1 – SCOPE OF APPLICATION. CONTENT
Data responsible for the data
In compliance with article 10 of Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce, the Holder sets out its identification data.
Owner: Métrica6 Ingeniería y Desarrollos S.L.
Address: Avenida Juan López Peñalver 17, planta baja, ala B, oficina 3 derecha, CP: 29590, Málaga, Spain
Web Site: waisense.com
As part of Métrica6 we appreciate your interest in our company and our products. We take the protection of your privacy very seriously. Below, we inform you about how we handle your personal data collected from the various sources on the Website in compliance with the European General Data Protection Regulation (“GDPR”).
2 – HOW DO WE PROCESS YOUR PERSONAL DATA?
The main purpose of the data collected on the website and associated media is to enable the provision of the services requested by the user, deal with their queries and manage orders through the website.
In general, the purpose of such data processing is as follows: the initiation of contractual relations and the performance thereof (Art. 6(1)(b) GDPR), the protection of legitimate interests (Art. 6(1)(f) GDPR), processing based on your consent (Art. 6(1)(a) GDPR) and/or processing subject to legal provisions (Art. 6(1)(c) GDPR).
Below, you can find more information about what personal data we process and the purpose for which we collect it, as well as the legal basis for such processing.
2.1. – Contact us via email or contact form
When you contact us by e-mail or through the contact forms on the website, we also process both your e-mail address and the information you provide so that we can provide you with the best response to any questions or problems you may have.
Further information on the legal grounds for processing personal data can be found in Art. 6 para. 1 letter f of the GDPR (legitimate interests). Our legitimate interest in processing data is due to our desire to provide good customer service and optimal handling of your enquiries.
2.2. – Incident management and provision of support services
We process certain personal data in the event of reported malfunctions or damage to products developed by Waisense, including access to your personal data by Waisense’s support team and its partners for analysis and to provide a solution to the malfunction or damage, as well as to be able to contact you. This includes your contact details and the necessary information regarding the issue in question (“Issue Information”).
In order to provide you with optimal support and service and to contact you, we may pass on the Incident Information to the relevant local partner company located in your area of residence (“Local Support Company”). We may also share your contact details and information about the personal details of the issue in question with external service providers (e.g. installers), who act on our behalf in the event that service requests require an on-site visit.
Further information on the legal basis for the processing of personal data can be found in Art. 6 para. 1 b GDPR (performance of a contract).
2.3. – Communications for commercial purposes
We process your data (e.g. e-mail address and telephone number) in order to offer you specific Waisense products.
If you agree, we may also share your personal data with affiliated companies of the Métrica6 Group, i.e. the parent company of Métrica6 or other companies belonging to the Métrica6 Group, to send you marketing information.
Further information on the processing of personal data can be found in Art. 6 para. 1 letter a of the GDPR (consent).
2.4. – Web monitoring and analysis
More detailed information on terms and conditions and data protection can be found at https://www.google.com/policies/privacy/.
The processing of personal data by Google Analytics is based on Art. 6 para. 1 letter f of the GDPR. Our purpose and legitimate interest are based on the analysis of the use of our services.
3 – ARE YOU OBLIGED TO PROVIDE PERSONAL DATA?
There is no legal or contractual obligation to provide us with your personal data, with the exception of data that is necessary to provide you with our services. Without this personal data, our services may be limited.
4 – WITH WHOM DO WE SHARE YOUR PERSONAL DATA?
4.1. Contracting service providers
We sometimes use external service providers to process personal data where this is required for the provision of services. The processing of personal data by the service provider will be carried out on our behalf and according to our instructions (so-called “Processors”, see Art. 4 para. 8 GDPR). We engage the following service providers or categories of service providers:
IT service providers (including hosting, security reviews, algorithm testing, account management, web analytics).
Support service providers (including incident management).
4.2. Transfer of personal data to third parties
We may also share personal data with recipients, who process personal data under their own responsibility and for their own purposes (see Art. 4(7) of the GDPR). This includes transfer to the following recipients or categories of recipients:
Waisense partner companies and local support companies.
5 – DO WE TRANSFER YOUR PERSONAL DATA TO THIRD COUNTRIES?
Tratamiento de datos personales por parte de proveedores de servicios que actúan en nuestro nombre, incluido el seguimiento y el análisis web.
Any transfer of data to a third country will be carried out only in accordance with the applicable data protection regulations, in particular the adequate guarantee of data protection. We have implemented appropriate security measures, i.e. standard contractual clauses in accordance with Art. 46 para. 2 letter c of the GDPR, thus ensuring the security of your personal data.
6 – FOR HOW LONG DO WE STORE YOUR PERSONAL DATA?
In general, we process your personal data only for as long as it is necessary in relation to the initial specified, explicit and legitimate purpose.
In addition, we are subject to various statutory archiving and documentation obligations. The retention periods for such storage and documentation obligations can be up to ten years.
For possible legal claims, the retention period is also determined by statutory limitation periods, which can be up to thirty years; the regular limitation period is three years.
7 – HOW DO WE PROTECT YOUR PERSONAL DATA?
We update technical measures to ensure the security of your data, in particular to protect your personal information from threats when transferring such data and from prior knowledge acquired by third parties. These measures are constantly adapted to the latest article update.
To prevent unauthorised access to your personal data by third parties, the connection is encrypted using SSL encryption.
8 – WHAT ARE YOUR RIGHTS?
You have the right of access (Art. 15 of the GDPR), the right of rectification (Art. 16 of the GDPR), the right of erasure (Art. 17 of the GDPR), the right of restriction of processing (Art. 18 of the GDPR) and the right to data portability (Art. 20 of the GDPR).
Where personal data are processed with your consent, you have the right to withdraw your consent in accordance with Art. 7 para. 3 GDPR. Please note that your withdrawal only affects the future processing of your data based on your consent.
Insofar as personal data are processed on the basis of our legitimate interest in accordance with Art. 6 para. 1 letter f of the GDPR, you have the right to object in accordance with Art. 21 of the GDPR.
To exercise the above rights, you can contact us by sending an e-mail to firstname.lastname@example.org. To facilitate the processing of your request, please indicate in your message where you contacted us (e.g. in which region and under what circumstances). Please note that we may ask you to provide proof of identity to verify your eligibility to exercise these rights.
If you consider that the processing of your personal data is unlawful, you have the right to lodge a complaint with the competent supervisory body (Art. 77 of the GDPR). This right to lodge a complaint is without prejudice to any other administrative or judicial remedy.
Information about your right to object in accordance with art. 21 of the General Data Protection Regulation (GDPR).
You have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data on the basis of Art. 6 para. 1 letter f of the GDPR (processing of personal data based on a balance of interests); this includes profiling on the basis of these provisions (Art. 4 para. 4 of the GDPR).
If you choose to object to the processing, we will stop processing your personal data, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or if the processing is for the purpose of formulating, exercising or defending legal claims.
You also have the right to object at any time to the processing of your personal data for advertising purposes; this also applies to profiling insofar as it is linked to advertising purposes.
If you decide to object to the processing of data for advertising purposes, we will no longer process your personal data for such purposes.