Πολιτική απορρήτου και προστασίας δεδομένων

The person responsible for the treatment will inform all workers about the procedure to address the rights of the interested parties, clearly defining the mechanisms by which the rights can be exercised (electronic means, reference to the Data Protection Officer if there is one, postal address , etc.) and taking into account the following:

Upon presentation of their national identity document or passport, the owners of personal data (interested parties) may exercise their rights of access, rectification, deletion, opposition, portability and limitation of processing. The exercise of rights is free.
The person responsible for the treatment must respond to the interested parties without undue delay and in a concise, transparent, intelligible manner, with clear and simple language and retain proof of compliance with the duty to respond to the requests for the exercise of rights made.

If the request is submitted by electronic means, the information will be provided by these means when possible, unless the interested party requests it to be otherwise.

Requests must be responded to within 1 month of receipt, and may be extended for another two months taking into account the complexity or number of requests, but in that case the interested party must be informed of the extension within one month from of receipt of the request, indicating the reasons for the delay.

​

RIGHT OF ACCESS: In the right of access, interested parties will be provided with a copy of the personal data available along with the purpose for which it has been collected, the identity of the recipients of the data, the expected conservation periods or the criteria used to determine it, the existence of the right to request the rectification or deletion of personal data as well as the limitation or opposition to its processing, the right to file a claim with the Spanish Data Protection Agency and if the data has not been been obtained from the interested party, any information available about its origin. The right to obtain a copy of the data cannot negatively affect the rights and freedoms of other interested parties.

    • Form for exercising the right of access.

RIGHT OF RECTIFICATION: In the right of rectification, the data of the interested parties that are inaccurate or incomplete will be modified taking into account the purposes of the treatment. The interested party must indicate in the request what data it refers to and the correction to be made, providing, when necessary, documentation justifying the inaccuracy or incomplete nature of the data being processed. If the data has been communicated by the person responsible to other persons responsible, they must notify them of the rectification of this unless it is impossible or requires a disproportionate effort, providing the interested party with information about said recipients, if requested.

​

    • Form for exercising the right of rectification

​

RIGHT OF DELETION: In the right of deletion, the data of the interested parties will be deleted when they express their refusal to the treatment and there is no legal basis that prevents it, they are not necessary in relation to the purposes for which they were collected, they withdraw their consent. provided and there is no other legal basis that legitimizes the treatment or it is illicit. If the deletion results from the exercise of the interested party's right to object to the processing of their data for marketing purposes, the identifying data of the interested party may be kept in order to prevent future processing. If the data has been communicated by the person responsible to other persons responsible, they must notify them of its deletion unless it is impossible or requires a disproportionate effort, providing the interested party with information about said recipients, if requested.

​

    • Form for exercising the right of deletion

​

RIGHT OF OPPOSITION: In the right of opposition, when the interested parties express their refusal to the processing of their personal data to the person responsible, the latter will stop processing them as long as there is no legal obligation that prevents it. When the processing is based on a mission of public interest or on the legitimate interest of the person responsible, upon a request to exercise the right of opposition, the person responsible will stop processing the data unless compelling reasons are proven that prevail over the interests, rights and freedoms of the interested party or are necessary for the formulation, exercise or defense of claims. If the interested party objects to the processing for direct marketing purposes, the personal data will no longer be processed for these purposes.

​

    • Form for exerciting the right of opposition

​

RIGHT OF PORTABILITY: In the right of portability, if the processing is carried out by automated means and is based on consent or is carried out within the framework of a contract, interested parties may request to receive a copy of their personal data in a structured format, common use and machine reading. Likewise, they have the right to request that they be transmitted directly to a new person in charge, whose identity must be communicated, when technically possible.

​

    • Form for exerciting the right of portabilitys.

​

RIGHT OF LIMITATION TO PROCESSING: In the right of limitation of processing, interested parties may request the suspension of the processing of their data to challenge its accuracy while the person responsible carries out the necessary verifications or in the event that the processing is carried out based on the interest legitimate of the person responsible or in compliance with a mission of public interest, while verifying whether these reasons prevail over the interests, rights and freedoms of the interested party. The interested party may also request the conservation of the data if they consider that the processing is unlawful and, instead of deletion, request the limitation of the processing, or if the data controller no longer needs them for the purposes for which they were collected, the interested party You need them for the formulation, exercise or defense of claims. The fact that the processing of the interested party's data is limited must be clearly stated in the controller's systems. If the data has been communicated by the controller to other controllers, they must notify them of the limitation of their processing unless it is impossible or requires a disproportionate effort, providing the interested party with information about said recipients, if requested.

​

    • Form for the exerciting the right of limitaion to processingo.

If the interested party's request is not processed, the person responsible for the treatment will inform them, without delay and no later than one month after receiving it, of the reasons for their failure to act and of the possibility of submitting a claim to the Agency. Spanish Data Protection and to exercise judicial actions