In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation – GDPR), RISCO CONSULTORIA DE INNOVACIÓN SL, informs users of the DestekPro application (hereinafter, the Application), about the processing of personal data, which they have voluntarily provided during the registration process, access and use of the service.
1. IDENTIFICATION OF THE DATA MANAGER
RISCO CONSULTORIA DE INNOVACIÓN SL, with CIF/NIF no.: B88130455 and address for notification purposes at Centro de Apoyo a la Innovación Tecnológica (CAIT) UPM, Campus UPM de Montegancedo – 28223 Pozuelo de Alarcón, Madrid and registered in the Commercial Register of Madrid, (hereinafter, the Data Controller), is the entity responsible for the processing of the data provided by the clients of the Application (hereinafter, the User/s).
2. PURPOSE OF DATA PROCESSING
In order to register, access and subsequently use the Application, the User must voluntarily provide personal data (essentially, identification and contact data), which will be incorporated into automated supports owned by RISCO CONSULTORIA DE INNOVACIÓN SL.
The collection, storage, modification, structuring and, where appropriate, elimination of the data provided by Users shall constitute processing operations carried out by the Data Controller, with the aim of guaranteeing the correct functioning of the Application, maintaining the service provision and/or commercial relationship with the User, and for the management, administration, information, provision and improvement of the service.
The personal data provided by the User -especially electronic mail or e-mail- may also be used to send newsletters, as well as commercial communications of promotions and/or advertising of the Application, provided that the User has previously given their express consent to receive these communications electronically.
The processing of the User’s data is carried out on the following legal bases that legitimise the same:
The request for information and/or the contracting of the services of the Application, the terms and conditions of which will be made available to the User in any case, in advance, for their express acceptance.
In the event that the User does not provide RISCO CONSULTORIA DE INNOVACIÓN SL with his/her data, or does so erroneously or incompletely, it will not be possible to proceed with the use of the Application.
4. CONSERVATION OF PERSONAL DATA
The personal data provided by the User will be kept in the systems and databases of the Data Controller for as long as the User continues to use the Application, and as long as the User does not request its deletion.
In order to purge the possible responsibilities derived from the processing, the data will be kept for a minimum period of five years.
The data shall not be communicated to any third party outside RISCO CONSULTORIA DE INNOVACIÓN SL, unless legally obliged to do so or, in any case, with the prior consent of the User.
On the other hand, RISCO CONSULTORIA DE INNOVACIÓN SL may give access to or transmit the personal data provided by the User to third party service providers, with whom it has signed data processing agreements, and who only access said information in order to provide a service for and on behalf of the Controller.
6. DATA RETENTION
RISCO CONSULTORIA DE INNOVACIÓN SL, informs the User that, as a data hosting service provider and by virtue of the provisions of Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI), it retains for a maximum period of 12 months the information necessary to identify the origin of the hosted data and the time at which the service was initiated.
The retention of this data does not affect the secrecy of communications and may only be used within the framework of a criminal investigation or for the safeguarding of public security, being made available to judges and/or courts or the Ministry that so requires.
The communication of data to the State Security Forces and Corps shall be made in accordance with the provisions of the regulations on personal data protection, and with the utmost respect for the same.
7. PROTECTION OF THE INFORMATION STORED
The Data Controller adopts the necessary measures to ensure the security, integrity and confidentiality of the data in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.
Although the Controller makes backup copies of the content hosted on its servers, it is not responsible for the accidental loss or deletion of data by Users. Likewise, it does not guarantee the total replacement of data deleted by Users, as the aforementioned data may have been deleted and/or modified during the period of time elapsed since the last backup copy.
The services provided or rendered through the Application, except for specific backup services, do not include the replacement of the contents kept in the backup copies made by the Data Controller, when this loss is attributable to the User; in this case, a fee will be determined according to the complexity and volume of the recovery, always with the prior acceptance of the User. The replacement of deleted data is only included in the price of the service when the loss of the content is due to causes attributable to the Controller.
8. EXERCISE OF RIGHTS
RISCO CONSULTORIA DE INNOVACIÓN SL, informs the User that he/she has the rights of access, rectification, limitation, suppression, opposition and portability, which may be exercised by means of a request addressed to the following e-mail address: [email protected]
Likewise, the User has the right to revoke the consent initially given, and to lodge claims of rights before the Spanish Data Protection Agency (AEPD).
9. COMMERCIAL COMMUNICATIONS BY ELECTRONIC MEANS
In application of the LSSI (Information Society Services Act), RISCO CONSULTORIA DE INNOVACIÓN SL, shall not send advertising or promotional communications by electronic mail or any other equivalent means of electronic communication which have not been previously requested or expressly authorised by the recipients thereof.
In the case of users with whom there is a previous contractual, legal or service relationship, the Data Controller is authorised to send commercial communications referring to products or services of the Data Controller that are similar to those that were initially contracted with the client.
In the event that the User wishes to unsubscribe from receiving the aforementioned communications, he/she may do so by sending his/her wishes by e-mail to the following address: [email protected]