All personal data processed by SGI STANDARDS S.L¹ on this website, in connection with this Privacy Policy…
1. Who is responsible for processing your personal data?
All your personal data processed by SGI STANDARDS S.L¹ on this website, in connection with this Privacy Policy, is SGI STANDARDS’ responsibility, which is considered as the "responsible for the processing" under the applicable data protection regulations (LO 3/2018 and GDPR 2016/679).
- Responsible: SGI STANDARDS S.L (hereafter STANDARDS)
- Tax ID (NIF): B- 02836609
- Registered office: Aribau, 70, 3rd Floor 2nd Door, 08011, Barcelona.
- Contact: This email address is being protected from spambots. You need JavaScript enabled to view it.
- +34 93 451 33 21
1.1 Target audience of the website
This website’s target audience are the people (self-employed or societies’ representatives) who wish to develop professional proposals or the obtention of certifications on equality. Consequently, the processing of such data will be carried out under this premise and consideration. Therefore, with some exceptions, we consider the data provided to be in its professional, work or business field.
2. How can I contact STANDARDS’ Data Protection Delegate?
The security, guarantee and protection of the data provided to us by our clients and users is very important to us. This is why we have appointed a Data Protection Delegate (who acts as such for all the data correspondents defined in the first point), as a measure of active, professional and external responsibility: "Consultoria y Asesoría Jurídica Quality Data", with the Tax ID number (CIF) B-63788350, duly registered with the Spanish Data Protection Agency to supervise the companies' compliance with the current regulations on data protection.
You will be able to contact STANDARDS’ Data Protection Delegate through the following e-mail: This email address is being protected from spambots. You need JavaScript enabled to view it. (determine in the subject line: SGI STANDARDS – GDPR RIGHTS).
3. What do we mean by personal data?
Personal data is data that identifies you or could be used to identify you, such as your name and contact details. It may also include information that we collect when we provide our services, or information about how you use our website, or from applications that we make or will make available to you.
4. Which personal data do we process?
They depend on the nature of your interaction with us or the services activated, but may include the following:
A. Information you provide directly to us:
Contact data: we can collect personal and/or business contact information including your first name, last name, postal address, telephone number, fax number, e-mail address and other similar contact information.
Payment data: we can collect the necessary data to process payments associated to services provided on the website, as well as to prevent fraud, including credit/debit card numbers, security code numbers and other information related to the payment process and payment and accounting management.
Account data: we may implement features on the website aimed at managing intranet access or account creation. In this regard, we will be able to collect registration or contract data for the services advertised by STANDARDS; your transaction, billing and support history, the STANDARDS services you use and everything related to your customer account.
Location data: we may collect geolocation data if you enable location-based services or if you choose to provide us with geolocation-related information in some of our services or applications that we make available to you.
Security credentials data: according to future features, we can collect data such as user/customer IDs, passwords, password hints and similar security information for the authentication and access to accounts and services.
Demographic data: we may collect or obtain certain demographic data: preferred language, professional profile and job interest data (relating your preferences cookies management).
Preferences: we collect information about your preferences and interests related to our products, services (when you tell us or by inferring from what we know about you) and how you prefer to receive information from us.
Social media data: We may offer social networking features that allow you to share information on your social media to interact with us on various platforms. The use of these features may result in the collection or sharing of information about you, depending on the feature. We encourage you to review the privacy policies and settings of the social networking sites you use to make sure you understand what information those sites may collect, use and share.
Other examples of other information that allows personal identification that we may collect about you include:
- Information you provide to us when interacting in person, online or by phone or email with our customer service center, other customer/associate/certificate support channels, your responses to surveys or selective processes for certification/association, inter alia.
- Additional information you provide to facilitate your request.
You may always choose not to provide us with personal data that we may request. However, if you choose not to do so, in some cases we will not be able to provide you with advertising services, certain specialised features; or we will not be able to respond effectively to some requests you may make (data collection or requests will be guided by the principle of proportionality).
B. Information automatically collected about your use of our services:
Application data: we collect information related to the applications we make available to you, such as location, language, software versions, data sharing options and update information.
Website navigation data: We collect information about visits to and activity on our websites or apps, including the content (and advertising) you view and interact with, the address of the website from which you arrived to them and other behaviour related to the sections you view. Some of this information is collected using our automatic data collection tools, including cookies, web beacons and embedded web links. For more information on this, please read our cookie policy.
Added or anonymised data: In the course of our operations, we may also apply an anonymisation process to your data so that you are reasonably unlikely to be identified with the use of the data by the available technology.
5. Why do we process your data?
- Service rendering
We will process your data in order to formalise the service contract or order and manage the operations deriving from it. We will specifically process your data in order to be able to:
- Create and issue the corresponding invoices, as well as managing their collection.
- Attend to and resolve complaints and claims.
- To verify the customer/partner/certificate, among others, identity and status.
- To manage and process the requested services (requests)
We will process your personal data (personal and contact information) in order to meet with your request related to any question, enquiry, complaint, claim you may raise or submit to us at any time.
- For the sending of commercial information (news, bulletins, among others)
To send commercial information and newsletters¹ relating to our services. You can unsubscribe or cancel the subscription at any time, using simple unsubscribing mechanisms.
¹ Please note that newsletters may be managed and treated differently from other communications. Therefore, maybe, by unsubscribing from the newsletter you may continue to receive communications from other channels/emails (associated with STANDARDS managers or employees), but in no case from the "news". If you do not wish to receive any communication, please contact This email address is being protected from spambots. You need JavaScript enabled to view it. (unsubscribe from all communications).
- To manage and process candidate selection processes
This website may have a link or location (form or e-mail) to collect data from candidates or collaborators. The personal data provided by the candidates will be used for the purpose of communicating possible job offers, as well as selection processes that may be of interest to the candidate because he/she meets the appropriate requirements.
6. For how much time do we preserve the personal data?
We keep your personal data for as long as we need it for the purpose for which we process your personal data, to meet your needs or to comply with our legal obligations.
We use the following criteria to determine the retention period:
- Personal data obtained when contracting services: Establish that there is personal data, especially contact data (email, telephone, among others) that may have been collected based on a professional, contractual assignment or relational activity (accreditable) as a basis for legitimisation that will not be deleted, unless expressly cancelled or positioned by the holder through the channels determined for this purpose;
- Personal data obtained when contacting us for an enquiry: It will be kept for the time necessary to deal with your enquiry. Depending on the purpose of the enquiry, it may be stored permanently;
- Personal data collected when you create an account: until you ask us to delete it or after a period of inactivity (no active interaction) of three (3) years;
- Personal data obtained when you consent to receive marketing communications from us: until you unsubscribe, ask us to delete it or after a period of inactivity (no active interaction) of three years;
- Cookies downloaded on your computer: we store them for as long as necessary to achieve their purpose (e.g. session ID cookies) and for a maximum of 365 days;
We may retain your personal data in order to comply with our legal obligations, as well as to exercise our rights (e.g. claims before the courts or others arising from "compliance policies" established by the implementation of plans in the companies that are part of STANDARDS in order to ensure their maintenance and monitoring, as well as actions arising from external proceedings/courts or internal proceedings/audits).
7. How do we protect your data?
We implement and maintain technical and organisational security measures in accordance with the provisions of the GDPR 2016/679, as well as those referenced in appropriate "ISO" security standards (such as 27001) to protect the personal data we process and to detect unauthorised access and avoid its alteration, dissemination, loss or destruction.
8. To whom can we communicate your data?
It may be communicated or given access to data to third parties, to companies or self-employed service providers acting as data processors.
Occasionally, for the performance of services, we may contract with third parties (suppliers, subcontractors, etc.) who assist us in marketing, management and maintenance, provide us with consulting services and cloud hosting services (please note that we are aware of the EU ruling that invalidates the agreement associated with the "privacy shield" with the USA, and we are working on this situation in accordance with the recommendations of the Spanish Data Protection Agency). Our suppliers are contractually obliged to maintain the confidentiality and security of the information received and may not use it for any purpose other than to carry out the services they are performing for STANDARDS. These third parties act as "processors", and consequently are not subject to the request for consent derived from the basis of legitimation established by the parties through contract or service order.
At times, these third parties may require access to some or all of your data. When this happens, we will take all reasonable steps to ensure that your data will be treated securely, safely, and in accordance with your rights and our obligations.
Apart from the above, STANDARDS does not share the personal data provided by our users/clients with third parties, except when we are legally obliged to do so, when we are required to do so by a competent authority or administration or to protect a person's vital interests.
9. What are your rights when you provide us with your data?
The regulatory framework, and therefore this officer, recognises the following rights (and others that may be incorporated in the event of development or regulatory modifications):
- Access rights: The right to obtain confirmation whether STANDARDS process your personal data, and access to processed data.
- Portability right: Whenever STANDARDS processes personal data by automated means on the basis of your consent or a contract, the user/customer has the right to obtain a copy of his/her data in a structured, of common use and machine-readable format transferred to his/her name or to a third party.
- Rectification right: The right to rectify inaccurate or incomplete personal data.
- Removal or omission right: The right to obtain the removal of any personal data that STANDARDS processes at any time, except in situations such as the following: you have an unpaid debt, enquiry or complaint. If your relationship has been contractual in nature, we will retain your personal data for tax and accounting purposes.
- Right to object to the processing of data: Right to object to the processing of personal data in relation to the legitimate interest of STANDARDS. We will not further process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defense of claims.
- The right to object to receiving commercial and marketing communications: Users may unsubscribe at any time by simply following the instructions at the bottom of the body of each electronic communication sent by STANDARDS.
- The right to file a complaint to a control authority: You have the right to file a complaint to the competent data protection authority if you believe that STANDARDS is processing your data incorrectly.
We remind you that STANDARDS has the services of a professional and external Data Protection Delegate: Consultoria y Asesoría Jurídica "Quality Data LOPD", with whom you can contact through the following e-mail address This email address is being protected from spambots. You need JavaScript enabled to view it.. On the other hand, we provide, if you are interested, a form that we have created in order to facilitate the exercise of the referenced rights [insertar link:http://gestor.qualitydata.eu/index.php/s/bQRm53DYfnyfxWqhttps://www.aepd.es/es/derechos-y-deberes/conoce-tus-derechos">https://www.aepd.es/es/derechos-y-deberes/conoce-tus-derechos
10. Changes in our privacy policy
STANDARDS reserves the right to change this privacy policy at any time by updating this page and posting the new version online. Any changes will be communicated to you via email or a notice on our website.