GDPR

1.0PDA Internationalhttps://www.pdainternational.net/en/adminhttps://www.pdainternational.net/en/author/support_4rcwx50h/GDPRrich600338<blockquote class="wp-embedded-content" data-secret="l63GWejUjt"><a href="https://www.pdainternational.net/en/gdpr/">GDPR</a></blockquote><iframe sandbox="allow-scripts" security="restricted" src="https://www.pdainternational.net/en/gdpr/embed/#?secret=l63GWejUjt" width="600" height="338" title="“GDPR” — PDA International" data-secret="l63GWejUjt" frameborder="0" marginwidth="0" marginheight="0" scrolling="no" class="wp-embedded-content"></iframe><script> /*! This file is auto-generated */ !function(d,l){"use strict";l.querySelector&&d.addEventListener&&"undefined"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!/[^a-zA-Z0-9]/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret="'+t.secret+'"]'),o=l.querySelectorAll('blockquote[data-secret="'+t.secret+'"]'),c=new RegExp("^https?:$","i"),i=0;i<o.length;i++)o[i].style.display="none";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute("style"),"height"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):"link"===t.message&&(r=new URL(s.getAttribute("src")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener("message",d.wp.receiveEmbedMessage,!1),l.addEventListener("DOMContentLoaded",function(){for(var e,t,s=l.querySelectorAll("iframe.wp-embedded-content"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute("data-secret"))||(t=Math.random().toString(36).substring(2,12),e.src+="#?secret="+t,e.setAttribute("data-secret",t)),e.contentWindow.postMessage({message:"ready",secret:t},"*")},!1)))}(window,document); </script> LEGAL NOTICE LEGAL NOTICE IMPORTANT — GOVERNING LANGUAGE This Legal Notice was originally drafted in Spanish. In the event of any discrepancy, conflict, or inconsistency between the Spanish version and any translated version, the Spanish version shall prevail for all legal purposes. IMPORTANT NOTICE — PREVAILING LANGUAGE This Global Privacy and Data Protection Policy is a translation of the original document drafted in Spanish. In the event of any discrepancy, inconsistency, or interpretation conflict between this version and the Spanish version, the Spanish version shall prevail for all legal purposes. GDPR – GLOBAL PRIVACY AND DATA PROTECTION POLICY 1. Introduction At HS GROUP SOCIEDAD DE RESPONSABILIDAD LIMITADA (hereinafter, “PDA”), we value your privacy and the protection of your Personal Data. This Global Privacy and Data Protection Policy (hereinafter, the “Privacy Policy”) describes how we collect, use, share, and protect your information in all countries where we operate or provide services. For the purposes of the Software License Agreements (EULA), the website Terms and Conditions, and other PDA contractual documents, this Global Privacy and Data Protection Policy may also be referred to as the “Security and Privacy Policy,” maintaining in all cases the same scope and content. PDA complies, among others, with the following data protection regulations: Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR). Argentine Law No. 25,326 and Regulatory Decree No. 1558/2001. Lei Geral de Proteção de Dados Pessoais (LGPD – Brazil). California Consumer Privacy Act and California Privacy Rights Act (CCPA/CPRA – USA). Ley Federal de Protección de Datos Personales en Posesión de los Particulares (LFPDPPP – Mexico). Protection of Personal Information Act (POPIA – South Africa). PDA applies the principles of lawfulness, fairness, transparency, data minimization, purpose limitation, accuracy, integrity, confidentiality, and accountability in all Processing of Personal Data. 2. Controller and Global Contact The Controller of Personal Data will depend on the PDA group entity that provides the service and is identified as the “Licensor” or contractual provider in the EULA, master services agreement, or equivalent commercial document. Controller – Argentina When the Client contracts the services through the Argentine entity, the Controller will be: HS GROUP SOCIEDAD DE RESPONSABILIDAD LIMITADA (“HS GROUP” o “PDA INTERNATIONAL”) CUIT: 30-70987001-0 Domicilio: Cerrito 782, Piso 1, Ciudad Autónoma de Buenos Aires, C1010AAP, República Argentina Correo: gdpr@pdainternational.net Sitio web: www.pdainternational.net Controller – United States and Rest of the World (outside Argentina and the European Union) When the Client contracts the services through the international entity, the Controller will be: PDA USA LLC Address: 1752 Aspen Ln, Weston, Florida, United States EIN: 32-0502196 Email: gdpr@pdainternational.net Representative in the European Union (Article 27 GDPR) For clients, data subjects, and authorities located within the European Union, PDA designates as its representative: Mantra Desarrollo de Negocios S.L. Address: Calle Cetrería, 103, 28232 Las Rozas de Madrid, Madrid, Spain Email: gdpr@pdainternational.net Mantra Desarrollo de Negocios S.L. acts exclusively as a representative designated pursuant to Article 27 of the General Data Protection Regulation (GDPR). It does not act as Controller or joint Controller and does not perform the functions of a Data Protection Officer (DPO). Privacy Contact Inquiries related to Personal Data protection and the exercise of data subject rights may be submitted through: 📧 gdpr@pdainternational.net Regardless of the PDA group entity acting as Controller, requests will be internally forwarded to the corresponding entity. 3. Definitions The definitions established in the GDPR, Argentine Law 25,326, LGPD, and equivalent regulations shall apply. “Personal Data”: any information relating to an identified or identifiable natural person. “Processing”: any operation or set of operations performed on Personal Data, such as collection, recording, organization, storage, consultation, disclosure, modification, anonymization, or erasure. 4. Data We Collect PDA may collect the following categories of Personal Data: Identification data: first name, last name, type and number of identification document, nationality, date of birth Contact data: address, telephone number, email address. Employment or professional data: position, company, sector, employment history, area of expertise. Technical data: IP address, device type, operating system, browser, online identifiers, connection information, and activity logs. Billing or payment data: data necessary for payment processing and invoicing, as applicable. Assessment results generated through PDA tools (behavioral profiles, indicators, associated reports). Additional information voluntarily provided by the user, candidate, participant, or client through forms, communications, or documentation submitted to PDA. 5. Purposes and Legal Bases PDA processes Personal Data for the following purposes, with the legal bases indicated for reference (particularly under GDPR and equivalent regulations): Provision, support, and maintenance of contracted services Management of assessments, report generation, access to SaaS platforms, functional and technical support. Legal basis: Performance of a contract or pre-contractual measures (Art. 6.1.b GDPR; Art. 7 LGPD; Art. 10 LFPDPPP). Legitimate Interest of the Controller (Art. 6.1.f GDPR), where applicable. Account management, authentication, and communications with clients and users Creation and administration of user accounts, delivery of operational notifications, security alerts, and service communications. Legal basis: Performance of a contract (Art. 6.1.b GDPR). Legitimate Interest (Art. 6.1.f GDPR). Sending commercial information, newsletters, and content of interest Sending news, event invitations, webinars, training materials, and marketing communications. Legal basis: Consent (Art. 6.1.a GDPR; Art. 7 LGPD). Legitimate Interest (Art. 6.1.f GDPR) for existing clients where permitted by applicable law, always providing opt-out mechanisms. Recruitment and selection processes Management of applications, interviews, evaluations, and onboarding processes. Legal basis: Consent or pre-contractual measures (Art. 6.1.a and 6.1.b GDPR). Compliance with legal and regulatory obligations Compliance with accounting, tax, regulatory obligations, or requests from supervisory authorities. Legal basis: Legal obligation (Art. 6.1.c GDPR). Research, development, and improvement of PDA tools Investigación, desarrollo y mejora de herramientas PDA Continuous improvement of algorithms, metrics, reports, and platform functionalities, including statistical analysis and usage studies. In these cases, data is preferably used in anonymized or aggregated form. Legal basis: Legitimate Interest (Art. 6.1.f GDPR) Consent when required by local regulations. Management and response to rights exercise requests Handling requests for access, rectification, erasure, objection, portability, or any applicable rights. Legal basis: Legal obligation (Art. 6.1.c GDPR). Legitimate Interest in the defense of rights (Art. 6.1.fhttps://www.pdainternational.net/wp-content/uploads/2026/03/GDPR-EN.png