Privacy Policy
Personal data controller
Data controller: TASGA RENOVABLES, S.L.
TAX ID No. (CIF): B32354664
Address: Rúa do País Vasco, nº 30, Parque Empresarial A Sionlla, 15707 Santiago de Compostela (A Coruña)
E-mail: oficina@tasga.es
Purposes of the processing of personal data
Personal data is collected and managed by the Data Controller in order to facilitate, expedite and fulfil the commitments established between the website and the user, the maintenance of the relationship established in the forms that the latter fills out or to respond to a request or query.
Legal basis for the processing of personal data
The legal basis for processing personal data is express consent (art. 6.1.a of the GDPR), in some cases, the application of pre-contractual measures (art. 6.1.b of the GDPR) and, in the case of data processed to manage the Internal Information System, compliance with a legal obligation (Art. 6.1.c of the GDPR and Law 2/2023, of February 20, regulating the protection of persons who report regulatory violations and the fight against corruption).
Personal data categories
The categories of data processed on the website are identification data and academic and professional data, as well as other data that may be provided voluntarily in the case of forms WORK WITH US and INTERNAL INFORMATION SYSTEM.
Personal data retention period
Personal data will be kept for as long as necessary for the purposes for which they are processed and will be blocked for the periods of limitation resulting from the processing.
Data received through the WORK WITH US form will be kept for a period no longer than 24 months.
With regard to the data processed as a result of the use of the INTERNAL INFORMATION SYSTEM, these will be processed within the time limits laid down in Law 2/2023 of 20 February on the protection of persons who report regulatory infringements and the fight against corruption.
Recipients of personal data
The personal data of users will not be shared with third parties, except for a legal obligation.
International data transfers and automated profiling
No international data transfers are planned, nor will automated profiling be created.
Personal data security
The Data Controller undertakes to adopt the necessary technical and organisational measures, at a level of security appropriate to the risk of the data collected, to ensure the security of personal data and to prevent the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or the unauthorised communication of or access to such data.
However, due to the impossibility of guaranteeing the impregnability of the Internet and of fraudulent access to personal data, the Controller undertakes to notify the data subject without undue delay when a breach of security of personal data occurs that is likely to result in a high risk to the rights and freedoms of natural persons.
Rights arising from the processing of personal data
Data subjects have and may, therefore, exercise the following rights recognised in the GDPR and Organic Law 3/2018, of 5 December, on the Protection of Personal Data and the guarantee of digital rights:
- Right of access: to obtain information about specific personal data and the processing carried out.
- Right to rectification: request that inaccurate or incomplete data be modified.
- Right to erasure: request the erasure of data when they are no longer necessary for the purposes for which they were collected or processed, consent to the processing has been withdrawn and there is no other lawful basis for the processing, the data subject objects to the processing and there is no other legitimate ground for continuing the processing, the data have been processed unlawfully or the data must be erased pursuant to a legal obligation.
- Right to restriction of processing: limit the processing of data where the accuracy of the data is contested, the processing is unlawful, the data are no longer necessary but the data subject needs them for making claims, or where the data subject has objected to the processing.
- Right to data portability: Where processing is carried out by automated means, the data subject shall have the right to receive a copy of their data in a structured, commonly used and machine-readable form and to transmit them to another controller. Whenever technically possible, the Data Controller will transmit the data directly to the other controller.
- Right to object: This is the right of the interested party to prevent or stop the processing of their data.
Therefore, the interested party, duly accrediting their identity, may exercise their rights by means of a written communication addressed to the Data Controller, specifying:
- Name and surname of the interested parties. If the request is made by a third party, the representation granted for this purpose must be accredited.
- Request stating the specific reasons for the enquiry or information to which access is sought, indicating in the subject line the right you wish to exercise.
- Address for notification purposes.
- Date and signature of the applicant.
Complaints to the supervisory authority
If the interested party considers they have not obtained full satisfaction in the exercise of their rights, they may file a claim with the national supervisory authority by contacting the Agencia Española de Protección de Datos (Spanish Data Protection Agency), C/ Jorge Juan, 6 - 28001 Madrid (www.aepd.es ).
Acceptance and changes to this privacy policy
The data subject must have read and agreed to the terms and conditions on the protection of personal data contained in this Privacy Policy, and consents to the processing of said personal data so that the Data Controller can proceed in the manner, for the periods and for the purposes indicated.
The Data Controller reserves the right to modify its Privacy Policy, according to its own criteria, or motivated by a legislative, jurisprudential or doctrinal change of the Spanish Data Protection Agency. Changes or updates to this Privacy Policy will not be explicitly notified to the user. It is recommended that you check this page periodically for the latest changes or updates.