Privacy Policy Aleatica.com

We will only share your personal data with third parties when this disclosure is legally permitted, subject to compliance with the requirements of the applicable personal data protection rules and regulations (including contractual requirements), and we will protect the personal information both at rest and in transit to ensure the confidentiality, integrity and availability of the information.

The General Management of Aleatica is split between Madrid (Spain) and the State of Mexico (Mexico) and your personal data may, therefore, be transferred to Mexico, a country that has personal data protection legislation and a supervisory authority (INAI: National Institute for Transparency, Access to Information and Personal Data Protection (https://home.inai.org.mx) but that is not recognised by the European Union as a country that grants a sufficient level of protection for personal data. The communication of personal data that we carry out in this context is done in compliance with the standard contractual clauses of the European Commission.

Subject to compliance with the previous requirements, your personal data may be communicated to:

• The company Seconmex Administración SA de CV, located in Mexico State (Mexico), a company that employs part of the Corporate Management of Grupo Aleatica and its human resources.
• Other companies of Grupo Aleatica: Occasionally, and when we inform you of this in the Privacy Notices of the data collection forms, other companies of Grupo Aleatica in the cases and for the purposes detailed in the Privacy Notices (for example in supplier authorisation processes)

• Third party suppliers of services that process personal information for and on behalf of Aleatica when the provision of these services requires the processing of personal data, even when this is done occasionally and is not the main purpose of the service.

• Providers of IT services such as storage, maintenance, support, cybersecurity and others. 
• Suppliers of other services (not IT) including: consultants, legal advisors, auditors, administrative agencies, etc.

• Social Security mutual insurance companies for occupational illness and accidents, for the provision of cover for the contingencies of occupational accidents and illness for the workers of Grupo Aleatica
• Suppliers of social benefits (meal tickets or childcare for employees) 
• Regulatory authorities, public authorities, courts or tribunals that may require this information in the legitimate exercise of their duties. Before sharing any information, Aleatica will analyse the request for information, its legality and proportionality, and will provide only the information that is strictly necessary to respond to it.
• Insurers and insurance intermediaries who manage the insurance contracts for which Aleatica is a policyholder, insured party or beneficiary, when the communication of personal data is necessary and essential.

At Aleatica we protect the personal information we collect, obtain, store, use, share or process in any other way, with the NIST cybersecurity framework, with security measures that are reviewed and tested regularly to ensure their adequacy, suitability and updating to the state of the art.

We also have a corporate regulatory framework that includes policies, regulations, processes, instructions and training plans both on cybersecurity and on the protection of personal data; these are subject to regular review and updating.

Data subjects may exercise their rights of access, rectification, cancellation or objection and other rights recognised by the REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016 on the protection of natural persons in relation to the processing of personal data and the free circulation of those data, which repeals Directive 95/46/EC (General data protection regulation), using the following web form: 

https://www.aleatica.com/en/data-protection-rights/ 

This Privacy Notice was updated in February 2022 and may be modified or updated to respond to new data processing, purposes, recipients or legal requirements.
This website will always show the current version.