Industrial Security
- Private Security Act.
- Spanish Organic Law 3/2018, of 5 December, on Personal Data Protection and Guarantee of Digital Rights.
The data relating to access controls will be kept for a maximum period of one (1) year from the collection date.
(*) Foreigner identification number, passport number or residence card number
(**) Manual or electronic.
Security measures corresponding to Schedule A of UNE-EN/IEC 27001 - Information Security Management Systems.
Organisational measures:
Staff who access the system have a duty of confidentiality and secrecy.
Access to personal data by unauthorised persons is prevented.
Paper documents are stored in a safe place (cabinets or areas with restricted access) 24 hours a day.
Documents or electronic media (CDs, pendrives, hard discs, etc.) containing personal data will not be discarded without guaranteeing their destruction.
The duty of secrecy and confidentiality persists even when the worker's employment relationship with the company ends.
Technical measures
Control of access to the system by identifying users in access and video surveillance control systems.
The systems comply with Navantia's information security policy.
These security measures will be reviewed periodically and this review may be carried out by automatic mechanisms (software or computer programs) or manually.