The privacy policy of Smart Process Management S.L. (hereinafter, SMARTPM) is governed by compliance with the current legislation on the protection of personal data.

Responsible for the processing of your data

The personal data that may be collected directly from the interested party will be treated confidentially and will be incorporated into the corresponding processing activity owned by SMARTPM with registered office located at Calle Morkaiko 1, 20870 Elgoibar, Gipuzkoa.

The user may contact the Data Protection Delegate to resolve any doubts related to the processing of personal data, by contacting the above postal address or email address for the attention of the Data Protection Delegate.

Purpose of the processing of your personal data

The data provided through the different forms included in SMARTPM's website or in the website of any of its departments, as well as in the different administrative procedures that may be initiated by SMARTPM, will be processed only and exclusively for the purposes foreseen in each form or administrative procedure and for their integration in the Agency's information systems.

The purpose of data processing corresponds to each of the processing activities carried out by SMARTPM.

Additionally, when you visit our website, data is automatically sent from your browser to our server to optimize our services and improve your user experience. For more information, see the Cookies Policy.

Types of data

Personal data may be collected through physical and digital forms hosted on this website, through emails, as well as automatically through cookies when visiting our website.

The types of data recorded through forms and e-mails are:

  • CV submission form: Personal identification data, Personal contact data, Professional profile, CV, Candidate message.
  • Contact form: Personal identification data, Personal contact data, Business unit consulted, Inquiry.

Additionally, through the website, data may be collected about the user's IP address, the date and time of the visit, the URL of the website from which it comes, the pages visited on our website, or information about the browser used. For more information see the Cookies Policy.

Source of data

The source of the data covered by the processing covered by this document is the data subject himself or his legal representative, considering the legal or natural persons acting on his behalf; private entities that have your prior and express consent to use your data and communicate them to us; Public Administrations; as well as sources accessible to the public (official gazettes, official websites of private entities, Public Administrations and Agencies, etc.).

When you provide us with the data, you warrant that you are authorized to provide the information; that the information is true, accurate, truthful, exact and up-to-date; and that it does not involve identity theft.

If this is not the case, the interested party agrees to be liable for any infringement or fine that may be imposed on SMARTPM, arising from such breach of the regulations on the protection of personal data.

Legitimacy for the processing of your data

The processing of users' data is carried out to ensure the quality of the services offered by SMARTPM, the performance of a contract, and/or may also be based on the consent of the persons concerned, which must be given by a clear affirmative action.

You can consult the legal basis for each of the processing activities of the data collected through the forms in the legal notice provided with each form.

Data retention periods

The personal data provided will be kept for the time necessary to fulfill the purpose for which they are collected and to determine the possible responsibilities that may arise from the purpose, in addition to the periods established in the archives and documentation regulations.

Recipients to whom we may disclose your information

The data you provide may be communicated to third parties for the fulfillment of purposes directly related to legitimate functions of both parties, such as entities or agencies to which there is a legal obligation to make data communications.

Additionally, we inform you that SMARTPM has outsourced hosting services, support and maintenance of the systems that support the processing of personal data to data processors located in the European Union.

In the event that suppliers located outside the EU have any access to personal data in connection with the provision of an ancillary service, the selection will be made by ensuring that sufficient safeguards are in place to maintain European data protection requirements.

Safety measures

SMARTPM shall adopt the necessary technical and organizational measures to ensure the security of personal data and prevent their alteration, loss, processing or unauthorized access, taking into account the state of technology, the nature of the data stored and the risks to which they are exposed, whether from human action or from the physical or natural environment.

Rights of the data subject

Likewise, in accordance with the rights conferred by current legislation on data protection, you may exercise your rights of access, rectification, limitation of processing, deletion, portability and opposition to the processing of your personal data. To this end, you must send your written and signed request, together with a photocopy of your ID card or any other document proving your identity, to the postal address indicated above or to the e-mail address In the case of modification of your data, you must also notify it through any of the addresses indicated above.

Likewise, the interested party may contact the competent Control Authority (in the Basque Country, the Basque Data Protection Agency) to file the claim he/she deems appropriate. For further information on the rights that may be exercised and to request model forms for the exercise of rights, please visit the website of the Basque Data Protection Agency.