Privacy Policy

Who is responsible for data processing (Data Controller)?


VAT ID: B44846368


Contact for Data Protection Office:

  1. Introduction

At our company, we are committed to protecting the privacy and personal data of our clients, employees, and any other individuals whose data is processed by us. We also recognize the importance of integrating environmental, social, and governance (ESG) considerations into our operations. This policy establishes the principles and procedures we follow to ensure the security and confidentiality of personal information, aligned with our ESG commitment.

  1. Collection and Use of Personal Data

2.1. We will only collect and use personal data that is necessary for legitimate business activities, including the generation of ESG business strategies and the measurement of social and environmental impact. We will obtain explicit consent from individuals before collecting any personal data, unless there is a legal basis for doing so.

2.2. We will use personal data only for the specific purposes for which it was collected and will not retain it for longer than necessary. Furthermore, we will ensure that the data collected is relevant and limited to what is necessary for our ESG purposes.

2.3. We will not share or sell personal data to third parties without explicit consent from individuals, unless there is a legal basis for doing so or it is necessary to fulfill legal obligations. Additionally, we will ensure that third parties with whom we share data comply with appropriate data security and protection standards.

  1. Data Security

3.1. We will implement appropriate technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, or destruction. This will include, among other measures, the use of information security systems, encryption of sensitive data, and limiting access to data to authorized personnel only.

3.2. We will also consider information security related to environmental and social impact when managing and protecting relevant data.

  1. Individual Rights

4.1. We will respect the rights of individuals regarding their personal data, including the right to access, rectify, erase, and object to processing. Additionally, we will consider rights related to environmental protection and social impact, facilitating participation and informed decision-making.

4.2. We will provide mechanisms for individuals to exercise their rights and respond to requests in a timely manner and in accordance with applicable laws and regulations, taking into account the specificities related to our ESG approach.

  1. International Data Transfers

5.1. If we transfer personal data to countries that do not provide an adequate level of data protection, we will implement appropriate safeguards, such as standard contractual clauses, to ensure data security during the transfer. Additionally, we will consider environmental and social sustainability in our decisions related to data transfers.

  1. Compliance and Review

6.1. We will regularly review and update this policy to ensure its continued adequacy and compliance with relevant data protection laws, regulations, and ESG standards.

6.2. Our staff is committed to complying with this policy, and any non-compliance may result in disciplinary measures. Furthermore, we will promote training and awareness regarding the importance of data protection and the ESG approach.

  1. Contact

7.1. We will provide contact information for inquiries related to data protection and any concerns or complaints regarding the handling of personal data, considering the environmental and social relevance in our responses.

Please note that this data protection policy with an ESG focus is a general statement of principles and practices. It is recommended that you adapt it to the specific needs of your company and comply with applicable laws and regulations in your jurisdiction.