Confidentiality and Data Protection Policy

Legal notice

  1. Data of the owner of the domain

The contact details of the service provider and owner of the website (hereinafter, the website) are as follows:

  • Name or company name: H2 & BIOGAS TECHNOLOGY, S.L.
  • Address: c/ Juan Esplandiú 15, Planta 12, 28007 Madrid
  • Email address:
  • Contact phone: +34 810 810 773
  • Tax identification number: B42970178
  • Registration: Mercantile Registry of Tarragona, Volume 3248, Folio 154, Page T-56856.

Purpose of the page:

The Entity has published this website to provide potential visitors and users with detailed information about its products and services, as well as contact channels.

Access to information referring to the products and services of the Entity is made available to you and is detailed in its contents. The information displayed on this website is left at the free disposal of users who access the website in a particular and individual way, at no cost. The commercialization of the right of access is expressly prohibited.

  • Accuracy of Information

The Entity makes every effort to ensure the accuracy and updating of the information published on its website. However, it is not responsible for the consequences of reading it. Likewise,  the Entity is not responsible for any loss or damage suffered by the user that may arise from access to this website or the use of its contents.

  • Linksto third-party websites:

The Entity may include within its contents links to sites belonging to and / or managed by third parties in order to facilitate access to information available through the Internet. The Entity does not assume any responsibility derived from the existence of links between the contents of this site and contents located outside it. Such links or mentions have an exclusively informative purpose and, in no case, imply the support, approval, commercialization or any relationship between the Entity and the persons or entities authors and / or managers of such contents or owners of the sites where they are located.

  • Guarantees and Responsibilities

The Entity does not guarantee the permanent functioning of the website or the absence of software errors, communications failures or other hardware problems, not responding in any case to the consequences that may arise from them for users. However, the Entity will try to provide, to the extent of its possibilities, technical assistance to the user, so that any request for information or resolution of incidents, in relation to the Website and its operation, will be attended by the Entity at the following address

  • Intellectual Property Rights

This Website is governed by Spanish law and is protected by national and international legislation on intellectual property.

All elements (trademarks, designs, texts, links, logos, images, videos, sound elements, software, databases, codes …) contained in the owner’s page are protected by national and international intellectual property law. These elements are the exclusive property of the Entity.

Any reproduction, transmission, adaptation, translation, modification, communication to the public, or any other exploitation of all or part of the content of this Website, made in any form or by any means, electronic, mechanical or other, are strictly prohibited unless prior written authorization of the Entity. Any infringement of these rights may give rise to extrajudicial or judicial civil or criminal proceedings as appropriate.

The Entity does not grant any license or authorization of use of any kind on its intellectual and industrial property rights or on any other property or right related to this Website, the services or the contents thereof.

The legitimacy of the intellectual or industrial property rights corresponding to the contents provided by the Users is the sole responsibility of these.

  • Applicable Law and Jurisdiction

These conditions are governed by Spanish law. Any doubt that may arise in the fulfillment and interpretation of the same, will be submitted to the Courts and Tribunals of the city of the domicile of the Owner of the website…

Confidentiality and Data Protection Policy

ARJORD TRADE CORPORATION, S.L. (hereinafter the Entity) is committed to due diligence and compliance with Data Protection regulations.

Below is detailed information on the confidentiality policy and Protection of Personal Data in compliance with the provisions of Article 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation). or RGPD) and article 11 of Organic Law 3/2018, on the Protection of Personal Data and Guarantee of Digital Rights (LOPD GDD).

Data of the Data Controller and contact of the Data Controller / Data Protection Officer (DPO / DPO):

  • Identity: H2 & BIOGAS TECHNOLOGY, S.L.
  • Address / C. P: C/ Juan Esplandiú 15, Planta 12, 28007 Madrid
  • Phone: +34. 810.810.773
  • E-mail:
  • Contact details of the DPO/DPO: Montse Tosas
  • Data Protection Channel:

Purposes of the treatment

The Entity will process the information provided by interested persons for the following purposes:

  • Manage your attention, visit and meeting in our facilities.
  • Manage the provision and realization of the contracted services and products .
  • Manage any type of request, suggestion or request about our professional services made by interested persons.
  • Informative and commercial communications: processing of your data in order to inform you about activities, articles of interest and general information related to our activity and the services / products contracted.
  • Manage data provided by candidates for a job through the Curriculum Vitae (CV) or other means for the purpose of selection and recruitment process.
  • Ensure the security of offices, facilities and people through  access controls, video surveillance  systems and other access control/identification systems.
  • Comply with the legal provisions that apply to the Entity and its activities in health, equality and occupational risk prevention.
  • Manage and control the operation of the mechanisms, policies and internal protocols established by the Entity for regulatory compliance purposes and management of the reporting channels for this purpose.
  • All those treatments that are applicable to us for the due compliance with the regulations and official / sectorial requirements to which our activity is subject.

For the good purpose and development of your attention and management of the above purposes, the processing of your data for the corresponding purposes of those mentioned above will be carried out under the strictest compliance with the Data Protection regulations and the Policy that we are detailing. You can exercise your rights at any time (see specific section).

Data retention criteria

  • Management of services / products contracted with the Entity: the personal data provided in the contracts, offers and / or proposals for services, as well as those of other people whose intervention is necessary, will be kept for as long as the contracted services are in force. At the end of the provision of the contracted service / s, personal data will be kept in the cases that could derive responsibilities with the Entity and / or in compliance with other regulatory frameworks that are applicable to the Entity or a rule with the rank of law that requires the conservation of these. Personal data will be kept in a way that allows the identification and exercise of the Rights of those affected and, under the legal and organizational technical measures that are necessary to guarantee the confidentiality and integrity of these.
  • Curriculum Vitae Management: the Entity, as a rule, keeps its Curriculum Vitae for a maximum period of one year; once this period has ended, it will be automatically destroyed, in compliance with the principle of data quality.
  • Management of Employment Contracts: personal data will be kept, in any case, for as long as the employment relationship is in force and, at the end of it, in the cases that could derive responsibilities between the parties and when required by a rule with the rank of law.
  • Others:  the rest of the data and information provided by the user by any means, will be kept for as long as necessary to fulfill the purpose for which they were collected.


The legal basis that enables the Entity to process the personal data of users, customers, potential customers by virtue of the following titles:

  • The consent of the interested persons for the processing and management of any request for information or consultation about our services and products.
  • The consent given by job candidates for selection and recruitment purposes.
  • The framework for the provision and/or contracting of services / products with the Entity.
  • The legitimate interest to send you informative, commercial communications and / or promotional offers related to the activity of the Entity and the services / products contracted through email or any other means.
  • Compliance with legal obligations and internal regulatory compliance procedures.
  • The legitimate interest to ensure the security of offices, facilities and people.


No personal data is transferred to third parties, except as provided by law.


Personal data is obtained directly from the interested persons and from our collaborators. The categories of personal data they provide to us are the following:

  • Identification data.
  • Postal or electronic addresses.
  • Data provided and / or consented by the interested parties related and necessary for the management and realization of the service / product requested. 


Right of Access, Rectification and Deletion: interested persons have the right to obtain confirmation as to whether or not the Entity is processing personal data that concerns them. Interested persons have the right to access their personal data, as well as to request the rectification of inaccurate data or request its deletion when, among other reasons, the data is no longer necessary for the purposes for which it was collected.

Right to Limitation and Opposition: in  certain circumstances, interested parties may request the limitation of the processing of their data, in which case we will only keep them for the exercise or defense of claims. In certain circumstances and for reasons related to their particular situation, interested parties may object to the processing of their data. The Entity will stop processing the data in this case, except for compelling legitimate reasons, or for the exercise or defense of possible claims.

Right to revoke the consent given: the interested parties have the right to withdraw their consent at any time, except in the case of processing of personal data provided for in the Data Protection regulations or necessary for the provision of the contracted service, which do not require such consent. However, this withdrawal does not have retroactive effects, so it will not affect the legality of the treatment based on a previously granted consent.

These rights may be exercised in our Data Protection Channel, whose access data are detailed at the beginning of this Policy.

Security and Control Measures


In compliance with data protection regulations, the Entity will process personal data by applying the appropriate technical, legal, organizational and security measures, in order to guarantee the confidentiality and integrity of the information it manages in accordance with the provisions of current regulations.

We appreciate that you inform the Responsible / Delegate of Data Protection through the contact details / Channel established in this Privacy Policy, any security risk, of which you have indications or knowledge, that may compromise the integrity and confidentiality of personal data and / or confidential information,  in order to be able to take the necessary measures to prevent its unauthorized treatment, loss, destruction or accidental damage.


As a specific and complementary concept to the above, the Entity applies cybersecurity measures to prevent and manage possible attacks and fraud by cybercriminals that threaten the privacy and protection of the data that our Entity processes and accesses in the scope of its activities and operations.

In this sense we want to warn that in case of possible situations of risk due to communications whose content and / or format generate doubts of authenticity, we recommend omitting them and contacting the Responsible / Delegate of Data Protection through the contact information indicated in this Privacy Policy.

Likewise, any request received from our Entity about changes in payment methods, request for data or contact persons or confidential (non-public) information, bank and/or credit card details and/or other official data, should not be answered without the direct confirmation of our Entity by another alternative means. We appreciate and need your collaboration for your communication and complaint about any notification about this type of requests and other possible risk situations of cyberattacks in which our Entity may be used, as well as for any possible security risk that they may be aware of.

Data Protection Channel

The Entity has implemented a Channel, contemplating the highest commitment, rigor and professionalism in terms of security, experience, independence and knowledge in the treatment of communications received.

The Channel, which includes the use in the field of Data Protection, has been implemented through a web platform, developed and managed by an independent external expert, to provide and guarantee our previous commitments.

Through the Channel, you can communicate and process the exercise of  your Rights  (see previous section) and communicate any indication or knowledge you have of  possible security violations (breaches), cyberattacks and /  or possible breaches or irregularities on the Data Protection regulations, this Policy of the Entity and all the aspects mentioned above on confidentiality and business secrets.

The access data to the Channel are detailed at the beginning of this Policy.

Supervisory authority

In case of divergences with the Entity in relation to the processing of your data, you have the right to file a claim with the corresponding Data Protection Control Authority. In Spain, this Authority is the Spanish Data Protection Agency (

Care & Support

Interested persons may communicate to the Entity any questions about the processing of their personal data or interpretation of our Policy, by contacting the Data Protection Officer (DPR / DPO) at the address indicated at the beginning of this Policy.