Information on the use of the Internal Information System and the key principles of the Management Procedure

 

GCA Architects makes available this Internal Information System in compliance with Law 2/2023, of February 20, which regulates the protection of persons reporting regulatory violations and the fight against corruption (Law 2/2023).

 

Through this channel, users can report any actions or omissions which, within a work or professional context, are known to them or obtained in the course of work or through contractors with our organization, and which they consider to constitute violations of European Union law (as established by Law 2/2023) or very serious or serious administrative or criminal offenses under internal law.

 

This is not a complaints or suggestions system, and therefore any information outside the scope established in the paragraph above (art. 2 of Law 2/2023) will be dismissed, as will all messages from senders outside the scope of protection granted by the cited law.

 

In order to offer users the guarantees required for independence, confidentiality, data protection, and secrecy of communications—and to create a climate of sufficient confidence to dispel any fear of retaliation that they or those around them may have—GCA Architects has chosen to entrust a Legal Advisory Service with the management of this Internal Information System. The appropriate contractual agreement has been made in compliance with Regulation (EU) 679/2016 of the European Parliament and of the Council, of April 27, 2016 (GDPR), ensuring that the anonymity of the reporting user is maintained if they wish.

 

You can read our full Internal Information System Policy at the following link.

 

Below is an online form where you can provide any relevant information and attach documents you consider relevant (image formats, PDF, or ZIP file if multiple documents). This form will send your information directly to the mentioned Legal Advisory Service, which will take appropriate action. You may choose to remain anonymous. Please note that if you do so, any attached files must not contain information that could identify you, either in the content itself or in the metadata.

 

 

Submit a report

 

    Archivo no seleccionado
    Información personal

     

     

    In compliance with personal data protection regulations, GCA Architects, -GCA SLP- as the data controller, informs you that if you choose to identify yourself in our Internal Information System, your data will be processed in accordance with the General Data Protection Regulation (GDPR, 679/2016) under the following conditions:

     

    Data controller: GCA SLP, with Tax ID No. B58291642 and address at Calle Valencia 289, 08009 Barcelona.

     

    Data Protection Officer: To contact the data protection officer, email: [email protected].

     

    Purpose: Your data will be processed to protect people in a work or professional context who report facts or conduct that may constitute very serious or serious administrative or criminal offenses.

     

    Lawfulness of processing: The processing of your data is based on compliance with a legal obligation applicable to the controller, specifically Law 2/2023 of February 20, regulating the protection of persons reporting regulatory breaches and fighting corruption.

     

    Data sharing: Your data may be shared and transferred to the Tax Authorities, law enforcement, and competent authorities when the facts reported may constitute a criminal offense.

     

    Data retention: Your data will be kept for the necessary time to determine whether to initiate an investigation regarding the reported facts. Also, your data may be kept blocked beyond this period if required to comply with legal obligations.

     

    Technical and organizational measures: Personal data processing will be carried out in accordance with the technical and organizational measures necessary to ensure the confidentiality of the person providing the information. In any case, it will be guaranteed that only persons who, due to their duties, need to access the data may do so, and that appropriate safeguards are in place so that the data cannot be accessed by unauthorized parties.

     

    Rights: If you wish, you may exercise your rights of access, rectification, erasure, objection, restriction of processing, and portability by emailing [email protected]. If your request is not satisfied, you may also file a complaint with the Spanish Data Protection Agency via their website: www.aepd.es.