1. INFORMATION FOR THE USER
ALBERTO DE MIGUEL, S.A., hereinafter the Responsible Party, is the Data Controller of the personal data that the Interested Party may provide through this website, by email, by telephone, as well as by any other means, and informs you that this data will be processed in accordance with the provisions of current regulations on personal data protection, so the following information regarding possible processing is provided:

The Interested Party guarantees the accuracy and truthfulness of the personal data provided, exonerating the Responsible Party from any liability in this regard, committing to keep them duly updated and to communicate to the Responsible Party any variation that may occur in them.

The products and services offered by the Responsible Party are not directed at minors, so if the Interested Party is under 18 years of age, we ask that you do not send us your personal information. In case of receiving personal information from minors under 18 years of age, these will be deleted as soon as we become aware of the fact. The Responsible Party will carry out the processing of the data for the following purposes, depending on the reason for which the Interested Party has provided them:

CONTACT / INQUIRIES
Purpose of processing: to respond to and follow up on inquiries, requests or petitions received, as well as to maintain contact with those people who have shown interest in the company, its products or services. Data retention criteria: they will be kept for the time necessary for the processing and response of the inquiry. Legitimation for data processing: the legal basis for data processing is based on the legitimate interest of the Responsible Party to attend to and respond to the communications or requests received.

QUOTES
Purpose of processing: the preparation and delivery of the quotes requested by the Interested Parties, as well as being able to follow up on it by telephone, electronically or in person. Data retention criteria: they will be kept in the system indefinitely as long as the interested party does not request their deletion. Legitimation for data processing: the legal basis for data processing is based on the legitimate interest of the Responsible Party to attend to and respond to the communications or requests received.

CONTRACTING OF SERVICES OR PRODUCTS
Purpose of processing: to manage the provision of the agreed services or the sale of products and the maintenance of commercial relations between both parties, as well as to carry out administrative tasks (invoicing, collections, etc.) and for compliance with the obligations derived from all of this. Data retention criteria: they will be kept as long as the contractual/commercial relations are maintained between both parties and their deletion is not requested and, in case of doing so, for the time provided by the regulations in force (tax, commercial, etc.) regarding the prescription of responsibilities. Legitimation for data processing: the legal basis for data processing is the execution and maintenance of the contractual/commercial relations between both parties, as well as compliance with the legal obligations (tax, commercial, etc.) that all this implies.

SENDING OF CVs Purpose of processing: filing and registration of documentation and CVs provided voluntarily by interested parties for future selection processes of candidates for jobs in the company. Data retention criteria: they will be kept for a maximum period of one year, after which the data will be deleted guaranteeing total respect for confidentiality, both in the processing and in its subsequent destruction. In this sense, once the aforementioned period has elapsed, and if you wish to continue participating in the selection processes of the Responsible Party, we ask you to send us your CV again. Legitimation for data processing: the legal basis for data processing is the consent provided by the Interested Party at the time of providing their data to participate in selection processes.

SENDING COMMERCIAL COMMUNICATIONS
Purpose of processing: to send information by any means, postal or electronic, about offers and promotions, events and activities and other advertising information of the Responsible Party. Data retention criteria: they will be kept in the system indefinitely as long as the interested party does not request their deletion. Legitimation for data processing: the sending of commercial information to clients is based on the legitimate interest of the Responsible Party to send commercial communications about products or services similar to those contracted and thus achieve their loyalty. The basis for sending commercial communications to non-clients is the consent provided by the Interested Party at the time of collecting the data. However, in either case, the Interested Party has the right to oppose this processing, being able to do so by any of the means described in this document. The withdrawal of said consent will not affect in any case the maintenance of commercial relations, but the data processing carried out for that purpose prior to that will not lose its lawfulness due to the fact that the consent has been revoked.

VIDEO SURVEILLANCE
Purpose of processing: temporary storage of images captured by video surveillance cameras in order to preserve the safety of people, goods, facilities and merchandise. Data retention criteria: they will be kept for a maximum period of 30 DAYS, except when they have to be kept to prove the commission of acts that threaten the integrity of people, goods or facilities, or are provided to the courts and the State Security Forces and Corps. Legitimation for data processing: the legal basis for data processing is the legitimate interest of the Responsible Party in preserving the safety of people, goods, facilities and merchandise.

ACCESS REGISTRATION TO FACILITIES
Purpose of processing: control and management of people accessing the facilities, due to compliance with occupational risk prevention and food safety and hygiene regulations. Data retention criteria: they will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that could derive from said purpose and from the data processing. The provisions of the occupational risk prevention and food safety regulations (BRC, IFS, etc.) will apply. Legitimation for data processing: the legal basis for data processing is the legitimate interest of the Responsible Party to ensure compliance with occupational risk prevention and food safety and hygiene regulations, as well as compliance with the legal obligations that apply.

Communication of data: data will not be communicated to third parties, unless there is a legal obligation or it is necessary for the maintenance and development of relations between both parties or for the provision of services, such as, by way of example, but not limited to: – Competent Public Administrations, for compliance with applicable regulations. – Financial/banking entities, for the management of collections and payments. – Service providers contracted by the Responsible Party, who will have the status of data processor.

Rights assisting the User: Right to withdraw consent at any time. Right of access, rectification, portability and deletion of their data and the limitation or opposition to their processing. Right to file a claim with the supervisory authority (agpd.es) if they consider that the processing does not comply with current regulations.

How to exercise these rights? Interested Parties may exercise their personal data protection rights by directing a written communication to ALBERTO DE MIGUEL, S.A. Carretera LR-115 km. 35 / Apartado de correos, 24 – 26560 Autol (La Rioja), indicating the reference "EXERCISE LOPD RIGHTS" or through the email info@conservasemperatriz.com, including a photocopy of their ID or other equivalent identification document and indicating their name and surname, petition in which the request is specified, address for notification purposes, date and signature. You may also exercise your rights through legal representation, in which case, in addition to the ID of the interested party, ID and document accrediting the representation of the third party must be provided. If requested, we will make available the forms in which you can exercise these rights, indicating which right you wish to exercise.

SOCIAL NETWORKS
We inform you that we are present on Social Networks. The processing of data carried out on people who become followers and/or perform any link or connection action through the Social Networks of the official pages of ALBERTO DE MIGUEL, S.A., will be governed by this section, the rest of the privacy policy, as well as by those Conditions of use, privacy policies and other access, use and similar regulations belonging to the corresponding social network. The provider will process your data for the purposes of correctly managing its presence on the corresponding social network, informing you of activities, products and/or services of ALBERTO DE MIGUEL, S.A., or of third parties that may be related to our activity, as well as for any other purpose that the Social Network regulations may allow.

2. MANDATORY OR OPTIONAL NATURE OF THE INFORMATION PROVIDED BY THE USER
The Interested Parties, by checking the corresponding boxes and entering data in the fields, marked with an asterisk (*) in the various forms, expressly and freely and unequivocally accept that their data are necessary to meet their request by the provider, the inclusion of data in the remaining fields being voluntary. In the event that not all data is provided, it is not guaranteed that the information and services requested are completely adjusted to your needs.

3. SECURITY MEASURES
That, in accordance with the provisions of current regulations on personal data protection, the RESPONSIBLE PARTY is complying with all the provisions of the GDPR and LOPD regulations for the processing of personal data under its responsibility and, manifestly, with the principles described in the GDPR and the LOPD, by which they are processed in a lawful, fair and transparent manner in relation to the interested party and adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed. The RESPONSIBLE PARTY guarantees that it has implemented appropriate technical and organizational policies to apply the security measures established by the GDPR and the LOPD in order to protect the rights and freedoms of Users and has communicated the appropriate information so that they can exercise them.