Statera International Projects SL takes the protection of personal data very seriously. In the following, we explain which data we collect, process, and use within the framework of our website, when and for what purposes when you are visiting our website https://stateraip.com/.
The responsible party pursuant to Article 4 (7) of the GDPR and the Royal Decree 13/2012 (collectively “GDPR”) is Statera International Projects SL of Calle Septimania, 41, P 1 Pta 2. 08006, Barcelona, Spain (hereinafter “Statera International Projects”). You can reach us at any time by phone on +34 631 079 307 or by email at firstname.lastname@example.org.
Statera International Projects processes personal data in order to better understand the needs of its customers and thus to be able to improve its services. Personal data will only be used in the specific context of your customer relationship with Statera International Projects to the extent permitted by law or on the basis of your prior express consent.
In particular we are committed to the following key principles:
We protect your privacy and aim to provide you with a service that is tailored to your needs.
Personal data is collected for specific purposes based on your consent or a legitimate interest when you contact us.
You have the right to information and access to your personal data at any time and may request its correction or deletion.
We do not sell your personal data to third parties. However, if necessary and if explicitly mentioned afterwards or if you have consented, we may share your data with group companies, brand licensees, partners, and other service providers. In this case, their own privacy policies may also apply.
We take all reasonable measures to ensure the security and protection of your data from misuse.
Personal data are processed by us only as necessary and for the purpose of providing a functional and user-friendly website, including its contents and the services offered there.
You have the following rights with regard to the personal data concerning you:
Right to information (Art. 15 GDPR),
Right to rectification (Art. 16 GDPR),
Right to erasure (Art. 17 GDPR),
Right to restriction of processing (Art. 18 GDPR),
Right to object to processing (Art. 21 GDPR),
Right to data portability (Art. 20 GDPR).
You also have the right to lodge a complaint about the processing of your personal data by us with the relevant data protection supervisory authority. The Spanish Data Protection Authority (AEPD) is the for us relevant authority in matters of data protection. You have the right to make a complaint at any time to the AEPD (www.aepd.es). We would, however, appreciate the chance to deal with your concerns before you approach the AEPD so please contact us in the first instance.
Where you have given, us consent to process your data, you may withdraw this consent at any time with effect for the future. The lawfulness of the processing of your data until revocation remains unaffected.
To assert your rights or for other data protection concerns, you can contact us at any time.
Databases or data sets that include Personal Data may be breached inadvertently or through wrongful intrusion. Upon becoming aware of a data breach, we will notify all affected individuals whose Personal Data may have been compromised, and the notice will be accompanied by a description of action being taken to reconcile any damage as a result of the data breach. Notices will be provided as expeditiously as possible after which the breach was discovered.
Legal basis for the processing of personal data
Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) (a) GDPR serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) (b) GDPR serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.
Insofar as processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) (c) GDPR serves as the legal basis.
In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 (1) (d) GDPR serves as the legal basis.
If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6 (1) (f) GDPR serves as the legal basis for the processing.
Supplementary information on your right of objection
We would like to point out in addition that if your personal data is processed on the basis of legitimate interest within the framework of the balance of interests pursuant to Art. 6 (1) (f) GDPR and/or your personal data is processed for direct marketing purposes, you have the right to object to the processing of your personal data at any time.
General technical organizational measures
The Statera International Projects website is behind a software firewall to prevent access from other networks connected to the Internet. In addition, only employees who need the information to perform a specific job are granted access to personally identifiable information. These employees are trained in security and privacy practices and treat your information confidentially.
Secure transfer of your data
In order to best protect the data, we store against accidental or intentional manipulation, loss, destruction or access by unauthorized persons, we use appropriate technical and organizational security measures. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards.
The exchange of data to and from our website is always encrypted. We offer HTTPS as the transmission protocol for our website, in each case using the current encryption protocols.
In addition, we offer our users content encryption as part of the contact forms and for applications. The decryption of this data is only possible for us. In addition, there is the option of using alternative communication channels (e.g., the postal service).
Transmission and disclosure of personal data
In the course of our processing of personal data, it may happen that the data is transmitted to other bodies, companies, legally independent organizational units or persons or that it is disclosed to them. Recipients of this data may include, for example, payment institutions in the context of payment transactions, service providers commissioned with IT tasks or providers of services and content that are integrated into a web site. In such cases, we observe the legal requirements and, in particular, conclude appropriate contracts or agreements that serve to protect your data with the recipients of your data.
Data processing in third countries
If we process data in a third country (i.e., outside the United Kingdom) or the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, bodies or companies, this will only be done in accordance with the legal requirements.
Subject to express consent or contractually or legally required transfer, we only process or have data processed in third countries with a recognized level of data protection, contractual obligation through so-called standard contractual clauses, in the presence of certifications or binding internal data protection regulations.
Economic analyses and market research
For business reasons and in order to be able to recognize market trends, wishes of contractual partners and users, we analyze the data we have on business transactions, contracts, inquiries, etc., whereby the group of persons concerned may include contractual partners, interested parties, customers, visitors and users of our website.
The analyses are carried out for the purpose of business evaluations, marketing, and market research (e.g., to determine customer groups with different characteristics). In doing so, we may, if available, take into account the profiles of registered users together with their details, e.g., regarding services used. The analyses serve us alone and are not disclosed externally, unless they are anonymous analyses with summarized, i.e., anonymized values. Furthermore, we take the privacy of the users into consideration and process the data for the analysis purposes as pseudonymously as possible and, if feasible, anonymously (e.g., as summarized data).
Processing of personal data when using the offered services
Personal data will be collected, processed or used ("used") in connection with the services offered. This is always done in compliance with the provisions of the DPA and the GDPR. Insofar as we use your personal data for a purpose that requires your consent according to the legal provisions, we will always ask for your express consent.
We process data in the context of administrative tasks as well as organization of our operations, financial accounting and compliance with legal obligations, such as archiving. In this regard, we process the same data that we process in the course of providing our contractual services. The processing bases are Article 6 (1) (c) GDPR, Article 6 (1) (f) GDPR. Customers, interested parties, business partners and website visitors are affected by the processing. The purpose and our interest in the processing lies in the administration, financial accounting, office organization, archiving of data, i.e., tasks that serve the maintenance of our business activities, performance of our tasks and provision of our services. The deletion of data with regard to contractual services and contractual communication corresponds to the data mentioned in these processing activities.
In this context, we disclose or transfer data to the tax authorities, consultants, such as tax advisors or auditors, as well as other fee offices and payment service providers.
Furthermore, based on our business interests, we store information on suppliers, event organizers and other business partners, e.g., for the purpose of contacting them at a later date. This data, most of which is company-related, is generally stored permanently.
Information in the context of the use of the website
In principle, it is possible to use the Statera International Projects website without providing personal data. When a page of our website is accessed and each time a file is retrieved, access data about this process is stored in a log file. The corresponding log file contains: Your IP address, the page from which the file was requested, the name of the file, the date and time of the request, the amount of data transferred, the access status (file transferred, file not found, etc.), a description of the type of operating system and web browser used. The stored data does not allow any conclusions to be drawn about your identity and is evaluated exclusively for statistical purposes.
The collection and processing of this data is carried out in order to enable the use of the website at all, on the basis of Art. 6 (1) (f) GDPR, whereby our legitimate interest is the provision of our website. Incidentally, we store this aforementioned data, including the IP addresses, only in anonymized form and use it only in this anonymized form to analyze the use of the offer and the further development and optimization of our website in your interest, also on the basis of Art. 6 (1) (f) GDPR. Our legitimate interest is the ongoing improvement of our online offer in order to provide you with the greatest possible user comfort.
Consent to use for the purposes of advertising, market and opinion research
If you have expressly consented to us using your personal data, e.g., your e-mail address and telephone number, also for the purpose of advertising or market and opinion research, you can revoke the consent once given at any time and/or object to the future use of your data.
Contacting Us, Booking a free consultation,
If you contact us, send us general enquiries, or book a free consultation the contact details you provide, will be stored, and used by us to fulfil the purpose associated with the transmission, e.g., to process your enquiry or in the event of follow-up questions.
The basis for this storage and use of your personal data is your consent in accordance with Art. 6 (1) (a) GDPR, which you give us separately before sending the request. Insofar as you provide us with your personal data for the purpose of responding to your questions or preparing a quotation, the entry of personal data is required within the meaning of Art. 13 (2) e) GDPR. Without this information, we cannot process your request.
You have the right to revoke your consent to the data processing described above at any time with effect for the future. In this case, we will no longer process your data. Your personal data will be deleted even without your revocation in any case if we have processed your request or if the storage is inadmissible for other legal reasons.
Non-existence of automated decision making
We would like to point out that in the course of using our website and the services offered on it, you will not be subject to any decision based exclusively on automated processing - including or similarly significantly affects you.
You cannot be personally identified from any of the information we collect. The use of the cookies we use is necessary in order to be able to provide the online offer of Statera International Projects at all and, moreover, to be able to optimize it on an ongoing basis. The data processing in this context is therefore based on Art. 6 (1) (f) GDPR. Our legitimate interest is to provide visitors to our website with a functioning online service and to make visiting and using the website as pleasant and efficient as possible.
Storage period and deletion of data
Even without a specific request, we naturally comply with our obligations to delete personal data (e.g., in accordance with Article 17 of the GDPR) and therefore only store data for as long as is necessary for the provision of the requested service or the respective purpose.
For example, we only store data related to the sending of our newsletter for as long as you are registered for the newsletter and we delete the data as soon as storage is no longer necessary, e.g., after you have unsubscribed from the newsletter or revoked your consent. Data that is collected and processed during the implementation of competitions, with the exception of the data of the winner(s), will be deleted after the competition has been fully completed and implemented.
Please note, however, that the deletion will be replaced by a blocking or restriction of processing insofar as a deletion conflicts with legal retention obligations that we must fulfil. For example, according to the legal regulations in Spain`s Commercial Laws, we must retain contract-related communications with you in connection with subscription orders for a period of up to six years.
Our website contains links to the online offers of other providers. We hereby point out that we have no influence on the content of the linked online offers and the compliance with data protection regulations by their providers.