Last updated on May 11, 2021
Details of the owner of the website:
| COMPANY NAME | ASOCIACIÓN BASQUE HEALTH CLUSTER |
| TAX ID NUMBER | G95585055 |
|
ADDRESS: POSTAL |
ASTONDO BIDEA S/N EDIF 612 PARQUE TECNOLOGICO 48160, DERIO (BIZKAIA) |
|
ADDRESS: |
info@basquehealthcluster.org |
| PHONE NO. | 946 427 728 |
|
REGISTER OF ASSOCIATIONS |
……………………….. |
|
MAIN PURPOSE |
Biotechnology applied to health and the agri-food sector |
Data protection
In accordance with current and applicable legislation on personal data protection, we hereby inform you that your data shall be incorporated into a data processing system owned by ASOCIACIÓN BASQUE HEALTH CLUSTER with tax identification number G95585055 and registered office at ASTONDO BIDEA S/N EDIF 612 PARQUE TECNOLOGICO 48160, DERIO (BIZKAIA), and that the respective purposes, retention periods and lawful bases are listed below. For those processing operations that so require, we also hereby inform you of the possible creation of profiles and automated decisions, and of the possible assignments and international transfers that ASOCIACIÓN BASQUE HEALTH CLUSTER plans to carry out:
| Website management |
Purpose: The processing and management of data required for the functionality of the website. Retention period: for the duration of the consent given. Lawful basis: The consent of the data subject. Type of data: Purely identifying data. Assignments: Not foreseen. International transfers: Not foreseen. Creation of profiles: Not foreseen. |
| Web form |
Purpose: Management and processing of the obligations and duties arising from the compliance with the regulations to which the entity is subject. Retention period: for the duration of the consent given. Lawful basis: The consent of the data subject Type of data: Purely identifying data Assignments: None International transfers: Not foreseen Creation of profiles: Not foreseen |
| Regulatory compliance management | Purpose: Management and processing of the obligations and duties arising from compliance with the regulations to which the entity is subject Retention period: documents shall be retained until the statute of limitations has expired for any liability claims Lawful basis: Compliance with a law Type of data: Purely identifying data Assignments: where necessary, your data shall be communicated to bodies and/or public administrations with competence in the matter in order to comply with the obligations established in the applicable regulations. Furthermore, we hereby inform you that the lawful basis for the assignment is to comply with the obligations established in the applicable regulations International transfers: Not foreseen Creation of profiles: Not foreseen |
| Commercial activities | Purpose: To collect, register and process data for the purposes of advertising and commercial prospecting of our products and/or services
Retention period: for the duration of the consent given Lawful basis: The consent of the data subject Type of data: Purely identifying data Assignments: None International transfers: Not foreseen |
| Newsletters |
Purpose: To collect, register and process data for the marketing, to send the Newsletter to which you have subscribed. Retention period: for the duration of the consent given Lawful basis: The consent of the data subject Type of data: Purely identifying data Assignments: None International transfers: Not foreseen |
| Job offer management | Purpose: To register and process candidates’ data for recruitment of staff for vacant jobs in partner entities and to manage job offers. Retention period: for the duration of the consent given Lawful basis: The consent of the data subject Type of data: Purely identifying data Assignments: where necessary, your data shall be communicated to partner entities with the aim of managing job offers and sending candidates to partner companies. Your consent is considered to be the lawful basis for the assignment. International transfers: Not foreseen Creation of profiles: Not foreseen |
We also inform you that you can contact the Data Protection Officer by writing to the following e-mail address dpd.cliente@conversia.es or by ringing 902 877 192.
Rights of data subjects
ASOCIACIÓN BASQUE HEALTH CLUSTER informs users that they may exercise their rights of access, rectification, limitation, suppression, portability and opposition to the processing of their personal data before the Data Controller, and the right to withdraw their consent.
- Right of Access: This is the user’s right to obtain information about their specific personal data and the processing that has been or is being carried out, as well as the information available on the origin of said data and the transfers made or planned for it.
- Right of Rectification: This is the right of the data subject to have any data found to be inaccurate or incomplete amended. This can only be done in relation to information that is under the control of the APP, for example, deleting comments published on the website itself, images or web content containing the personal data of the user.
- Right to Restriction of Processing: This is the right to restrict the purposes of the processing originally intended by the data controller.
- Right to Erasure: This is the user’s right to delete their personal data, with the exception of the provisions of the GDPR itself or other applicable regulations that determine the obligatory nature of their retention, in due time and manner.
- Right to Data Portability: The right to receive the personal data provided by the user in a structured, commonly used and machine-readable format and the right to transmit those data to another controller.
- Right to Object: This is the user’s right not to have their personal data processed or to stop ASOCIACIÓN BASQUE HEALTH CLUSTER from processing them.
In order to exercise any of the rights described above, the following requirements must be met:
- Submission of a letter to ASTONDO BIDEA S/N EDIF 612 PARQUE TECNOLOGICO 48160, DERIO (BIZKAIA) (for the attention of ASOCIACIÓN BASQUE HEALTH CLUSTER) or an e-mail to info@basquehealthcluster.org.
- The letter sent by the data subject requesting the exercising of their rights must meet the following legal requirements:
- Name, surname(s) of the data subject and a copy of their national ID card/foreigners’ ID card (DNI/NIE) or any other identifying document. In exceptional cases where representation is permitted, it will also be necessary to identify the person representing him/her by the same means, together with a document accrediting the representation. A photocopy of the ID card may be substituted provided that proof of identity is provided by another legally valid means.
- Request in which the application is made. (Exercise under which the information to which access is sought is requested). If you do not refer to a specific file, we will provide you with all the information we have on your personal data. If you request information on a specific file, only the information on that file. Information requested in relation to a third party can never be provided. If you apply by telephone, you will be instructed to do so in writing and will be informed of how to do so and the address to which it should be sent. Information will never be given to you over the phone.
- Address for notification purposes.
- Date and signature of the applicant.
- Documents supporting the request you are making.
- The data subject may use any means that allow them to prove that their request has been sent and received.
Lastly, we inform you that you have the right to file a complaint with the Spanish Data Protection Agency in the event that you become aware of or consider that an event may involve a breach of the applicable data protection regulations.
ASOCIACIÓN BASQUE HEALTH CLUSTER undertakes to adopt the necessary technical and organisational measures, in accordance with the level of risk involved in the processing carried out by them as indicated in the section on the terms and conditions of use, in such a way as to ensure their integrity, confidentiality and availability.