Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free circulation of such data (hereinafter RGPD), and by repealing Directive 95/46 / EC, aims to harmonize the processing of personal data of all citizens of the Member States through the application of a single standard, which ensures a consistent level of protection of people throughout the EU, as well as avoiding divergences that hinder the free circulation of data within the market inside.
The RGPD provides legal security and transparency to economic operators, including micro, small and medium-sized enterprises, and offers natural persons from all Member States the same level of legally protected rights and obligations and the same level of responsibilities for those responsible. and Managers of Treatment, in order to guarantee a coherent supervision of the treatment of personal data. It also provides equivalent sanctions for all Member States, as well as the effective cooperation of the Authorities of the Control.
On May 25, 2016, the RGPD entered into force, although it will not be fully applicable until May 25, 2018. The publication of the RGPD entails the repeal of Directive 95/46 / EC of the European Parliament and of the Council of October 24 of 1995, two years after the date of its entry into force. In this sense, as established in the section “Introduction” of this Privacy Management System, those responsible for treatment located in Spanish territory or those who proceed to perform data processing in Spanish territory, should be attentive to the foreseen in the Organic Law 15/1999 of December 13, Protection of personal data, as well as other regulations of national scope that may coexist during the period of 2 years established by the RGPD.
The purpose of this document is to compile the regulations of BODEGAS BORDOY SL regarding the security measures applicable to the processing operations carried out by it. The rules established in it, will be considered mandatory for all staff with access to automated data of a personal nature and information systems.
Due to the continuous evolution and intrinsic changes of the information systems and the complexity of the organization itself, the document will try to be a stable and, at the same time, flexible framework, instead of a static description, for which it would be subject to continuous updates. In this line, the document includes references to other documents that make up the security policy established in the organization and, sometimes, instead of including static relationships, the procedure to obtain the aforementioned relationships at the time they are necessary is described.
This document will be kept updated at all times by the Data Protection Delgado and, failing that, by the Privacy Officer. It must be reviewed whenever there are relevant changes in the information system, in the organization of the same or in the organization of BODEGAS BORDOY SL.
In the same way, the Measures and Procedures, will be adapted at all times, to the current dispositions in matter of privacy of the personal data, as much at national level as at European level.