Minors

Only persons over 14 years of age may provide personal data on this website. As required by the LOPDGDD, in the case of minors under 14 years of age, the consent of their parents or guardians will be a mandatory condition for us to process their personal data.

Furthermore, only persons over 18 years of age may contract our services. In the case of minors under 18 years of age, the consent of their parents or legal guardians will be a mandatory condition for us to provide the offered services, unless the minor is emancipated.

Security Measures

Users of the SINCROLAB S.L. website are informed that the technical and organisational security measures within our power have been adopted to prevent the loss, misuse, alteration, unauthorised access and theft of data, and thus guarantee the confidentiality, integrity and quality of the information contained therein, in accordance with the provisions of current data protection regulations. The personal data collected in the forms are processed solely by SINCROLAB personnel or the designated Data Processors.

The SINCROLAB Website also has SSL encryption, which allows the User to securely send their personal data through the website’s contact or registration forms.

Accuracy of the Data

The User declares that all data provided by them is true and correct and undertakes to keep it updated. The User will be responsible for the accuracy of their data and will be solely liable for any conflicts or litigation that may result from its falsity. It is important that, in order for us to keep personal data updated, the User informs SINCROLAB whenever there has been any change to it.

Data Transfer

SINCROLAB will not transfer or communicate your data to any third party, except in cases provided for by law or when it is strictly necessary for the provision of a service. Specifically, data may be transferred to:

• Technological or IT service providers.
• Payment service providers.
• Third parties or intermediaries, acting as service providers, who operate on our own behalf (e.g., administrative services, consultancy…).

Data transfers will be carried out in the strictest confidence, using the necessary measures, such as the signing of confidentiality agreements, or adherence to their privacy policies established on their respective web pages. The User may refuse the transfer of their data to the Data Processors, by written request, through any of the means mentioned above.

In addition, where necessary, Customer data may be transferred to certain bodies in compliance with a legal obligation: Spanish Tax Agency, Labour Inspectorate, etc.

Exercise of User Rights

The LOPD and the GDPR grant interested parties the possibility of exercising a series of rights related to the processing of their personal data. To do so, the User must contact us, providing documentation proving their identity (DNI or passport), by email to dpo@7experts.com, or by written communication to the address that appears in our Legal Notice. Said communication must include the following information: the User’s full name, the subject of the request, their address and the supporting details.

The exercise of rights must be carried out by the User themselves. However, they may be executed by a person authorised as the User’s legal representative, providing the documentation that accredits said representation.

The User may request the exercise of the following rights:

• Right to request access to personal data, which is the right to obtain information on whether their own personal data is being processed, the purpose of the processing that, where applicable, is being carried out, as well as the information available on the origin of said data and the communications made or planned for it.
• Right to request its rectification, in the event that the personal data is incorrect or inaccurate, or erasure of data that proves to be inadequate or excessive.
• Right to request the restriction of its processing, in which case SINCROLAB will only retain the data strictly necessary for the exercise or defence of claims.
• Right to object to the processing: refers to the right of the data subject to not have their personal data processed or to have it stopped in cases where their consent is not required for the processing, where it concerns commercial prospecting files or where the purpose is to make decisions concerning the data subject based solely on the automated processing of their data, unless for legitimate reasons or the exercise or defence of possible claims it must continue to be processed.
• Right to data portability: in the event that you want your data to be processed by another company, SINCROLAB will facilitate the portability of your data in an exportable format.

In the event that consent has been granted for a specific purpose, the User has the right to withdraw consent at any time, without this affecting the lawfulness of the processing based on the consent prior to its withdrawal.

We undertake to execute all these rights within the maximum legal period (1 month).

If a User considers that there is a problem with the way SINCROLAB is handling their data, they can address their complaints to the Security Officer or to the corresponding data protection authority, which is the Spanish Data Protection Agency in the case of Spain.

Data Retention

The personal data of Users who use the contact form or send us an email requesting information will be processed for the time strictly necessary to deal with the request for information, or until the consent granted is revoked.

The personal data of Customers will be processed until the contractual relationship ends. The retention period for personal data will be the minimum necessary, and may be kept for up to:

• 4 years: Law on Infractions and Sanctions in the Social Order (obligations regarding affiliation, registration, deregistration, contributions, payment of salaries, etc.); Arts. 66 et seq. of the General Tax Law (account books, etc.).
• 5 years: Art. 1964 of the Civil Code (personal actions without a special term).
• 6 years: Art. 30 of the Commercial Code (account books, invoices, etc.).
• 10 years: Art. 25 of the Law on the Prevention of Money Laundering and the Financing of Terrorism.
• No time limit: disaggregated and anonymised data.

In the case of processing candidate data (CVs), SINCROLAB may store your curriculum vitae for a maximum of two years to include it in future recruitment processes, unless the candidate states otherwise.

International Data Transfers

SINCROLAB does not carry out international transfers of your personal data to any third party based in a country not deemed adequate. However, if SINCROLAB were to carry out such a transfer, it will take additional measures to protect your transferred personal data (e.g., by incorporating into the contract signed with the third party the appropriate standard data protection clauses established by the European Commission or an EEA DPA), or it will ensure that the transfer complies with one of the conditions established by the applicable laws and regulations in EEA countries (e.g., you have given your explicit consent to the transfer [after having been informed of the possible risks of such transfers for you due to the absence of an adequacy decision and appropriate safeguards], or the transfer is necessary for the performance of a contract concluded between you and the Data Controller, or for the implementation of pre-contractual measures taken in response to your request).

Staff Selection

Applicants who send electronic communications to SINCROLAB, for the purpose of accessing the controller’s staff selection processes, authorise us to analyse the documents they submit (for example, their CV), all content that is directly accessible through Internet search engines (for example, Google), the profiles they maintain on professional social networks (for example, LinkedIn), the data obtained in assessment tests and the information they disclose in the job interview, with the aim of evaluating their application and, where appropriate, being able to offer them a job. In the event that the candidate is not selected, SINCROLAB may store their CV for a maximum of two years, to include it in future recruitment processes, unless the candidate states otherwise. The legal basis that legitimises this processing will be the consent of the interested party, which may be revoked at any time.

Confidentiality

The information supplied by the User will, in all cases, be considered confidential, and may not be used for purposes other than those described herein. SINCROLAB undertakes not to disclose or reveal information about the User’s requests, the reasons for the advice sought or the duration of its relationship with the User.