The Management / Governing Body of RESTABELL FRANQUICIAS S.L. (hereafter, the data controller) assumes the maximum responsibility for and commitment to the establishment, implementation and maintenance of this Data Protection Policy, guaranteeing the continuous improvement of the data controller in order to achieve excellence regarding compliance with Regulation (EU) 2016/679 of the European Parliament and Council of the 27th of April 2016 regarding protection of natural persons with regard to processing of their personal data and the free circulation of this data, repealing Directive 95/46/EC (General Data Protection Regulation) (OJ L 119/1, 04-05-2016), and the Spanish personal data protection regulation (Organic Law, specific sectoral legislation and its development regulations).
The Date Protection Policy of RESTABELL FRANQUICIAS S.L. rests on the principle of proactive responsibility by which the data controller is responsible for compliance with the regulatory and jurisprudential framework which governs this Policy, and is able to demonstrate this before the competent control authorities.
In this sense, the data controller will be governed by the following principles which must serve as a guide and reference framework for all its personnel in personal data processing:
Data protection from design: The data controller will, at the time of determining the means of processing and at the time of the processing itself, apply appropriate technical and organisational measures, designed for effective application of data protection principles, as well as the minimisation of data, integrating the necessary guarantees in the processing.
Data protection by default: The data controller will apply the appropriate technical and organisational measures in order to guarantee that by default, only the personal data necessary for each of the specific purposes of the processing is subject to processing.
Data protection in the information life cycle: The measures which guarantee personal data protection will be applicable during the whole information life cycle.
Legality, fairness and transparency: The personal data will be processed legally, fairly and transparently with regard to the interested party.
Limitation of purpose: The personal data will be gathered for specific, explicit and legitimate purposes, and will not be processed subsequently in a way incompatible with these purposes.
Minimisation of data: The personal data will be appropriate, pertinent and limited to being necessary with regard to the purposes for which it is processed.
Preciseness: The personal data will be precise, and if necessary, updated. All reasonable measures will be adopted to delete or rectify personal data without delay when it is imprecise with regard to the purposes for which it is processed.
Limitation of the period of conservation: The personal data will be kept so as to allow the identification of the interested parties for no longer than necessary for the purposes of the personal data processing.
Integrity and confidentiality: The personal data will be processed so as to guarantee adequate security of the personal data, including protection against unauthorised or illegal processing and against its loss, destruction or accidental damage, through the application of appropriate technical or organisational measures.
Information and training: One of the keys to guaranteeing personal data protection is training and information provided to personnel involved in its processing. During the information life cycle, all personnel with access to the data will be appropriately trained and informed on their obligations with regard to compliance with data protection regulations.
The Data Protection Policy of RESTABELL FRANQUICIAS S.L. is communicated to all personnel of the data controller and made available to all interested parties.
Accordingly, this Data Protection Policy involves all personnel of the data controller, who must be aware of and adopt it, considering it their duty, each member of staff being responsible for applying it and verifying the data protection regulations applicable to their activity, as well as identifying and contributing opportunities for improvement they consider appropriate in order to achieve excellence with regard to compliance.
This Policy will be reviewed by the Management / Governing Body of RESTABELL FRANQUICIAS S.L. as many times as considered necessary, so that it is adapted at all times to current personal data protection regulations.