Skrit

Legal notice

In compliance with Regulation (EU) 2016/679, of the European Parliament and of the Council, of April 27, 2016 (hereinafter RGPD), Skrit Informática S.L. (hereinafter Skrit) manifests this Policy regarding the treatment and protection of personal data.

Data of the data controller
Skrit Informática, SL
NIF: B-57628372
Registered address: c/ Maria Lluïsa Serra, 22, 07703, Mahón, Menorca (Islas Baleares)
Email: info@skrit.es

Contact details of the Data Protection Delegate: info@skrit.es

Scope of application

This policy will be applicable:

  • To those who visit the Skrit website
  • To those who voluntarily communicate with Skrit via email, chat or who fill in any of the data collection forms published on the Skrit website.
  • To those who request information about Skrit's products and services or who request to participate in any of Skrit's commercial actions.
  • To those who formalize a contractual relationship with Skrit by contracting its products and services
  • To those who use any other service present on the website that involves the communication of data to Skrit or access to data by Skrit for the provision of its services.
  • To any others who, directly or indirectly, have given their express consent for their data to be processed by Skrit for any of the purposes set out in this Policy.

The use of Skrit products and services requires the express acceptance of this Policy.

Skrit warns that, except for the existence of a legally constituted representation, no user and/or client can use the identity of another person and communicate their B-57628372

In the same way, the user and/or client who communicates personal data to Skrit declares to be of legal age, in accordance with the provisions of Spanish legislation, otherwise refraining from providing data to Skrit. Any information provided about a minor will require the consent or prior authorization of their parents, guardians or legal representatives, who will be considered responsible for the data provided by the minors in their charge.

This Policy will be of subsidiary application with respect to those other conditions that on protection of personal data are established with a special character and are communicated, without limitation, through the registration forms, contracts and/or conditions of the particular services Therefore, this Policy is complementary to those mentioned in that which is not expressly provided for in them.

Purposes of the collection and processing of personal data

Skrit, as the data controller, informs users of the existence of various processing processes and files in which the personal data communicated to Skrit is collected and stored.

The purposes of this collection and processing of personal data are as follows:

  • Regarding the "cookies" that Skrit uses when browsing its website https://www.skrit.com, they are stored on the user's terminal (computer or mobile device) and collect information when visiting said web pages, with the purpose of improving their usability, understanding users' browsing habits or needs in order to adapt to them, as well as obtaining information for statistical purposes. For users who are already Skrit customers, the information collected through cookies will also be used to identify them when accessing the various tools Skrit provides for managing services. In any case, users can configure their browser to disable or block the receipt of all or some cookies. Not wishing to receive these cookies does not prevent them from accessing information on Skrit websites, although the use of some services may be limited. If, after having given consent to receive cookies, they wish to withdraw it, they must delete the cookies stored on their device through the options in their various browsers. All information about the cookies used by Skrit is published in its Cookie Policy, available for review at https://www.skrit.com.
  • In the case of sending an email to Skrit or communicating personal data through any other means, such as a contact form, the purpose of Skrit's collection and processing of such data is to respond to inquiries and requests for information regarding Skrit's products and services.
  • In the case of sending an email to Skrit regarding its job offers, such data will be processed to participate in personnel selection procedures.
  • In the case of Skrit forms that interested parties complete to participate in any of Skrit's commercial activities, the purpose will be to enable such participation, as well as to send commercial and advertising communications about Skrit's services, unless the interested party expressly objects to this at the time their data is collected. Notwithstanding the foregoing, the interested party may modify their decision at any time, as many times as they wish, through the means provided by Skrit for this purpose.
  • When contracting the services offered by Skrit, only the personal data necessary to establish the contractual relationship and enable the provision of the services and remuneration thereof by the clients will be collected. Such data will be collected and processed for the following purposes:
  • The main purpose will be to maintain the contractual relationship established with the client, in accordance with the nature and characteristics of the contracted services, with Skrit contacting the client via the email address, telephone, or other means indicated by the client.
  • For sending documentation and information related to the contracted services, as well as for sending commercial and advertising communications about them or similar services by Skrit, via postal mail, email, telephone, SMS, or other means indicated by the client, unless the client expressly states its intention. Opposition at the time of contracting. Regardless of whether the customer has chosen to receive commercial information from Skrit or not, the customer may change their decision at any time, as many times as they wish, through the specific section available for this purpose in their Customer Area.
  • For the maintenance of historical records of commercial relationships during the legally established periods.
  • In cases where Skrit must access and/or process personal data for which the customer has the status of data controller or processor, Skrit will process said data as data processor in accordance with the provisions of Article 28 of the GDPR and as indicated in the section entitled "Skrit as data processor" included in this Policy.
  • In compliance with theor as provided for in Law 25/2007, of October 18, on the retention of data relating to electronic communications and public communications networks, Skrit informs the user that certain traffic data generated during the course of communications will be retained and stored, and, where appropriate, said data will be communicated to the competent bodies, provided that the legal circumstances provided for in said Law apply.
  • For all other purposes expressly included in the Specific Conditions applicable to the corresponding product or service contracted by the client and expressly accepted by the client.

Personal data retention period

Skrit will keep the personal data for the time strictly necessary for the fulfillment of the purposes detailed above. Skrit may keep said data duly blocked during the period in which responsibilities could arise from its relationship with the client.

In the case of the data subject to conservation due to Law 25/2007, of October 18, on the conservation of data related to electronic communications and public communication networks, the period of conservation of the same will be detailed in said regulations.

Recipients of personal data

The recipients of the personal data collected by Skrit will be the following:

  • Skrit's own employees in the performance of their duties.
  • The Skrit providers involved in the provision of the services, in the event that this is necessary for the provision of the same.
  • The companies that are members of the Group of Companies of which Skrit is a part, understood in the sense of article 42 of the Commercial Code, whose activity is the commercialization of services of an identical or analogous nature offered by Skrit, such as presence services on the Internet, Managed Hosting, Cloud computing or advanced technology infrastructure solutions.
  • The judicial or administrative bodies, as well as the State Security Forces and Bodies, in the event that Skrit is required in accordance with current legislation to provide information related to its clients and its services.
  • Any others who, due to the nature of the service, must access the data provided with it, as detailed in the Specific Conditions that are applicable to the corresponding product or service contracted by the client and expressly accepted by it.

User rights and their exercise

Users may at any time exercise the following rights recognized by the RGPD:

  • Right of access. Users have the right to obtain from Skrit information about whether personal data concerning them is being processed, to access them and to obtain information about the processing carried out
  • Right to obtain a copy of your personal data.
  • Right of rectification. Users have the right for Skrit to rectify their personal data in the event that they are inaccurate or incomplete.
  • Right of suppression. Users have the right to proceed to the deletion of the data when they are no longer necessary for the purpose for which they were provided or when the rest of the legally foreseen circumstances concur.
  • Right to limit processing. Users have the right to request a limitation in the processing of their personal data, so that the processing operations that must correspond in each case are not applied to them, in those cases provided for in art. 18 of the RGPD.
  • Right to portability. Users have the right to receive the personal data that concerns them in a structured format, as long as said data concerns the user exclusively and has been provided by him.

Users may exercise these rights in the following ways:

  • If they are Skrit customers, users can check their personal data at any time by sending a message through the "Contact" section of said tool, indicating the right they wish to exercise.
  • Whether they are Skrit clients or not, users may exercise their rights by sending an e-mail communication to the address info@Skrit.es or by sending a request accompanied by their D.N.I. or document valid in law that proves your identity, addressed to Skrit Informatica, S.L. C/ Maria Lluisa Serra nº 22, 07703 Mahon Menorca (Baleares) Spain, to the attention of the Commercial Information Department, specifying the right they wish to exercise.

In cases of manifestly unfounded or excessive requests due to their repetitive nature, Skrit reserves the right to charge a fee for the derived administrative costs or the right to refuse to act on them, in accordance with the provisions of the art. 12.5 GDPR.

Control authority

Users and/or clients may contact the corresponding local control authority if they consider that the treatment carried out with respect to their personal data has not been carried out in accordance with current legislation.

The data protection control authority in Spain is the Spanish Data Protection Agency, whose contact details are available on its website, specifically at https://www.aepd.es/la-agencia/donde-encontrarnos.

International data transfers

In those Skrit products and services in which international transfers are required to enable their provision, this circumstance will be included in the Specific Conditions that are applicable to the corresponding product or service contracted by the client and expressly accepted by him prior to them.

Skrit as data processor

In accordance with article 28 RGPD and concordant, Skrit will treat the personal data with respect to which the client holds the status of responsible or in charge of the treatment, when this is necessary for the adequate provision of the contracted services. In this case, Skrit will act as data processor, in accordance with the terms indicated below:

  • Skrit will only process the data in accordance with the instructions of the client responsible or in charge of the treatment, not using them for a purpose other than that which appears in this Data Protection Policy and/or in the applicable contractual conditions.
  • Once the provision of the services that motivate the processing of personal data has been completed, these will be destroyed, as well as any support or documents that contain any personal data or any type of information that has been generated during, for and/or for the provision of the services subject to the corresponding Conditions. Notwithstanding the foregoing, Skrit may keep the aforementioned data duly blocked during the period in which responsibilities may arise from its relationship with the client.
  • In the event that Skrit uses the data for another purpose or communicates or uses it in breach of this Data Protection Policy and/or the corresponding Terms of Service, it will also be considered responsible for the treatment.
  • Skrit undertakes, in accordance with article 28 of the RGPD, to maintain due professional secrecy regarding the personal data to which it must access and/or process in order to comply in each case with the purpose of the Conditions of the service that are applicable to you, both during and after the termination of the same, committing to use said information only for the purpose foreseen in each case and to demand the same level of commitment from any person within your organization who participates in any phase of the processing of personal data responsibility of the client.
  • In accordance with the provisions of the RGPD, the following rules will apply in relation to the form and modalities of access to data for the provision of services:
    1. In the event that Skrit must access the treatment resources located in the client's facilities, the client will be responsible for establishing and implementing the security policy and measures, as well as communicating them to Skrit, who undertakes to respect them and demand their compliance from the people in your organization who participate in the provision of services.
    2. When Skrit remotely accesses data processing resources under the responsibility of the client, the latter must establish and implement the security policy and measures in its remote processing systems, Skrit being responsible for establishing and implementing the security policy and measures on their own local systems.
    3. When the service is provided by Skrit at its own premises, Skrit will collect in its Activity Log the circumstances relating to the processing of data in the terms required by the RGPD, including the security measures corresponding to said processing.
  • Access to and/or processing of data by Skrit, without prejudice to the specific legal or regulatory provisions in force that may be applicable in each case or those adopted by Skrit on its own initiative, will be subject to the necessary security measures for:
    1. Guarantee the permanent confidentiality, integrity, availability and resilience of treatment systems and services.
    2. Restore the availability and access to personal data quickly, in the event of a physical or technical incident.
    3. Verify, evaluate and assess, on a regular basis, the effectiveness of the technical and organizational measures implemented to guarantee the security of the treatment.
    4. Pseudonymize and encrypt personal data, where appropriate.
  • The client authorizes Skrit, in its capacity as data processor, to subcontract with third parties, in the name and on behalf of the client, storage services, custody of data backup copies and security, and those that are necessary to enable the provision of the contracted services, respecting in any case the obligations imposed by the RGPD and its development regulations. At any time, the client may contact Skrit to find out the identity of the subcontracted entities for the provision of the indicated services, which will act in accordance with the terms set forth in this document and after formalizing a data processing contract with Skrit. according to art. 28.4 of the RGPD.
  • The client authorizes Skrit to carry out the actions indicated below, whenever they are necessary for the execution of the provision of the services. Said authorization is limited to the action(s) necessary for the provision of each service and with a maximum duration linked to the validity of the applicable contractual conditions:
    1. To carry out the processing of personal data on portable devices only by users or user profiles assigned to the provision of services.
    2. To carry out the treatment outside the premises of the client or Skrit, only by the users or user profiles assigned to the provision of the services.
    3. The entry and exit of media and documents containing personal data, including those included and/or attached to an email, outside the premises under the control of the client responsible for the treatment.
    4. The execution of data recovery procedures that Skrit is obliged to carry out.
  • Skrit is not responsible for the breach of the obligations derived from the RGPD or the corresponding regulations on data protection by the user and/or client in what corresponds to their activity and that is related to the execution of the contract or commercial relations that bind you to Skrit. Each party must face the responsibility arising from its own breach of contractual obligations and the regulations themselves.