Frequently asked questions
What is the Internal Communications Channel?
It is a communication tool we make available to all groups defined as having access to this Channel. Through this means, individuals can submit communications related to the scope of application of the Code of Ethics or any other applicable internal policy or regulation within our organization.
A series of categories have been defined to help classify the communications by area, thus facilitating their management and the completion of data collection forms.
A series of categories have been defined to help classify the communications by area, thus facilitating their management and the completion of data collection forms.
Should I use this channel in case of an emergency?
No, this channel is not designed to handle urgent or emergency situations. In such cases, please contact the relevant authorities or emergency services.
Can I report a workplace situation if I am not an employee?
Yes. The channel is open so that different actors within the business ecosystem can help identify unlawful activities. However, if the matter concerns a service complaint, other channels are available for such purposes.
Is anonymity guaranteed when reporting?
During the reporting process, you may choose whether or not to provide your personal data. If you choose not to, you must track your report’s progress through the whistleblowing channel yourself. The channel will provide you with a username and password to access the status of the report. The channel operates independently from the company and does not record the IP address from which you connect.
How can I increase my anonymity when reporting?
Some tips to ensure maximum anonymity, in addition to marking the report as anonymous:
• Ensure the description does not contain information that could reveal your identity. The same applies to any documents you attach as evidence.
• Do not report from a computer connected to the company's network, including a mobile phone on the corporate Wi-Fi. We do not record information, but before reaching our systems, your data may pass through company-controlled systems like proxies or firewalls, which could be configured to log connection destinations.
• You can use the open-source TOR browser, which anonymizes your IP address.
• Ensure the description does not contain information that could reveal your identity. The same applies to any documents you attach as evidence.
• Do not report from a computer connected to the company's network, including a mobile phone on the corporate Wi-Fi. We do not record information, but before reaching our systems, your data may pass through company-controlled systems like proxies or firewalls, which could be configured to log connection destinations.
• You can use the open-source TOR browser, which anonymizes your IP address.
I lost the access credentials to check my report status. What can I do?
Unfortunately, for security reasons, only the whistleblower knows their access code and password. If either is lost, you will not be able to monitor the communication. This does not mean that the report will not be processed — it will continue its course — but you won’t be able to track its progress or provide additional information if requested by the company.
What types of offenses can I report?
You can report any offenses or violations listed in Directive (EU) 2019/1937 committed by a legal representative or employee, directly or indirectly benefiting the company, or committed against workers or individuals connected to the company. These include: Public procurement; financial services, products, and markets; money laundering prevention; product safety; product safety and compliance; transport safety; environmental protection; radiation protection and nuclear safety; food and feed safety, animal health and welfare; public health; consumer protection; privacy and personal data protection; cybersecurity; the financial interests of the Union; and violations related to the internal market.
Additionally, Organic Law 2/2023 of February 21 expands the scope to include: The Union’s financial interests; competition and state aid; corporate tax and tax fraud; public finances and social security; labor law concerning occupational health and safety; and any act or omission potentially constituting a criminal offense or a serious or very serious administrative violation.
Additionally, Organic Law 2/2023 of February 21 expands the scope to include: The Union’s financial interests; competition and state aid; corporate tax and tax fraud; public finances and social security; labor law concerning occupational health and safety; and any act or omission potentially constituting a criminal offense or a serious or very serious administrative violation.
What happens if I submit a “false” report or act in bad faith?
All communications must be made in good faith. Reports will be considered made in bad faith if they impersonate someone else or present knowingly false information or involve individuals who were not connected to the reported events — even if the events themselves occurred.
Furthermore, knowingly making a false report or public disclosure is classified as a very serious offense, punishable with fines ranging from €30,001 to €300,000 for individuals, and from €600,001 to €1,000,000 for legal entities. In some cases, it may also constitute a criminal offense.
Furthermore, knowingly making a false report or public disclosure is classified as a very serious offense, punishable with fines ranging from €30,001 to €300,000 for individuals, and from €600,001 to €1,000,000 for legal entities. In some cases, it may also constitute a criminal offense.
How is personal data processed?
In accordance with current data protection laws, we are responsible for processing, managing, and storing the personal data of all individuals involved in queries and reports. Both we and any external experts we engage comply with the necessary technical and organizational measures to safeguard data security and prevent unauthorized alteration, loss, processing, or access.
The platform is designed to comply with current personal data protection regulations, as well as Law 2/2023 of February 20, which governs the protection of individuals who report regulatory infringements and fight corruption.
Your data is encrypted to minimize the risk of intrusion.
The platform is designed to comply with current personal data protection regulations, as well as Law 2/2023 of February 20, which governs the protection of individuals who report regulatory infringements and fight corruption.
Your data is encrypted to minimize the risk of intrusion.
When will I receive a response to my report or query? What is the resolution time?
The Ethics Committee will acknowledge receipt of the report/query within a maximum of 7 days. The resolution time will be a maximum of 90 days, unless the complexity of the case requires a longer period, which must be duly justified.
Why should I report what I know?
Integrity, responsibility, and transparency are fundamental values for us. We have an obligation to understand and adhere to our Code of Ethics. Likewise, we are responsible for reporting any potential breaches of our Code.
Could I face retaliation for reporting misconduct through the channel?
No, our organization expressly prohibits any retaliatory actions. No act of retaliation, nor attempts or threats thereof, will be tolerated against individuals who submit information through the channel. All necessary measures will be taken to ensure the protection of the whistleblower.
Is the channel appropriate for reporting harassment situations?
Yes, this is the appropriate channel for reporting any type of harassment.