WHO YOU ARE

CONTACT
  • Home
  • Privacy policy

Privacy policy

Enagás does not process data from end customers of gas distribution and/or marketing services, either directly or through third - party companies that provide these services. At Enagás we conduct regular checks on compliance with the Privacy Policy, to always ensure compliance with current regulations on this matter.

Through this Privacy Policy, the Enagás Group wishes to inform you of how we collect and process the personal data you provide us. In this way, we comply with the principle of transparency established by the personal data protection regulations.

We inform you that your data will be processed in accordance with Organic Law 3/2018 on the Protection of personal data and guarantee of digital rights and in accordance with Regulation (EU) 2016/679, of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation of these data (hereinafter, GDPR).

This Policy is applicable to all processing of a personal nature conducted by any Enagás group company. On the other hand, it is not applicable to third-party websites, including those that you may access through a link from our website.

Data Controller

The controller of your data is Enagás SA (hereinafter, Enagás), although they may be processed by the companies that form part of Enagás, depending on the relationship you have established with each of the companies. At the time of collecting your data, we will provide you with the data of the company responsible for that Processing. The locations and functions of the companies that form part of the Enagás Group can be found at www.enagas.es and www.enagas.com.

For any matter related to the processing of your data by Enagás, you can send your request by email to protecciondedatos@enagas.es or by post at Paseo de los Olmos 19, 28005, Madrid, where our headquarters are located

Personal data that we process and the ways we obtain them

We may process the following personal data through the following means:

  • Those that you provide us voluntarily through the email addresses in the "Contact" section of this website or those that derive from the communications that you maintain with us, such as those obtained because of the publication of processes of selection of Enagás.
  • We will process your image through the video surveillance system to protect the people in the building as well as the Enagás facilities.
  • Those corresponding to the interactions of your profiles on social networks through comments on Enagás profiles, or data relating to your account that may identify you.
  • If you provide us with personal data from third parties, you guarantee that you have obtained authorization to provide us with their data in accordance with the purposes detailed in this Privacy Policy.

When the Processing entails specific conditions, those of this Privacy Policy will prevail. In this case, you will be specifically informed about the Processing and its purpose.

Purpose and legitimacy of the Processing

We inform you that Enagás may process your personal data for the following purposes:

a) Attention in the management of the client, user, or data subject

You can find our contact information on the web such as postal mail, telephone, or email. Through these channels, we will process your data to answer the questions, suggestions or claims that you send us. The basis that legitimizes the Processing is the execution of the relationship itself, whether contractual or pre-contractual (contract request).

b) Conducting surveys and events

Once you have visited our facilities, we may process your professional information to keep in contact with you, to inform you about all kinds of company events that may interest you and conduct surveys about our services.

The processing is based on the legitimate interest of Enagás in managing and maintaining the professional relationship with you, as well as informing you of the services in which you have shown interest.

Likewise, if you personally attend an event organized by the Enagás Group, we may process your data to manage your attendance and participation. In these cases, it is possible that we take images of it to publish them on our website. To do this, we will inform you in advance so that you can decide about it. In this case, we will obtain your consent as a legitimizing basis for the Processing.

c) Entrepreneurial projects and initiatives

Through our website emprende.enagas.es we collaborate in projects under the Enagás Corporate Entrepreneurship and Innovation Program.

This Processing is legitimated in the interest of Enagás in offering you information regarding your application, participation, and evaluation of your project in the Program.

d) Manage the data of contractual representatives and potential clients

To manage and comply with the contractual relationship that we maintain with companies such as marketers, distributors and/or suppliers, we process the contact details of their representatives. Said processing is based on the legitimate interest of Enagás in maintaining the relationship and executing the contract.

In the same way, we treat the data of potential clients such as legal persons, representatives of institutions, representatives of public bodies, journalists, analysts or investors and shareholders who have provided us with their data. The basis that legitimizes the Processing in these cases will be the consent granted by the data subject, as well as our legitimate interest in maintaining said relationship.

e) Relationship with suppliers

Enagás may process the data of the workers that the supplier has (either through the latter or through the worker himself) to guarantee the quality of the service provided by the supplier, facilitate access to Enagás facilities and in compliance with legal obligations regarding Social Security. The legitimate basis that would enable us to this Processing is our legitimate interest in controlling the relationship with our suppliers and the responsibilities associated with these relationships.

f) News or publications about our Company

We may process your contact data to send you news or publications on Enagás Group activities through your subscription to our Newsletter. This Processing will only be conducted if we have your consent, as a basis that legitimizes the Processing.

g) Recruitment

Usually, we publish job offers and we have a channel where we also receive spontaneous applications. If you contact us showing interest in joining Enagás, we will process your data, along with all the documentation you send us, to assess your profile and consider you for vacancies within Enagás. This implies that we may share your information with the Group company that needs the vacancy. The basis that legitimizes the Processing will be your consent expressed through the completion of a form and presentation of your candidacy.

h) Training

We organize training activities not only for our employees, but also for third parties. If you participate in a training activity organized by Enagás, we will process your data to manage your participation and assess your satisfaction with the training.

The legal basis of the Processing is our legitimate interest in promoting the exchange of knowledge and skills by our employees or, if you are not an employee, your consent expressed through your registration in the training.

i) Control access to our facilities

We carry out access controls to our facilities, so we need to process the data of our visitors. In this case, we rely on the legitimate interest of Enagás to guarantee security in the establishments of the Enagás Group.

j) Video surveillance

We have video surveillance cameras whose purpose is the safety of people and facilities. The legitimizing basis of the Processing is our legitimate interest in avoiding or investigating, where appropriate, incidents that occur in our establishments against Enagás people or facilities, as well as the fulfillment of a mission conducted in the public interest, according to Law 5 /2014, April 4, Private Security.

k) Responsibilities

When necessary, we will process your data to comply with our tax, commercial, labor and/or administrative obligations. The legitimizing basis of this Processing is compliance with the legal obligations that correspond in each case.

Data retention

We will keep your personal data for the time necessary to fulfill the purpose for which they were collected, if the contractual relationship remains in force, you do not exercise the right of deletion and we must keep your data in compliance with a legal obligation or for the exercise and defense of claims. In each specific case, you will be informed of the criteria or duration of the Processing.

Once your relationship with Enagás has concluded, we will keep your data blocked during the legally established periods, at the disposal of the Public Administrations, Judges and Tribunals for possible criminal, civil, commercial and/or administrative responsibilities that may arise from the Processing, as well as for the exercise and defense of claims before the Spanish Supervisory Authority.

Data recipients

Enagás may share your personal data with the following recipients:

  • Third parties to whom we must communicate your data due to legal obligation; for example, administrative or fiscal authorities, or Social Security Organizations and Entities.
  • Third parties to whom we must communicate your data to fulfill the basic purposes of the relationship.
  • To other companies of the Enagás Group, when appropriate, to comply with the purposes set forth above.
  • Suppliers that provide us with certain services as data processors. Enagás requires those processors to guarantee the legality and security of the processing that they carry out on its behalf.

If such access is conducted by companies from countries outside the European Economic Area (EEA) that do not offer an adequate level of protection like that of the EEA, we will rely on one of the guaranteed mechanisms established by the GDPR.

Security of your data

We inform you that Enagás has taken all the necessary technical and organizational measures to guarantee the security, integrity and confidentiality of the personal data provided, to prevent its alteration, loss, and/or unauthorized processing or access.

To keep your personal data updated in our files, you must inform us of any changes that occur in them. Otherwise, we are not responsible for data that is not accurate or truthful, nor for the consequences that this may cause to Enagás or third parties.

Processing of your data on social networks

If the User decides to include personal information on our social networks, his or her data will be processed by Enagás, from their corporate accounts, in accordance with this Policy. Specifically, the data that you provide us through any of our social networks will be processed by Enagás SA, with registered office at C/ Paseo de los Olmos Nº 19 in Madrid , with the purpose of relating and interacting with you through the different social networks so that you can learn more about our activities or skills.

The basis that legitimizes this Processing is the performance of your condition as "user", "friend" or "follower" of our social profile or the need to give you an answer if you mention our profile in your comments, despite not being a follower; in the latter case we will treat the minimum data to give you an answer.

We inform you that, once you have stopped "following" our profile on the social network, we will keep your data for a period of 2 years.

Although, you must consider that, when interacting with us through social networks, the conditions of use that are established by each social network are beyond our control and are not covered by this Policy. Therefore, please make sure that you know and agree with their terms and conditions and privacy policies before using them or uploading any type of personal information.

However, we recommend that you avoid including personal information (yours or third parties’) when interacting with us on social networks.

Minors

Enagás does not process personal data of minors under 18 years of age. Both the content and the services it offers are normally aimed at people over 18 years of age.

Although, occasionally, corporate events are held in which the data of minors may be processed. In this sense, we will not process their data (name, surname, photograph, images, etc.) without previously informing them and without requesting the consent and authorization of their parents or guardians if the minor has not yet reached 14 years of age.

Enagás is not responsible for the personal data that minors may publish on our social networks without the consent of their parents or guardians.

Rights of the data subject

You can exercise at any time the rights of access, rectification, deletion, portability, limitation, opposition to the processing of your data, as well as request not to be subject to automated decisions, when appropriate, by sending a request to protecciondedatos@enagas.es or to the address: Paseo de los Olmos 19, 28005 Madrid, providing a copy of your ID or equivalent document and specifying which of these rights you wish to exercise.

When acting through a legal or voluntary representative, you must also provide a document proving the representation and the identification document of said representative.

Likewise, if you have given us your consent for any specific Processing, you can withdraw it at any time, by sending a request to the address protecciondedatos@enagas.es or to the postal address referenced above.

You can consult the models, forms and more information on the rights referred to on the official website of the Spanish Supervisory Authority – Agencia Española de Protección de Datos.

If you consider that your data is not being correctly processed by Enagás, you can file a claim to the mailbox protecciondedatos@enagas.es or to the Spanish Supervisory Authority (www.aepd.es).

Responsibility of the data subject

We are not responsible for the lack of veracity, accuracy, updating and/or authenticity of the data you provide us. Likewise, Enagás is not responsible for the data of third parties that you have provided us without their consent.

Modification of this Privacy Policy

We may modify at any time this Privacy Policy, informing you of any significant changes that may occur in it. The Processing of your data will be done in accordance with the provisions of the latest version, so we recommend that you consult it periodically.

Enagás' commitments in terms of privacy management are grouped into the following fundamental aspects:

Audit Plans and Programs

We conduct regular audits of compliance with privacy regulations. Whether these are internal or external, the functional and organizational independence of the audit teams is fully guaranteed. Communication between the area responsible for management and the audit team is constant, to ensure that the proposed corrective actions are applied, as well as to provide as much evidence as the auditors need.

User monitoring

We review and monitor how many of our customers have given us their consent to the processing for purposes other than those provided for in the contract, such as corporate email marketing. We check our user bases regularly and we make sure we have the prior consent of the data subjects, before sending any communication.

Cross-cutting policies

The transversality in the application of the Privacy Policy is part of our business strategy. We ensure that our policies are applied in all areas and companies that are part of the Enagás Group. This transversality is based on the fulfillment of our contractual obligations within the Group, and on the participation of all the company's bodies in the implementation of a culture of privacy.