Data Protection Policy

Data Protection Policy

Data Protection Policy

The Management/Governing Body of RESTABELL FRANQUICIAS S.L. (hereafter, the data controller), assumes the greatest responsibility and commitment to the establishment, implementation and maintenance of this Data Protection Policy, guaranteeing the continuous improvement of the data controller in order to achieve excellence with regard to its compliance with Regulation (EU) 2016/679 of the European Parliament and Council, of the 27th of April 2016, regarding protection of physical persons with regard to personal data processing and the free circulation of this data, repealing Directive 95/46/EC (General Data Protection Regulation) (DOUE L 119/1, 04-05-2016), and Spanish personal data protection regulations (Organic law, specific sectoral legislation and its development regulations).

The Data Protection Policy of RESTABELL FRANQUICIAS S.L. is based on the principle of proactive responsibility, in accordance with which the data controller is responsible for compliance with the regulatory and jurisprudential framework governing this Policy, and is able to demonstrate it before the competent control authorities.

In this sense, the data controller will be governed by the following principles which must serve all personnel as a guide and reference framework in personal data processing:

Data protection from design: The data controller will apply, both when determining the means of processing and during processing, appropriate technical and organisational measures designed for the effective application of data protection principles, such as the minimisation of data, and integrate the necessary guarantees in processing.

Data protection by default: The data controller will apply the appropriate technical and organisational measures in order to guarantee that by default only the necessary personal data is processed for each of the specific purposes of processing.

Data protection in the information lifecycle: The measures which guarantee personal data protection will be applicable during the full information lifecycle.

Legality, loyalty and transparency: The personal data will be processed legally, loyally and transparently with regard to the interested party.

Limitation of purpose: The personal data will be collected for specific, explicit and legitimate purposes, and will not be processed subsequently in a way incompatible with these purposes.

Minimisation of data: Personal data will be appropriate, pertinent and limited to what is necessary with regard to the purposes for which it is processed.

Preciseness: The personal data will be precise, and if necessary, updated; all reasonable measures will be adopted for the deletion or correction, without delay, of personal data which is imprecise with regard to the purposes for which it is processed.

Limitation of the conservation period: The personal data will be kept to allow the identification of the interested parties, for no longer than the time necessary for the purposes of personal data processing.

Integrity and confidentiality: The personal data will be processed guaranteeing the adequate security of personal data, including protection against unauthorised or illicit processing, and against its loss, destruction or accidental damage, through the application of appropriate technical or organisational measures.

Information and training: One of the keys for guaranteeing personal data protection is the training and information provided to personnel involved in processing. During the information lifecycle, all personnel with access to data will be appropriately trained and informed of their obligations with regard to compliance with data protection regulations.

The Data Protection Policy of RESTABELL FRANQUICIAS S.L. is communicated to all personnel of the data controller and made available to all interested parties.

As a result, this Data Protection Policy involves all personnel of the data controller, who must be aware of and take responsibility for it, considering it as their responsibility, each member being responsible for applying it and checking the data protection rules applicable to their activity, as well as identifying and providing the opportunities for improvement considered appropriate in order to achieve excellence with regard to their compliance.

This Policy will be reviewed by the Management / Governing Body of RESTABELL FRANQUICIAS S.L. as many times as considered necessary, to adapt it at all times to current personal data protection provisions.