Privacy policy
The privacy policy of MAQUINARIA GRECO SL (hereinafter, Greco Machinery) is governed by compliance with current legislation on personal data protection.
Data controller
All personal data collected directly from the data subject will be processed confidentially and will be incorporated in the associated processing activity, owned by Greco Machinery with registered address at Kareaga, 37, 48903 Barakaldo, Bizkaia.
The user may contact the Data Protection Delegate to resolve any doubts about the processing of his/her personal data, either at the above postal address or by email at maquinariagreco@maquinariagreco.com, for the attention of the Data Protection Delegate.
Purpose of personal data processing
All data provided in the different forms on the Greco Machinery website or on the website of any of its departments, as well as in the different administrative procedures that may be initiated by Greco Machinery, will be processed solely and exclusively for the purposes foreseen in each form or administrative procedure and for integration in the information systems of the relevant organisation.
The purpose of the data processing corresponds to each of the processing activities carried out by Greco Machinery.
Moreover, when visiting our website, data is automatically sent from your browser to our server in order to optimise our services and improve your user experience. See the Cookies Policy for further information.
Data types
Personal data may be collected through physical and digital forms hosted on this website, through emails, as well as automatically through cookies when visiting our website.
The types of data collected through forms and emails are:
CV submission form: Personal identification data, Personal contact data, Professional profile, CV, Candidate message.
Contact form: Personal identification data, Personal contact data, Business unit queried, Query.
The website may also collect data about the user's IP address, the date and time of the visit, the URL of the website arrived from, the pages visited on our website, or information about the user's browser. See the Cookies Policy for further information.
Source of data
The source of the data to be processed in accordance with this document is the data subject or his/her legal representative, i.e. any legal or natural person acting on his/her behalf; private entities that have prior, express consent to use the data and communicate them to us; Public Administrations; as well as sources accessible to the public (state journals, official websites of private organisations, administrations and public bodies, etc.).
Whenever such organisations provide us with data, they guarantee that they are empowered to do so, that the data are true, truthful, accurate and up to date, and that the data were not obtained using identity theft.
If this is not the case, the data subject undertakes to assume liability for any infringement or fine imposed on Greco Machinery as a result of this breach of personal data protection regulations.
Legitimation to process your data
Data processing is carried out in order to ensure the quality of the services offered by Greco Machinery and to successfully implement a contractual agreement, and/or may also be based on the consent of the data subjects, which must be provided through a clear affirmative action.
The legal basis for all processing activities involving data collected through the forms can be seen in the disclaimer provided along with each form.
Time limits for storing your data
All personal data provided will be retained for as long as necessary in order to meet the purpose they were collected for, and to determine any liabilities that may arise from this purpose, in addition to the periods set out in regulations on filing and documentation.
Recipients we may communicate your data to
The data you provide may be communicated to third parties for purposes directly related to the legitimate functions of both parties, e.g. to organisations or bodies that data communications must be made to by law.
Furthermore, you are hereby informed that Greco Machinery has subcontracted hosting, backup and maintenance services for its personal data processing systems to data processors located in the European Union.
Whenever supplier companies located outside the EU have access to personal data in connection with the provision of an ancillary service, only companies with sufficient guarantees to meet European data protection requirements will be chosen.
Security measures
Greco Machinery will implement the technical and organisational measures necessary to ensure the security of personal data and prevent any alteration, loss, unauthorised access or processing, taking into account the state of technology, the nature of the data stored and the risks they are exposed to, whether from human action or the physical or natural environment.
Rights of the data subject
Moreover, in accordance with the rights set out in current data protection legislation, you may exercise your rights of access, rectification, limitation of processing, erasure, portability and opposition to processing of your personal data. This can be done by sending a written, signed request to the postal address indicated above or by email to maquinariagreco@maquinariagreco.com, attaching a photocopy of your National Identity Card or other ID document. Any changes in your data must also be notified using one of the addresses indicated above.
Moreover, the data subject may contact the competent Supervisory Authority (the Basque Data Protection Agency, in the case of the Basque Country) in order to submit any complaints deemed appropriate. See the Basque Data Protection Agency's website at http://www.avpd.es for more information about your rights and to request the relevant forms.