Teldat Group
Communicate with us
Privacy Policy
At TELDAT we care about the privacy and transparency of the data of all the people who interact with us.
Below, we indicate in detail the processing of personal data that we carry out, as well as all the information related to them.
1. Who is the Data Controller?
2. For what purposes do we process your personal data?
In the case of employees
We process the data on the grounds of fulfilling the purposes of the employment contract. Some of the processing are related to the preparation of pay slips, direct debiting of pay slips, company training plans expressly authorized by the employees, etc.
In addition, TELDAT undertakes to request an authorization from employees to carry out any other processing that is not within the scope of their employment contract.
All employees are aware of TELDAT’s privacy policy and proceed, prior to signing their employment contract, to sign a data protection appendix that reflects the principles contained in this privacy policy.
In the case of potential customers and web users
In the case of customers and suppliers
Customers and suppliers are aware of TELDAT’s privacy policy, as we include data protection clauses in our agreements with them.
In the event that large-scale processing or if it is considered that, due to the type of data or processing, it is necessary to take the utmost precautions, we sign DPAs (Data Protection Agreements) with our customers and clients.
These data will be used exclusively for the purposes of the contract.
In the case of job applicants
3. Are automated decisions made on the basis of the data you provide?
4. How long do we keep your data?
However, TELDAT acknowledges that on certain occasions and for legal reasons, data may need to be retained for a minimum legally required period of time in order to prevent any possible professional, accounting, tax or other type of liabilities.
Having said this, and upon receipt of the data subject’s request, TELDAT undertakes to proceed to the erasure of the data once any type of minimum legal period affecting a given processing has ended, provided that such data are not necessary to prove a contractual or legal situation.
5. What is the legitimacy for the processing of your data?
In the event that the basis for the processing is consent, the data subject shall be entitled to withdraw his or her consent for that specific processing, and TELDAT shall proceed to the deletion or modification of the data concerned. This is without prejudice to the existence of legal provisions requiring the maintenance of the data, in which case, TELDAT shall proceed to the deletion when the legal obligation to keep the data has disappeared.
6. What types of data are processed?
In the case of employees, employee data is processed for the payment of payrolls, for notifications, preference data, etc.
In the case of job applicants, data is processed for the following purposes profiling, such as the university or centre where he/she has studied, or data relating to his/her academic profile…
In the case of web users, the data is processed according to the preferences they select on the website and in accordance with TELDAT’s cookie policy (which can be found on the website in the “Cookie Policy” section).
7. To which recipients will your data be disclosed?
8. How do we protect and retain personal data?
TELDAT employs technical and organizational measures to protect data subjects’ data from any type of theft or computer attack. In addition, TELDAT keeps its privacy policy in force and up to date and trains its employees, customers and suppliers to comply with the principles of the GDPR.
In addition, we use cryptographic technologies to guarantee the confidentiality of the data, protection mechanisms to prevent attacks and access control mechanisms to allow only authorized access to personal data.
9. What are your rights when you provide us with your data?
Any data subject has the right to obtain confirmation as to whether or not TELDAT is processing their personal data.
Data subjects may exercise the following rights:
-Right of access: this right allows data subjects to obtain confirmation as to whether personal data are being processed, and what data are being processed.
-Right to rectification: this right allows data subjects to be able to request the modification or rectification of inaccurate or to have incomplete personal data completed.
-Right of erasure (or right to be forgotten): Data subjects have the right to request from the Data Controller the cancellation or deletion of data whose processing is no longer necessary for the purpose for which it was collected, or which is not being processed.
TELDAT shall act accordingly and proceed to the deletion of the data, without prejudice to any possible legal obligations relating to the conservation of data that it may have or the legitimacy to continue processing the data.
-Right to object: Data subjects have the right to object to the processing of their data where it is based on a public interest mission or legitimate interest, including profiling. TELDAT may waive this right where it can demonstrate legitimate grounds for the justifying the processing.
-Right of restriction of processing: this right allows data subjects whose personal data are processed to request the Data Controller to apply measures to prevent their modification, erasure or deletion.
-Right of portability: the right of data subjects to request the Data Controller to send them data concerning them in a structured, commonly used and machine-readable format and to transmit them to another controller.
The data subject has the right to exercise all the rights of portability.
The data subject is entitled to exercise all the rights granted to him/her by the GDPR at any time and free of charge at any time by sending an e-mail to the address dpo@teldat.com.
TELDAT will proceed to respond to requests as soon as possible and always within the legal deadline.
The data subject must provide the following supporting documentation to justify his or her identification and that the exercise of his right can be attended with all the legal guarantees:
-Name and surname of the data subject and photocopy of the National Identity Card, passport or other valid document that identifies him/her.
-Address for the purpose of notifications.
-Documents accrediting the request made.
If the data subject considers that we have not processed his/her data in accordance with current legislation, we inform him/her that he/she may communicate this to the Agencia Española de Protección de Datos (AEPD).
If you wish to make any queries, you may consult the TELDAT Data Protection Officer at the following address dpo@teldat.com.
10. On the basis of which principles does TELDAT process personal data?
The principle of lawfulness means that data shall be processed lawfully, fairly and transparently in relation to the data subject.
The limitation principle indicates that personal data collected by TELDAT must be processed for one or more specific purposes. Furthermore, they may not be used for a different purpose for which they were collected, unless the data subject has given his or her express consent to do so.
The principle of data minimization, which refers to the processing of data that are adequate, relevant and limited to what is necessary for the purposes for which they are processed.
The principle of accuracy, which states that data must be accurate and, if necessary, updated, up to date. TELDAT shall take all reasonable steps to ensure that personal data which are inaccurate with regard to the purposes for which they were collected are deleted or rectified without delay.
The principle of data integrity and confidentiality, which shall be treated in such a way as to ensure adequate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, through the implementation of appropriate technical or organizational measures.
The principle of legitimacy of processing, according to which the processing of data must be lawful, for which one of the following conditions must be met:
-The data processing is based on the express consent given by the data subject for one or more purposes.
-The processing is necessary for the performance of a contract, to which the data subject is a party, or for the performance of pre-contractual measures.
-The processing is necessary for TELDAT to comply with a legal obligation.
-The processing is necessary for the protection of the vital interests of the data subject or another data subject.
The principle of accountability means that TELDAT will carry out a series of technical and organizational measures to guarantee data protection, such as logs, audits, risk assessments, or the implementation of policies that will protect data subjects against any possible infringement of their rights
11. Modifications
TELDAT aims to constantly improve its data protection policies and procedures.
To this end, TELDAT’s privacy policy may be modified at any time. No possible changes in the policy will in any way diminish the rights of data subjects.
All modifications will be made and published on this link.
Read our latest Blog Posts
Cybersecurity vulnerabilities are affecting to suppliers and customers
In addition to being a data protection tool, cybersecurity software is the first line of defense against external threats or cybersecurity vulnerabilities. So, what happens if the software itself is vulnerable? In the last few years, we’ve seen how...
Developing a Robust Disaster Recovery Plan in the Cloud
In an increasingly digital world, businesses depend on cloud-based systems for everything from data storage to critical applications. While the cloud offers significant benefits—such as scalability, flexibility, and cost efficiency—it also presents...
Quadruple Extortion in Ransomware: The Evolution of Cybercrime
The advance of the Internet and new technologies has led to major developments in companies and organizations, but it has also led to a large number of threats in the field of cybersecurity. The Evolution of Ransomware to Quadruple Extortion...