Privacy Policy
1. Identification and contact details of the Controller
In compliance with the duty of information set out in Law 34/2002 on Information Society Services and Electronic Commerce (LSSI-CE) of July 11, the following general information data of this website is provided below:
ClĂnica Giro, a company domiciled at Avenida Ciro Gil, Edificio Sotovila 1, 11311 (Guadiaro, Cádiz), with Tax ID (CIF) 75919518Z, and telephone 699185601 (hereinafter, “ClĂnica Giro” or the “Company”) is the controller of your personal data. This privacy policy provides information on the use that the Company will make of your personal data as a user of the website (the “Web”).
The purpose of this Privacy Policy is to provide information on the rights that assist you under the General Data Protection Regulation (“GDPR”). If you have any questions regarding the processing of your personal data, contact the Company at the following address: coral@girosotogrande.es.
Likewise, we inform you that The Company has a Data Protection Officer, who can be contacted at the following address: coral@girosotogrande.es.
2. Necessary and updated information
All fields marked with an asterisk (*) in the Web forms will be mandatory, so that the omission of any of them could lead to the impossibility of providing the requested services or information.
You must provide truthful information, so that the information provided is always updated and does not contain errors, you must communicate to the Company as soon as possible, the modifications and rectifications of your personal data that occur through an email to the address: coral@girosotogrande.es.
Likewise, by clicking on the “I Accept” button (or equivalent) incorporated in the aforementioned forms, you declare that the information and data you have provided in them are accurate and truthful.
3. General information: description of the information contained in the privacy policy
In this privacy policy you will find a table identifying, for each of the different data processing carried out by the Company, the following information:
- The purposes of the processing of your personal data, that is, the reason why the Company processes your personal data.
- The legal bases that allow the processing of your data by the Company for each of the indicated purposes.
- The possible communication of your data to third parties, as well as the cause of said communication. For these purposes, we inform you that we do not assign your personal data to third parties unless there is a legal obligation. On the other hand, the data processors of the Company, that is, the service providers who have to access your personal data for the performance of their functions, may have access to your personal data. The table below will indicate, where appropriate, those other sectors to which other possible service providers of the Company who must access your personal data are dedicated. We inform you that you can request more detailed information regarding the recipients of your data by sending an email to the address coral@girosotogrande.es, indicating the specific processing about whose recipients you would like information.
- The existence of potential international data transfers. In case you would like to request a copy of the contractual clauses referred to in the table below, please contact The Company at the following email to make your request: coral@girosotogrande.es.
- The conservation period of the data you provide us. Likewise, we inform you that your data will remain blocked for the attention of judicial, administrative or fiscal claims, during the periods that result from the applicable legislation.
4. Detailed information of the processing carried out:
| PURPOSE OF PROCESSING | LEGAL BASIS |
| Manage inquiries raised through the consultation form | Legitimate interest of the Company to attend to information requests through the Web. |
| Accounting and fiscal management: billing management, tax obligations, etc... of the company's clients and/or suppliers | Maintenance, development and control of the contractual relationship between the parties. Compliance with legal obligations. |
| Administrative management: logistics management, warehouse, deliveries to the client, receipt of goods, etc. | Maintenance, development and control of the contractual relationship between the parties |
| Marketing: Commercial actions on our products or services directed to our clients or those people who have requested related information in the past including conducting satisfaction surveys to our clients. | Free and unequivocal consent of the interested party (potential clients), we inform you that the withdrawal of this consent can in no case condition the execution of the contract that existed between the parties; Legitimate interest of the company on the promotion and marketing of products or services similar to those obtained or requested by the interested parties in the past. |
| Collaborator management processing | Maintenance, development and control of the contractual relationship between the parties |
| Claims management processing (customer service) | Consent of the interested party |
| Processing of operations in campaigns through electronic means with potential clients | Consent of the interested party |
| Data protection rights processing | Consent of the interested party |
| Processing of debt requirement operations by third parties on suppliers | Legal obligation |
| Processing of resumes and job offers | The candidate authorizes The Company to process the documents sent to it, all the content that is directly accessible through Internet search engines, the profiles maintained on professional social networks, the data obtained in the assessment tests and the information provided in the job interview, with the aim of evaluating their candidacy |
4. a. Data processors outside the EU
No transfer of data to countries outside the EU is foreseen
4. b. Data retention
Client Data: will vary depending on the service the client contracts.
4 years: Law on Infractions and Sanctions in the Social Order (obligations regarding affiliation, registration, cancellation, contribution, payment of salaries...); Arts. 66 and following General Tax Law (accounting books...);
5 years: Art. 1964 Civil Code (personal actions without special term).
6 years: Art. 30 Commercial Code (accounting books, invoices, etc)
10 years: Art. 25 Law on Prevention of Money Laundering and Terrorist Financing.
Data in social network profiles: Until the user withdraws permission for it.
Data of candidates for internships or jobs: Up to six months from receipt, even if the selection is finished, provided that the contrary is not indicated by the candidate.
4. c. Confidentiality and document destruction
Professional secrecy. The Company and the collaborators who work with us and who have any type of intervention in the services provided to the client, are committed not to disclose or make use of the information they have accessed due to their profession. The information supplied by the client will have, in any case, the consideration of confidential, without it being able to be used for other purposes than those related to the services contracted to The Company
The Company undertakes not to disclose or reveal information about the client's claims, the reasons for the requested advice or the duration of its relationship with this.
Document destruction. With the aim of preserving and guaranteeing confidentiality, The Company undertakes to destroy all confidential information to which, due to a provision of services, it has had access when they are no longer necessary for the purpose for which they were collected, unless there is a legal obligation for their conservation. If the Client wishes to keep the original or a copy of said information, they must print it or save it by their own means or go to the headquarters of The Company to pick it up before its destruction.
5. Exercise of your rights
We inform you that you may exercise the following rights:
- right of access to your personal data to know which are being processed and the processing operations carried out with them;
- right of rectification of any inaccurate personal data;
- right of erasure of your personal data, when this is possible;
- right to request the limitation of the processing of your personal data when the accuracy, legality or necessity of the data processing is doubtful, in which case, we may keep them for the exercise or defense of claims;
- right to the portability of your personal data, when the legal basis that enables us for its processing of those indicated in the table included above is the contractual relationship or consent;
- right of opposition to the processing of your personal data, when the legal basis that enables us for its processing of those indicated in the table included above is the legitimate interest. For these purposes, we will stop processing your data unless we have a compelling legitimate interest or for the formulation, exercise or defense of claims.
- right to revoke your consent at any time.
You may exercise your rights at any time and free of charge by sending an email to coral@girosotogrande.es indicating the right you wish to exercise and your identification data.
If you consider that we have not processed your personal data adequately, you can contact the Data Protection Officer at the address coral@girosotogrande.es. However, we inform you that you have the right to file a claim with the Spanish Data Protection Agency if you consider that a violation of the legislation on data protection regarding the processing of your personal data has been committed.
6. Cookies
The Company does not use Cookies on its web pages.
7. Security measures
The Company adopts the security levels required by the GDPR appropriate to the nature of the data that is the object of processing at all times. Notwithstanding the foregoing, technical security in a medium like the Internet is not impregnable and there may be malicious actions by third parties, although The Company puts all the means at its disposal to avoid said actions.
8. Minors
Minors may not use the services available through the Web without the prior authorization of their parents, guardians or legal representatives, who will be the sole responsible for all acts performed through the Web by the minors in their charge, including the completion of the forms with the personal data of said minors and the marking, where appropriate, of the boxes that accompany them.