Clece / Política de privacidad de proveedores

DATA PROTECTION INFORMATION FOR SUPPLIERS

PRIVACY POLICY

1. WHO ARE THE JOINT DATA CONTROLLERS RESPONSIBLE FOR HOW YOUR DATA IS PROCESSED?

Clece and its subsidiaries are the joint data controllers and thus jointly responsible for processing the personal contact details of suppliers who provide services for any of our entities.

The most recent list of jointly responsible entities can be viewed in the following link.

2. FOR WHAT PURPOSE AND ON WHAT LEGAL BASIS DO WE PROCESS YOUR DATA?

We process the personal data of the supplier or of the supplier’s contact persons for the following purposes:

  • To maintain the commercial relationship.
  • For financial, economic, accounting, and administrative management purposes.
  • Sending commercial information.
  • The legal basis for any processing is the legitimate interest in managing and maintaining the commercial relationship between the parties.

3. WHICH PERSONAL DETAILS?

We process the necessary information to manage and maintain the commercial relationship, which will normally be identifying information, professional details, and professional contact information. In the case of sole traders, we may process their bank information for the appropriate financial management purposes.

3. HOW LONG WILL WE KEEP YOUR DATA?

Data will be kept while the commercial relationship remains in place, and in any event for a period of six years in accordance with article 30 of the Commercial Code.

4. WHO MIGHT WE SHARE YOUR DATA WITH?

Organisation

State tax administration.

Banks, savings banks, and credit banks.

In general terms, your data will not be shared with any third parties unless there is a legal obligation to do so.

5. HOW DO WE PROTECT YOUR PERSONAL DATA?

We undertake to ensure your personal data remains secure and take all reasonable precautions to do so. We implement all necessary organisational and technical measures necessary in accordance with the regulations in effect at any given time protecting unauthorised access and any modification, disclosure, loss, or destruction of any information. We require and contractually impose the same level of security from our service providers.

6. EXERCISE OF RIGHTS

Interested parties have the right to:

  • Obtain confirmation as to whether we are processing your personal data.
  • Obtain a copy of your personal data.
  • Rectify any inaccurate information.
  • Request removal when, among other reasons, the information is no longer needed for the purposes for which it was obtained.
  • Restrict the processing of their data, in which case we will only keep it for the purpose of filing or defending complaints.
  • Oppose the processing of their data, particularly with regard to receiving communications of a commercial nature.

You may request to exercise your rights by emailing the Data Protection Officer at: rgpd-clece@clece.es

If you feel that your rights have not been addressed satisfactorily, you can file a complaint with the Spanish Data Protection Agency.