Contact

Privacy Policy

1. USER INFORMATION

Who is responsible for the processing of your personal data?

ITBID TECHNOLOGIES 2002, S.L.

Av. Josep Tarradellas, 8-10

Email: info@itbid.com

Phone number: (+34) 933 218 614

ITBID Does not currently have a designated DPO.

Why do we process your personal data and what is the legal basis for doing so?

We may process your personal data in different areas of our business:

Thus, through the different forms enabled on our website or actions in RRSS, we will treat them confidentially to achieve the following purposes:

In the Contact form

  • To respond to queries or any type of request made by the user through any of the contact forms made available on the website of the responsible party(for the legitimate interest of the responsible party, art. 6.1.f GDPR).
  • Send commercial advertising communications by e-mail, fax, SMS, MMS, social networks or any other electronic or physical means, present or future, that enable commercial communications with our customers. These communications will be made by the responsible party and will be related to its products and services, or those of its collaborators or suppliers, with whom it has reached a promotional agreement. In this case, third parties will never have access to personal data(by consent of the data subject, 6.1.a GDPR).
  • Conduct statistical analysis and market research(for the legitimate interest of the data controller, art. 6.1.f GDPR).

In the Request a demo form

  • To guide you through the requested demo and answer your queries(for the legitimate interest of the responsible party, art. 6.1.f GDPR).
  • Send commercial advertising communications by e-mail, fax, SMS, MMS, social networks or any other electronic or physical means, present or future, that enable commercial communications. These communications will be made by the responsible party and will be related to its products and services, or those of its collaborators or suppliers, with whom it has reached a promotional agreement. In this case, third parties will never have access to personal data(by consent of the data subject, 6.1.a GDPR).
  • Conduct statistical analysis and market research(for the legitimate interest of the data controller, art. 6.1.f GDPR).

On LinkedIn

  • Handling requests and queries to the person in charge
  • Report on activities and events organized by the person in charge
  • To inform about products or services offered by the responsible party.
  • review public profiles in the event of an employee search, adjusting them to the needs of the profile.

In addition to the processing that takes place through the website, within the scope of the different processing activities identified in its Register of Activities, we will process them to achieve, among others, the following purposes:

For the management of labor relations

  • In the selection and hiring process o,
  • During the course of the employment relationship as a result of the monitoring of labor activity
  • or in relations with the legal representation of workers or for health surveillance. (in most of these cases the processing will be justified as being necessary for the performance of the employment contract, and in other cases for compliance with legal obligations or because the agents involved have given their consent).

For the management of relations with Customers and Suppliers

  • The processing of personal data in relations with customers and suppliers shall be justified by the need to execute the contract concluded with them or for the execution at their request of pre-contractual measures. On other occasions, the processing of professional contact data will be justified by a legitimate interest of ITBID in initiating or maintaining a business relationship. This same legitimate interest is sufficient legal basis to send commercial mailings to our customers without prejudice to the right of opposition that may be exercised at any time. In other cases, we will have to treat such data to fulfill our obligations to the public administration, for example, with the Tax Agency not requiring your consent to the treatment.
  • Our main activity is based on the design, marketing and maintenance of a management software that allows our customers to manage the relationship with their suppliers, so the processing of data that our customers incorporate into this tool will be their sole responsibility. ITBID will be responsible for the processing of customer data necessary to manage the user account to provide personalized access to our platform and interactive services offered (as necessary for the execution of the contract as a SaaS provider, 6.1.b GDPR).
  • With respect to the data entered by customers, either directly or through our ITBID data dump support, it will be the Data Processor and will only process them according to the instructions given by the customer and documented in the Data Processor contract it has signed with each of them.

For the management of relations with Group companies

  • Our organization is in the process of expansion and has opened offices in other cities both nationally and internationally. This fact implies the need to maintain open information flows for the management of our organization that sometimes will involve the processing of personal data. Thus, our Administrative head office may act as a data processor for the rest of the companies of the Group based on a data processor contract that legitimizes the processing, being the legitimate interest of the responsible party or the third party sufficient legal basis for the processing.

Categories of personal data we process

In the contact forms we will process basic identification data such as the name of the contact, the name and email of the organization, and the contact telephone number.

In the Demo application we will process basic identification data such as name, company email, contact telephone number, etc.

In the social networks in which we can interact, public profile data insofar as they may be necessary for the recruitment of the position we may need.

In labor relations, we will process basic identification data such as Name and surname; DNI / CIF / identification document; Address; Email; Telephone or social security number; Personal characteristics such as Sex; Marital status; Nationality, Age; Date and place of birth; Employment details such as Position / position; Category or professional group; Department; Company; Non-economic payroll data; Leave data; Corporate contact data; Work permit. Academic and professional such as Qualifications; Training; Professional experience; Attendance control: Date / time in and out; Reason for absence; ID attendance control and also belonging to special categories such as Union membership or health-related data;

In relations with customers and suppliers we will treat professional contact data such as name and surname if you are a businessman or professional, a contact phone and email. If you are a legal entity we will process your corporate data such as the company name and CIF, address, telephone and email contact. We will also process economic data necessary for the billing of our products and services. In the user registration of the platform basic identification data such as username and password and other information that is necessary depending on the conditions of the service you contract with us. All this will be specified in our service contract and contract of service provider.

In the relations of the Group of companies, we may process personal data mainly for the maintenance of the labor relations of each of our delegations, since they are central administrative offices.

How long will we keep your personal data?

They will be kept for no longer than necessary to maintain the purpose of the processing or there are legal prescriptions that dictate their custody and when it is no longer necessary for that purpose, they will be deleted with appropriate security measures to ensure the anonymity of the data or the total destruction of the data.

Thus, when we process data on the basis of legitimate interest, we will keep them for as long as such interest is maintained. When the basis of legitimacy is the performance of the contract, as long as the employment relationship is maintained and once concluded, for the time required by applicable law for the fulfillment of other obligations, for example, by the statute of limitations for civil actions, we will keep certain data for a period of 5 years. Where the processing is based on the consent you have given us, as long as you have not revoked the consent and without prejudice to the validity of the processing carried out prior to the revocation. In the event that the processing is based on the fulfillment of legal obligations, it will be necessary to comply with the provisions of the applicable regulation to determine the duration of the processing. Thus, if we must comply with tax obligations, we will process personal data for a period of 4 years.

To whom do we provide your personal data?

No communication of personal data to third parties is foreseen except, if necessary for the development and execution of the purposes of the processing, to our service providers related to communications, with whom the RESPONSIBLE has signed confidentiality and data processor contracts required by the privacy regulations in force.

International Data Transfers

Not performed.

What are your rights?

The rights of the USER are:

  • Right to withdraw consent at any time.
  • Right of access, rectification, portability and deletion of your data, and limitation or opposition to its processing.
  • The right to file a complaint with the supervisory authority (www.aepd.es) if you believe that the processing does not comply with the regulations in force.

Contact information to exercise your rights:

ITBID TECHNOLOGIES 2002, S.L. AVDA. JOSEP TARRADELLAS, 8, AT. 3 – 08029 Barcelona (agpd@itbid.org)

2. MANDATORY OR OPTIONAL NATURE OF THE INFORMATION PROVIDED BY THE USER

USERS, by checking the corresponding boxes and entering data in the fields marked with an asterisk (*) in the contact form or presented in download forms, expressly and freely and unequivocally accept that their data are necessary to fulfill their request, by the provider, being voluntary the inclusion of data in the remaining fields. The USER guarantees that the personal data provided to the RESPONSIBLE are truthful and is responsible for communicating any changes to them.

The RESPONSIBLE informs that all data requested through the website are mandatory, as they are necessary for the provision of optimal service to the USER. In the event that all the data is not provided, there is no guarantee that the information and services provided will be completely tailored to your needs.

3. SECURITY MEASURES

That in accordance with the provisions of the regulations in force on personal data protection, the RESPONSIBLE is complying with all the provisions of the GDPR and LOPDGDD regulations for the processing of personal data under its responsibility, and manifestly with the principles described in Article 5 of the GDPR, whereby they are processed lawfully, fairly and transparently in relation to the data subject and are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.

The RESPONSIBLE guarantees that it has implemented appropriate technical and organizational policies to apply the security measures established by the GDPR and the LOPDGDD in order to protect the rights and freedoms of the USERS and has communicated the appropriate information to them so that they can exercise them.

For more information about privacy guarantees, you can contact the RESPONSIBLE person through ITBID TECHNOLOGIES 2002, S.L.. AVDA. JOSEP TARRADELLAS, 8, AT. 3 – 08029 Barcelona (agpd@itbid.org).

1. USER INFORMATION

Who is responsible for the processing of your personal data?

ITBID TECHNOLOGIES 2002, S.L., hereinafter, RESPONSIBLE, informs the USER that it has proceeded to create a profile on Social Networks: LinkedIn, which is responsible for the processing of personal data of the user that is carried out in such social networks and informs you that these data will be treated in accordance with the provisions of Regulation (EU) 2016/679 of 27 April (GDPR), and the Organic Law 3/2018 of 5 December (LOPDGDD), so it is provided the following treatment information:

What do we process your personal data for?

Purpose of processing: to maintain a relationship between the USER and the RESPONSIBLE which may include the following operations:

  • Handling requests and queries to the person in charge
  • Report on activities and events organized by the person in charge
  • To inform about products or services offered by the responsible party.
  • review public profiles in the event of an employee search, adjusting them to the profile needs.

Why may we process your personal data?

Legal basis for the processing: Article 6.1.a GDPR, the data subject has consented to the processing of his/her personal data for one or more specific purposes. The USER has a profile on the same social network and has decided to join the social network of the RESPONSIBLE thus showing interest in the information published therein, therefore, at the time of requesting to follow our official profiles, he/she gives us his/her consent to the processing of those personal data published on his/her profile.

The USER can access at any time to the privacy policies of the social network itself, as well as configure their profile to ensure their privacy.

The RESPONSIBLE has access to and processes the USER’s public information, in particular the USER’s contact name. These data are only used within the social network itself and will only be incorporated into a file of the RESPONSIBLE when necessary to process the USER’s request.

How long will we keep your personal data?

Data retention criteria: data will be retained as long as the USER does not revoke the consent given as indicated in this privacy policy.

To whom do we provide your personal data?

Communication of data: the information provided by the USER through the RESPONSIBLE’s social networks, including their personal data, may be published, always depending on the services that the USER uses, so it may be publicly available to other third party users of social networks. From the profile of each social network, the USER can configure what information he/she wants to make public in each case, see the permissions that have been granted, delete them or disable them, such as any third party application that is no longer desired to use.

No communication of personal data to third parties outside the social network is foreseen except, if it is essential for the development and execution of the purposes of the processing, to our service providers related to communications, with whom the RESPONSIBLE has signed confidentiality and data processor contracts required by current privacy regulations.

What are your rights?

Rights of the USER: may only be exercised in relation to information that is under the control of the RESPONSIBLE.

  • Right to withdraw consent at any time
  • Right of access, rectification, portability and deletion of your data, and of limitation or opposition to its processing.
  • The right to file a complaint with the supervisory authority (www.aepd.es) if you consider that the processing does not comply with the regulations in force.

Contact information to exercise your rights:

ITBID TECHNOLOGIES 2002, S.L.. AVDA. JOSEP TARRADELLAS, 8, AT. 3 – 08029 Barcelona (agpd@itbid.org)

2. USE OF THE PROFILE

The RESPONSIBLE will perform the following actions:

  • Access to public profile information
  • Publication on the USER’s profile of all information already published on the RESPONSIBLE person’s social network.
  • Send personal and individual messages through the social network channels
  • Page status updates that will be posted on the USER’s profile.

The USER can always control their connections, delete content that is no longer of interest to them and restrict who they share their connections with by accessing their privacy settings.

3. PUBLICATIONS

The USER, once he/she is a follower or has joined the RESPONSIBLE’s social network, may publish comments, links, images, photographs or any other type of multimedia content supported by the same. The USER, in all cases, must be the owner of the content published, enjoy the copyright and intellectual property rights or have the consent of the third parties concerned.

Any publication on the social network, whether text, graphics, photographs, videos, etc. that violate or are likely to violate morals, ethics, good taste or decorum, and/or that infringe, violate or violate intellectual or industrial property rights, the right to image or the law, is expressly prohibited.

In these cases, the RESPONSIBLE reserves the right to immediately remove the content, without prior notice, and may request the permanent blocking of the USER.

The RESPONSIBLE PARTY shall not be held responsible for the contents freely published by a USER.

The USER must keep in mind that his/her publications will be known by other users, so he/she is the main responsible for his/her privacy.

The images that may be published on the social network will not be stored in any file by the RESPONSIBLE, but they will remain on the social network.

4. DATA OF MINORS OR PEOPLE WITH SPECIAL ABILITIES

Access and registration through the RESPONSIBLE’s social networks is prohibited to minors under 18 years of age. On the other hand, if the USER has special abilities, it will be necessary the intervention of the holder of his parental authority or guardianship, or his legal representative by means of a valid document proving the representation.

The RESPONSIBLE shall be expressly exonerated from any liability that may arise from the use of social networks by minors or people with special abilities. The RESPONSIBLE’s social networks do not knowingly collect any personal information from minors, therefore, if the USER is a minor, he/she should not register or use the RESPONSIBLE’s social networks or provide any personal information.