The purpose of this Privacy Policy is to explain how we collect, process and protect the personal data that you provide to us via our website or blog (hereinafter Website) so you decide whether or not you want us to process it.

1. Details of the Data Controller / Information Society Service Provider

Identity-Entity: MIELSO, S.A
CIF/NIF: A12012472
Postal address: C/ Industria,1 Pol. Ind. El Mijares, 12550, Almazora (Castellón) Spain
Telephone: 964 50 32 30
E-Mail: mielso@mielso.es
Company object: Production and marketing of honey
Website: www.mielso.es
Register data: Castellón Companies Register Volume 641, Book 208, Folio 77, Section 8, Page CS 4576

2. Processing of personal data

The personal data you have provided us with will be treated confidentially and will be incorporated into the corresponding processing activity owned by our company.
We request those data that are essential to deal with your request, to invoice if you make a purchase or contract or to maintain the relationship with you if you request it or when we are obliged to do so in order to provide you with services and/or deal with your purchases on this website.

3. Purpose

Your personal data will be processed for the sole purpose of dealing with your requests, whether you are a customer, supplier, user of our website or job applicant.
We do not send advertising without the user’s prior consent.

4. Legitimation

Your data is processed on the following basis:
• Requesting information, applying for employment and/or contracting our services and/or purchasing products.
• Free, specific, informed and unequivocal consent, since we inform you of this privacy policy, which, after reading it and if you agree, you can accept by ticking the boxes provided for this purpose.
You can change your mind at any time and withdraw your consent.
We do not process data of minors.
In the event that the user is under 14 years of age or incapacitated, it will be necessary to have the consent of the parents, guardians or legal representative.

5. Security Measures

Our entity has implemented all the necessary technical and organisational measures to protect the personal data processed, preventing their loss, theft or unauthorised use.
These measures are regularly verified in our compliance checks.

6. Data Storage

The personal data provided will be kept for the time necessary to fulfil the purpose for which they are collected and to determine any possible liabilities that may arise from the purpose.
In the case of job applications, they will be kept for a maximum period of 1 year or until the data subject asks us to delete his or her data.

7. Rights of Data Subjects

You have the right to know if your personal data is being processed by us; therefore, you have the right to access your data, rectify it if it is inaccurate or request its deletion when the data is no longer necessary.
You may also exercise your right to limitation or portability if you deem it convenient and to do so you may do so in writing by e-mail to info@businessadapter.es attaching a copy of your ID card to identify you.
If you have any suggestions or queries about the processing of your data, please contact our data protection consultants:
BUSINESS ADAPTER, S.L.
Ronda Guglielmo Marconi, 11, 26, (Parque Tecnológico) 46980 Paterna (Valencia).
Tel. 96 131 88 04
E-mail: info@businessadapter.es
Web: https://www.businessadapter.es/
If the person wishing to exercise their rights is under 14 years of age or incapacitated, they may do so through their parents, guardians or legal representative.
If you wish to make a complaint on the grounds that your rights have been infringed, you can do so at the Spanish Data Protection Agency, C/ Jorge Juan, 6, 28001 Madrid or at www.aepd.es.

8. Profile Elaboration

We do not create profiles using your personal data, but if we do, you will be informed and asked for permission to do so.
You also have the right to object to such processing at any time.

9. Transfer of Data
Your personal data will not be transferred to other countries or third parties except when there is a legal obligation to do so.
In the event of purchasing products or contracting services, your personal data may be transferred to those entities necessary to deliver the purchased products or provide you with our services.
Our bank will know your data for the management of the payment of products or services, as well as the persons in charge of the processing necessary for the execution of the contracts and/or purchases.
In the case of transfers to other entities or to other countries, we will inform you and ask for your prior consent.
Corporate Data Protection Commitment

Scope of application
This Commitment shall be binding on all departments, employees of our entity and those acting on our behalf..

Object
We have established protocols for the processing of personal data, in accordance with the provisions of Spanish and European data protection regulations, in order to guarantee the security and confidentiality of such data at all times.

Principles
Lawfulness, Fairness, Transparency, Data minimisation, Accuracy, Retention period limitation, Integrity, Confidentiality and Active accountability.
Special category of data
The processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, the processing of genetic or biometric data, data concerning health or data concerning sexual orientation is prohibited, except in legally authorised exceptions and with the prior consent of the data subject.
Rights of data subjects
Data subjects shall have the right of access to their personal data, as well as the right to have them rectified if inaccurate, erased if no longer necessary or if processing is no longer desired, to limit certain processing, to have the possibility to receive their data easily and in structured and commonly used formats from the controller, to have their data used for profiling purposes and to object to the processing at any time.

Registration of Activities, Impact Assessment and Security Measures
Our entity will keep a record of the processing activities and analyse the purposes of the processing, categories of data subjects and data, recipients, international transfers, storage periods, etc., in order to assess the risks of the processing and implement the necessary security measures to safeguard personal data under the principles of confidentiality and secrecy. Likewise, we have analysed the need to appoint a Data Protection Delegate, establishing, if necessary, that the person appointed to this post will have sufficient knowledge and experience in accordance with the provisions of the regulations in force.
Control
We have engaged the services of an external consultancy firm to carry out a regular audit to assess compliance with this commitment and all legal obligations in this area.
The Directorate
Updated on 26 August 2020