Entelgy informs users of the website https://www.entelgy.com/ (hereinafter, the Website) of the Privacy and Data Protection Policy that it will apply to the processing of personal data that the User voluntarily provides when accessing its website.

The User, by providing Entelgy with his/her personal data through the electronic forms on the Website, the contact section and, where applicable, by checking the corresponding acceptance box, expressly consents to Entelgy processing said data under the terms of this Privacy and Data Protection Policy clause and for the purposes stated herein.

Entelgy informs users of the Website that their personal data may only be obtained for processing when they are appropriate, pertinent and not excessive in relation to the scope and the specific, explicit and legitimate purposes for which they were obtained. They will be deleted when they are no longer necessary or pertinent for said purpose or when requested by the owner in the exercise of his right to deletion.

Entelgy expresses its commitment to comply with current legislation regarding data protection.

The personal data provided will be processed by Entelgy and used in accordance with the following information.

Does ENTELGY have a Data Protection Officer?

Entelgy has appointed a Data Protection Officer who you can contact via email at dataprotection@entelgy.com

What personal data do we collect and what do we use it for?

• Data collected directly: by voluntarily completing the contact form, interaction on our social networks and subscription to the Newsletter.
• Data collected indirectly through the use of cookies: for statistics, to analyse the use made of our Website and to provide value-added services such as a map showing the location of our offices.

For what purpose and legal basis do we process your data?

• Contact: The purpose of the processing is to manage and respond to the requests you make. This processing is legitimised on the basis of the express consent you provide when sending your request (art. 6.1 a) GDPR).
• Commercial communications: Entelgy occasionally sends commercial communications related to its services. These communications are based on express consent (art. 6.1 a) GDPR) in the case of those interested parties who are not Entelgy customers and legitimate interest (art. 6.1 f) GDPR) in the case of Entelgy customers.
• Potential clients: Entelgy may process your identification and contact data for the purposes of maintaining relationships of any kind and to inform you about its services, at your request or with your consent. Such processing is legitimised by your express consent (art. 6.1 a) GDPR) in the case of potential clients who are natural persons, and by the legitimate interest (art. 6.1 f) GDPR) that binds the parties, in relation to art. 19 of Organic Law 3/2018, of 5 December, on the Protection of Personal Data and the guarantee of digital rights, in the case of representatives of potential clients who are legal persons.
• Customers: Entelgy processes its customers’ data for the purpose of managing the contractual relationship that binds the parties. Such processing is legitimised on the basis of compliance with legal obligations (art. 6.1 c) GDPR), as well as the legitimate interest that binds the parties (art. 6.1 f) GDPR), in relation to art. 19 of Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights.
• Suppliers and partners: Entelgy processes the data of its suppliers and partners in order to manage the contractual relationship that binds the parties. Such processing is legitimised on the basis of compliance with legal obligations (art. 6.1 c) GDPR). In the case of representatives of suppliers/partners who are legal entities, the legitimate interest (art. 6.1 f) GDPR) that binds the parties will additionally apply, in relation to art. 19 of Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights.
• Job applicants: In the event that you have submitted your CV to enter into a staff selection process, Entelgy will process the data for the purpose of filling a vacant position. Such processing is legitimised on the basis of the application of pre-contractual measures to your request (art. 6.1 b) GDPR). Entelgy may process your CV once the selection process has been completed for future vacancies, such processing being legitimised on the basis of Entelgy’s legitimate interest (art. 6.1 f) GDPR).
• Exercising rights and managing privacy: Entelgy may process your data for the purpose of managing your requests to exercise your rights in relation to data protection, or any other purpose necessary to comply with personal data protection regulations. Such processing is legitimised on the basis of compliance with a legal obligation (art. 6.1 c) GDPR).
• Ethical Channel: Entelgy may process your personal data for the purpose of managing the information received through the ethical channel. Such processing is legitimised on the basis of compliance with a legal obligation (art. 6.1 c) GDPR).
• Events and webinars: Entelgy processes the data of attendees at its events through the corresponding event attendance form. This processing is legitimised on the basis of the consent (art. 6.1.a) GDPR) that you grant by completing the form and sending your application to register for it.
• Images and voice: Entelgy may process your image and voice data both on social networks and on the Entelgy website, as well as in Entelgy’s corporate systems for the purpose of appearing in Entelgy’s commercial activities and/or training activities, in each case. Such processing is legitimised based on the consent (art. 6.1.a) GDPR) that you have expressly granted.

How long will we retain your data?

• Contact and potential clients : If you contact Entelgy to request information, your data will be kept for a period of two years from the last communication made by the user, with this calculation being renewed with each new contact or relationship made by the user.
• Commercial communications: If you are not a customer of Entelgy, your data will be processed for this purpose until you withdraw your consent or object to receiving commercial communications. If you are a customer, your data will continue to be kept for the purpose of managing our contractual relationship, but no commercial communications will be sent to you from the moment you object to such sending.
• Clients and suppliers : The personal data of our clients and suppliers will be kept for as long as the contractual relationship is in force and, subsequently, until the statute of limitations for any possible legal liabilities duly blocked.
• Job applicants: The CV data and any other data that you have provided to take part in our staff selection processes will be kept for a period of two years from receipt. If Entelgy considers that your CV may continue to be of interest for future selection processes, before the two-year period from receipt has passed, it will ask the candidate to update his/her CV. In the event that the candidate does not respond to this request, Entelgy will proceed to permanently delete it.
• Exercise of rights and management of privacy : In the event that you have exercised your rights in relation to data protection, or we need to process your data in compliance with legal obligations established by data protection regulations, your data will be kept for the time necessary to comply with our obligations and, subsequently, until the time of prescription of possible legal actions duly blocked.
• Ethical Channel : The data processed for the purpose of managing the ethical channel will be kept during the processing of the investigation file and, subsequently, until the statute of limitations for possible legal responsibilities.
• Events and webinars : The data processed for the purpose of attending our event and/or webinar will be retained as long as you do not withdraw your consent.
• Image and voice : The data processed for the purpose of participating in commercial and/or social media actions and/or for internal and external training purposes will be kept as long as you do not withdraw your consent.

ENTELGY will communicate your personal data to:

• Those third parties, public bodies and institutions of the General State Administration, of the Autonomous and local Administrations, including the jurisdictional bodies to which it is legally obliged to provide them.
• To financial entities if necessary based on the relationship with Entelgy
• To external technology service providers, such as hosting, IT maintenance and other similar services, who provide their services to Entelgy, and who will process your data strictly following the instructions of this entity and under its responsibility.
• To other companies in the group, such as Entelgy Ibai if necessary, as may occur to fill a job vacancy.
• The page has enabled tools provided by Google LLC. The use of these tools could imply an international transfer of data to the United States, taking into account that Google LLC has adhered to the Privacy Framework, thus indicating its commitment to comply with the GDPR when making international data transfers.

Interested parties may exercise their rights of access, rectification, deletion, portability and limitation or opposition, as well as withdraw the consent previously given by sending an email to dataprotection@entelgy.com .

This request must include the name and surname of the interested party and a specification of the purpose of the request.

If the interested party considers that the above rights have not been respected in accordance with current legislation, they may file a claim with the Spanish Data Protection Agency through the website www.aepd.es.

What security measures has Entelgy adopted on its website?

The user will be solely responsible for the veracity of the data provided to Entelgy.

Entelgy has adopted the necessary technical and organisational measures to guarantee the security of the personal data contained therein and to prevent its alteration, loss, processing or unauthorised access, taking into account the state of the technology, the nature of the data and the risks to which they are exposed.

The Page has the SSL (Secure Socket Layer) Certificate , in order to guarantee security in the transmission of data between your browser and our Page.

The secure server establishes a connection so that the information is transmitted encrypted, ensuring that it is only intelligible to the user’s device and that of the Page. Thus, by using the SSL protocol, the following is guaranteed:

• That the user is communicating his/her data to the Page’s server center and not to any other.
• That data is transmitted encrypted between the user and the Page, preventing it from being read or manipulated by third parties.

To verify that you are in a secure environment, the Client must check that the address of the Verification Page begins with https://

You can also identify the Page as secure when a lock icon appears in your browser’s address bar.

Finally, you can also verify the presence of the SSL certificate by checking the properties of the Page in your browser, for which you should consult its characteristics.

Additional information

Any changes made to the Privacy Policy and information management practices will be reflected in a timely manner, and Entelgy may add, modify or eliminate said privacy policy when it deems necessary.