The Privacy Policy forms part of the Legal Notice that governs the Website:
www.omnielectric.estogether with the Cookies Use Policy.
The Websitewww.omnielectric.esis owned by OMNIELECTRIC SL. and complies with the requirements arising from Law 34/2002, of July 11, on Information Society Services and Electronic Commerce, and current regulations relating to personal data protection, and, in particular, Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, on the protection of natural persons with regard to the processing of personal data, the free movement of such data and Organic Law 3/2018, of December 5, on Personal Data Protection and guarantee of digital rights.
OMNIELECTRIC SL. reserves the right to modify or adapt this Privacy Policy at any time. Therefore, we recommend that you review it each time you access the Website. If a user has registered on the website and accesses their account or profile, they will be informed if there have been substantial changes regarding the processing of their personal data.
Who is the DATA CONTROLLER?
The data collected or voluntarily provided through the Website, whether by browsing the site, as well as all those provided in the contact forms, via email or by telephone, will be collected and processed by the data controller, whose details are shown below:
| Identity | OMNIELECTRIC SL. |
| Tax ID (CIF): | B97979371 |
| Postal address | C/ La Granja, 3. 46440 Almussafes, Valencia. |
| Telephone | 96 111 81 26 |
| omnielectric@omnielectric.es | |
| DPD Contact: (if applicable) | |
| URL: | www.omnielectric.es |
| Commercial Registry | Valencia/València, Volume …, Book …, Page …, Section …, Sheet V-…. |
If, for any reason, you wish to contact us regarding any matter related to the processing of your personal data or privacy (with our Data Protection Officer), you can do so through any of the above-mentioned means.
When, why, who, how, for what purpose and for how long do we process your personal data?
When and why?
You can browse most of our websites without providing any personal information, but in some cases this information is necessary to provide you with the electronic services you request.
If we need to collect personal data to provide you with the service, we will process the information in accordance with the policy set out in this document and the specific conditions of the particular service in question (if any), which contain specific privacy statements about the use of data and inform you of why, for what, how, for how long we process your personal data and what security measures we implement.
Who collects your data?
The collection and processing of personal data that you may provide to us, are carried out by our entity or, where applicable, by its data processors.
In relation to the latter case, these processors are third parties who are contractually required to ensure their activities comply with the law and implement appropriate security measures to protect such data.
For what purpose?
The personal data we request from you, or that you provide as a result of your browsing, are used to manage, provide and improve the services you have requested.
For example, we will process your personal data to manage inquiries you send us, to manage your participation in recruitment processes, to send you electronic communications relating to your request, and, where applicable, to prepare statistics.
In this sense, we ask for an email address when you use our contact forms on the web. We only collect the personal data of the sender necessary to respond to you.
When you subscribe to our newsletters we also request an email address to provide you with the service; in any case, you can unsubscribe from the service whenever you wish and we provide means to do so.
How do we process your data?
We collect personal information only to the extent necessary to achieve a specific purpose. The information will not be used for an incompatible purpose.
We only disclose information to third parties if it is necessary to fulfill the service purpose and only to the people who must know it. All of this so that the service can be provided while processing your personal data with confidentiality and reserve, in accordance with current law.
In any case, our entity adopts security measures to protect data against possible abuse or unauthorized access, alteration or loss.
How long do we keep your data?
We keep data only for the time necessary to fulfill the purpose of their collection or subsequent processing. The retention period will depend on the service and in each service the duration of data processing will be indicated.
At the end of this document we provide a table with the specific retention periods.
What PURPOSES will we process your personal data for?
– Clients:
We process your personal data to (1) manage your purchase or service provided; (2) maintain the contractual and pre-contractual relationship for invoicing, preparation of budgets and follow-up, as well as sending information electronically relating to your request; (3) sending communications about commercial information by electronic means that may be of your interest, provided there is explicit authorization; (4) we may prepare a commercial profile based on information you provide to offer products and services in line with your interests. No automated decisions will be taken based on this profile.
– Suppliers:
We process your personal data for (1) invoicing, (2) maintaining commercial contact, and, where applicable, (3) sending information by electronic means about our products or services.
– Website or email contacts:
We process your personal data for (1) replying to your queries and requests; (2) processing the requested service or order; (3) sending commercial information by electronic means that may be of interest to you, provided there is explicit authorization; (4) we may prepare a commercial profile based on the information you provide to offer products and services according to your interests. No automated decisions will be taken based on that profile.
– Social media contacts:
We process your personal data to (1) respond to your queries and requests, (2) manage the requested service, respond to your request or process your order and (3) interact with you and create a follower community.
– Job applicants:
We process your personal data to (1) count on you in recruitment processes, (2) invite you to interviews and evaluate your candidacy, (3) communicate your CV to group companies, collaborators or related entities with the sole objective of involving you in their recruitment processes, provided you have given your consent.
– Participants in our contests:
We process your personal data to manage your participation in the contests we organize, as well as to publicize the contest winners and the awards ceremony.
Contest winners may be photographed or recorded on video and disseminated on any media, our website or other media. Consequently, the image of participants may be captured, recorded and/or reproduced incidental to the main activity.
– Website users:
By browsing our website we collect information about your browser, your device and data about how you use our site, as well as any information you provide when using our site. In anonymized or aggregated form, we may record the IP address (the Internet access identifier of the device, which allows devices, systems and servers to recognize and communicate with each other).
The purpose of the processing is (1) to gain practical knowledge about how users use our website to help us improve it; (2) to perform statistical analyses to help us improve our commercial strategy; (3) to perform website performance analytics and (4) for technical security and system diagnostics.
The data we obtain is not linked to a specific user and will be stored in our databases.
The aforementioned data, as well as any personal data you may provide, are stored using cookies collected in a pseudonymized format and are subject to presenting objections to the processing of these personal data, as detailed in the Cookies Policy.
You can consult the Cookies Policy in the corresponding section.
Information about your navigation may be stored using Google Analytics, for which we refer to Google’s Privacy Policy, since it collects and processes such information.
Similarly, from our website you can access the usefulness of Google Maps, which may have access to your location if you allow it, to provide more specific information about distance and/or routes to our locations. In this regard, we refer you to the privacy policy used by Google Maps to understand the use and processing of such data.
In order to offer information or services of interest based on the user’s location, we may access data related to the device geolocation of the User where the user’s settings allow it.
The Portal may offer features to share content through third-party applications, such as Facebook, Instagram or Twitter. These applications may collect and process information related to the user’s browsing on the different websites. Any personal information collected through these applications may be used by third-party users of them. Your interactions are subject to the privacy policies of the companies providing the applications.
The Portal may host blogs, forums, and other applications or social networks to facilitate knowledge and content sharing. Any personal information provided by the user may be shared with other users of that service, over which we have no control.
– Video surveillance:
We also inform you that we have a video surveillance system, whose function is to guarantee the safety of people, goods and facilities. The current regulations authorize the processing on the basis of legitimate interest, so your image may be recorded simply by accessing our facilities.
These data may be communicated to the Police Forces and State Security in case of necessity. The images will be kept for a maximum period of one (1) month from their capture.
What is the LEGITIMATION for processing your data?
Clients:
The legal basis for processing your data is (1) the execution of a contract and maintenance of the contractual relationship and (2) your consent that is requested for sending offers of products and services via electronic means, without in any case conditioning the execution of the contract by withdrawing this consent.
Suppliers:
The legal basis for processing your data is the execution of a contract in which the data subject is a party or for the application of pre-contractual measures.
Website or email contacts:
The legal basis for processing your data is the data subject’s consent.
In those cases where it is necessary to fill out a form and click the submit button to make a request, doing so implies that you have been informed and have expressly given your consent to the content of the clause attached to that form or acceptance of the privacy policy.
All our forms include a checkbox that must be marked to access the services offered. The purposes of processing will be as follows:
a) Manage the inquiries or information requests you send us via the Website, email or telephone.
b) Sending communications, special promotions, news or actions that may be of our interest or that you request even by electronic means. Since this is an ancillary purpose to the main one, you must check the box enabled for this purpose.
The personal data you provide to us through this means will not be disclosed to third parties, with OMNIELECTRIC, S.L. being the one that will respond directly to this type of inquiries.
Social media contacts:
The legal basis for processing your data is the acceptance of the contractual relationship with the corresponding social network provider expressed when you join their application and in accordance with their privacy policies, which are external to us.
Work with us:
If you provide your CV via the Website, by email or in person at any OMNIELECTRIC, S.L. office, it will be added to our database. The CV will be stored for a period of 1 year, after which, if we have not contacted you, it will be deleted.
The legal basis for processing will be the express consent given by the data subject for the processing of the data contained in the CV upon sending it and ticking the box enabled for that purpose.
The purpose of the processing is to include you in present and future recruitment processes of OMNIELECTRIC, S.L. or any entity belonging to the group.
If, ultimately, the data subject joins OMNIELECTRIC, S.L. or any entity belonging to the group as an employee, their data will be integrated into a database owned by the company to manage internally the employee-employer relationship.
– Sending newsletters (Newsletter):
The Website allows you to subscribe to OMNIELECTRIC, S.L.’s newsletter. You must provide an email address to which it will be sent.
Such information will be stored in an OMNIELECTRIC, S.L. database and will remain registered until the data subject requests to unsubscribe or, if applicable, OMNIELECTRIC, S.L. stops sending it.
The legal basis for processing these data is the express consent given by all those interested who subscribe to this service by ticking the box intended for this purpose.
The data of email addresses will only be processed and stored for managing the sending of the newsletter by users who request it.
– Participants in our contests:
The legal basis for processing your data is your consent when you register for the contest and accept the privacy policy and contest rules.
The personal data collected will not be disclosed to third parties.
– Website users:
The legal basis for processing data is our (1) legitimate interest in understanding how our users navigate to adapt to their interests and improve our relationship with them; as well as (2) your consent by navigating the site and accepting the cookies terms.
To which RECIPIENTS will your data be communicated?
Your data will not be disclosed to third parties outside the service we provide, except for a legal obligation. Specifically, they will be communicated to the State Tax Administration Agency, banks and financial institutions for the collection of the service provided or product purchased.
Your data may also be communicated to our service providers when necessary for the execution of the contract. In these cases, the data processor has contractually committed to use the data only for the purpose that justifies the processing and to maintain appropriate security measures.
What SECURITY MEASURES do we apply?
You can rest assured, we have adopted appropriate technical and organizational measures to guarantee confidentiality, integrity and availability in the processing of your personal data that we carry out, in particular those that prevent loss, misuse, alteration, unauthorized access and theft of personal data.
What ARE YOUR RIGHTS when you provide us with your data?
You can exercise your rights of access, rectification, erasure, portability, restriction or opposition to the processing of your data, including the right to withdraw your consent, as detailed below:
Right of access: You may ask us whether we are processing your data and how.
Right of rectification: You may request that we update your personal data if they are incorrect, and delete them if you wish.
Right of restriction of processing: In this case they will only be kept by us for the exercise or defence of claims.
Right of opposition: After your request to oppose processing, we will stop processing the data in the manner you indicate, unless, for compelling legitimate reasons, the exercise or defence of possible claims must continue to be processed.
Right to data portability: If you want your data to be processed by another company, we will provide you with the portability of your data to the new controller.
Right to erasure: You may request that we delete your data when they are no longer necessary for processing, you withdraw your consent, processing is unlawful or there is a legal obligation to do so. We will review the case and apply the law.
If you need more information about what rights you have under the Law and how to exercise them, we recommend contacting the Spanish Data Protection Agency (AEPD), which is the supervisory authority for data protection matters.
You may, where appropriate, contact the Data Protection Officer prior to making a claim against the data controller at the AEPD.
If we have not attended to the exercise of your rights, you may lodge a complaint with the AEPD.
We have forms for exercising rights which can be requested by the above-mentioned email address; you can also use those prepared by the AEPD or by third parties. These forms must be electronically signed or accompanied by a copy of your ID. If acting through a representative, it must also be accompanied by a copy of their ID or electronic signature.
The forms must be submitted in person or sent by postal mail or email to the addresses shown in the “responsible” section.
The maximum period to resolve is one month from the receipt of your request.
How LONG WILL WE KEEP your data?
Personal data will be kept as long as you maintain a relationship with us.
When this ends, the personal data processed for each purpose indicated will be kept for the legally provided periods. If there is no legal period, it will be kept until the data subject requests its deletion or revokes the consent given, or for the period that a court may require in light of prescription periods.
For each treatment or data category, we provide you with a specific period, which you can consult in the following table:
| Data relating to | Document | Retention |
|---|---|---|
| Clients and suppliers | Invoices | 4 years (prescription), art. 66 of Law 58/2003, General Tax Law. 10 years (prescription), Law 34/2015, of September 21, partial modification of Law 58/2003, General Tax Law (Art. 66 bis). Tax administration audits and investigations. |
| Contracts | 5 years | |
| Documents and records of tax relevance | General Tax Law, arts. 66 to 70 4 preceding fiscal years | |
| Persons obliged under the Money Laundering Prevention Law, documentation proving compliance with PBC obligations | Law 10/2010 art. 25 10 years | |
| Human Resources | Payrolls, TC1, TC2, etc. | 10 years, LO 7/2012 |
| Curriculums | Until the end of the selection process, and up to 1 year more unless the data subject revokes consent or requests deletion. | |
| Documents of dismissal indemnities. Contracts. Temporary worker data. Employee file. | Law on infringements and penalties in the social order (RD 8/2000): art. 21 4 years | |
| Daily records of working hours. | RD Law 8/2019 4 years | |
| Documentation or computer records proving compliance with PRL regulations. | RDL 5/2000 art. 4 5 years | |
| Documentation necessary for the obligation to pay Social Security contributions. | ||
| Digital tachograph: transfers and copies of data stored in memory. | Royal Decree 125/2017, of February 24. 1 year | |
| Marketing | Databases or website visitors. | For the duration of the processing. |
| Access control and Video surveillance | Visitor register | AEPD Instruction 1/1996 |
| Video surveillance | Video surveillance. | 30 days Article 22.3 of Organic Law 3/2018, of December 5, on Personal Data Protection and guarantee of digital rights |
| When dealing with a school center. (Placement in common areas of the center for protection of minors). | 30 days AEPD Legal Opinion 475/2014 10 days | |
| Accounting | Accounting books and other mandatory registers (IRPF, VAT, IS, etc.) as well as documentary supports that justify the entries recorded in the books. | Commercial Code art. 30: 6 years |
| Records and documents relating to subsidies. | ||
| Tax | Preservation of the assessment bases and deductions. | 10 years, Law 34/2015, of September 21, partial modification of Law 58/2003, General Tax Law (Art. 66bis) |
| Accounting books and other mandatory registers (IRPF, VAT, IS, etc.) as well as documentary supports that justify the entries recorded in the books. | ||
| Management of the company administration, rights and obligations relating to the payment of taxes. Administration of dividend payments and tax withholdings. | 4 years, arts. 66 to 70, General Tax Law. | |
| Safety and Health | Medical Records of Workers. | 5 years |
| Environment | Information on chemical or substantially hazardous substances. | 10 years |
| Documents relating to environmental permits while activity continues. | 3 years after the activity ends 10 years (criminal statute of limitations) | |
| Records on recycling or disposal of waste. | 3 years | |
| Insurance | Subsidies for cleaning operations; must keep documents of rights and obligations, receipts and payments. | 4 years |
| Accident reports. | 5 years | |
| Insurance policies. | 6 years (general rule) 2 years (damage) 5 years (personal data) 10 years (life) | |
| Purchases | Register all deliveries of goods or services, intra-community acquisitions, imports and exports for VAT purposes. | 10 years |
| Legal | Intellectual and Industrial Property Documents. Contracts and agreements. | 5 years |
| Permits, licenses, certificates | 6 years from the date of expiration of the permit, license or certificate. 10 years (criminal statute of limitations) | |
| Confidentiality and non-compete agreements. | Always the duration of the obligation or confidentiality | |
| Data protection regulation | Records and documents proving compliance with data protection requirements (audits, reports, processor contracts, etc) | While data processing lasts and after for 3 years |
| Documentation proving that data subjects exercise their rights | For 3 years after the request | |
| Logs/Information system access records | 2 years | |
| If processing is based on data subject’s consent, proof of consent | While data processing lasts and after for 3 years | |
| Whistleblowing channel | Internal complaints | LOPDGDD 3/2018, art. 24.4 |
| Regulatory compliance program (corporate criminal liability) | 3 months, unless the purpose of preservation is to leave evidence of the functioning of the prevention model for the commission of crimes by the legal entity. | |
| Money laundering | Obliged entities shall retain for a minimum of ten years the documentation recording compliance with the obligations established in this Act. | 10 years (criminal prescription) 10 years |
| In any case, the records system of obliged subjects must ensure proper management and availability of documentation, both for internal control and for timely attention to authorities’ requests. | Article 25 of Law 10/2010 of April 28, on the prevention of money laundering and financing of terrorism. | |
| Medical history | Healthcare centers are obliged to keep medical documentation in conditions that guarantee its proper maintenance and security, even if not necessarily in its original format, for proper patient care for the time appropriate to each case and, at a minimum, five years from the discharge date of each care process. | 5 years (minimum) |
| Medical documentation will also be kept for judicial purposes in accordance with current legislation. It will also be kept when there are epidemiological, research or National Health System organization and functioning reasons. Its processing will be performed in a way that avoids identifying the affected persons as far as possible. | Article 17 of Law 41/2002 of November 14, on the autonomy of the patient and rights and obligations regarding information and clinical documentation. | |
| To guarantee the future use of medical history, particularly for care, the minimum time established by national basic regulation will be kept, counted from the discharge date of each care process or from the patient’s death. | Law 10/2014, of December 29, of the Valencian Community (Health) | |
| Traffic data relating to internet connections, emails and fixed and mobile telephone calls. | User identifier, IP address (origin/destination), telephone number, IMSI and IMEI (origin/destination), date and time of the communication (start/end), identification of the type of service or communication used (voice, data, SMS or MMS, …) | 1 year Article 5 of Law 25/2007, of October 18, on the retention of data related to electronic communications and public communications networks. |
| Auditing of accounts. | Account auditors and audit firms shall keep and safeguard for five years from the date of the audit report the documentation relating to each audit conducted, including the auditor’s working papers that constitute evidence and support for the conclusions stated in the report. | 5 years Article 24 of Royal Decree-Law 1/2011 of July 1, which approves the consolidated text of the Auditing of Accounts Law. |
| Building access control. | Data included in automated files created to control access to buildings must be erased after 1 month from their collection. | 1 month Fifth rule of Instruction 1/1996, of March 1, of the Data Protection Agency, on automated files established to control access to buildings. |
| Documents in the files of lawyers. | Since actions that can be exercised to demand professional responsibility from the lawyer are of a personal nature and there is no special one, the statute of limitations for them is, since October 7, 2015, five years, so for at least that period (unless interruption of its counting) finalized files must be kept. | 5 years Art. 1964.2 Civil Code, as amended by Law 42/2015, of October 5, on reform of the LEC. |
| Travelers’ reception books and records of entry in hotel establishments. | Entry records must be grouped in registers of at least 100 pages and a maximum of 500. These registers must be kept for three years and be available to the Security Forces, after which they must be discarded in a way that does not allow access to personal information contained in them. | 3 years OM INT/1922/2003 of July 3, on books-records and entry parts of travelers in hospitality establishments and other analogous. |
| The record includes data of minors under 14 years; the entry part is signed by the minor from age 14; if under 14, it is signed by the accompanying person. | 3 years The data in the computer record must be kept for a period of three years from the end of the service or contracted provision (professional accommodation is exempted from registration and must be communicated). | |
| The data to be requested include: landline, mobile, email, number of travelers, relationship, if the establishment has internet connection. | Royal Decree 933/2021, ‘Obligations of documentary recording and information of individuals or entities carrying out hotel and motor vehicle rental activities.’ | |
| The data also include payment data: type (cash, credit card, payment platform, transfer…), identification of the payment method (card type and number, IBAN bank account, mobile payment solution, others), cardholder, card expiration date, payment date. | Update Order INT/1922/2003, including new modalities of hosting activities: short-term tourist accommodations, internet portals. | |
| Driver recognition centers. | The center must keep for ten years the content of the reports issued, including medical opinions and psychologists who participated in the recognition, the supplementary reports that, if applicable, have been presented and, in the case referred to in paragraph 2 of article 3, also the documents provided by the interested party. | 10 years Article 15.5 of Royal Decree 170/2010, of February 19, which approves the Regulation of centers for recognition aimed at verifying psychophysical aptitudes of drivers. |
