Privacy Policy PROSEGUR Supplier Portal 

Basic information

Data controller:  Prosegur Gestión de Activos S.L., (hereinafter, “PROSEGUR”).

Main purpose of data processing: establish, maintain and manage the pre-contractual or contractual, and/or commercial relationship between you and PROSEGUR and, where applicable, send commercial communications related to products and services of PROSEGUR.

Legitimisation:  the grounds that legitimize the processing of the data are the execution of the service contract between you and PROSEGUR or application of pre-contractual measures, expressed consent and legitimate interest.

Potential data recipients:
Third parties to whom PROSEGUR is obliged to transfer information, such as public authorities, in order to meet the requests made by such authorities and, where relevant, comply with the applicable legislation. 
Companies in the business group pertaining to PROSEGUR (hereinafter “PROSEGUR Group”), as a result of the centralisation of administrative and IT processes within the PROSEGUR Group.

Data protection rights: you may withdraw the consent granted at any time for the personal data processing activities performed by PROSEGUR and exercise, at your discretion, your rights of access, amendment, erasure, limitation or opposition to data processing, data portability, and not being subject to automated decisions, as indicated in the section on “Your Data Protection rights” in our Privacy Policy.
 

Additional Information 1.    Data Controller
 


1.1.    Information of the Data Controller

The present document governs the privacy policy of the PROSEGUR’s Supplier Portal (hereinafter the "Web Portal "). 

PROSEGUR forms part of an international group dedicated to private security activities. As part of its activities, four lines of business are worth particular mention: Prosegur Cash, Prosegur Security, Prosegur Alarms and Prosegur Cybersecurity. For your information, the company’s identification data is provided below:

Business name: Prosegur Gestión de Activos S.L. (hereinafter referred to as “PROSEGUR”).
NIF (Tax ID No.): B-86.003.258
Address: Calle Pajaritos, 24, 28007, Madrid (Spain).
Data Protection Officer contact details: dpo@prosegur.com

1.2. Scope

This privacy policy governs the data processing activities undertaken by PROSEGUR in relation to users of the PROSEGUR’s corporate Web Portal. The foregoing includes processing the personal data of suppliers and/or potential suppliers accessing or transferring information via the Web Portal. Therefore, this privacy policy contains information on the processing of data corresponding to the different categories of the data subjects mentioned.

2.    Purposes and legitimisation

You are hereby informed that all the data that PROSEGUR requests or may request from you are required for the purposes described in this privacy policy and failing to provide them would make it impossible to contact you or handle the request made with PROSEGUR. PROSEGUR reserves the right to refrain from responding or handling requests that do not include the data requested.

We also inform you that as a user of the Web Portal and in order to carry out the sign up process, you may provide personal data of third party contacts. Therefore, through this condition, you are informed and guarantee that before providing these data from third parties you (i) will have previously informed the subject at this respect, and (ii) will have obtained the express consent of the subject for the purpose indicated, unless it is applicable another legitimate basis, in accordance with the requirements of applicable law.

You hereby guarantee the accuracy of the personal details provided to PROSEGUR and expressly states, under your responsibility, with full indemnity for PROSEGUR, have obtained the express consent, in the terms indicated, of all contact persons whose data provided through this Portal Web, to carry out the actions that are necessary in order to manage suppliers. 

Any false or inaccurate statement that occurs as a result of the information and data provided, as well as the damage that such information may cause, will be under the direct responsibility of the supplier who intervenes as a user of this Web Portal so PROSEGUR is not responsible for the consequences, damages or losses that may result from the unlawful collection of these data.

PROSEGUR may periodically ask that you revise and update your personal data. 

In this regard, PROSEGUR will only ask you for, and therefore, only process the data necessary to be able to commence and maintain a commercial and/or contractual relationship with you and/or keep you informed of products and services or other information of the company that may be of interest to you.

The purposes for which your personal data is processed and the legal grounds that legitimize the processing of such data, are described below:


i.    Legitimation by the execution of the contract with PROSEGUR or application of pre-contractual measures:

a.    Management of the commercial relationship with potential suppliers, in response to requests for information.
b.    Formalisation of the contractual relationship, which will entail entering into and signing of contracts.
c.    Management of the contractual relationship with PROSEGUR Group suppliers, including monitoring the relationship and the corresponding payments.

ii.    Legitimation by express consent:

a.    Sending commercial communications, by any means, including electronic, related to products and services of PROSEGUR and its Group companies dedicated to providing security services.
b.    Data transfers to PROSEGUR’s to PROSEGUR Group companies and third parties in order to receive commercial information. 

iii.    Legitimation by the legitimate interests of PROSEGUR:

a.    Sending notifications, by any means, including electronic, related to the process of registration, selection and contracting of suppliers. In this case, the legitimate interest of PROSEGUR is based on keeping you informed about the status of the supplier management process.

3.    Recipients

The personal data that you provide to PROSEGUR may be sent to the following recipient categories:

  • Third parties to whom PROSEGUR is obliged to send information, including public authorities, in order to comply with the requirements of these authorities and the applicable regulations, where appropriate.
  • Companies that form part of the PROSEGUR Group, in order to manage the corresponding contractual relationship appropriately as a result of the centralisation of administrative and computing processes within the PROSEGUR Group.

You are hereby informed that the PROSEGUR Group may include companies outside the European Economic Area. In these instances, the parent company requires that these companies fulfil the measures designed to protect personal data established in a binding contract, unless for instances in which the European Commission has determined that the country in which the recipient is located provides an appropriate level of personal data protection. 
 

4.    Data retention

The criteria that PROSEGUR uses to define the period for storing your data have been established in line with the requirements set forth in the applicable legislation, regulations and guidelines, in addition to PROSEGUR's operating requirements relating to the correct management of its relationship with suppliers and/or potential suppliers.

Your data will not be stored for a period longer than six years following the end of any contractual relationship between you and PROSEGUR. This period for the storage of data has been defined in accordance with the applicable legislation. Notwithstanding the foregoing, in the event that legal proceedings are taken against you, your data may be stored in a blocked format for the additional amount of time required until the final legal ruling is obtained. Once this period comes to an end, your data will be deleted.
 

5.    Your data protection rights

You may make contact PROSEGUR at any time to exercise your rights of access, rectification, erasure, limitation and opposition, in addition to the data portability and to not be subject to automated decisions, by writing to Prosegur Gestión de Activos S.L. at Calle Pajaritos, 24, 28007, Madrid (Spain), or the following email address: protecciondedatos@prosegur.com, attaching a copy of your national ID or documentation proving your identity. 

Furthermore, you are hereby informed that you may withdraw your consent whenever you so desire by contacting PROSEGUR at the address or email address mentioned above.

Finally, if you wish to receive further information on your data protection rights or file a claim, you can contact the corresponding Data Protection Authority to safeguard your rights.
 

6.    Data security

PROSEGUR has appropriate policies and technical and organisational measures in place to safeguard and protect your personal data against illegal or unauthorised access, accidental loss or destruction, damage, use or illegal or unauthorised dissemination. You can obtain a copy of the measures required by PROSEGUR by contacting the Data Protection Officer.

We will also take all the reasonable measures to ensure that our staff and employees who have access to your personal data have received appropriate training.

In any case, the user is hereby informed that any transfer of data online is not completely secure and, therefore, he/she proceeds at his/her own risk. Although we will do our utmost to protect your personal data, PROSEGUR cannot guarantee the security of the personal data sent via our Web Portal.
 

© 2020 Prosegur Group. All rights reserved.