Privacy Policy

AERNNOVA appreciates your visit to our website and your interest in our Company, in our products and services. Your privacy is important to AERNNOVA and we want you to feel comfortable visiting our website. The protection of your privacy in the processing of your personal data is a fundamental concern to which we pay special attention during our processes. The personal data collected during your visit to our website are processed by AERNNOVA in accordance with the legal provisions in force for the countries in which the websites are maintained.

This Privacy Policy (hereinafter, the “Privacy Policy”) describes (i) who is responsible for the processing of your data, (ii) what data we treat, for what purpose and what is the legitimation for its treatment, (iii) how long we keep your data, (iv) who has access to your data, (v) what rights do you have are and (vi) what security measures we have in place.

The intention of this Privacy Policy is to provide a description as simple as possible, so regardless of whether you are a new user or an advanced user, we recommend that you read our policy and that you contact us if you have any doubt.

I.- Who is responsible for the processing of your data?

This Privacy Policy applies to all personal data that the user contributes to the Aernnova Group, understood as such to AERNNOVA AEROSPACE CORPORATION, SA, owner of NIF A-01999294, with address at Parque Technologico de Alava, Calle Leonardo da Vinci, 13, 01510, Miñano Mayor, Álava, Spain (hereinafter “AAC”) and all its subsidiaries, through the different online forms.

For the purposes of this Privacy Policy, “User” must be understood as any natural person interested in the products and services that AAC offers through its website. AAC, as responsible for the processing, will request, prior to the provision of your personal data, the User’s express consent to this Privacy Policy, when necessary and to any other aspect that requires your prior authorization. The objective of the AAC’s Privacy Policy is to give transparency to the information on how we treat your data and protect the information on the Internet and the data that the User can enter on the web.

The User may contact the AAC Privacy Office through the e-mail address [email protected] in case of any doubt or need regarding data protection.

II.- For what purpose do we treat your personal data?

In compliance with the provisions of the General European Regulation of Data Protection 2016/679 as well as in any applicable national legislation, we inform you that in AAC we treat the data you provide us for the following purposes:

  1. Manage the data of Users who contact AAC through the different forms of the web that are available to them. Also, your data will be processed in order to manage the queries that you send us through the channels enabled for this purpose on our website and we can contact Users by phone or electronically if necessary.
  2. Attend to your questions and requests.
  3. Perform a quality control on our services.
  4. Conduct satisfaction surveys and statistical purposes.
  5. Communicate your data to any company in the Group, provided that you have consented to it, as well as when there is a legal obligation.

III.- What is the legitimation for the treatment of your data?

The legal basis for the treatment of your data is the execution of the contract for the provision of services in which the interested party is a party or for the application at the latter’s request of pre-contractual measures (such as the request for information to a specific Department, the communication of a denunciation of the Code of Ethics through the channel authorized for this purpose, etc.).

The processing of your data for the purposes mentioned above is based on the consent you have given us. However, you can withdraw the consent at any time, without in any case, this conditions the relationship that binds you to AAC. You can withdraw this consent by sending an email to [email protected].

AAC, at the time of registration, will collect and process the personal data essential for the provision of the services enabled on the website. The User knows and accepts that the non-completion of certain personal data will prevent AAC from providing all those services linked to such data. Under no circumstances will AAC cede, exploit these data or use them for any other purpose than that expressly indicated herein. During the registration process, the User will be informed of the non-mandatory nature of the collection of some of the data for the provision of AAC services.

IV.- Typology of data treated

In the framework of the provision of services and conditioned to the purposes agreed by you, AAC will treat the following categories of data:

  • Identifying and contact data, for example, but not limited to: name, surname, telephone number or email.
  • Data of commercial information, which you provide us, for example, but not limited to: department to which your inquiry is addressed, questions about your preferences, etc.

V.- How long will we keep your data?

AAC will keep your data for the duration of your contractual relationship and after it, for the time necessary to comply with the legal obligations in each case correspond to each type of data (except, in both cases, that the treatment was based on the consent of the User and it is revoked, in which case they will be kept until such revocation is received). Therefore, the data will not be kept longer than necessary for the purposes described above.

VI.- Who has access to your personal data?

An optimal provision of the services that AAC offers through its website may require other third party service providers of AAC access to the personal data of the user as responsible for the treatment. By accepting this Privacy Policy, the User understands that some of the aforementioned service providers are located in countries outside the European Economic Area or that they do not offer a level of security equivalent to Spanish.

In these cases, the transfers are based on the authorization of the Directorate of the Spanish Control Authority, in model clauses approved by the Commission or, as the case may be, on the Privacy Shield. For more information about the above guarantees or the fact that they have been provided, you can contact AAC through the means established in section I.

In addition to the access that third-party providers may have to personal data, AAC’s responsibility as treatment managers, national or international, within the framework of providing a service to the data controller, AAC may assign the User’s personal data to the different companies of its Group, as mentioned in section II, provided that it had requested the consent of the User and that the latter had granted it.

In addition to the foregoing, AAC may make transfers or communications of personal data to meet its obligations to the Public Administrations in cases that are required in accordance with the legislation in force at any time and, if applicable, to other agencies such as Forces and State Security Agencies and Judicial Authorities.

VII.- What are your rights when you provide us with your information?

AAC informs the User about the possibility that it assists him to exercise the rights of access, rectification, opposition, deletion, portability and limitation of the treatment as well as to reject the automated processing of personal data collected by AAC.

These rights may be exercised free of charge by the User and, where appropriate, by the person representing them, by means of a written and signed request addressed to the following address: Leonardo da Vinci 13, Parque Tecnológico de Álava, 01510, Miñano Mayor, Álava, Spain. Said request must contain in the subject the reference “Data protection / [Name of the company of the AAC group]” and must include the following information: name and surname of the User, address for the purposes of notifications, photocopy of the National Identity Document or Passport, and request in which the request is specified. In the case of representation, it must be proved by a reliable document. Likewise, the User may exercise the aforementioned rights through the email [email protected].

In addition to the foregoing rights, the User shall have the right to withdraw the consent granted at any time through the procedure described above, without such withdrawal of consent affecting the lawfulness of the treatment prior to its withdrawal. AAC may continue to treat the User’s data to the extent permitted by applicable law.

AAC reminds the User that he has the right to file a claim with the relevant Control Authority.

VIII.- What security measures are implemented?

AAC is committed to fulfilling its obligation of secrecy of personal data and its duty to keep them, and will take the necessary measures to prevent alteration, loss, or unauthorized access, in accordance with the provisions of the applicable regulations.

AAC has implemented the security measures of technical and organizational nature necessary to ensure the security of your personal data and prevent their alteration, loss and treatment and/or unauthorized access, taking into account the state of the technology, the nature of the stored data and the risks to which they are exposed, whether they come from human action or from the physical or natural environment, in accordance with the provisions of the applicable regulations.

AAC is concerned about privacy, in order to strengthen the confidentiality and integrity of information in their organization, continuously maintains the supervision, control and evaluation of their processes to ensure respect for privacy and security of information, according to international standards.

IX.- Use of cookies

Our website uses cookies to distinguish you from other users of our website, which helps us provide you with a good experience when you browse our website and also allows us to improve it.

X.- Links

The AAC website may include hyperlinks to other sites that are not operated or controlled by AAC. Therefore, AAC does not guarantee, nor is responsible for the legality, reliability, usefulness, veracity and timeliness of the contents of such websites or their privacy practices. Please, before providing your personal information to these non-AAC websites, please note that compliance with data protection may differ from ours.

XI.- Modification of the Privacy Policy

AAC may modify its Privacy Policy in accordance with the applicable legislation at any time. In any case, any modification of the Privacy Policy will be duly notified to the User so that he/she is informed of the changes made in the processing of his/her personal data and, in the event that the applicable regulations so require, the User may grant your consent.