PERSONAL DATA PROTECTION
Employee Data Processing
Who is responsible for processing your data?
– Identity: TECNOARISER S.L. – Tax ID: B99532756
– Postal address: Ismael Hipólito Lorvicente 13, 2-1C. 50011 Zaragoza (Spain)
– Email: administracion@tecnoariser.es
Why do we process your data?
At TECNOARISER S.L., we process your data for the purpose of managing labor, professional, and service provision relationships.
The processing consists of:
– Proper personnel management.
– Preparation and payment of employee payroll.
– Preparation of salary receipts.
– Creation of employment contracts.
– Settlement of social security contributions.
– Occupational risk prevention in order to protect the health and safety of staff.
– Management of employee files with a record of their performance within the organization.
– Monitoring of employee working hours in compliance with the Workers’ Statute, which establishes the need to record the working hours of each employee.
– Other labor procedures for the proper functioning of the company.
What categories of data do we process?
All the data we process is basic. Specifically, we handle the following personal data:
– Identifying information: first name, last name, tax ID number/national ID number, postal address, email address, telephone number, Social Security number, mutual insurance number
– Personal characteristics: gender, nationality, date of birth, place of birth, age
– Academic and professional: education, qualifications, student record, professional experience
– Employment details: profession, job positions, non-financial payroll data, employee record
– Economic-financial: bank accounts
Are there any automated decisions?
No automated decisions are made, nor are profiles created automatically.
How long will we keep your data?
The data used for time control will be kept for 4 years as required by the Workers’ Statute, after which time it will be destroyed. All other data will be kept for as long as a contractual relationship is maintained.
What is the legal basis for processing your data?
The legal basis for processing personal data is the consent of the data subject, as well as the execution of the employment contract in accordance with the terms and conditions set out in the clauses of the document signed by both parties and the obligations established in the Workers’ Statute.
The data subject is not obliged to provide us with their personal data, but if they do not provide us with the information required and necessary for processing, we will not be able to carry out the employment relationship.
The data subject may revoke their consent to the collection and processing of their personal data at any time, using the procedure we have established for this purpose, without this affecting the lawfulness of the processing based on the consent prior to its withdrawal. Under no circumstances will the withdrawal of consent condition the execution of other purposes.
To which third parties will your data be communicated?
No data will be communicated to third parties, except where legally required.
Which data processors will your data be shared with?
In order to provide services strictly necessary for the performance of its activities, TECNOARISER S.L. shares data with the following service providers:
– Data processor located in Zaragoza for tax, accounting, and labor consulting services.
– Data processor located in Zaragoza for computer system maintenance services.
– Data processor located in Zaragoza for health surveillance services.
All data processors comply with current data protection regulations.
Are there any international transfers of your data?
International data transfers are considered to be the transfer of data to data processors, joint data controllers, or recipients in third countries or international organizations not established in the European Union.
In the case of social networks, your image or other personal data will never be published without your signed consent via the corresponding document that will be provided to you.
Your personal data may be transferred to the following organizations not established in the European Union:
| Service | Company | Guarantee |
| Microsoft 365 – Office Suite | Microsoft Corporation(United States) | Belonging to the EU-U.S. Data Privacy Framework (www.dataprivacyframework.gov/list), which guarantees an adequate level of protection for transferred personal data. Privacy policy: www.microsoft.com/en-us/privacy/privacystatement |
What security measures do we implement to protect your data?
We will treat your data as strictly confidential at all times and maintain the corresponding duty of secrecy with regard to it, in accordance with the provisions of the applicable regulations, adopting the necessary technical and organizational measures to guarantee the security of your data and prevent its alteration, loss, unauthorized processing or access, taking into account the state of technology, the nature of the data stored and the risks to which it is exposed.
What are your rights when you provide us with your data?
1) Right of access: you may consult your personal data processed by the organization.
2) Right of rectification: you may modify your personal data when it is inaccurate.
3) Right of opposition: you may request that your personal data not be processed.
4) Right of deletion: you may request the total or partial deletion of your personal data. This does not mean that your data will be completely deleted, but rather that your data will be blocked in order to prevent its processing, without prejudice to its availability to public administrations, judges, and courts for the purpose of addressing any liabilities that may have arisen from the processing during its limitation period. Once this period has expired, your data will be duly deleted or anonymized.
5) Right to data portability: you have the right to transfer the data you have provided to us and those obtained from your contractual relationship to another data controller. This right can only be exercised when the processing is based on the execution of a contract or on your consent and the processing is carried out by automated means.
6) Right to restriction of processing: you may request the restriction of the processing of your data in the following cases:
– While the accuracy of your data is being contested
– When the processing is lawful, but you oppose the erasure of your data.
– When the organization does not need to process your data, but you need it for the exercise or defense of claims.
– When you have objected to the processing of your data, for the fulfillment of a mission in the public interest or for the satisfaction of a legitimate interest, while it is verified whether the legitimate reasons for the processing prevail over yours.
You may exercise your rights free of charge by proving your identity with a copy of your ID card or equivalent document and sending us your request by email or post to the details provided in the section on the data controller.
However, you may lodge a complaint with the Data Protection Agency (www.agpd.es).
Accuracy and veracity of data
The data owner or their legal representative is solely responsible for the veracity and accuracy of the data provided, exempting TECNOARISER S.L. from any responsibility in this regard.
Data subjects guarantee and are responsible, in any case, for the accuracy, validity, and authenticity of the personal data provided, and undertake to keep them duly updated.
The data subject agrees to provide complete and correct information to the data controller.
Modifications
TECNOARISER S.L. reserves the right to modify this information to adapt it to any new legislation that may be applicable or to new data processing that may be carried out in the future. In such cases, the changes will be communicated to the interested parties reasonably in advance of their implementation.
[Updated on February 16, 2026]