Go to Top
Mecanizados Kanter

Privacy policy

Privacy Policy

This Privacy Policy governs the use of the Internet portal service https://www.mecanizados-kanter.es/, whose data controller for identification purposes is:

  • • Controller: Mecanizados Kanter, S.A.
  • • Tax ID (CIF): A20441630
  • • Address: Egiburuberri, 9 A, Errenteria, 20100, Gipuzkoa.
  • • Telephone: (+34) 943 492 318
  • • Email: kanter@kanter.es

The Controller guarantees compliance with the current regulations on personal data protection, as set out in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons (GDPR) and in Organic Law 3/2018 of 5 December on Personal Data Protection and Guarantee of Digital Rights (LOPDGDD).

Below, we inform you in general terms about the uses of your personal information, which will later be detailed together with their corresponding processing.

Principles: Which do we apply in data processing?

In processing your personal data, the Controller will apply the following principles, which comply with the requirements of the GDPR:

  • Principle of lawfulness, fairness and transparency: The Controller will always require consent for the processing of personal data, which may be for one or more specific purposes, about which the Controller will inform the User in advance with absolute transparency.
  • Principle of data minimisation: The Controller will request only the data strictly necessary for the purpose or purposes for which it is requested.
  • Principle of storage limitation: The Controller will retain the personal data collected only for the time strictly necessary for the purpose or purposes of the processing.
  • Principle of integrity and confidentiality: The personal data collected will be processed in such a way that its security, confidentiality and integrity are guaranteed.
    The Controller takes the necessary precautions to prevent unauthorised access to or misuse of users’ data by third parties.

Origin of the data – Where do we obtain your data?

The personal data collected comes directly from the information provided by users through the Controller’s website.

1.     We collect this information by the following means:

  • Contact form: We request personal contact data in order to respond to requests from users addressed to the Controller. For example, we may use this data to respond to your request and to answer any questions, complaints, comments or concerns you may have regarding the information included on the website, the services provided through the website, the processing of your personal data, questions regarding the legal texts included on the website, as well as any other queries you may have that are not subject to the contractual conditions.

Your personal data is processed with the utmost confidentiality, and the Data Controller has adopted the necessary technical and organisational measures to ensure the confidentiality and security of personal data, preventing its alteration, loss, unauthorised processing or unauthorised access.

In order for you to receive information and, where appropriate, to be able to book or use the products and services that the Data Controller offers through its website, it is necessary that you provide us with certain personal data required to personalise our services and adapt them to your interests and needs. We remind you that it is the user’s duty to inform the Data Controller of any changes to their data that may have been registered on our sites, so that such data can be updated in the corresponding files.

For what purpose will we use your data, what is the legal basis for this processing and how long will we keep it?

Purpose Legal basis Retention
Provision of the services you request from us Contractual relationship 5 years from the end of the relationship.
Sending information about activities by email or post Contractual relationship and consent Until consent is revoked.
Request for information Consent Until consent is revoked.
Management of employees Contractual relationship and legal obligation. 5 years
Management of suppliers Contractual relationship and legal obligation. 5 years
Compliance with legal and contractual obligations Contractual relationship and legal obligation. 10 years

Who may access and know the content of your data?

In order to fulfil the above purposes, the following persons and entities may have access to personal data. Their access will be limited to the data necessary to carry out the functions of the Data Controller. Confidentiality agreements or specific contracts regulating access to information, security measures and permitted uses of the data have been signed with all recipient entities and persons. The following may have access to the data:

  • Personnel duly authorised by the Data Controller.
  • Public authorities within the scope of their powers.

Legal basis – What is the legal basis for processing your data?

The legal basis for processing your data will be based on:

  • The data subject’s consent to the processing of his or her data, in accordance with Article 6.1.a) of the General Data Protection Regulation of the European Union. It is understood that the user accepts this privacy policy by ticking the box “I have read and accept the privacy policy” that appears in the data collection forms, or by sending an email to the contact addresses listed on the website.
  • The necessity for the performance of a contract to which the data subject is party, or in order to take pre-contractual measures at the request of the data subject, in accordance with Article 6.1.b) of the General Data Protection Regulation.

You may revoke your consent in accordance with Article 13.2.c) of GDPR 679/2016. This is an instruction given by the data subject to the Data Controller, notifying the withdrawal of the consent that was granted.

Recipients – To whom do we communicate your data?

Personal data will not be transferred except for the fulfilment of legally established obligations or to support the services linked to this processing.

Cookies policy

For this Website to function properly it needs to use cookies, which are pieces of information stored in your web browser.

You can consult all the information relating to the policy on the collection and processing of cookies on the Privacy Policy page.

Rights – What are your rights when you provide us with your data?

As a result of the processing of your personal data by the Controller, current legislation grants you a series of rights. Below is a summary explanation of each right to make it easier for you to exercise them:

  • Right of access: You have the right to know the personal data we process about you and the purposes for which we process it. Regulated in Article 15 of GDPR 679/2016.
  • Right to rectification: Your data will always be yours and, as such, you can request that we rectify it at any time if the data held in our records is incorrect. Regulated in Article 16 of GDPR 679/2016.
  • Right to erasure: This consists of asking the controller to delete any information concerning the data subject. Erasure entails blocking all data and retaining it at the disposal of public authorities for the period necessary for the limitation period of legal actions. Regulated in Article 17 of GDPR 679/2016.
  • Right to object: You may object to the processing of your data in relation to any of the purposes for which we process it, in accordance with the applicable privacy policies in each case. Regulated in Article 21 of GDPR 679/2016.
  • Right to restriction of processing: Regulated in Article 18 of GDPR 679/2016. You may request the restriction of processing in the following cases:
    • If you consider that the data we hold about you is not correct or accurate;
    • If, in the event that you consider that we are not lawfully processing your data, you prefer that we restrict the processing of such data rather than delete it;
    • If the data we hold is no longer necessary for the purposes for which we collected it, but you need us to retain it in order to lodge legal claims;
    • If, having exercised the right to object to any processing, you are awaiting a response from us.
  • Right to data portability: You have the right, whenever technically possible and reasonable, to request that the personal data you have provided to us directly be transmitted to another controller. If possible, we will transfer your data directly to the other controller, but if this is not possible, we will provide it to you in a standard format. Regulated in Article 20 of GDPR 679/2016.

You may exercise the rights you hold by contacting the Controller through any of the following means:

  1. By email addressed to the corresponding Data Controller, indicated in the heading of the document.
  2. By postal mail addressed to the corresponding Data Controller, indicated in the heading of the document.

If you do not wish to exercise a specific right but need to make a query or suggestion regarding the processing of your personal data, you may also contact the corresponding Data Controller.

Complaint to the Supervisory Authority

If you believe that your rights have not been respected by our organisation, you may lodge a complaint with the Spanish Data Protection Agency through any of the following means:

  • Electronic office: www.agpd.es
  • Postal address: C/ Jorge Juan, 6, 28001, Madrid
  • Telephone: 901 100 099 / 912 663 517

Lodging a complaint with the Spanish Data Protection Agency is free of charge and you do not need a lawyer or solicitor.

Consent of minors – What happens if you are under age?

In the event that any of our services are specifically aimed at children under fourteen years of age, we will seek the consent of parents or guardians for the collection of personal data or, where appropriate, for the automated processing of data in accordance with Article 7 of the LOPDGDD.

Accuracy, truthfulness and security of the data – How do we process your data?

The User is solely responsible for the truthfulness and correctness of the data provided, and we are exonerated from any liability in this regard. Users guarantee and are responsible, in any case, for the accuracy, validity and authenticity of the personal data provided, and undertake to keep it duly updated. The user agrees to provide complete and correct information in the registration or subscription forms. We will not be responsible for the accuracy of information that is not of our own creation and for which another source is indicated, and therefore we assume no responsibility for any hypothetical damage that may arise from the use of such information.

We also reserve the right to update, modify or delete the information contained on the website and may even limit or deny access to such information.

We will not be liable for any damage or loss which the User may suffer as a result of errors, defects or omissions in the information provided by the Controller, whenever it comes from external sources.

The data will be processed confidentially and subject to appropriate technical and organisational security measures to prevent alteration, loss, processing or unauthorised access.