1.- GENERAL INFORMATION PRIVACY POLICY AND DATA PROTECTION

1- Consent for web users

The present “Privacy and Data Protection Policy” is intended to publicize the conditions governing the collection and processing of your personal data by our corporate entity or group to ensure fundamental rights, their honor and freedoms, all this in compliance with the regulations in force that regulate the Protection of Personal Data according to the European Union and the Spanish Member State.

In accordance with these regulations, we need to have your authorization and consent for the collection and processing of your personal data, so below, we indicate all the details of your interest regarding how we perform these processes, with what purposes, that other entities may have access to your data and what your rights are.

For all the above, once reviewed and read our Data Protection Policy, it is essential that you accept it in proof of your agreement and consent.

2.- RESPONSIBLE FOR THE TREATMENT

Who collects and treats your data?

The Person in Charge of Data Processing is that natural or legal person, of a public or private nature, or administrative body, who alone or jointly with others determines the ?nes and means of the processing of personal data; in case the ?nes and means of treatment are determined by the Law of the European Union or the Spanish Member State.

In this case, the Responsible for the Treatment are the following:

SOCKLA – Y0629725E

Your personal data is processed by all the entities of our Group of Responsible or Corporate Group SOCKLA, composed of, in addition to the entity detailed above, the following organizations:

How can you contact us?

Address of our offices:

CALLE NACIONES 21, MADRID, 28006

Email: [email protected]

Postal address:

CALLE NACIONES 21, MADRID, 28006

3.- SECURITY MEASURES

What do we do to guarantee the privacy of your data?

Our corporate entity or group adopts the necessary organizational and technical measures to guarantee the security and privacy of your data, to avoid its alteration, loss, treatment or unauthorized access, depending on the state of the technology, the nature of the data stored and the risks to which they are exposed.

Among others, the following measures stand out:

Guarantee the confidentiality, integrity, availability and permanent resilience of the treatment systems and services. Restore availability and access to personal data quickly, in case of a physical or technical incident. Verify, evaluate and assess, on a regular basis, the effectiveness of the technical and organizational measures implemented to guarantee the safety of the treatment. Pseudonymize and encrypt personal data, in case it is sensitive data. In addition to these measures, with the intention of strengthening security and privacy, we are adhering to:

4.- PURPOSE OF THE TREATMENT

What do we want to process your data for?

We need your authorization and consent to collect and process your personal data, so below we detail the intended uses and purposes. Even so, we will carry out only those that you have authorized us through the “Consent Form” of the Consent for the data processing.

Commercial communications in a newsletter: Management of clients/suppliers, accounting, ?scal and administrative; Marketing, advertising, and commercial prospection

How long do we keep your data?

We use your data for the time strictly necessary to fulfill the purposes indicated above. Unless there is an obligation or legal requirement, the expected conservation periods are:

Commercial communications in a newsletter: As long as its deletion is not requested by the interested party, what automated decision processes do we do?

5.- LEGITIMATION OF TREATMENT Why do we treat your data?

The collection and processing of your data is always legitimized by one or several legal bases, which are detailed below:

Commercial communications in a newsletter: Explicit consent of the interested party; Existence of a contractual relationship with the interested party through a contractor pre-contract; Legitimate interest of the Treatment Manager or third parties

6.- RECIPIENTS OF YOUR DATA

To whom do we give your data within the European Union?

Sometimes, in order to comply with our legal obligations and our contractual commitment to you, we are faced with the obligation and need to give some of your data to certain categories of recipients, which we specify below (they will appear only if assignments are going to be made). ):

In addition to the categories of recipients to whom data is transferred, we could also assign them to the following organizations (they will only appear if data is transferred to other organizations):

Do we carry out International Transfers of your data outside the European Union?

In the process of processing your data made by our entity, we need to contract external services that may imply that your data is stored and/or processed by organizations that are established or operate from outside the European Union, which would imply that we make transfers international data.

Next, we indicate all the details of these international transfers, (they only appear if they were made):

7.- ORIGIN AND TYPES OF TREATED DATA Where have we obtained your data?

What types of data of yours have we collected and processed? Commercial communications in a newsletter

Purposes:

Management of customers/suppliers, accounting, ?scal and administrative Marketing, advertising and commercial prospecting

8.- RIGHTS OF THE INTERESTED PARTIES

What are the rights that protect you?

The current data protection regulations protect you in a series of rights in relation to the use we give to your data. Each and every one of their rights is unipersonal and non-transferable, that is, they can only be made by the owner of the data, after verification of their identity.

Here we indicate what are the rights that assist you:

Request ACCESS to your personal data

Request the RECTIFICATION of your data

Request the deletion or deletion of your data (right to “forget”)

LIMIT or OPPOSE the use we give your data

Right to PORTABILITY of your data for cases of telecommunications or internet services.

Right to WITHDRAW your consent at any time

Right to file a COMPLAINT regarding data protection with the Control Authority: Spanish Agency for Data Protection

How can you exercise your rights in relation to your data?

To exercise your rights of access, rectification, deletion, limitation or opposition, portability, and withdrawal of your consent, you can do so as follows:

Commercial communications in a newsletter

Responsible: SOCKLA

Address: CALLE NACIONES 21, MADRID, 28006, Spain

How can you file a claim?

In addition to the rights that assist you, if you believe that your data is not being collected or processed in accordance with the current Data Protection regulations, you may file a complaint with the Control Authority, whose contact information we indicate below:

Spanish Agency for Data protection Calle Jorge Juan, 6. 28001, Madrid (Madrid), Spain Email: [email protected] – Telephone: 912663517

Web: https://www.agpd.es

9.- CONSENT AND ACCEPTANCE

Acceptance of this document indicates that you understand, accept all the clauses of our privacy policy for which authorizes the collection and processing of your personal data in these terms .. This acceptance is made by signing the “Authorization Form of the Consent for data processing.