Privacy policy
DATA OF THE PERSON RESPONSIBLE FOR THE PROCESSING
COMPANY NAME: (NODDO) Association of the Network of Technology Centres of Castilla y León (hereinafter, the “COMPANY” or the “PERSON RESPONSIBLE”).
CIF: G06990808
ADDRESS: C/ Lopez Bravo, 70., – 09001 BURGOS (Burgos)
PHONE: 679529799
EMAIL for communications regarding Data Protection: contacto@noddo.es
APPLICABLE LEGISLATION: our Privacy Policy has been designed in accordance with the EU General Data Protection Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data , the Organic Law 3/2018 of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights and Law 34/2002 of 11 July, on information society services and electronic commerce (LSSI-CE).
(NODDO) Association of the Network of Technology Centres of Castilla y León may modify this Privacy Policy to adapt it to new legislation, jurisprudence or interpretation by the Spanish Data Protection Agency. These privacy conditions may be complemented by the Legal Notice, Cookie Policy and, if applicable, the General Conditions that, where appropriate, are included for certain products or services, if such access involves any speciality in terms of personal data protection.
FINALITIES AND LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA: (NODDO) Association of the Network of Technology Centres of Castilla y León we collect and process your personal information in general, to manage the relationship we have with you, the main purposes being the following:
PERIOD OF TIME OF CONSERVATION OF YOUR DATA:
Personal data processed for the purposes (A) , (B) ,(C) y (D) shall be kept for no longer than is necessary to maintain the purpose of the processing or there are legal requirements dictating their safekeeping and when no longer necessary for that purpose, they shall be erased with appropriate security measures to ensure the anonymisation of the data or their complete destruction.
Personal data obtained for the purpose (E) shall be kept for the time necessary for the purpose of the processing or for a maximum of 12 months, after which time they shall be blocked or destroyed.
In any case, and as a general rule, we will keep your personal information for as long as there is a commercial, pre-contractual or contractual relationship linking us with you, to comply with legal obligations or as long as you do not exercise your right to erasure and/or limitation of processing. In such cases, the information may be blocked without being used beyond its conservation, while it may be necessary for the exercise or defence of claims or may arise some kind of liability that had to be addressed.
In relation to the cookies used (F) , as specified in the section on cookies of this website.
CATEGORIES OF DATA: We collect your personal information through different means and in general, the personal information we process refers to the category of identifying, contact and financial data, such as: Name and Surname, TIN, Telephone, Postal Address, Email, payment and billing data, as well as the IP address from where you access the data collection form,
The data processed in the framework of a contractual, pre-contractual, commercial or mercantile relationship, may include in addition to those set out above: data on transactions of goods and services, social circumstances, personal characteristics, commercial, economic, financial and insurance information, legal representative, bank details, manual or electronic signature, professional, academic data or other categories required by the nature of the products and services provided by the Data Controller.
(NODDO) Association of the Network of Technology Centres of Castilla y León uses social networks and this is another way of reaching you. The information collected through the messages and communications you post may contain personal information that is available online and accessible to the public. These social networks have their own privacy policies explaining how they use and share your information, so (NODDO) Association of the Network of Technology Centres of Castilla y León recommends that you consult them before using them to confirm that you agree with the way in which your information is collected, treated and shared.
The data collected for the purpose (E) will be those of the professional and contact area: name, surname, telephone, e-mail, CV, cover letter and any other personal data associated with the CV or professional profile.
OBLIGATORY REQUIREMENT TO PROVIDE DATA: The minimum data that will be requested in order to admit the communication of a data subject will be the name and surname, e-mail address or, depending on the means of communication used, postal address, user name and/or telephone number. The refusal of the interested party to provide this data may result in the rejection or return of the communication sent by the interested party and/or the non-attention or resolution of the request, suggestion, complaint or other request of the interested party.
In general, the data provided upon request of the RESPONSIBLE party will be the minimum necessary for the purpose for which it is intended, so that its provision is mandatory as a contractual requirement for the provision of services or sale of products and/or an obligation of a legal nature. The refusal of the interested party to provide the data marked as obligatory will lead to the impossibility of adequately providing the services or sale of products, so that the order cannot be formalised or, if it has already been formalised, it will be grounds for termination of the corresponding contract for the provision of services or sale of products for reasons attributable to the interested party. In the case of requesting additional data that are not essential to provide the services, the RESPONSIBLE PARTY shall indicate this circumstance at the time of the request.
USERS, by ticking the corresponding boxes and entering data in the fields marked with an asterisk (*) in contact forms or presented in download forms or similar, expressly and freely and unequivocally accept that their data are necessary to meet their request, by the provider, being voluntary the inclusion of data in the remaining fields. The USER guarantees that the personal data provided to the RESPONSIBLE are truthful and is responsible for communicating any changes to them.
The data collected for the purpose of managing the candidacy of the interested party in the selection processes of the RESPONSIBLE will be necessary for the assessment of their professional profile, in case of being incomplete the RESPONSIBLE may not include you in current or future selection processes being mandatory the provision of the same.
CESSION OF DATA: no data transfers or international transfers of your data are foreseen, with the exception of those authorised by tax, commercial and telecommunications legislation, as well as in those cases in which a judicial authority or state security bodies and forces require us to do so. The identification and financial data may be communicated to banking institutions or payment platform managers, as well as to insurance companies or intermediaries of the same, if necessary to achieve the purposes of the processing.
The interested parties are informed that (NODDO) Association of the Network of Technology Centres of Castilla y León has contracted external service providers, with whom we have signed the legally required contracts guaranteeing compliance with their obligations as Data Processors.
In the event of transferring your data to third parties for any other purpose, the Data Controller shall inform and obtain the consent of the interested party beforehand.
In the case of using third party cookies, those provided for in the section on information on “cookies” on this website.
USER’S RIGHTS: Any person with regard to whom personal data is processed has the following rights:
- Right of access: allows the data subject to be informed whether his or her personal data are processed, to obtain information concerning the characteristics and scope of the processing carried out and to receive a copy of the data processed.
- Right of rectification: allows the data subject to correct errors and modify data that prove to be inaccurate or incomplete.
- Right of erasure: this right allows data to be erased, among other cases, when they are inappropriate or excessive for the purpose of processing, when the consent granted is revoked or when there is unlawful processing of the data, and provided that none of the cases of necessity of the processing legally provided for as exceptions to the right of erasure apply..
- Right of objection: allows the data subject, in certain circumstances and for reasons related to his or her particular situation, to prevent the processing of his or her personal data. The right to object includes the possibility for the data subject to object, at any time, to the processing of his or her data for the purposes of direct marketing, including profiling.
- Right to restriction of processing: allows the data subject to request, in certain cases, the restriction of processing to data retention operations and to processing operations consented to by the data subject or which are necessary for the formulation, exercise or defence of claims, the protection of the interests of other natural or legal persons, or in the event of the existence of certain reasons of public interest.
- Right to data portability: allows you to request that data processed in an automated manner and by virtue of the data subject’s consent, be delivered to you in digital format or directly transmitted to a third party data controller.
- Right not to be subject to automated individual decisions (including profiling): allows not to be subject to a decision based on automated data processing which produces legal effects for the data subject or similarly significantly affects him or her, and provided that the automated decision is not necessary for the conclusion or performance of a contract between the data subject and a controller, is authorised by law applicable to the controller or there is the explicit consent of the data subject himself or herself.
- Right to revoke the consent given to the processing of his/her data, which may be exercised at any time. The data subject shall have the right to withdraw his/her consent at any time, without this affecting the lawfulness of the processing prior to its withdrawal.
Also, and especially if you consider that you have not obtained full satisfaction in the exercise of your rights, we inform you that you may file a complaint with the national supervisory authority by contacting for these purposes the Spanish Data Protection Agency, C/ Jorge Juan, 6 – 28001 Madrid. (www.aepd.es).
lease indicate clearly, in the letter or in the subject line of the e-mail, the mention “EXERCISE OF PERSONAL DATA RIGHTS”.
I hereby inform you that the Data Controller has model application forms for the different rights available to interested parties, who may request them by any of the two means provided for the exercise of rights or by telephone and indicating a postal address or e-mail address to which they may be sent. The use of these forms is not obligatory.
Also, the data subject may, on a voluntary basis, use the forms for the exercise of the different rights published by the Spanish Data Protection Agency, which may be downloaded from the following address:
https://www.aepd.es/reglamento/derechos/index.html
Contact details to exercise your rights: (NODDO) Association of the Network of Technology Centres of Castilla y León G06990808 | C/ Lopez Bravo, 70., – 09001 BURGOS (Burgos) | 679529799 | info@noddo.es |
HOW DO WE PROTECT YOUR INFORMATION?: At (NODDO) Association of the Network of Technology Centres of Castilla y León we are committed to protecting your personal information. We use reasonably reliable and effective physical, organisational and technological measures, controls and procedures aimed at preserving the integrity and security of your data and guaranteeing your privacy. In addition, all staff with access to personal data have been trained and are aware of their obligations in relation to the processing of your personal data.
In the case of the contracts we sign with our suppliers, we include clauses requiring them to maintain the duty of secrecy with respect to the personal data to which they have had access by virtue of the order placed, as well as to implement the necessary technical and organisational security measures to guarantee the permanent confidentiality, integrity, availability and resilience of the systems and services for processing personal data.
All these security measures are reviewed periodically to ensure their adequacy and effectiveness. However, absolute security cannot be guaranteed and no security system is impenetrable so, in the event that any information under our control and under our control is compromised as a result of a security breach, we will take appropriate steps to investigate the incident, notify the Supervisory Authority and, where appropriate, those users who may have been affected so that they can take appropriate action.
USER RESPONSIBILITY: By providing us with your data, you warrant that you are over 14 years of age and that the data provided to the Data Controller are true, accurate, complete and up to date. To this effect, the user confirms that he/she is responsible for the veracity of the data communicated and that he/she will keep this information suitably updated so that it corresponds to his/her real situation, taking responsibility for any false or inaccurate data that he/she may provide, as well as for any damages, direct or indirect, that may be derived from it.