Privacy Policy | Simon Corporate

1. GENERAL INFORMATION

The purpose of this Privacy Policy is to provide clear and straightforward information about how Simon processes personal data that may be collected through the Website, including data provided via contact forms and data derived from the use of cookies or similar technologies.

2. DATA CONTROLLER

Simon Holding, S.L. (“Simon”), with Tax ID B61428611, located at Calle Sancho de Ávila, 66 08018 Barcelona (Spain), is the data controller for the personal data collected through the Website. You may contact the Data Protection Officer at dpo@simonelectric.com.

When necessary to handle an inquiry, Simon may share the data with the Simon Group company that is competent based on geographic, material, or functional grounds. That company will process the data as the data controller solely to address the inquiry or manage the relationship that may arise from it.

You may request additional information about the Simon Group companies that may be involved in handling your inquiry by contacting dpo@simonelectric.com.

3. PERSONAL DATA PROCESSED

Through the Website, Simon may process the following categories of personal data:

· Identification and contact data: first name, last name, email address.

· Browsing and website usage data: depending on the cookies accepted, IP address, online identifiers, device data, browser, date and time of access, pages visited, language preferences, and data derived from the use of cookies or similar technologies.

· Communication preferences and consent: acceptance or rejection of commercial communications, unsubscribe management, and, where applicable, contact preferences.

4. PURPOSES, LEGAL BASES, AND RETENTION PERIODS

PURPOSE	DATA PROCESSED	LEGAL BASIS	RETENTION PERIOD
To manage inquiries received and, where applicable, maintain the professional relationship	First name, last name, email address	Simon’s legitimate interest in responding to communications received and maintaining professional relationships	For the time necessary to handle the inquiry and, where applicable, for as long as the professional relationship arising from it is maintained. Once concluded, the data will be retained in a restricted format for the statute of limitations periods for any potential legal liabilities.
Sending commercial communications via electronic means	First name, last name, email	User consent	Until the user withdraws their consent or opts out. Subsequently, the data strictly necessary may be retained in a restricted format for the applicable limitation periods to demonstrate compliance with legal obligations.
Managing cookies and similar technologies in accordance with the settings selected by the user	Technical data, browsing data, online identifiers, consent preferences, and device or browser information	Legitimate interest or compliance with legal obligations for technical or necessary cookies; consent for non-necessary cookies, except in legally exempt cases	According to the duration indicated in the cookie settings panel

5. RECIPIENTS AND SERVICE PROVIDERS

Personal data may be disclosed to Simon Group companies when necessary to address the user’s inquiry, under the terms set forth in Section 2 of this Policy, based on Simon’s legitimate interest in addressing your request for information.

Service providers contracted by Simon or by Simon Group companies acting as data processors or technology providers may also access the data, including providers of technology infrastructure, hosting and web services, security, communications, digital marketing, analytics, and technical support.

Such providers must process the data in accordance with documented instructions and provide the required contractual safeguards. The data may also be disclosed to public authorities, courts, regulatory bodies, or third parties when there is a legal obligation to do so or when necessary for the establishment, exercise, or defense of legal claims.

Users may request additional information regarding the categories of providers involved in the processing of their personal data by contacting the Data Protection Officer at dpo@simonelectric.com.

6. INTERNATIONAL TRANSFERS

The user’s ordinary use of the Website does not, in and of itself, involve an international transfer of their data. However, certain technology providers, corporate tools, or support services used by Simon may be located in or provide services from countries outside the European Economic Area.

When personal data is processed or accessed from such countries, Simon will apply the safeguards required by applicable regulations, including, as appropriate, adequacy decisions, Standard Contractual Clauses approved by the European Commission, supplementary measures, or other legally valid mechanisms.

You may request additional information regarding applicable international transfers and the safeguards used by contacting dpo@simonelectric.com.

7. DATA SUBJECT RIGHTS

The user, as a data subject, may exercise the rights of access, rectification, erasure, objection, restriction of processing, and data portability where applicable, as well as the right not to be subject to automated individual decision-making that produces legal effects or significantly affects them.

When processing is based on consent, the user may withdraw it at any time, without this affecting the lawfulness of the processing carried out prior to its withdrawal.

To exercise their rights, the user may submit a request to dpo@simonelectric.com. The request must allow for the verification of the applicant’s identity and specify the right they wish to exercise.

The user may also file a complaint with the Spanish Data Protection Agency (www.aepd.es) if they believe that the processing of their personal data does not comply with applicable regulations.

8. SECURITY

Simon will implement appropriate technical and organizational measures to protect personal data against destruction, loss, alteration, unauthorized access, or accidental or unlawful disclosure.

Access to personal data will be limited to those persons who need to know it for the performance of their duties. Simon and the companies of the Simon Group must maintain access controls and security measures commensurate with the risk.

9. COOKIE POLICY

The Website uses cookies and similar technologies. For more information on their use and on how to accept, reject, or configure cookies, users may consult the Cookie Policy available on the Website.

10. MODIFICATION OF THE PRIVACY POLICY

Simon may amend this Privacy Policy when necessary to adapt it to regulatory, technical, organizational, or operational changes to the Website. The current version will be the one published on the Website at any given time. If the changes substantially affect the processing activities described, Simon will take reasonable measures to inform users when required.

Effective date: 01/06/2026