Data Controller
This Privacy Policy regulates the collection and processing of personal details provided by the Users, when the access, browse or use the functionalities of the Website.
All the processing reported through this Privacy Policy is carried out in accordance with the principles established in the personal data protection regulations. Sanzar Group shall therefore guarantee the application of minimization criteria in data collection and shall apply the appropriate set of technical and organisational measures to guarantee the security and confidentiality of the data. This commitment extends to all companies of Sanzar Group, and reflects our aim to protect the information of our users and data subjects who entrust us with their personal data.
Data collection, purposes, legal basis and conservation periods
Contact: The User may contact us through the forms provided for that purpose on the Website. They must provide their identification data, as well as the reason, subject or question. Sanzar Group will use the data to process the enquiry and contact the User.
The legal foundation for processing this data is based on the User’s consent.
The data shall be kept for a period of two years for this purpose, unless other periods are applicable.
Sanzar Group’s corporate magazine: Users may subscribe to Sanzar Group’s corporate magazine or to our newsletters by means of the form provided for this purpose. The legal basis for the processing of such data is based on the User’s consent.
We shall retain the data for as long as they remain registered in our system for sending communications.
You can revoke your consent through the links provided in each mailing or by writing to us at info@sanzar-group.com at any time.
Satisfaction questionnaire: Sanzar Group may send the user communications with links to questionnaires to assess satisfaction with the products and/or services provided by Sanzar Group. The response to these questionnaires is completely voluntary.
The legal basis for processing the data entered in the questionnaires is Sanzar Group’s legitimate interest in knowing the ratings of its products and services rendered.
The data shall be kept as long as the User does not object to their processing or request their deletion.
Commercial communication: Sanzar Group may send the User Sanzar Group news and updates by email or mobile device (if applicable).
The legal basis for the processing of such data is based on the User’s consent.
We shall keep the data for as long as you remain registered in our system for sending Sanzar Group commercial communications. You can revoke your consent through the links provided in each mailing or by writing to us at info@sanzar-group.com at any time.
Social media: If you decide to follow us or subscribe to our pages or profiles on social networks (Facebook, Twitter, Linkedln, Youtube), we shall process your personal data on these platforms exclusively to manage the list of subscribers who follow us or interact with us, based on your consent. You shall be able to receive information about our activities and services, always in the environment of each social network and according to the usual uses of each platform. The information we obtain through them shall not be used for other purposes,or used outside the environment of each social network without your prior consent.
Cookies: The Website has technology for the implantation of files called cookies in the equipment used to access and browse the Website. Cookies can be blocked or disabled through the browser settings at any time. For more information you can consult our Cookie Policy.
The legal foundation for processing this data is based on the User’s consent.
Your data protection rights
You can withdraw your consent, as well as exercise your rights of access, rectification, deletion and portability of your data, of limitation and opposition to their processing, and not to be subject to decisions based solely on the automated processing of your data, where appropriate, before
AgroAerospace, S.L.
Parque Científico UC3M
Parque Tecnológico, Av. Gregorio Peces Barba, 1
28919 Leganés (Madrid)
Spain
If you prefer, you can also request this by e-mail, sent to the address info@sanzar-group.com.
In case we have doubts about your identity, we may request a copy of your National Id (DNI) or other valid identification document, to prevent unauthorised access to your data by third parties.
On the other hand, and in relation to processing in social networks, any change in your data must be made through the settings page of your account on each social network. If you would like us to stop processing your personal data in these environments, simply unsubscribe, or stop following our pages or profiles.
Remember that you also have the right to lodge a complaint with the Spanish Data Protection Agency to enforce your rights.
Modification of the Privacy Policy
Sanzar Group reserves the right at any time to modify its Privacy Policy, respecting the current legislation on data protection and prior proper communication to the interested parties.
Privacy Policy for the Sanzar App (PWA/Android)
This section applies specifically to the Sanzar App , including its Progressive Web App (PWA) and any Android distribution, and explains how Sanzar Group processes personal data and related information when Users access and use the application.
1) Data Controller
The Data Controller for processing carried out through the [APP NAME] application is:
AgroAerospace, S.L.
Parque Científico UC3M
Parque Tecnológico, Av. Gregorio Peces Barba, 1
28919 Leganés (Madrid), Spain
Email: info@sanzar-group.com
2) What data we process in the application
Depending on the features enabled for a given User and project, we may process:
a) Account and access data
– User account identifier (e.g., username or internal user ID) and access status.
– Credentials: the application uses a username and password provided and managed by the User’s organization. We do not use credentials for advertising purposes.
b) Location data (device and sensor locations)
– Device location (GPS): the application may access the User’s device location to display the User’s current position on the map and to center the map view (e.g., “show my location”) in relation to sensors and plots.
– The User’s device location is used in real time for map display purposes and is not stored as location history by Sanzar Group.
– Sensor/plot location: we also process location data associated with IoT sensors and/or agricultural plots (e.g., coordinates or site location) to place sensors on maps and associate readings with a specific site.
c) Sensor and telemetry data
– IoT sensor readings and related telemetry, such as measurement values, timestamps, sensor identifiers, and plot/project identifiers, used to display historical and real-time information and generate alerts.
d) Notification data (Firebase Cloud Messaging)
– If push notifications are enabled, we process a device notification token (FCM token) required to deliver alerts to the User’s device.
e) Technical and security data
– Basic technical data that may be generated as part of operating the service (e.g., logs necessary to ensure security, diagnose issues, and maintain the service), to the extent applicable.
3) Purposes of processing
We process the above data for the following purposes:
– Provide GIS/map functionality, including showing the User’s current position on the map and centering the map view to improve navigation and spatial context with respect to sensors and plots.
– Display sensors and plots, and enable the User to monitor sensor status and readings.
– Generate and deliver alerts/notifications when sensor values fall outside configured acceptable ranges.
– Maintain the security, integrity, and proper functioning of the application and related infrastructure.
4) Legal basis
We process data under one or more of the following legal bases, depending on the context:
– Performance of a contract (Article 6(1)(b) GDPR), where processing is necessary to provide the application/service to the User’s organization.
– Legitimate interests (Article 6(1)(f) GDPR), where processing is necessary to ensure security, prevent misuse, and maintain the service.
– Consent (Article 6(1)(a) GDPR), where applicable, for enabling push notifications on the User’s device (the User can disable notifications at any time via device settings).
5) Data sharing and third-party processors
– Push notifications: we use Firebase Cloud Messaging (a Google service) to deliver push notifications. This requires processing a device notification token (FCM token) and the notification payload needed to deliver alerts.
– We do not sell personal data. We do not share data for third-party advertising purposes.
– Device location data used for map display is not shared with third parties for advertising purposes, and it is not stored as location history by Sanzar Group.
6) Data retention
We retain data only for as long as necessary for the purposes described above:
– Account and access data: for the duration of the User’s access to the service, as managed by the User’s organization.
– Sensor location and sensor readings: for the duration necessary to provide monitoring, historical analysis, and alerting, and according to the contractual relationship and applicable legal obligations.
– Push notification tokens: until the User disables notifications, signs out, or the token is refreshed/invalidated by the device or service, or until deletion is requested and applicable.
7) Security measures
We apply appropriate technical and organizational measures to protect data against unauthorized access, alteration, loss, or disclosure. Data transmissions are performed using secure communication protocols where applicable (e.g., HTTPS/TLS).
8) User rights and how to exercise them
Users may exercise their rights of access, rectification, deletion, portability, restriction, and objection, and withdraw consent where applicable, by contacting:
info@sanzar-group.com
Please note that application accounts may be managed by the User’s organization. In such cases, certain requests related to account access may need to be coordinated with the organization’s administrator.
9) International transfers
Where the use of service providers may involve processing outside the European Economic Area, we ensure appropriate safeguards are applied in accordance with applicable data protection laws.
10) Changes to this section
We may update this section from time to time to reflect changes in the application or legal requirements. We will publish the updated version on our website.