or confidential information. If you are not the intended recipient, we notify you that unauthorized use, disclosure and/or copying is prohibited under current
law.

7. HOW LONG DO WE KEEP YOUR DATA?

Personal data relating to natural persons that from KINSY, S.L. We collect by any means, they will be kept as long as the interested party does not request their deletion. Likewise, they will be kept as long as the relationship that originated the treatment of the data is maintained, respecting in any case the legal terms of conservation. At the end of this period, personal data will be deleted from all KINSY, S.L. systems.

8. WILL YOUR DATA BE COMMUNICATED TO THIRD PARTIES?

There will be no assignment, transmission or transfer of personal data, except for those already reported that are not as a result of a legal obligation. If at the request of the Public Administration or the Autonomous Institutions within the scope of the functions that the law expressly attributes to them, your data is requested, these will be transmitted.

If there is an assignment, transmission or transfer of personal data outside the cases previously provided, you will be previously informed so that, if applicable, you give us your consent.

But in order to organize ourselves correctly, it may be necessary from KINSY, S.L. to hire the services of advisors, professionals, or other service companies to process data under our instructions to have good operations and procedures that guarantee good management.

This treatment on behalf of third parties is regulated in a contract that is in writing or in any other legally accepted form and that allows its celebration and content to be proven, expressly specifying that the person in charge of the treatment will handle the data in accordance with our instructions and will not apply them or will use them for a purpose other than that which appears in said contract, nor will they communicate them, even for their conservation, to other people.

9. WHAT ARE YOUR RIGHTS?

The data protection regulations grant you the following rights:

  • Right of access: It is the User’s right to obtain confirmation of whether KINSY, S.L. is treating your personal data or not and, if so, obtain information about your specific personal data and the treatment that     KINSY, S.L. has made or is carrying out, as well as, among other things, the information available on the origin of said data and the recipients of the communications made or planned thereof.

  • Right of rectification: It is the User’s right to modify their personal data that turns out to be inaccurate or, taking into account the purposes of the treatment, incomplete.

  • Right of deletion (“the right to be forgotten”): It is the User’s right, provided that the current legislation does not establish otherwise, to obtain the deletion of their personal data when they are no longer necessary for the purposes for which they were collected or treated; the User has withdrawn their consent to the treatment and this does not have another legal basis; the User opposes the treatment and there is no other legitimate reason to continue with it; the personal data has been unlawfully processed; the personal data must be deleted in compliance with a legal obligation; or the personal data has been obtained as a result of a direct offer of information society services to a child under 14 years of age. In addition to deleting the data, the Data Controller, taking into account the available technology and the cost of its application, must take reasonable measures to inform those responsible for processing the personal data of the interested party’s request to delete any link to those personal data.

  • Right to limitation of processing: It is the User’s right to limit the processing of their personal data. The User has the right to obtain the limitation of the treatment when he contests the accuracy of his personal data; the processing is unlawful; the Data Controller no longer needs the personal data, but the User needs it to make claims; and when the User has opposed the treatment.

  • Right to data portability: In the event that the treatment is carried out by automated means, the User will have the right to receive their personal data from the Data Controller in a structured, commonly used and machine-readable format, and to transmit them to another responsible for the treatment. Whenever technically possible, the Data Controller will transmit the data directly to that other data controller.

  • Right of opposition: It is the right of the User not to carry out the processing of their personal data or to cease the processing thereof by KINSY, S.L.

  • Right not to be the subject of a decision based solely on automated processing, including profiling: It is the User’s right not to be the subject of an individualized decision based solely on the automated processing of their personal data, including the preparation of profiles, existing unless current legislation establishes otherwise.

If you want more information regarding the processing of your data, rectify those that are inaccurate, oppose and/or limit any processing that you consider is not necessary, or request the cancellation of the processing when the data is no longer necessary, you can write to KINSY, S.L. in Gran Vía, 15, 4º, 30004 – Murcia (Murcia) or by email to info@kinsy.es.

 

  • Said communication must reflect the following information: Name and surname of the user, the application request, address and supporting data.
  • The exercise of rights must be carried out by the user himself. However, they may be executed by an authorized person as the legal representative of the authorized person. In this case, the documentation that proves this representation of the interested party must be provided.

Likewise, we want to inform you that you can withdraw the consent given without affecting the legality of the treatment already carried out, by sending your request to the same address indicated in the previous paragraph. In this case, you must accompany your request, a copy of your ID or document proving your identity.

Also remind you that you have the right to file a claim with the Spanish Data Protection Agency (AEPD), if you consider your rights have been violated Data protection C / Jorge Juan, 6 28001-Madrid – FAX: 914483680- TELF: 901 100 099 – E-mail: ciudadano@agpd.es

10. WHAT IS THE PURPOSE AND BASIS OF LEGITIMATION FOR THE PROCESSING OF DATA?

We detail below the purposes of the data treatments carried out by some, or all, of the Treatment Managers listed above.

TREATMENT ACTIVITY

PURPOSE OF TREATMENT

LEGITIMATION BASIS

CONSERVATION PERIOD

Labor management

Personnel management for the formalization of a labor contract, file control, payroll management

Contractual relationship

5 years from the end of the contract

Tax and accounting management

Treatment necessary for compliance with tax and accounting obligations

Contractual relationship

Legal obligation for the person responsible

Prevailing legitimate interests of the controller or third parties

5 years from the end of the contract

The time needed to respond to legal obligations

Contact management

Treatment of the data to be able to maintain communication with the interested parties

Contractual relationship

Prevailing legitimate interests of the controller or third parties

Express consent of the interested party

5 years from the end of the contract

Until cancellation and/or opposition by the owner

Until the relevant loss of its use

Occupational risk prevention

Compliance with current legislation on occupational risk prevention and health surveillance

Contractual relationship

Legal obligation for the person responsible

Until the end of the contractual relationship

The term legally established by the specific regulations

Video surveillance

Capture of images by the video surveillance system and/or alarm system with image capture, to protect the assets of the entity

Prevailing legitimate interests of the controller or third parties

1 month

Management of candidates for a job

Selection of personnel and provision of jobs through curriculum management, personal interviews and assessment tests

Vital interests of the interested party or of other people

Express consent of the interested party

Maximum 1 year

Customer Management

Treatment of the data necessary for the maintenance of the commercial/contractual relationship with customers, billing, after-sales service, sending promotions and advertising and loyalty

Contractual relationship

Business relationship

5 years from the end of the contract

The term legally established by the specific regulations

Supplier management

Analysis, valuation, contracting, order management and supplier payment management

Contractual relationship

5 years from the end of the contract

The term legally established by the specific regulations

Orders management

Management and traceability of orders placed through the different distribution channels of the person in charge

Contractual relationship

Business relationship

Until the end of the contractual relationship

Management of potential customers

To be able to carry out the necessary communications with potential customers and/or other interested parties, sending budgets, rates, product costs and other information requested prior to establishing a contractual relationship

Business relationship

Until the relevant loss of its use

Biometric data management

Control of access to the facilities, control of shifts and other related treatments based on an identification of the holder by a biometric data

Contractual relationship

Prevailing legitimate interests of the controller or third parties

Until the end of the contractual relationship

Projects management

Management of customer and collaborator data necessary for the management and processing of consulting projects.

Contractual relationship

Express consent of the interested party

Until cancellation and/or opposition by the owner

The term legally established by the specific regulations

Access control

Entries and exits to the facilities or to a specific area or position record

Contractual relationship

Express consent of the interested party

Until cancellation and/or opposition by the owner

Until the relevant loss of its use

Until the end of the contractual relationship

alskdjf

ACCEPTANCE AND CHANGES TO THIS PRIVACY POLICY

 It is necessary that the User has read and is in agreement with the conditions on the protection of personal data contained in this Privacy Policy, as well as that he accepts the processing of his personal data so that the Data Controller can proceed to the same in the form, during the periods and for the indicated purposes. The use of the Website will imply the acceptance of its Privacy Policy.

KINSY, S.L. reserves the right to modify its Privacy Policy, according to its own criteria, or motivated by a legislative, jurisprudential or doctrinal change of the Spanish Agency for Data Protection. Changes or updates to this Privacy Policy will not be explicitly notified to the User. The User is recommended to consult this page periodically to be aware of the latest changes or updates.

This Privacy Policy was updated to adapt to Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation of these data (RGPD) and Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights.