Privacy

Last Updated 06/05/2022

This Privacy Policy aims to protect and respect User privacy. To that subject, SITUM has adopted the principles set forth in this Policy which is part of ours General Privacy Conditions and applies to the following Services (hereinafter, the “Services”):

– Our “Web sites”

– Our “APPs”:

  • Situm Mapping Tool
  • Situm Mapping Tool
  • Situm Mapping Tool – No gyro
  • Situm Industrial Mapping Tool
  • Situm SOS
  • Situm Maps PRE
  • Situm MRM
  • Situm MRM Mapping Tool

– Also:

  • APIs REST
  • SDKs móviles
  • Budgets and commercial information.

In accordance with the regulations on the protection of personal data, and with the provisions of Articles 13 and 14 of EU 2016/679, General Regulation on Data Protection (“GDPR”), and the Spanish Organic Law 3/2018, 5 of December, for the protection of personal data and the digital rights warranty, the purpose of this Privacy Policy, is to inform the User of the following:

CONTROLLER OF THE DATA PROCESSING:

SITUM TECHNOLOGIES, S.L. (hereinafter “SITUM”, or “Data Controller”), with registered address at Emprendia Building, Campus Vida, Floor -1, 15782 (Santiago de Compostela) and Tax Identification Number B70401229, is responsible for processing the data provided by users through the Web.

You can contact SITUM by postal mail at the above address, by e-mail at situm@situm.es, or by telephone at +34 881 97 70 59.

We reserve the right to modify or adapt this Privacy Policy at any time, so please review it.

DATA UNDERGOING PROCESSING:

a) Our APPS, SDKs y APIs Rest will have access to the following data from your device:

  1. Anonymized unique device identifier
  2. Detailed device model information
  3. Operating system, battery level
  4. Information about nearby items, included Wi-Fi and BLE signal data
  5. Information about the mobile network.
  6. Location Data.
  7. Identifying information of the App: name, version and package.
  8. Identifying information of Situm SDK, including application version number.
  9. Generated alarms.

b) Our Web sites will access to the following data from the Web panel:

  1. Email address and password.
  2. Operating system.
  3. Geolocation
  4. Browser type and settings.
  5. Cookies, according to cookies policy of Data Processor (https://situm.es/es/cookies)
  6. Contact information provided by the user: name, encrypted password, surname, email, mobile number.

c) Our Web sites and SDKs will could also access to:

  1. Buildings cartography, included the location, dimensions, floor plans, points of interest, events and navigation routes.
  2. Information about user interactions with Situm Services, including device IP, accessed URLs, bug reports, system activity and exact time of access.
  3. Logos, styles, visual themes.

d) In case the user registers in Situm Dashboard and activates the module ”Workforce Tracking”, as if describes in our Master Sub scription Agreement (https://situm.com/assets/docs/situm-masteragreement.pdf).

  1. Name and surname of the Users created under the module.
  2. Historical relationship of devices to which each User has been associated and name assigned to each device.
  3. Organization to which each User belongs and role of the User as specified in the Platform.
  4. Start and end time of work shifts.
  5. Work patrols and compliance analytics
  6. Alarms generated by the Users, directly or indirectly.

PURPOSE OF DATA PROCESSING:

a) APPS USERS, WEBS, WEBs AND EMAIL CONTACTS:

The Data Controller will process the identification and contact data that the User provides through the contact form, registration forms and User accounts of the Websites or APPs, or when contacting the Data Controller via email, as well as other data abovementioned that the User includes when contacting for the following purposes:

  • Sign in, access and use of the APP.
  • Answer queries or requests.
  • Manage the requested service, answer requests, or process requests.
  • Inform by electronic means, concerning an application.
  • Provide information to the Users about improvements and updates of Situm Services.
  • Carry out analysis and improvements on the Webs about SITUM’s products and services.
  • Improve the business strategy.
  • Analyze user experience and troubleshoot incidents at our Website
  • Proactive contact with SITUM in order to provide technical and commercial support.

The data processing is based on the acceptance and consent of the User. In those cases, in which to make a request it is necessary to fill in a form and click on the submit button, its completion shall imply that the user has been informed and has expressly given his/her consent to the processing of his/her data in accordance with this privacy policy. We inform you that if you do not click the “checkbox” to accept the privacy policy, the submission of the information will not be allowed.

SITUM will use the following processors for this treatment

– SITUM will use “Mailchimp” and “Office365” to send to the Users the communications related to the purposes above described. In this case, the User accepts: 1)the treatment carried out by Mailchimp as described in: https://mailchimp.com/legal/privacy/ ; and also 2) the treatment carried out by “Office 365” as described in: https://privacy.microsoft.com/es-es/privacystatement .

– “Leadfeeder” in order to provide a better service and experience to the user of our Web Site. In this case, the User accepts: 1) the treatment carried out by Leadfeeder as described at:  https://www.leadfeeder.com/privacy/; 2) The Leadfeeder cookies policy, as described at https://www.leadfeeder.com/cookies-and-tracking

Also, you are informed that LEADFEEDER’s data centres are located in Ireland for EU citizens. In the cases in which it is necessary to transfer personal data to the US, Leadfeeder will apply  at their Data Processing Agreement the Standard Contractual Clauses (SCC) approved by the European Commission for data transfers between EU and non-EU  countries.

In addition, SITUM can process the User contact data in order to provide technical support and commercial advice. In this case, the treatment is based on the rightful interests pursued by the Data Controller in order to engage in a commercial relationships or provide a satisfying experience to the users who have difficulties operating with the platform.

b) SDKs Y APIs REST

The User can access to SDKs and APIs REST functionalities that allow to download the platform information, the historic data of the localization or the cartographic information. We inform you by accessing to this functionality implies your give the consent of the processing with the purpose of fulfil the user requests.

Also SITUM provides SDKs and APIs REST that allows third parties to build their own apps. In this case, SITUM acts as Data Processor when a third part integrates at their app a Situm software module. In this case, SITUM is exempt from any kind of liability arising from the noncompliance of the current personal data protection regulations attributable to the Data Controller.

c) SOCIAL NETWORKS CONTACTS

The personal data available in the Social Networks profiles, as well as those that the User provides to the Data Controller when contacting him/her through this channel, will be treated with the purpose of:

  • Answer the queries or requests.
  • Manage service, reply to the request, or process a request.
  • Establish a user-Data Controller relationship, and create a community of followers.

In this case, the processing is based on the acceptance of a contractual relationship in the social network environment that applies, and in accordance with its privacy policies, so SITUM recommend you the prior consultation.

SITUM will only be able to consult or cancel the data in a restricted way as it has a specific profile. These data will be treated as long as the user allows it through the different interactions that each social network allows. The User must make any rectification of the data or restriction of information or publications through the configuration of his/her profile in the social network.

d) JOB SEEKERS / INTERNSHIPS

In the “CAREER” section, SITUM provides the user with the e-mail address jobs@situm.es created to manage recruitment processes. The Data Controller treats the received data, both identification and contact data, as well as those that are contained in the CV provided by the applicant, for the following purposes:

  • Organization of recruitment processes for the hiring of new employees.
  • Appointment for job interviews and evaluation of applications.

The legal basis for such treatment is the consent of the candidate by submitting the CV. Situm will process to safe destruction after one year from the receipt. Once this period has elapsed, the applicant who continues interested shall forward the updated CV.

e) NEWSLETTER:

SITUM grants the possibility to subscribe to the SITUM Newsletter. The purpose of the treatment is to send the Newsletter. The User that selects the checkbox and indicates an email, gives its consent for the processing by receiving the related information. The express consent of the User is the legal basis for the processing, keeping this data as long as the interested party remain subscribed to SITUM newsletter. The User can unsubscribe and stop receiving our emails at any time and also exercise the rights recognized at GDPR and described at the following clauses.

Situm uses Mailchimp as a Marketing and Newsletter platform. By accepting the Newsletter subscription and while the subscription lasts, you agree that your information will be transferred to Mailchimp for processing (see Mailchimp’s privacy policy: https://mailchimp.com/legal/).

F) WEBINARS AND ONLINE EVENTS:

In the event that the User chooses to participate in a Webinar taught by Situm company members, we inform you that we will use the “Zoom” platform, owned by “ZOOM VIDEO COMMUNICATIONS, INC.”. Which will have access to the data that you have provided previously:  email, name and surname. Therefore, by requesting the access, you accept the processing of your data by Zoom as described in its privacy policy.

Rights of the User:

The GDPR recognizes that the User has several rights, which SITUM as Data Controller is obliged to guarantee the following rigths:

  • Information: to know if your data is being processed or not.
  • Access: to access the personal data object of the treatment.
  • Rectification: request a rectification of the data if it is are inaccurate.
  • Withdraw consent: request the deletion of the data if it is no longer necessary for the purposes for which it was collected or if you withdraw the consent granted.
  • Restrict Processing: request the limitation of the data processing, in some cases, in which case it will only be conserved in accordance with current regulations.
  • Portability: the portability of the data, which will be provided in a structured, commonly used or machine-readable format; or they may be sent to the new designated Responsible. It is only valid under certain circumstances.
  • Complain: File a claim with the Spanish Data Protection Agency or competent control authority.

In order to facilitate the process, and comply with the principle of accuracy of the data, if any data is modified, the Data Controller appreciates the User communicates that modification.

In order to exercise the aforementioned rights, the User can request a form at dpo@situm.es, or use those provided by the Spanish Data Protection Agency or an authorized third party. These forms must be signed electronically and accompanied by a copy of ID card or passport in force. The user could send these forms by mail to dpo@situm.es or postal mail at the address of the Data Controller indicated at the beginning of this text.

Depending on the exercised right, SITUM will take a maximum of one month from the date of receipt the request to reply, and two months if the subject is very complex, in which case the User will be previously notified. In any event, SITUM will adopt the necessary measures to preserve the rightful interests of the User.

Processing of third party data

As a general rule, the Data Controller will only process the data provided by its owners. In the event of receiving data from third parties, such Users must first be informed and asked for their consent. SITUM will be exempt from any liability for incompliances with this requirement.

Data of Minors

SITUM will not process data from minors under 14 years of age. Therefore, the User must refrain from providing them if he or she is under that age or, if applicable, from providing data from third parties under that age. SITUM denies any liability due to failure to comply with this requirement by the User.

Commercial communications by electronic means

If you give your express consent by checking the appropriate checkbox, SITUM will send commercial communications to the email address provided by the User. The Data Controller will store the email in the database, and will send emails until the User requests the cancellation, an option that will be available in any communication. The purposes of this particular processing are as follows:

  • Management the requested service.
  • Information by electronic means related to the application.
  • Commercial or events information.
  • Perform analysis and improvements in the delivery of emails, in order to improve commercial strategy.

Security measures we apply

SITUM has adopted an optimal level of information security, adopting the appropriate technical and organizational measures according to the state of technology to avoid the loss, misuse, alteration, unauthorized access or subtraction of Personal Data.

Communication to third parties

SITUM don’t disclosure your personal data to third parties, except in the cases stated below:

  • Legal obligation.
  • Court injunction
  • Public authorities, banks and financial entities for the collection of the service provided or product purchased; – Data Processors or Subprocessors in the extent necessary for the provision of the service, whom will have signed a contract for the provision of services that requires them to maintain the same level of privacy as the Data Controller in compliance with the GDPR. You can find a list of the Subprocessors used by SITUM in the Annex II of our Master Sub scription Agreement (https://situm.es/assets/docs/situm-masteragreement.pdf).

We inform you that, for the provision of our services, FÁKTICA ANALYTICS S.L. will have access to the following data processing categories: USERS OF THE APPS, WEBS, CONTACTS OF THE WEBSITES AND EMAIL, SOCIAL NETWORK CONTACTS and NEWSLETTER, as described above in this Privacy Policy. For this reason, Situm had signed a Data Processing Agreement with FAKTICA ANALYTICS S.L. according to the GDPR requirements.

Data Processors

We inform you that your data may be processed by the Treatment Managers listed in Annex D of our MSA.

International Transfer of Personal Data.

Personal data about you may be transferred and processed on severs or computers located outside of the European Unión/European Economic Area. Safeguards measures under the GDPR are applied to the transfer.

Cookies

The Web uses Cookies, if you wish to know more about them, you can do so by accessing our Cookies Policy (https://situm.es/en/cookies).

Conservation of personal data

Personal data will be kept at the SITUM systems while the User are willing to use the services provide by SITUM. Once the User decide to withdraw his/her consent, the data processed for each purpose will be maintained anonymized during the legally stipulated deadlines, including the period in which judicial authorities may request them, taking into account the limitation period for legal actions.

The data processed will be maintained as long as the aforementioned legal deadlines do not expire, if there is a legal maintenance obligation, or if the legal term does not exist, until the interested party requests their suppression or revocation of the consent granted.

SITUM will keep all the information and communications related to the provision of the service, while the guarantees of the products or services last, to attend to possible claims.

Data Retention:

Situm informs you that, as a service provider of data hosting and in accordance to 34/2002 Law, from 11th july, of Information Society Services and E-commerce (LSSI), will retain for a maximum period of 12 months the essential information to identify the origin of the storage data and the starting date of the service provided. This retention aims to compliance with legal obligations which may arisen from the relationship with the User.

Modification and updated

SITUM reserve the right to make modifications and updates of this Privacy Policy at any time.

Subscribe to our newsletter

BASIC INFORMATION ON DATA PROTECTION

Data controller: SITUM TECHNOLOGIES, S.L.
Contact: Data controller: situm@situm.es
Responsible for protection: dpo@situm.es
Purpose and legal basis: To manage the sending of SITUM newsletters only with consent.
Legitimation: Express consent of the interested party.
Recipients: The data will not be passed on to third parties with the exception of legal obligations.
Retention period: As long as the interested party remains subscribed to the newsletter (a link to unsubscribe will be available in each newsletter sent by Situm).
Rights: The interested party may at any time revoke their consent, as well as exercise their rights of opposition, access, conservation, rectification, limitation, deletion of data and not be subject to a decision based only on automated data processing, by writing to SITUM at the addresses indicated.
Additional Information: You can consult additional and detailed information on Data Protection in our privacy policy.

Please, download your copy here

Thank you for downloading our whitepaper. Please do not hesitate to contact us if you would like to know more about how our solutions can help your business. Download whitepaper


Close window