Select your language

Through this Privacy Policy, the user is informed in a clear, precise, and concise manner. If the user accepts it, they will give their free, informed, specific, and unequivocal consent for RCA Systems to process their personal data, in accordance with EU Regulation 2016/679 on the protection of natural persons regarding the processing of personal data and the free movement of such data (GDPR) and Spanish Organic Law 3/2018, of December 5, on Personal Data Protection and the guarantee of digital rights (LOPDGDD) (the current European and national data protection legislation).

Basic Information on Data Protection

Data Controller Pietro Marini
Purposes of treatment Response to queries and doubts, provision of service and possible sending of information on products and services.
Legal basis

Consent of the person concerned (article 6.1.a of the GDPR).
Contractual relationship with the data subject (Article 6.1.b of the GDPR).

Recipients

No data will be transferred to third parties.

The following may have access: Tax Administration, Banks and financial institutions, Security Forces and Corps, Data Processors necessary for the provision of the service.

Rights and additional information The exercise of the rights of access, rectification or suppression, among others, is allowed. All information is accessible in the detailed information of this privacy policy.

Detailed Information on Data Protection

Who is the data controller?

The identification data of the Data Controller appear in this paragraph.

What information do we collect and process from the user through the website?

The data collected refers to the category of identifying data, such as: Name and Surname, Telephone, Postal Address, Company, E-mail, as well as the IP address from which you access the data collection form.

  • Through the Contact form

In our web page the user will find the option to write to us to clarify all the doubts that he/she has in relation to the operation of our products/services or any other thing that he/she needs. To answer, we will contact the user via email or telephone number, if indicated.

  • Through our corporate email

Through our e-mail address This email address is being protected from spambots. You need JavaScript enabled to view it. the user may write to us and/or request the information he/she considers necessary to clarify any doubts related to our services.

  • By subscribing to our blog-newsletter

Through a small form that the user can see on our website, you can subscribe to our blog to receive the latest news and promotions from RCA Systems. You can unsubscribe at any time by sending an email to This email address is being protected from spambots. You need JavaScript enabled to view it. or in the newsletter that you will receive in your mailbox.

In the event that the user provides us with data of third parties, the user assumes the responsibility of having previously informed them and having their consent to do so, in accordance with article 14 of the GDPR.

By providing us with their data through electronic channels, the user guarantees that they are over 18 years of age and that the data provided to RCA Systems are true, accurate, complete and up to date. To this effect, the user confirms that he/she is responsible for the veracity of the data communicated and that he/she will keep said information conveniently updated so that it corresponds to his/her real situation, taking responsibility for any false or inaccurate data that he/she may provide, as well as for any damages, direct or indirect, that may arise.

For what purpose do we process the user's personal data?

RCA Systems processes personal data for the following purposes, depending on the reason for which the data were provided:

  1. To carry out the provision of the contracted products/services, the maintenance of the contractual relationship and the follow-up of the same.
  2. Contact, process, manage and respond to the user's request, application, incident or query (either via email, contact form or telephone).
  3. Manage the customer's purchase process and any query associated with the products/services contracted.
  4. Manage, if necessary, the sending of information about products, services and news associated with RCA Systems by electronic and/or conventional means.

What is the legal basis for processing the user's data?

  • The legal basis for the processing of your personal data for the purposes set out in the previous section is the execution of the provision of the corresponding service, and it is an imperative obligation to do so, as established in article 6.1,b) of the RGPD.

  • With regard to the sending of information about products, services and news associated with RCA Systems, the legal basis for the processing of personal data provided is the explicit consent given by the user, as established in article 6.1,a) of the RGPD.

For how long will the user's personal data be processed?

  • Data related to managing the client relationship, invoicing, and payment of services will be retained for as long as the contract remains in force. Once the contractual relationship has ended, the data may be kept for the period required by applicable legislation and until any potential liabilities arising from the contract have expired.

  • Data related to handling inquiries and requests will be retained for the time necessary to respond to them, and, if applicable, as long as the data subject does not request the withdrawal of their consent to receive information related to their inquiry.

  • Data used for sending information related to RCA Systems' products or services will be retained until the user revokes their consent.

To which recipients will the user's personal data be communicated?

As a general rule, your data will not be disclosed to third parties unless there is a legal obligation or it is necessary for the provision of the service. Taking this into account:

  • The user's personal data may be communicated to financial institutions through which the management of collections and payments is arranged.
  • Only in legally required cases will the data be communicated to law enforcement authorities.
  • They may also be disclosed to the competent Public Administrations in cases provided for by law.
  • If applicable, they will also be communicated to Data Processors of RCA Systems for the proper provision of the service.

What are the user's rights?

Data protection regulations allow you to exercise your rights of access, rectification, erasure, and data portability, as well as to object to and restrict processing, and to not be subject to decisions based solely on automated processing of your data, where applicable.

These rights are characterized by the following:

  • Exercising them is free of charge unless the requests are manifestly unfounded or excessive (e.g., repetitive requests), in which case RCA Systems may charge a fee proportional to the administrative costs incurred or refuse to act.
  • You can exercise these rights directly or through your legal or authorized representative.
  • We must respond to your request within one month. However, considering the complexity and number of requests, this period may be extended by up to two additional months.
  • We are required to inform you of the means available to exercise these rights, which must be accessible, and we cannot deny you the exercise of your rights solely based on your choice of a different means. If the request is submitted electronically, the response will be provided through the same means whenever possible, unless you request otherwise.
  • If RCA Systems does not process the request, it will inform you, no later than one month, of the reasons for not taking action and the possibility of filing a complaint with a Supervisory Authority.

In order to facilitate the exercise of your rights, we provide you with links to the request forms for each of them:

To exercise your rights, RCA Systems provides the following means:

  1. By written and signed request addressed to RCA Systems, with the reference "Exercise of GDPR Rights"
  2. By sending a scanned and signed form to the email address of This email address is being protected from spambots. You need JavaScript enabled to view it., indicating "Exercise of GDPR Rights" in the subject line.

In both cases, you must verify your identity by providing a photocopy or, where applicable, a scanned copy of your ID card (DNI) or an equivalent document, to ensure that we only respond to the data subject or their legal representative. In the case of representation, a document accrediting such representation must also be provided.

Likewise, and especially if you consider that you have not obtained full satisfaction in the exercise of your rights, we inform you that you may file a complaint with the national supervisory authority, the Spanish Data Protection Agency (AEPD), at C/ Jorge Juan, 6 – 28001 Madrid (www.aepd.es).

What Security Measures Do We Have in Place?

At RCA Systems, we are committed to protecting your personal information.

We implement physical, organizational, and technological measures, controls, and procedures that are reasonably reliable and effective, aimed at preserving the integrity and security of your data and ensuring your privacy.

Additionally, all personnel with access to personal data have been trained and are aware of their obligations regarding the processing of personal data.

For contracts with our service providers, we include confidentiality clauses that require them to maintain secrecy regarding personal data accessed as part of their service provision. They are also required to implement the necessary technical and organizational security measures to ensure the confidentiality, integrity, availability, and ongoing resilience of systems and services processing personal data.

All these security measures are regularly reviewed to ensure their adequacy and effectiveness.

However, absolute security cannot be guaranteed and no security system is impenetrable, so in the event that any information under our control and under our control is compromised as a result of a security breach, we will take appropriate steps to investigate the incident, notify the Control Authority and, where appropriate, those users who may have been affected to take appropriate action.

Social Media Policy

RCA Systems has a corporate profile on Linkedin and Mastodon.

Therefore, RCA Systems is the “Data Controller” for your information due to the existence of these social media profiles and the fact that users can follow us, and we may follow them in return.

This means that if a user joins our corporate profile as a follower or likes (“Like”) our content or profile, they accept this policy, where we explain their rights and how we use their data.

As the data controller, we guarantee the confidentiality of data processing and ensure users' rights are upheld, always in compliance with current data protection regulations.

Additionally, we inform users that we use social media to share news and relevant information about our services or topics we believe may be of interest. By using the platform’s features, users may receive updates and information of this kind in their feeds or profiles.

However, we clarify that RCA Systems has no affiliation with these social media platforms. By accessing them and accepting their terms and conditions during registration, the user agrees to their policies and terms of use. RCA Systems is not responsible for how these platforms process user data beyond the strict relationship and service provisions outlined in this policy.