Basic information on data processing (Regulation (EU) 2016/678 and OL 3/2018).
|Data controller||AREA ZERO 2.0, arquitectura, interiorismo y obras S.L|
Tax ID: B62629928
C/ Les Moles 18, Local, 08002 Barcelona
|Data processing purpose||To offer and manage our architecture, interior design and construction services.|
|Legal grounds||Consent obtained from the data subject.|
Execution of the service agreement.
|Recipients||No data will be communicated to third parties, unless this is required by law or it is necessary to fulfil the purpose of the processing.|
|Rights of data subjects||Data subjects have the right to exercise their rights of access, rectification, limitation in processing, deletion, portability and objection to the processing of their data by sending a request to our address.|
|Data holding period||While the commercial relation lasts or during the period of time that is necessary to fulfil legal obligations.|
|Complaints||Data subjects may file any complaints they consider convenient with the National Data Protection Agency (AEPD).|
|Additional information||You may consult additional, detailed information below in the “Questions about privacy” section.Frequently asked questions about privacyFrequently asked questions about privacy|
Questions about privacy
In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, (GDPR) and Organic Law 3/2018 of 5 December, on Personal Data Protection and guarantee of digital rights (LOPDGDD), we provide the following information about the processing of your personal data:
Who is your data controller?
Name: AREA ZERO 2.0, arquitectura, interiorismo y obras, S.L.
Tax ID: B62629928
Address: C/ Les Moles 18, Local 08002 Barcelona
Tel.: 930 132 896
For what purpose do we process your personal data?
- We process the information you provide to us in order to manage our architecture, interior design and construction services.
- In the event that you contact us through the contact forms on our website, we will process them in order to deal with your query.
- If you give us your consent, we will also process your data to send you information about our activities, products and services.
- When you enter our facilities, your image may be recorded by video surveillance cameras for security control purposes.
- If you send us your CV, we will process your data for the purpose of managing the personnel selection CV database.
How long are we going to keep your data?
- The personal data provided will be kept for as long as you use our services or wish to receive information, as you may object to the processing of your data for promotional purposes at any time, and thereafter, for the periods established to allow us to fulfil our legal obligations, which is 6 years for accounting and tax documents, pursuant to the provisions of Article 30 of the Code of Commerce, and 4 years for tax purposes, in accordance with Articles 66 to 70 of the General Tax Law.
- The images captured by the surveillance system will be kept for 1 month.
- In the case of CVs, the data will be kept for 1 year.
What are the legal grounds for processing your data?
The legal grounds for processing the data are to execute the service agreement and the consent that you give us.
In relation to information sent by minors under the age of 16, such personal data cannot be processed without the consent of their parents, guardian or legal representative. If this is not the case, the minor’s legal representative must inform us as soon as they are made aware of this situation.
With respect to the capturing of images by the surveillance system, the legal grounds are based on the legitimate interest in ensuring the security of people and property.
To whom will your data be communicated?
No data will be communicated to third parties, unless this is required by law or it is necessary to fulfil the purpose of the processing.
What are your rights when you provide us with your data?
- Any person has the right to obtain confirmation about whether or not we are processing their personal data.
- Data subjects have the right to access their personal data and to request the rectification of inaccurate data or, as the case may be, to request their deletion when, among other reasons, the data are no longer required for the purposes for which they were obtained.
- In certain circumstances, data subjects may request the limitation of the processing of their data and in such cases we will only keep the data for the purpose of exercising or defending claims.
- Furthermore, in some cases and for reasons related to their particular situation, data subjects may object to the processing of their data. In such cases we will stop processing the data, except if legitimate compelling grounds exist, or in order to exercise or defend possible claims.
- Data subjects have the right to data portability.
- Any data subject is entitled not to be the subject of a decision based solely on automated means, including profiling, if the decision produces legal effects concerning them or significantly affects them in a similar way.
- Lastly, data subjects have the right to submit complaints to the competent Control Authority
How can you exercise your rights?
By sending a letter and attaching a copy of proof of identity to our postal or electronic address.
How did we obtain your data?
The personal data we process are provided by the data subjects. The data subject guarantees that the personal data provided are truthful and they accept responsibility for communicating any change in them. Data marked with an asterisk are mandatory in order for us to provide the requested service.
What data do we process?
The data categories that we process in providing our services are the following:
- Identification data.
- Postal or electronic addresses.
In the case of the video surveillance system:
In the case of CVs, the following data categories are also processed:
- Personal characteristics.
- Academic and professional data.
The data are limited, since we only process the necessary data to provide our services and manage our activity.
What security measures do we apply?
We apply security measures in accordance with Article 32 of the GDPR, and have thus taken the necessary security measures to guarantee a level of security in keeping with the risk involved in processing the data, using mechanisms that allow us to ensure the confidentiality, integrity, availability and permanent resilience of the processing systems and services.
Some of these measures include:
- Information on personal data processing policies.
- Making regular backup copies.
- Control of access to data.
- Regular checking, evaluation and valuation processes