The website www.muellescastellano.com/ is owned by Muelles Castellano, SL and complies with the requirements derived from Law 34/2002, of July 11, on Services of the Information Society and Electronic Commerce, and current regulations. on the protection of personal data and, in particular, Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and the free circulation of these data and the Organic Law 3/2018, of December 5, Protection of Personal Data and guarantee of digital rights.
Who is the RESPONSIBLE FOR THE TREATMENT?
The data that is collected or provided to us voluntarily through the Website, either by browsing it, as well as all those that you can provide us in the contact forms, via email or by phone, will be collected and processed by the File Manager, whose details are indicated below:
If, for any reason, you want to contact us in any matter related to the processing of your personal data or privacy (with our Data Protection Officer), you can do so through any of the means indicated above.
When, why, who, how, for what and for how long do we process your personal data?
When and why?
You can browse most of our web pages without providing any personal information, but in some cases this information is necessary to provide you with the electronic services you request from us.
If we need to collect personal data to provide you with the service, we will treat the information according to the policy set out in this document and in the specific conditions of the specific service in question (if any), which contain specific privacy statements on the use of the data. and they inform you why, for what, how, for how long we treat your personal data and what security measures we implement.
Who collects your data?
The collection and processing of personal data that you may provide us, are carried out by our entity or, where appropriate, its data processors. In relation to the latter case, these managers are third parties who are required by contract to comply with the law in their activity and implement the appropriate security measures to protect said data.
The personal data that we request, or that you provide us by reason of your browsing, helps us to manage, provide and improve the services that you have requested.
For example, we will process your personal data to be able to manage the queries you send us, to be able to manage your participation in personnel selection processes, to send you electronic communications if you so request, and/or for the preparation of statistics. .
In this sense, we request an email when you use our contact forms on the web. We only collect the sender’s personal data necessary to respond to you.
When you subscribe to our newsletters, we also ask you for an email to be able to provide you with the service. In any case, you can manage your cancellation of the service whenever you want and we make means at your disposal to do so.
How do we treat your data?
We only collect personal information to the extent necessary to achieve a specific purpose. The information will not be used for a purpose incompatible with that described.
We only disclose the information to third parties if it is necessary for the fulfillment of the purpose of the service and only to the people who need to know them. All this in order that the service can be provided by treating your personal data with confidentiality and reserve, in accordance with current legislation.
In any case, our entity adopts security measures to protect the data against possible abuse or unauthorized access, alteration or loss.
How long do we keep your data?
We save the data only for the time necessary to fulfill the purpose of its collection or further processing. The period of conservation of the data will depend on the service and in each service the duration of the processing of personal data will be indicated.
At the end of this document we provide you with a table with the specific retention periods.
For what purposes will we process your personal data?
We process your personal data for the purpose of (i) managing your purchase or service provided; (ii) maintain the contractual and pre-contractual relationship for billing, estimating and monitoring it, as well as sending you information by electronic means regarding your request; (iii) sending communications about commercial information by electronic means that may be of interest to you, provided there is express authorization; (iv) we will be able to prepare a commercial profile based on the information you provide us in order to be able to offer you products and services according to your interests. No automated decisions will be made based on said profile.
We process your personal data for the purpose of (i) billing and (ii) maintaining business contact, (iii) as well as sending you information by electronic means about our products or services.
– Web or email contacts:
We process your personal data for the purpose of (i) answering your queries and requests; (ii) manage the requested service or process your order; (iii) send you commercial information by electronic means that may be of interest to you, provided there is express authorization; (iv) we will be able to prepare a commercial profile based on the information you provide us in order to be able to offer you products and services according to your interests. No automated decisions will be made based on said profile.
– Contacts social networks:
We process your personal data for the purpose of (i) answering your questions and requests, (ii) managing the requested service, answering your request or processing your order, and (iii) interacting with you and creating a community of followers.
We process your personal data for the purpose of (i) having you in the hiring selection processes, (ii) calling you for job interviews and evaluating your candidacy, (iii) communicating your CV to group companies, collaborators or related to the The sole purpose of making you participate in their selection processes, provided that you have given us your consent.
– Participants in our contests
We process your personal data in order to manage your participation in the contests that we organize as well as to publicize the winners of the contest and the award ceremony.
The participants who are awarded may be photographed or recorded on video and broadcast in any of the media, our website or other media. Consequently, it is possible that the image of the participants is captured, recorded and/or reproduced as an accessory to the main activity.
– Website users:
By browsing our website we collect information about your browser, your device and the data of the use you make of our website as well as any information you provide us when using our website. In anonymized or aggregated form, we may record the IP address (Internet access identification number of the device, which allows devices, systems and servers to recognize and communicate with each other).
The purpose of the treatment is (i) to obtain practical knowledge about the way in which users use our website that allows us to improve it; (ii) perform statistical analysis to help us improve our business strategy; (iii) perform web performance analytics and (iv) for technical security and systems diagnosis.
The data we obtain is not related to a specific user and will be stored in our databases.
The aforementioned data, as well as the personal data that you provide us with, are stored using cookies that are collected in a pseudonymous format and are subject to objections to the processing of this personal data, as detailed in the Policy of Cookies.
You can consult the Cookies Policy in the corresponding section.
In order to offer information or services of interest based on the User’s location, we may access data related to the geolocation of the User’s device in those cases in which the user’s configuration for this purpose allows it.
The Portal may offer functionalities to share content through third-party applications, such as Facebook or Twitter. These applications can collect and process information related to the user’s browsing on different websites. Any personal information collected through these applications may be used by third party users of these applications. Your interactions are subject to the privacy policies of the companies that provide the applications.
The Portal may host blogs, forums, and other social networking applications or services in order to facilitate the exchange of knowledge and content. Any personal information provided by the user may be shared with other users of that service, over whom we have no control.
What is the legitimacy for the processing of your data?
The legal basis for the processing of your data is (i) the execution of a contract and maintenance of the contractual relationship and (ii) your consent that is requested for the submission of offers of products and services through electronic means, without that in no case the withdrawal of this consent conditions the execution of the contract.
The legal basis for the processing of your data is (i) the execution of a contract in which the interested party is a party or for the application of pre-contractual measures.
– Web or email contacts:
The legal basis for the processing of your data is (i) the consent of the interested party.
All our forms have a check box that must be checked to access the services offered.
The purposes of the treatment will be the following:
The personal data that you provide us by this means will not be communicated to third parties, being Muelles Castellano, SL who directly responds to this type of query.
– Contacts social networks:
The legal basis for the treatment of your data is the acceptance of the contractual relationship with the provider of the corresponding social network manifested when registering in its application and in accordance with its privacy policies, which is external to us.
– Work with us:
In the event that you provide us with your curriculum vitae, either through the Website, email or physically at the home or any headquarters of Muelles Castellano, SL, it will be incorporated into its database. The curriculum will be stored for a period of 1 year, after which, if we have not contacted you, it will be deleted.
The legal basis for the treatment will be based on the express consent granted by the interested party for the treatment of the data contained in the curriculum when sending it and checking the box enabled for this purpose.
The purpose of the treatment is to incorporate you into present and future selection processes of Muelles Castellano, SL or any entity belonging to the business group.
In the event that the interested party finally joins Muelles Castellano, SL or any of the entities belonging to the business group as an employee, their data will be incorporated into a database owned by the same, in order to internally manage the employment relationship. employee employer.
– Newsletter sending:
The Website allows the option of subscribing to the Newsletter of Muelles Castellano, SL For this, it is necessary that you provide us with an email address to which it will be sent.
Said information will be stored in a database of Muelles Castellano, SL in which it will be registered until the interested party requests its removal or, where appropriate, Muelles Castellano, SL ceases to send it.
The legal basis for the processing of this personal data is the express consent given by all those interested who subscribe to this service by checking the box for that purpose.
The email data will only be processed and stored for the purpose of managing the sending of the Newsletter by the users who request it.
– Participants in our contests
The personal data collected will not be transferred to third parties.
– Website users:
To which recipients will your data be communicated?
Your data will not be transferred to third parties outside the service we provide, except legal obligation. Specifically, they will be communicated to the State Tax Administration Agency and to banks and financial entities for the collection of the service provided or product purchased.
Your data may also be communicated to our service providers when necessary for the execution of the contract. In these cases, the person in charge of treatment has contractually agreed to use the data only for the purpose that justifies the treatment and to maintain adequate security measures.
What security measures do we apply?
You can rest easy, we have adopted appropriate technical and organizational measures to guarantee the confidentiality, integrity and availability in the processing of your personal data that we carry out, specifically those that prevent the loss, misuse, alteration, unauthorized access and theft of data. personal.
What are your rights when you provide us with your data?
You can exercise your rights of access, rectification, deletion, portability, limitation or opposition to the processing of your data, including the right to withdraw your consent, as detailed below:
Right of access:You can ask us if we are treating your data and in what way.
Right of rectification:You can ask us to update your personal data if it is incorrect, and delete it if you wish.
Right to limit processing:In this case, they will only be kept by us for the exercise or defense of claims.
Opposition right:After your request to oppose the treatment, we will stop processing the data in the way you indicate, unless for compelling legitimate reasons or the exercise or defense of possible claims they must continue to be processed.
Right to data portability:In the event that you want your data to be processed by another company, we will facilitate the portability of your data to the new person in charge.
Right of erasure:You can request that we delete your data when it is no longer necessary for the treatment, you withdraw your consent, it is an illegal treatment or there is a legal obligation to do so. We will analyze the assumption and apply the law.
If you need more information about what rights you have recognized in the Law and how to exercise them, we recommend you go to theSpanish Data Protection Agency, which is the supervisory authority for data protection.
You can contact the Data Protection Officer prior to filing a claim against the data controller before the AEPD.
In the event that we have not assisted you in the exercise of your rights, you can file a claim with the Spanish Agency for Data Protection.
We have forms for the exercise of rights that can be requested from the email address mentioned above; You can also use those prepared by the Spanish Agency for Data Protection or those of third parties. These forms must be signed electronically or be accompanied by a photocopy of the DNI. If acting through a representative in the same way, it must be accompanied by a copy of your ID or electronic signature.
The forms must be presented in person or sent by post or email to the addresses that appear in the “Responsible Party” section.
The maximum term to resolve is one month from the receipt of your request.
How long will we keep your data?
Personal data will be kept as long as you maintain the relationship with us.
At the end of the same, the personal data processed in each of the indicated purposes will be maintained during the legally established periods. If this legal period does not exist until the interested party requests its deletion or revokes the consent granted, or during the period that a judge or court may require them, taking into account the limitation period for legal actions.
In each treatment or type of data, we provide you with a specific period, which you can consult in the following table:
|Data relating to||Document||Conservation|
|Clients and suppliers||Bills||4 years, art. 66 Law 58/2003, General Taxation.
10 years, (Prescription) Law 34/2015, of September 21, of partial modification of Law 58/2003, General Taxation (Art. 66bis)
|Documents and records of tax significance||General Tax Law arts. 66 to 70
4 previous fiscal years (years)
|Subjects subject to the Prevention of Money Laundering Law, documentation accrediting compliance with PBC obligations||Law 10/2010 art. 25
|Human Resources||Payroll, TC1, TC2, etc.||10 years, LO 7/2012|
|resume||Until the end of the selection process, and up to 1 more year unless the interested party revokes consent or requests its deletion|
|docs. of severance pay.
Temporary worker data.
|Law on infractions and sanctions in the social order (RD 8/2000): art. twenty-one
|Daily record of the working day.||RD Law 8/2019
|Documentation or computer records certifying compliance with the ORP regulations.
Documentation necessary for the obligation to pay Social Security contributions.
|RDL 5/2000 art. 4
|Digital tachograph: transfers and copies of data stored in memory.||Royal Decree 125/2017, of February 24.
|Marketing||Databases or web visitors.||As long as the treatment lasts.|
|Access control and video surveillance||visitor registration||Instruction 1/1996 AEPD
When it comes to a teaching center. (Placement in common areas of the school for the protection of minors.)
|Art. 22.3 Organic Law 3/2018, of December 5, Protection of Personal Data and guarantee of digital rights
AEPD Legal Report 475/2014
|Accounting||Accounting books and documents.
Partner agreements and boards of directors, company bylaws, minutes, board of directors regulations and delegated commissions.
Financial statements, audit reports.
Records and documents related to grants.
|Commercial Code art. 30:
|Fiscal||Prescription of the verification of the tax bases and deductions.||10 years, Law 34/2015, of September 21, of partial modification of Law 58/2003, General Taxation (Art. 66bis)|
|Accounting books and other mandatory record books (IRPF, VAT, IS, etc.) as well as the documentary supports that justify the entries recorded in the books.
Carrying out the administration of the company, rights and obligations related to the payment of taxes.
Administration of dividend payments and tax withholdings.
|4 years, arts. 66 to 70, General Tax Law.|
|Security and health||Workers’ Medical Records.||5 years|
|Environment||Information chemical or substantially dangerous substances.||10 years|
|Documents related to environmental permits While the activity is carried out.||3 years after the closing of the activity
10 years (crime prescription)
|Records about recycling or waste disposal.||3 years|
|Grants for cleanup operations must keep the documents of rights and obligations, receipts and payments.||4 years|
|Accident reports.||5 years|
|insurance||Insurance policies.||6 years (general rule)
2 years (damage)
5 years (personal)
10 years (life)
|Shopping||Record all deliveries of goods or provision of services, intra-community acquisitions, imports and exports for VAT purposes.||10 years|
|Legal||Documents Intellectual and Industrial Property.
Contracts and agreements.
|Permits, licenses, certificates||6 years from the expiration date of the permit, license or certificate.
10 years (penal prescription)
|Confidentiality and non-compete agreements.||Always the duration of the obligation or confidentiality|
|Data protection regulations||Records and documents accrediting compliance with the requirements of the data protection regulations (audits, reports, manager contracts, etc.)||During the duration of the data processing and thereafter during
|Documentation accrediting that the requests for the exercise of rights of the interested parties are met||During
3 years after application
|Logs/Records of access to information systems||2 years|
|If the treatment is based on the consent of the interested party, proof of consent||During the duration of the data processing and thereafter during
|Complaints channel||Internal complaints
Regulatory Compliance Program (Corporate Criminal Liability)
|LOPDGDD 3/2018, art.24.4
3 months (general rule)
10 years (penal prescription)
|money laundering||The obligated subjects will keep the documentation in which the fulfillment of the obligations established in this Law is formalized for a minimum period of ten years.
In any case, the filing system of obligated subjects must ensure the adequate management and availability of documentation, both for internal control purposes, and for timely and proper attention to the requirements of the authorities.
Article 25 of Law 10/2010 of April 28, on the prevention of money laundering and terrorist financing.
|Health centers have the obligation to keep the clinical documentation in conditions that guarantee its correct maintenance and safety, although not necessarily in the original support, for the proper assistance to the patient during the appropriate time for each case and, at least, five years counted. from the discharge date of each care process.
Clinical documentation will also be kept for legal purposes in accordance with current legislation. It will also be kept when there are epidemiological, research or organizational and operational reasons for the National Health System. Their treatment will be done in such a way that the identification of the affected persons is avoided as much as possible.
In order to guarantee future uses of the medical record, especially healthcare, the minimum time established in the basic state regulations will be kept, counted from the discharge date of each healthcare process or from the death of the patient.
|5 years (minimum)
Article 17 of Law 41/2002 of November 14, on patient autonomy and rights and obligations regarding clinical information and documentation.
Law 10/2014, of December 29, of the Valencian CA (Health)
|Traffic data related to internet connections, emails and landline and mobile phone calls.||User identifier, IP address (source/destination), telephone number, IMSI and IMEI (source/destination), date and time of communication (start/end), identification of the type of service or communication used (voice, data, SMS or MMS,…)||1 year
Article 5 of Law 25/2007, of October 18, on the preservation of data related to electronic communications and public communications networks.
|Audit of accounts.||The account auditors and the account audit firms shall keep and safeguard for a period of five years, counting from the date of the audit report, the documentation referring to each audit of accounts carried out by them, including the auditor’s work papers. that constitute the evidence and support of the conclusions contained in the report.||5 years
Article 24 of the RDLeg. 1/2011 of July 1, which approves the consolidated text of the Account Audit Law.
|Building access control.||The data included in automated files created to control access to buildings must be canceled 1 month after it was obtained.||1 month
Fifth rule of Instruction 1/1996, of March 1, of the Data Protection Agency, on automated files established for the purpose of controlling access to buildings.
|Documents in the files of the Lawyers.||Being the actions that can be exercised to demand professional responsibilities from the lawyer of a personal nature and not having a special one indicated, the limitation period for them is, from October 7, 2015, five years, so during that At least a period of time (except for interruption of its computation) the finalized files must be kept.||5 years
Art. 1964.2 Civil Code, in wording given by Law 42/2015, of October 5, reform of the LEC.
|Registration books and parts of entry in hotel establishments.||The entry reports will be grouped into record books of a minimum of 100 pages and a maximum of 500. These record books must be kept for three years at the disposal of the Forces and Security Bodies, then discarded in a way that does not allow access to the personal information contained in the same
The registry includes data on children under 14 years of age, the part is signed by the minor over 14, if under 14 it is signed by the companion.
The data to be requested includes: landline phone, mobile phone, email, number of travelers, family relationship, if the establishment has an Internet connection.
The data also includes payment details: type (cash, credit card, payment platform, transfer…) identification of the means of payment (type of card and number, bank account IBAN, mobile payment solution, others), holder of the means of payment, expiration date of the card, date of payment.
OM INT/1922/2003 of July 3, of register books and parts of entry of travelers in hospitality establishments and other similar ones.
The data of the computer record must be kept for a period of three years from the end of the contracted service or provision (non-professional hosting is exempt from registration and must make the communication)
Royal Decree 933/2021, «Obligations of documentary registration and information of natural or legal persons who carry out activities of lodging and rental of motor vehicles.»
Update Order INT/1922/2003, including the new modalities of lodging activities: short-term tourist housing, internet portals.
|Driver recognition centers.||The center must keep the content of the reports issued for a period of ten years, including the opinions of the physicians, doctors and psychologists who have participated in the examination, the complementary reports that, where appropriate, have been presented and, in the of course referred to in section 2 of article 3, in addition, the documents that have been provided by the interested party.||10 years
Article 15.5 of Royal Decree 170/2010, of February 19, which approves the Regulation of recognition centers intended to verify the psychophysical aptitudes of drivers.