Privacy Policy
AGREEMENT:
Between : on the one side, the visitor of the Gedimex website & on the other, Mr. Demeester on behalf of Gedimex BV
DECLARING:
I.- That the visitor of the Gedimex website has the intention to giving services of:
Buying foodstuffs from or selling products to Gedimex
II.- That Gedimex BV has contracted the visitor of the Gedimex website to give the services of:
Suppling or purchasing foodstuffs
III.- That both parties, with respect to the mentioned provision of services and in accordance with what is established by article 12 of Basic Law 15/1999 of 13 December regarding personal data protection, do hereby agree to regulate the access to and treatment by the visitor of the Gedimex website (hereinafter the Entity Responsible for the Treatment) of the personal data under the responsibility of Gedimex BV (hereinafter the Entity Responsible for the File)
With this purpose, they do hereby adhere to this CONFIDENTIALITY AGREEMENT to be governed by the following:
STIPULATIONS:
I.- The Entity Responsible for the Treatment agrees to hold maximum reserve and secrecy on the information classified as confidential. Confidential information will be considered any personal data to which the Entity Responsible for the Treatment might have access in the referred provision of services.
II.- The Entity Responsible for the Treatment shall inform its staff, collaborators and subcontractors of the obligations established herein, and all obligations relative to the automatic treatment of personal data. The Entity Responsible for the Treatment will make all warnings and sign all documents that might be necessary with their staff and collaborators in order to assure compliance with said obligations.
III.- The Entity Responsible for the Treatment does hereby recognise that the legislation on personal data protection (Basic Law 15/1999 and RD. 1720/2007 of 21 December) establishes a series of obligations in the treatment of personal data by third parties, and does hereby assume the following commitments in compliance there with:
- It will access the personal data under the responsibility of the visitor of the Gedimex website only if said access is necessary for giving the contracted service, and shall not use or apply said data for any purpose other than giving the service.
- It will treat information according to the instructions of the Entity Responsible for the File.
- In accordance with the provisions of article 9 of the Basic Law regarding the protection of personal data, it will apply all pertinent technical and organisational measures to guarantee the security and integrity of the personal data to which it has access and shall avoid their alteration, loss, treatment or unauthorised access thereto. In this sense, the Entity Responsible for the Treatment hereby expressly declares that it has the corresponding security measures established by RD.1720/2007 of 21 December, in accordance with the security level applicable to the data it will have to access in giving the service to the Entity Responsible for the File.
- It will in no case report the personal data to which it has access to third parties, even for the purpose of their preservation.
- It will destroy all data granted by the Entity Responsible for the File at the end of the term of this agreement.
IV.- The obligations established for the Entity Responsible for the Treatment in the stipulation above shall also be observed by its employees, internal and external collaborators and subcontractors. Therefore the Entity Responsible for the Treatment shall respond before the Entity Responsible for the File if said obligations are breached by said employees, collaborators or subcontractors. The Entity Responsible for the File expressly authorises the Entity Responsible for the Treatment to subcontract all or part of the commissioned service, albeit under the entire responsibility of the Entity Responsible for the Treatment.
V.- In the event of breach of any of the stipulations hereof by the Entity Responsible for the Treatment, it shall expressly exonerate the Entity Responsible for the File of any responsibility, and specifically:
- If the Entity Responsible for the Treatment should use or apply the personal data for any purpose other than that agreed herein and accepted by both parties.
- In the event of breach by the Entity Responsible for the Treatment of its incumbent duty to hold secret the mentioned data and not to pass them on to third parties.
- In the listed cases and generally in the breach of any of the stipulations of this document, the Entity Responsible for the Treatment will be considered responsible for the treatment and shall respond for breaches it might personally have incurred, and all claims that those affected might bring before the Data Protection Agency and for all possible compensation which might be recognised to those affected who, in accordance with article 19 of B.L. 15/1999, might exercise the action of responsibility for the damage or injury suffered by their goods or rights.
VI.- The confidentiality obligations established herein will be indefinite in duration and shall remain in force after the termination for any reason of the relationship between the Entity Responsible for the Treatment and the Entity Responsible for the File.
VII.- In case of termination of the contractual relationship between the Entity Responsible for the File and the Entity Responsible for the Treatment, the personal data used by the latter shall be destroyed or returned to the Entity Responsible; the same will occur with any support or documents in which any personal data which are the object of treatment should appear.
And as proof of conformity with the above, both parties accept this document, in the place and on the date expressed in the header.