Permut Logo

PERMUT PLATFORM PRIVACY POLICY

In compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, concerning the protection of individuals regarding the processing of personal data and the free movement of such data ("GDPR") and Organic Law 3/2018 of December 5 on the Protection of Personal Data and Guarantee of Digital Rights ("LOPDGDD"), PERMUT TECHNOLOGIES, S.L. (hereinafter, "PERMUT"), as the developer and responsible entity for the operation of the Permut web platform, provides users with information about the processing of their personal data carried out on the Permut web platform (hereinafter, the "Platform").

This policy applies to any person designated by the entity that contracts the services of the Platform to access it in the role of employer or employee (hereinafter, "Users"). As long as Users have permission to use the Platform, they can access and configure debt collection processes linked to the Platform.

Who is responsible for data processing?

The data controller (hereinafter, the "Controller") is the entity that contracts the services of the Platform. The employer will grant permission to the employee to access the Platform (hereinafter, the "Employee" or "Employees"), who must register and log in to the Platform. Employees must have an employment, service provision, or collaboration relationship with the Controller.

In this scenario, PERMUT will process the Users' data as the data processor. The identification details of the data processor are as follows:

  • Identity: PERMUT TECHNOLOGIES, S.L.
  • Tax ID (NIF): B-70.830.492
  • Postal Address: Calle Doctor Francisco Darder, number 8, 08034, Barcelona, Spain
  • Email: hello@permut.com

For what purpose and on what legal basis do we process personal data?

The Controller may process data for the following purposes and legal bases:

  • Employee registration and management on the Platform: To allow the Employee to access the Platform, certain required data must be provided for registration. Once the Employee's profile is created, the data will be used to manage the profile, including utilizing active functionalities according to the profile and adding, modifying, or deleting profile data.
    Legal Basis: Execution of a contract in which the Employee is a party (Article 6.1.b of the GDPR).
  • Handling Platform inquiries: If you contact us with a query or complaint related to the Platform, your personal data will be used to respond to and manage the inquiry or complaint.
    Legal Basis: Consent given when submitting the inquiry (Article 6.1.a of the GDPR) or execution of a contract if related to the received service (Article 6.1.b of the GDPR).
  • Compliance with legal obligations: The processing of the Employee's personal data may be carried out to comply with legal obligations imposed on the Controller, including communication with competent authorities.
    Legal Basis: Legal obligation imposed on the Controller.

How long will we retain personal data?

Personal data will be processed for as long as necessary to fulfill the purposes described in this Privacy Policy and comply with applicable legal obligations, legal prescription periods, and for the establishment, exercise, or defense of claims. In such cases, personal data will be properly blocked.

To whom may your data be disclosed?

Without prejudice to the obligation to disclose personal data to competent authorities due to legal requirements, the Controller may share personal data with third parties acting as data processors.

Source of the data

The collected data is provided by the Controller to manage the Platform invitation upon registration, as well as data that may be provided by the employer or collected during the use of the account by employees.

What are your rights?

  • Right to access personal data: You can inquire whether we are processing your data and, if so, access it.
  • Right to rectification: You can request the correction of inaccurate data or completion of incomplete data.
  • Right to erasure: You can request the deletion of your data.
  • Right to restrict processing: We will only retain your information for the establishment or defense of claims.
  • Right to object to processing: We will stop processing your personal data unless it must continue to be processed for legitimate reasons or for the exercise or defense of possible claims.
  • Right to data portability: If you wish your data to be transferred to another data controller, we will facilitate the transfer whenever technically possible.
  • Right not to be subject to automated decision-making: You have the right not to be subject to a decision based solely on automated processing of your personal data.

If the Controller processes data based on consent, the Employee may withdraw their consent at any time. The withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

To exercise your rights, you may contact the Controller at hello@permut.com or by writing to: Doctor Francisco Darder, 8, 08034 Barcelona, Spain. You may also contact us through the contact details provided in section 1 of this Privacy Policy. Additionally, the Employee may file a complaint with the Spanish Data Protection Agency (https://www.aepd.es).

Additional Information

Child Protection Policy: Our services are exclusively intended for adults. We do not knowingly collect information from minors. If you are a parent or legal guardian and believe that a minor has provided personal data through the Platform, please contact us via hello@permut.com.

Links: The Platform may contain links to other websites that PERMUT considers of interest to the Controller. Please note that the Controller is not responsible for the processing of personal data carried out by third parties who own the domains of these links.

Updates: The processing of Users' personal data will be carried out in accordance with this Privacy Policy. If the Platform makes changes to its policies, Users will be duly informed.