|
|
EYSIUS EUROPA, S.L. B-63230759
936545928 protecciondatos@altima-sfi.com
|
|
|
|
|
|
ELYSIUS EUROPA, S.L., with its commercial brand SERVEIS FUNERARIS MALLORCA (hereinafter, “SFM”), respects current legislation on the protection of personal data, the privacy of users and the secrecy and security of data in accordance with the provisions of the applicable legislation on data protection, and applies the appropriate technical and organisational measures in order to guarantee and be able to demonstrate that the processing of data for which SFM is responsible complies with the aforementioned regulations.
1. WHO IS RESPONSIBLE FOR THE PROCESSING OF YOUR DATA?
The party responsible for the processing of personal data is ELYSIUS EUROPA, S.L . (hereinafter, SFM), with registered office at C/Saragossa, nº 6, 08830, Sant Boi de Llobregat (Barcelona) and tax identification number B-63230759.
Email:
2. WHAT PERSONAL DATA WILL WE PROCESS?
SFM only processes personal data that are relevant for the purposes mentioned in Section 4. In particular, it processes the following categories of personal data of the data subject (indicative, non-exhaustive list), regardless of the legitimacy of the processing and regardless of whether the data are obtained from third party sources or directly from the data subject:
- Identification data: name, surname and identity/passport number.
- Contact details: e-mail address, postal address and telephone number.
- Economic and bank details, necessary for the correct provision of the service.
- Contracted service data. These data are necessary for the correct provision of the service.
- Other data provided voluntarily by the data subject or third party when contacting us for any reason (making a complaint or enquiry, etc.) and providing a response. If you are a customer, they will be included in the contract file and will be used for the proper provision of the service (contact details of a third party for notifications, details of third parties who are authorised by the customer to carry out various formalities on their behalf in connection with their contract).
- Academic and professional data: training/qualifications, professional experience, and all those data that are included in the CV, in the case of selection processes.
- Browsing history data: IP address, websites visited and country of connection.
In general, personal data of minors will only be processed if their parents or legal guardians have given their consent for the processing which is necessary for the performance of the relevant contract/service, the fulfilment of a legal obligation and/or in our legitimate interest.
3. WHEN AND HOW DO WE GET THE DATA?
The submission of personal data through the forms on the website is completely voluntary, although failure to provide certain data may make it impossible to obtain a response.
Similarly, there will be personal data required for the provision of contracted services that it will be essential to provide, in which case we will inform you of the mandatory and/or necessary nature of providing personal data for the operation of the service.
In this sense, the concept of "client" includes any data subject who has the status of: declarant, contracting party, deceased, designated, relatives of the deceased or rightful claimant, who establishes a contractual or service relationship. In the event that personal data is provided by a person other than the data subject, the data provider shall be obliged to provide this information to the data subject beforehand, as well as to obtain the consent of the data subject when it is necessary for us to process the data.
4. WHAT DO WE USE PERSONAL DATA FOR AND WHAT IS THE BASIS OF LEGITIMACY?
We use personal data for the following purposes and with the following legitimate basis as the case may be:
|
|
SFM
|
SFM |
SFM
SFM SFM
|
|
|
|
|
|
5. HOW LONG DO WE KEEP THE DATA?
Data arising from the performance of a contract will be retained for as long as the contractual relationship we have established is maintained, so that it can be properly managed. Once the contractual relationship has ended, we must keep the data duly blocked for an additional period during which any legal liabilities arising from services provided or processing carried out may exist.
The personal data provided for other procedures other than the contractual relationship, such as queries, requests for quotations, etc., will be kept for the time necessary to process your request, plus an additional period for the purpose of attending to possible legal responsibilities deriving from the same.
If you have given us permission to send you commercial communications, we will retain your data until such time as you tell us that you no longer wish to receive offers, even if you have terminated your contractual relationship with us.
For compliance with legal obligations and the formulation, exercise and defence of claims, once the authorisations to use your data have been revoked by withdrawing your consent, or the contractual or business relations you have established with us have ended, we will retain your data only to comply with legal obligations and to allow the formulation, exercise or defence of claims during the limitation period for actions arising from the contractual relations.
We will process these data by applying the necessary technical and organisational measures to ensure that they are only used for these purposes.
We will destroy your data when the retention periods imposed by the regulations governing SFM's activity and the statute of limitations for administrative or legal actions arising from the established relationships have elapsed.
6. RECIPIENTS OF PERSONAL DATA
(i) Group entities: We may share your personal data with entities belonging to the Altima Group, parent companies and/or subsidiaries, for the purposes set out in this Privacy Policy.
We also specifically inform you that the Entities of the Áltima Group share, with varying degrees of integration, common IT services and accounting, personnel management and payroll services, among others, in order to take advantage of existing synergies, optimise resources and offer a better service to customers.
(ii) Other Entities: Personal data may also be communicated to other companies related to funeral services, such as insurers or mutual insurance companies, collaborators and service providers, such as, but not limited to: cemeteries, undertakers, marble workers, press or any other physical or digital means of communication of obituaries, experts, lawyers, auditors, consultants, specialists in administrative procedures, financial institutions, and other suppliers and professionals, who will process the personal data as data processors in the name and on behalf of the data controller, for the purpose of guaranteeing the services provided by said data controller in the execution of the contract or service, complying with the obligations derived from the applicable regulations, in legitimate interest and/or in accordance with the consent provided where applicable.
SFM follows strict criteria for the selection of service providers in order to comply with its data protection obligations and undertakes to enter into a data processing contract with them, imposing, among others, the following obligations: to implement appropriate technical and organisational measures; to process the personal data for the agreed purposes and only in accordance with SFM's documented instructions; and to delete or return the data to SFM upon termination of the provision of the services.
(iii) Official Bodies and Authorities: : Personal data will be provided to all those recipients to whom it is obliged to communicate such information in compliance with legal obligations, including, but not limited to: Competent Public Bodies and Administrations, such as the Spanish Tax Administration Agency or the Regional Tax Authorities, the personal data protection control authorities, Health and Environmental Control Authorities, the Courts and Tribunals, the Public Prosecutor's Office and/or the State Security Forces and Corps. As well as Customs and the agency responsible for dealing with Customs when a deceased person is transferred to a non-EU country.
7. INTERNATIONAL DATA TRANSFERS OUTSIDE THE EEA
SFM processes your data within the European Economic Area and, in general, we engage service providers who are also located within the European Economic Area (EEA) or in countries that have been declared to have an adequate level of protection.
However, when a family requests the transfer of a deceased person to a country outside the EEA. In such a case, we will provide the data of the deceased and the family representative to the competent authorities and public bodies in accordance with the relevant official procedures and regulations in each country. To safeguard personal data, the security measures set out in the GDPR and the Data Protection Act are applied in addition to the data protection regulations of the country of destination.
If, in addition to the above, we need to use service providers who process data outside the EEA or in countries that have not been declared as having an adequate level of protection, we will ensure that we guarantee the security and lawfulness of the data processing.
8. WHAT RIGHTS CAN YOU EXERCISE AND HOW?
The regulations recognise the following data protection rights, which are applicable to all data subjects:
|
|
|
SFM. |
|
|
|
|
|
|
|
|
|
|
|
|
The user may exercise the aforementioned rights through the following postal address: C/ Saragossa, 6, 08830 - Sant Boi de Llobregat (Barcelona) to ATT. DEPARTMENT RESPONSIBLE FOR RGPD. Communication made by the user to the following e-mail address will also be valid: protecciondatos@altima-sfi.com. In both cases, a photocopy of the DNI or equivalent document that accredits identity and is considered valid in law must be provided. In the event of acting through legal representation, the ID card of the representative and a document accrediting representation must also be provided.
9. ARE PERSONAL DATA SECURE?
SFM assures you of the confidentiality of your personal data and guarantees the security of the same, adopting the necessary measures to avoid its alteration, loss, processing or unauthorised access.
10. CHANGES TO THE PRIVACY POLICY
We will review this Privacy Policy from time to time in order to keep you informed, for example, when new rules or criteria are published or new processing operations are carried out. In order to allow you to consider objecting to the processing of personal data or to unsubscribe from any service or functionality.
We will notify you through the usual communication channels whenever there are material or important changes to this privacy policy.
This Privacy Policy has been revised and posted on 11:31.