In order to browse on the Website the Users have no need to reveal their personal data. In certain cases however the CTC may require certain data so as to be able to offer them the desired services.
2. PERSONAL DATA TREATMENT
2.1. Who is responsible for personal data treatment?
Once Users fill in the Registration Form or notify their personal data by any other means, the CTC will be responsible for the treatment of the personal data that they have given us with the aim of being able to administer the providing of the services required.
2.2. Which personal data are treated?
When they fill in the Registration Form, Users must provide the personal data which are essential for the providing of the services available on the Website.
Likewise, on the occasion of their interactions with the CTC they may be asked for additional identification, financial, or professional data with the aim of administering the carrying out of the services required. The Users are aware and accept that failure to provide certain personal data will prevent the CTC from providing the services linked to these data.
The CTC may also gather information on the Users’ use of the Website as from their browsing on the same data may be obtained on their IP address, the browser type, and the time of access to and the addresses of the websites from which the User has had access, in addition to the browsing data. Collecting this information allows the CTC to adapt the content, the offer, and the browsing of each User to improve our services and user experience on the Website, to identify possible fraudulent use, and also to generate statistics on the use and efficiency of our Website.
Users must notify the CTC of any change in the data that have been provided, answering in any case for the veracity and accuracy of the data supplied at all times.
In accordance with current legislation on personal data protection and in particular with that established in (EU) Regulation 2016/679 of 27th April 2016 on the protection of natural persons as far as personal data treatment and the free circulation of these data are concerned (the General Data Protection Regulations or Regulación General de Protección de Datos, RGPD), the CTC has drawn up and will maintain the corresponding register of personal data treatment activities.
2.3. What are the objectives of personal data treatment?
The data which the CTC gathers by various means (website, e-mail, e-forms, or forms and documents on paper) as part of its activities may be treated with the following objectives:
- Adminstering and processing any kind of request for information in relation to the services we offer.
- The drawing up of contracts (service agreements and contracts of employment).
- Keeping our clients informed of and interested in our services and in those subjects that we consider to be of professional interest.
- Personal selection processes for jobs
2.4. What is the legitimation for personal data treatment?
- The legal basis for data treatment for purposes (a) and (b) is the carrying out of the agreement for the providing of services.
- The legal basis for data treatment for purposes (c), (d), and (e) is the express consent required of the Users by means of the mechanism prepared for the purpose, without the withdrawal of the same conditioning the carrying out of the agreement for the providing of services under any circumstances.
2.5. For how long will personal data be kept?
The CTC informs the Users that their personal data will kept for the time strictly necessary in order to comply with the purposes of the treatment for the use of which they have been provided, as long as the User has not revoked his or her consent and in any case following as a criterion the principle of the minimisation of the data contemplated in the regulations applicable.
In particular the personal data provided by the Users will be kept for the period determined on the basis of the following criteria: (i) the legal obligation of storage; (ii) the duration of the contractual relationship and the addressing of any responsibilities that may derive from said relationship; and (iii) the request for elimination by the interested party in those cases in which this is appropriate.
In consequence, when their use is not necessary the personal data will be blocked and will only be available to the competent authorities for the time and for the legal purposes established in the applicable regulations. Once this period has passed they will be eliminated.
2.6. Who has access to the personal data?
The optimum providing of the services offered on the Website may require other third parties who provide services to the CTC to have access to the personal data provided by the Users as parties responsible for the treatment.
The personal data will be notified to these third parties while respecting in any case the applicable legislation on personal data protection, with the sole purpose of administering the providing of the services and without the need for each first notification to be communicated to the interested parties. Access to personal data by third parties will be regulated in the corresponding agreement for the commissioning of the treatment required by the regulations applicable.
In addition to the foregoing, the CTC may transfer or notify personal data in order to address its obligations with the Public Administrations in those cases in which this is required in accordance with current legislation, and if appropriate equally to other bodies such as State Security Corps and Forces and to legal bodies.
2.7. What rights do Users have?
Users may exercise their rights of access, rectification, elimination, and opposition, and also those of the limitation and portability of their data, in compliance with that established in current data protection regulations.
Taking into account that the exercising of the same is very personal, the person affected must provide proof of his or her identity. These rights must be exercised in the form of a written notification signed by the holder of the data and including his or her address, attaching a copy of his or her Spanish ID or other document providing proof of identity, and sent to FUNDACION CENTRO TECNOLOGICO DE COMPONENTES at the electronic mail address firstname.lastname@example.org or in the form of a written notification to the following postal address: Calle Isabel Torres nº 1, (Post Code 39011), Santander, Cantabria, Spain.
Likewise the Users may oppose the sending of commercial notifications by the CTC and withdraw their consent without this affecting the lawfulness of the treatment of their personal data for other purposes.
The CTC informs the Users that they have the possibility of making a claim to the Spanish Data Protection Agency if they understand that they have not been attended in a satisfactory manner in the exercising of the rights mentioned in this section.
2.8. What security measures have been implemented?
The CTC undertakes to comply with its obligation of secrecy regarding the personal data and its duty of storing them and will take the necessary measures to avoid their alteration, loss, or unauthorised treatment or access in accordance with that set down in the applicable regulations.
The CTC has taken the technical and organisational security measures which are necessary to guarantee the security of the personal data of the Users and to avoid as far as possible their alteration, loss, or unauthorised treatment or access, taking into account the state of the technology, the nature of the personal data treated, and the risks to which they are exposed.
Concerned about privacy insofar as the reinforcing of the confidentiality and integrity of information within its organisation is concerned, the CTC continuously maintains the supervision, control, and assessment of its processes in order to ensure that the privacy and security of the information is respected in accordance with international standards.
2.9. Websites of third parties
The Website may include hyperlinks which may direct the Users to other websites of third parties, the privacy policies of which are foreign to the CTC. If the Users are going to provide personal data by means of such websites, they must decide in advance whether they accept their privacy policies and cookies as these may be different from ours. The CTC does not guarantee and accepts no responsibility for the lawfulness, reliability, usefulness, veracity, or updating of such websites or their privacy practices.
3. SENDING COMMERCIAL NOTIFICATIONS
The CTC may send commercial notifications related to the service it offers to the Users, provided that the latter have given their express and specific consent by ticking the box provided for the purpose or by means of any other manifestation of express consent.
The User may revoke at any time the consent given for the sending of commercial notifications by sending an e-mail to email@example.com declaring that he or she does not wish to continue receiving this type of notification. Likewise this possibility will be offered to the User in each commercial notification he or she receives by e-mail.