1. Identification of the Data Controller

  • Identity: GRUPO ATISA BPO, S.A.
  • Address: Edificio Atisa C/ Trópico 6. Polígono Industrial las Monjas 28850, Torrejón de Ardoz. Madrid
  • Telephone: 91 205 44 00
  • E-mail: gestionlopd@atisa.es


2. Purpose of the processing of your personal data

The purpose of the processing will be to manage the request made through the website through the contact form or any other online form or a request by e-mail. This request may be, but not limited to, for management of a request, reply to a request for commercial information, application for employment or, where appropriate, registering to receive company newsletters, as well as any other interaction between the user of the web and GRUPO ATISA which tends to satisfy the user’s needs. All the data requested is necessary to deal with the application.

Likewise, the data provided will also be processed to send you commercial information about our products and services that may be of interest to you, by post, e-mail, SMS, or any other equivalent electronic communication means. If users do not want their data to be processed, they will have the opportunity to oppose the commercial communication receipt by not checking the corresponding box on the information or contact form itself, or even by exercising their right to object at the address above.

Access to this website may involve the use of cookies. Cookies are small amounts of information stored in the browser used by the user to record information used in subsequent accesses. The data stored allows a specific user to be identified and information about their preferences, pages visited, etcetera, to be recorded. If you do not wish to enable the installation of cookies on your computer, you must configure your browser to that effect.


3. Conservation period

Information about you will be kept for the duration of the business relationship, or interest you have in reading this policy (for example, if you have sent a CV, or subscribed to a newsletter) as long as your details are not requested to be deleted, for the duration of any actions that may arise concerning this contract; as well as for any claims that we may receive from official bodies in compliance with legislation.


4. Information to send you commercial communications

The personal data provided for the sending of commercial communications will continue to be kept until you revoke your consent, all without prejudice to your right to suppression or opposition.


5. Legitimacy for the processing of your data

The legal basis for the processing of your data is the execution of the business relationship to which you are a party so that we can manage, develop and control the corresponding commercial and contractual relationship. All the data we ask you to provide is obligatory. Therefore, failure to comply with some of it may make it impossible to provide our website’s services.

Concerning the sending of commercial communications by electronic means – as a result of a previous contractual relationship – the legal basis is the legitimate interest of GRUPO ATISA under article 21.2 of the Law on Information Society Services.

Concerning the sending of commercial communications by any means, including electronic ones – outside any contractual relationship, but based on a legitimate interest since you are addressing the entity – the legal basis is the consent requested from you at that time and that you freely give. If your permission is not obtained, GRUPO ATISA undertakes not to process your data for advertising purposes.


6. Communication or transfer of data and international data transfer

GRUPO ATISA may communicate your personal data to those public administrations with competence in the matter and if there is a legal obligation to do so.

However, if at any time during the commercial relationship it should be necessary to communicate your details to third parties for new purposes, this communication will be made when GRUPO ATISA has your prior consent to do so and in the legally required manner.

There may also be third parties who may have access to your personal data due to services provided to the GRUPO ATISA.

We do not make any international transfers of your personal data.


7. Rights

Any person has the right to obtain confirmation as to whether or not GRUPO ATISA is processing personal data concerning them, and in this case, the right to access your personal data, the purposes of the processing, and the categories of personal data concerned.

He or she shall also have the right to request that inaccurate data be rectified or, where appropriate, that it be deleted when the data is no longer necessary for the purposes for which it was collected, the consent based on which the processing was carried out has been withdrawn, or the data are opposed to such processing, the personal data has been processed unlawfully, or it has to be deleted to comply with a legal obligation under Union or Member State law.

He/she may request a limitation of the processing of his/her data where he/she contests the accuracy of the personal data for a period enabling the controller to verify the accuracy of the data; the processing is unlawful, and the data subject opposes the deletion of the personal data and requests instead limitation of its use; the controller no longer needs the personal data for the processing but the person concerned needs it the formulation, exercise or defence of claims; or the person concerned has opposed the processing, while it is verified whether the legitimate interests of the controller prevail over those of the person concerned. In such cases, we will only keep the data for the exercise or defence of claims.

Under certain circumstances and for reasons related to your particular situation, you may object to your data processing. GRUPO ATISA will cease to process the data, except for compelling legitimate reasons, or the exercise or defence of possible claims.

He/she shall have the right to receive the personal data concerning him/her, which he/she has provided, in a structured format, and to transmit it to another data controller without being prevented from doing so by the data controller to whom he/she has been provided, where the processing is based on consent; or to have it processed by automated means.

When the persons concerned exercise their rights of access, rectification, deletion and opposition, limitation of processing, portability of data and not to be subject to automated individualised decisions, they must notify this by e-mail to gestionlopd@atisa.es 

Finally, under the terms established in the current legislation; they may revoke the consents they have given us, with the interested parties having the possibility of presenting a complaint to the Spanish Data Protection Agency.


 8. Origin

The personal data that we process in the GRUPO ATISA comes from the interested concerned.


9. Additional information

Users guarantee and are responsible, in any case, for the truthfulness, accuracy, validity, the authenticity of the Personal Data provided, and undertake to keep it duly updated. Likewise, users guarantee that they are over 14 years of age.

If personal data is provided by persons who are not the owners of such data, the user must, before its inclusion, inform such persons of the points contained in the preceding paragraphs. In these cases, the user guarantees that the data reported is from persons over 14 years of age and that the information is accurate and truthful. GRUPO ATISA will be exempt from any responsibility for the user’s failure to comply with these requirements.

GRUPO ATISA has adopted the legally required security levels for the protection of Personal Data and has installed all the technical means and measures available according to the state of technology to avoid the loss, misuse, alteration, unauthorised access and theft of the Personal Data provided.

The user counts on the confidentiality and duty of secrecy of the GRUPO ATISA employees and all those who treat the data in the name of and on behalf of the user. Without prejudice to the above, the user is aware of the possibility that the security of communications through the network is not invulnerable.