Privacy Policy

At Worldwide Fishing Company, S.L., we understand that maintaining a transparent relationship with you is essential. For this reason, we provide you with our Privacy Policy so that you are duly informed at all times about how we collect and securely process any data you provide to us.

Your data will be processed in accordance with the applicable legislation currently in force and, in particular, in compliance with Regulation (EU) 2016/679 of 27 April 2016 (GDPR) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, as well as with Ley Orgánica 3/2018, del 5 de diciembre, de Protección de Datos Personales y Garantía de los Derechos Digitales (LOPDGDD).

A careful reading of our Privacy Policy will provide you with the necessary information to understand how we will use the data you provide to us.

WHO IS THE DATA CONTROLLER OF YOUR OWN DATA?

If you, or a person duly authorised by you, have provided us with your data, we inform you that Worldwide Fishing Company, S.L. (WOFCO), with Tax ID NESB94135779 and registered office at Lugar Verdeal, S/N, 36957 Domaio, 36957 – Moaña, Province of Pontevedra (Spain), is the Data Controller of such data.

The Data Controller is the legal entity that determines the purposes and means of the processing of personal data. In other words, the Controller decides how and for what purposes personal data are processed.

Our contact details are as follows:

  • Email: rgpd@wofco-ltd.com
  • Telephone: +34 986 122 549

Your data will be processed in accordance with the provisions of the applicable personal data protection regulations.

We inform you that there are joint controllers of your data, as we are part of a group of companies. You may consult all Data Controllers at the end of this Policy.

Links Policy:

The Website may contain hyperlinks or links that allow access to third-party websites other than http://www.wofco-ltd.com, and which are therefore not operated by Worldwide Fishing Company, S.L. The owners of such websites shall have their own data protection policies and shall, in each case, be responsible for their own data processing activities and privacy practices.

Worldwide Fishing Company, S.L. undertakes to comply with its obligation of confidentiality with regard to personal data and its duty to safeguard them. To this end, we adopt the necessary measures to prevent their alteration, loss, unauthorised processing or access, in accordance with the provisions of the GDPR.

What Personal Data Do We Process and How Do We Protect Them?

Personal data means any information relating to an identified or identifiable natural person (“the data subject”). An identifiable natural person is one whose identity can be determined, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that person.

For the purposes set out in this Privacy Policy, the Controller collects and processes the personal data specified under each type of processing activity, which will depend on the different services you request or the contractual relationship you maintain with our entity.

Our organisation undertakes to process your data with the utmost confidentiality and to apply appropriate physical, technical and organisational security measures to protect your personal data.

You guarantee and are, in any event, responsible for the truthfulness, accuracy, validity and authenticity of the personal data provided, and you undertake to keep them duly updated.

Below we inform you of the data processing activities we carry out:

Processing of “Clients and Suppliers” Data

What type of personal data do we process?

  • Identification data: first name, surname(s), national ID number (DNI), address, telephone number, email address.
  • Financial data: bank account details.
  • Academic and professional data: profession, position, professional experience, qualifications.
  • Transaction data: products and services supplied

For what purposes do we process your personal data ?

We process the personal data you provide for the management of our commercial or business relationship, including accounting, administrative and invoicing management, as well as compliance with tax obligations.

The personal data provided will be retained for as long as the commercial relationship remains in force. If you decide to request the erasure of your personal data, they may be retained in our databases for the periods established by law in order to comply with tax and accounting obligations. They will be deleted once the applicable statutory limitation periods have expired.

Pursuant to Article 1964 of the Spanish Civil Code, actions arising from contractual obligations are subject to a limitation period of five (5) years. Accordingly, this shall be the general data retention period applicable to your data.

What is the legal basis for processing your data ?

The legal basis for processing your data is the performance of a contract, as well as compliance with a legal obligation applicable to the Controller.

To which recipients will your data be disclosed?

Your personal data will not be disclosed to any third party, except where disclosure is required to public authorities in compliance with a legal obligation.

Data Processors may process your data on our behalf and under our instructions.

There are also Joint Controllers involved in certain data processing activities.

No international transfers of personal data are envisaged.

Processing of “Contacts and Prospective Clients” Data

What types of personal data do we process?

  • Identification data: email address, telephone number.
  • Information relating to your browsing activity in the case of Online Services (IP address or information derived from cookies or similar devices – please refer to our Cookies Policy on the website).

For what purposes do we process your personal data?

We process the personal data you provide through the contact form for the management of commercial contacts and prospective clients.

The personal data provided will be retained until you object to the processing. If you decide to request the erasure of your personal data, they will be removed from our contact database.

If you expressly authorise us to do so, we may also process your data for promotional or advertising purposes.

What is the legal basis for processing your data?

The legal basis for processing your data is the explicit consent requested from you.

To which recipients will your data be disclosed?

Your personal data will not be disclosed to any third party.

Data Processors may process your data on our behalf and under our instructions.

There are Joint Controllers involved in certain processing activities.

No international transfers of personal data are envisaged.

Processing of “Job Applicants” Data

What types of personal data do we process?

  • Identification data: name, national ID number (DNI), date of birth, telephone number, email address, image.
  • Personal characteristics data: gender, nationality, age, date and place of birth.
  • Social circumstances data: hobbies.
  • Academic and professional data: profession, position, experience, qualifications.

For what purposes do we process your personal data?

We process the personal data you provide for the management of the company’s recruitment and selection processes.

The personal data provided will be retained as long as the data subject has not withdrawn consent for the continued storage of their curriculum vitae for future recruitment processes. If you decide to request the erasure of your personal data, they will be deleted from our job applicants database. In any event, they will not be retained for more than two (2) years.

What is the legal basis for processing your data?

The legal basis for processing your data is the explicit consent requested from you. Processing may also be based on the implementation of pre-contractual measures at your request, without the need for prior consent.

To which recipients will your data be disclosed?

Your personal data will not be disclosed to any third party.

Data Processors may process your data on our behalf and under our instructions.

There are Joint Controllers involved in certain processing activities.

No international transfers of personal data are envisaged.

Processing of “Video Surveillance” and “Visitor Access Control” Data

What types of personal data do we process?

  • Identification data: image (video surveillance).
  • Identification data: name and surname(s), national ID number, company (visitor access control).

For what purposes do we process your personal data?

We process personal data consisting of video surveillance recordings and the collection of visitor data at the company’s premises for security purposes, surveillance of our facilities and access control, in order to safeguard the security of persons, property and our facilities.

Personal data will be retained for one (1) month, which is the legally established retention period, after which the images will be automatically erased, unless they must be retained to provide evidence of acts affecting the integrity of persons, property or facilities. In such cases, the images must be made available to the competent authority within a maximum period of seventy-two (72) hours from the moment the existence of the recording becomes known. The same retention period shall apply to access control logs.

What is the legal basis for processing your data?

The legal basis for processing your data is the performance of a task carried out in the public interest, namely security, as well as the legitimate interest of the company in protecting its assets, facilities and the individuals present therein.

To which recipients will your data be disclosed?

Your personal data will not be disclosed to any third party, except where necessary for investigative purposes to Law Enforcement Authorities or to courts and tribunals in compliance with a legal obligation.

Data Processors may process your data on our behalf and under our instructions.

There are Joint Controllers involved in certain processing activities.

No international transfers of personal data are envisaged.

Processing of Data within the Internal Information System (IIS) or “Whistleblowing/Ethics Channel”

What types of personal data do we process?

Our whistleblowing channels are integrated into the Internal Information System and allow reports to be submitted anonymously or confidentially.

If the data subject chooses to provide their details, the following data may be collected:

  • Identification data: name and telephone number.
  • Other data that the data subject may upload, which cannot be determined in advance.

Under no circumstances will special categories of personal data be processed. If such data are included, they will be deleted.

For what purposes do we process your personal data?

The purpose of the processing is to report potential risks and breaches to the body responsible for overseeing the operation and compliance of the prevention model, in order to avoid, prevent or address the commission of criminal offences or other irregularities.

In any event, the channel may be used anonymously without providing personal data.

Special categories of personal data will not be processed. If received, they will be immediately erased, unless there are overriding reasons of substantial public interest as provided for in Article 9(2)(g) GDPR.

Our organisation undertakes to process your data with the utmost confidentiality and to apply appropriate physical, technical and organisational security measures.

Personal data will be retained for the maximum legal retention period established (one month).

What is the legal basis for processing your data?

The legal basis for processing your personal data is that it is necessary for compliance with a legal obligation pursuant to Article 6(1)(c) GDPR, as our organisation is required to implement a whistleblowing channel under Law 2/2023 of 20 February on the protection of persons reporting regulatory breaches and on the fight against corruption.

To which recipients will your data be disclosed?

The identity of whistleblowers will be kept confidential and will not be disclosed to the persons concerned by the reported facts or to third parties.

The identity of the whistleblower may only be disclosed to the judicial authority, the Public Prosecutor’s Office or the competent administrative authority within the framework of a criminal, disciplinary or administrative investigation.

No international transfers of personal data are envisaged.

What Are Your Rights When You Provide Us with Your Data?

In accordance with applicable data protection regulations, you have several rights in relation to the processing of your personal data. The exercise of these rights will be free of charge, except where requests are manifestly unfounded or excessive, in particular because of their repetitive character.

These rights are as follows:

  1. a) Right to information: You have the right to receive concise, transparent, intelligible and easily accessible information, using clear and plain language, about the use and processing of your personal data.
  2. b) Right of access: You have the right to request confirmation as to whether we are processing your personal data, to access such data and obtain information about the processing, and to receive a copy. The first copy will be provided free of charge; additional copies may be subject to a reasonable administrative fee. We may request proof of identity.
  3. c) Right to rectification: You have the right to request the correction of inaccurate, outdated or incomplete personal data, and to have incomplete data completed.
  4. d) Right to erasure (“right to be forgotten”): You have the right to request erasure of your data when, among other reasons, they are no longer necessary for the purposes for which they were collected. This right is not absolute; data may be retained in a blocked form where required by law.
  5. e) Right to restriction of processing: You may request restriction of processing where:
  • You contest the accuracy of the data;
  • The processing is unlawful and you oppose erasure;
  • We no longer need the data but you require them for legal claims;
  • You have objected to processing pending verification of overriding legitimate grounds.
  1. f) Right to data portability: You have the right to receive your data in a structured, commonly used and machine-readable format and to transmit them to another controller, where processing is based on consent or contract and carried out by automated means.
  2. g) Right to object: You may object to the processing of your personal data, including profiling. We may continue processing if we demonstrate compelling legitimate grounds or for legal claims.
  3. h) Right not to be subject to automated decision-making: You have the right not to be subject to decisions based solely on automated processing, including profiling, which produce legal or similarly significant effects, unless legally permitted.
  4. i) Right to withdraw consent: Where processing is based on your consent, you may withdraw it at any time.
  5. j) Right to lodge a complaint: You have the right to lodge a complaint with the Spanish Data Protection Agency (Agencia Española de Protección de Datos – AEPD) in C/ Jorge Juan, 6, 28001 Madrid, +34 901 100 099 – +34 912 663 517 (agpd.es), or in the website: https://sedeagpd.gob.es/sede-electronica-web/vistas/formQuejasSugerencias/seleccionarQuejaSugerencia.jsf

You may exercise these rights by contacting us at the postal or email address indicated at the beginning of this document, providing proof of identity.

Additional information on your rights is available at www.aepd.es.

In accordance with Article 23 of Ley Orgánica 3/2018, de 5 de diciembre, de Protección de Datos Personales y garantía de los derechos digitales (LOPDGDD), you may limit unwanted advertising by registering free of charge in advertising exclusion lists such as:

  • The Robison List, managed by Asociación Española de Economía Digital (ADIGITAL): https://www.listarobinson.es/
  • The “Stop Advertising” exclusión system, managed by Asociación Española Para La Privacidad Digital, located in Calle Médico Temístocles Almagro, nº 18, local 2, C.P. 03300 Orihuela (Alicante)

Advertising exclusion lists are regulated in accordance with the provisions set out in Ley Orgánica 3/2018, de 5 de diciembre, de Protección de Datos Personales y garantía de los derechos digitales. Pursuant to this regulation, all companies are required to verify whether a user is registered on such lists in order to enable them to exercise their right not to receive unsolicited advertising. Companies may be subject to penalties for carrying out advertising activities directed at individuals included in advertising exclusion lists through any of their communication channels. However, even if you are registered on the Robinson List, traders may still send you advertising relating to their products or services if you are an existing customer or if you have given your consent.

You may consult the advertising exclusion systems on the website of the Spanish Data Protection Agency (Agencia Española de Protección de Datos – AEPD): https://www.aepd.es/en/activities/spam

Worldwide Fishing Company, S.L. reserves the right to modify this Privacy Policy at its sole discretion or due to legislative, case law or doctrinal changes issued by the Spanish Data Protection Agency. Changes or updates will not be explicitly notified to users. Users are advised to review this page periodically.

This Policy was last reviewed on 18 de mai de 2026

WOFCO Group Companies for the purposes of their joint controllership in personal data protection matters:

WORLDWIDE FISHING COMPANY, S.L. (WOFCO)

  • Tax ID (NIF): ESB94135779
  • Registered address: LUGAR VERDEAL-DOMAIO, S/N, FACTORIA (Pontevedra)
  • Contact telephone: +34 986 122 549
  • Business activity: Wholesale trade of fish, seafood and other food products.
  • Email address: rgpd@wofco-ltd.com

FANDICOSTA, S.A.U

  • Tax ID (NIF) : A36226645
  • Registered address: LUGAR VERDEAL-DOMAIO, S/N, FACTORIA (Pontevedra)
  • Contact telephone: +34 986 326 800
  • Business activity: Processing and marketing of frozen seafood products.
  • Email address: rgpd@fandicosta.es

SAN MARCO PESCA,S.L.

  • Tax ID (NIF): B27855477
  • Registered address: Camiño do Laranxo, 17, interior, 36216 Vigo, Pontevedra
  • Contact telephone: +34 986 616 066
  • Business activity: Processing, preparation and grading of fish, crustaceans and molluscs, and related cold storage activities.
  • Email address: rgpd@marinadesanmarco.com

BONFRIG FDC ULTRACONGELADOS,S.A.

  • Tax ID (NIF): A36911246
  • Registered address: LUGAR VERDEAL-DOMAIO, S/N, FACTORIA (Pontevedra)
  • Contact telephone: +34 986 326 800
  • Business activity: Processing and marketing of frozen seafood products.
  • Email address: rgpd@bonfrig.es

ILULIAQ, S.L.U

  • Tax ID (NIF): B94135779
  • Registered address: LUGAR VERDEAL-DOMAIO, S/N, FACTORIA (Pontevedra)
  • Business activity: Wholesale trade of fish and other fishery and aquaculture products.
  • Email address: rgpd@iluliaqseafood.com

ALDAN PACIFIC, S.L.

  • Tax ID (NIF): B13952049
  • Registered address: LUGAR VERDEAL-DOMAIO, S/N, FACTORIA (Pontevedra). 36957
  • Business activity: Operation of fishing vessels for fresh catch or for freezing purposes, as well as the preservation, storage and wholesale and retail distribution of the catch obtained.
  • Email address: rgpd@wofco-ltd.com

RIA DE VIGO COLDSTORE, S.L

  • Tax ID (NIF): B19493402
  • Registered address: LUGAR VERDEAL-DOMAIO, S/N, FACTORIA (Pontevedra)
  • Business activity: Storage of fishery products and other food products. Purchase and sale of raw materials at auction.
  • Email address: rgpd@wofco-ltd.com