Política de privacidad

PRIVACY POLICY

I. PRIVACY POLICY AND DATA PROTECTION

Respecting the provisions of the legislation in force, GOGOA MOBILITY ROBOTS, SL (hereinafter, also “GOGOA”) undertakes to adopt the technical and organisational measures necessary to ensure a level of security appropriate to the risks inherent in the personal data collected.

Legislation incorporated into this Privacy Policy

This Privacy Policy is aligned with current Spanish and European regulations governing the protection of personal data on the internet. In particular, it observes:

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).
Organic Law 3/2018 of 5 December on the Protection of Personal Data and guarantee of digital rights (LOPD-GDD).
Law 34/2002 of 11 July on Information Society Services and Electronic Commerce (LSSI-CE).

Identity of the Data Controller

Controller: GOGOA MOBILITY ROBOTS, SL
Tax ID (CIF): B75139477
Registered address: C/ Arzubia, 10B 7 Bajo, 48220 Abadiño (Bizkaia)
Telephone: (+34) 666 325 361
E-mail: info@gogoa.eu

Pursuant to the GDPR and the LOPD-GDD, personal data collected through GOGOA’s website forms shall be incorporated into, and processed within, our filing system in order to facilitate, expedite and honour the commitments established between GOGOA and the user, to maintain any relationship arising from forms completed by the user, or to respond to a request or enquiry. Unless the exemption set out in Article 30.5 GDPR applies, a record of processing activities is maintained detailing, by purpose, each processing operation and the circumstances required by the GDPR.

Principles Governing the Processing of Personal Data

Processing of the user’s personal data shall observe the principles set out in Article 5 GDPR and Articles 4 et seq. of Organic Law 3/2018:

Lawfulness, fairness and transparency: the user’s consent shall always be sought after full and transparent disclosure of the purposes for which the data are collected.
Purpose limitation: data shall be collected for specified, explicit and legitimate purposes.
Data minimisation: only data strictly necessary for the stated purposes shall be processed.
Accuracy: data shall be accurate and, where necessary, kept up to date.
Storage limitation: data shall be retained in an identifiable form only as long as necessary for the purposes of processing.
Integrity and confidentiality: data shall be processed in a manner that ensures appropriate security and confidentiality.
Accountability: the Controller shall be responsible for, and able to demonstrate, compliance with these principles.

Categories of Personal Data

GOGOA processes solely identification data; no special categories of personal data within the meaning of Article 9 GDPR are processed.

Lawful Basis for Processing

The lawful basis for processing personal data is consent. GOGOA undertakes to obtain the user’s explicit and verifiable consent for one or more specific purposes. Consent may be withdrawn at any time as easily as it is given, without, as a rule, affecting use of the website.

Whenever a form requires personal data, the user shall be informed if completion of any field is compulsory because it is essential for the proper conduct of the operation in question.

Purposes of Processing

Personal data are collected and managed by GOGOA to facilitate, expedite and fulfil the commitments established between the website and the user, to maintain any relationship arising from completed forms, or to respond to a request or enquiry.

Data may likewise be used for commercial customisation, operational and statistical purposes, and activities within GOGOA’s corporate object, including extraction, storage and marketing studies aimed at tailoring content to users and enhancing website quality, functionality and browsing.

At the time data are obtained, users shall be informed of the specific purpose(s) for which their data will be processed.

Data Retention Periods

Personal data shall be retained only for the minimum period necessary for the purposes for which they are processed, and for a reasonable period thereafter to demonstrate compliance with our duties, or until the user requests erasure.

Recipients

Users’ personal data shall not be disclosed to third parties save where required by law.

Personal Data of Minors

Only persons over 14 years of age may lawfully give consent for the processing of their data by GOGOA. Where the data subject is under 14, parental or guardian consent is required.

Confidentiality and Security

GOGOA undertakes to implement appropriate technical and organisational measures to ensure a level of security commensurate with the risk, safeguarding personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access.

The website uses an SSL certificate, ensuring that data transmitted between server and user are fully encrypted.

Given that absolute security on the internet cannot be guaranteed, GOGOA shall notify the user without undue delay of any personal-data breach likely to entail a high risk to the rights and freedoms of natural persons, in accordance with Article 4 GDPR.

Personal data shall be treated as confidential; the Controller shall ensure, contractually or legally, that such confidentiality is respected by employees, associates and any person afforded access to the information.

Rights of the Data Subject

Users may exercise before GOGOA the rights recognised by the GDPR and Organic Law 3/2018:

Access: confirmation of whether GOGOA processes their data and, if so, access to such data and related information.
Rectification: correction of inaccurate or incomplete data.
Erasure (right to be forgotten): removal of data when no longer necessary, when consent is withdrawn, when processing is unlawful, and in other cases provided by law.
Restriction: limitation of processing under certain circumstances.
Portability: receipt of data in a structured, commonly used, machine-readable format and transmission to another controller where technically feasible.
Objection: cessation of processing on legitimate grounds.
Not to be subject to automated decision-making, including profiling.

Requests must bear the reference “Data-protection rights” and specify:

Name and surname(s) of the requester and a copy of his/her ID (or equivalent proof of identity); proxies must likewise prove representation.
Specific request and grounds.
Address for notifications.
Date and signature.
Supporting documents, where appropriate.

Requests may be sent to:

Postal address: C/ Arzubia, 10B 7 Bajo, 48220 Abadiño (Bizkaia)
E-mail: rgpd@gogoa.eu

Links to Third-Party Websites

The website may include links to third-party pages not operated by GOGOA. Such sites have their own privacy policies and are solely responsible for their own files and practices.

Complaints to the Supervisory Authority

Should the user believe that the processing of his/her personal data infringes the regulations in force, he/she has the right to effective judicial protection and may lodge a complaint with a supervisory authority—typically in the Member State of habitual residence, place of work or place of the alleged infringement. In Spain, the supervisory authority is the Spanish Data Protection Agency (www.agpd.es).

II. ACCEPTANCE AND AMENDMENTS TO THIS PRIVACY POLICY

The user must have read and agreed with this Privacy Policy and consent to the processing of his/her personal data in the manner, for the purposes, and for the periods herein stated. Use of the website implies acceptance of this Privacy Policy.

GOGOA reserves the right to amend this Privacy Policy at its sole discretion or owing to legislative, jurisprudential or doctrinal changes of the Spanish Data Protection Agency. Such amendments or updates shall not be expressly notified to the user; regular consultation of this page is therefore advisable.

This Privacy Policy was last updated to conform to Regulation (EU) 2016/679 and Organic Law 3/2018.