Privacy policy

This Privacy Policy regulates the use of the Internet portal service with https://aicy.eu/ whose responsible party for identification purposes is:

  • Responsible: Gestionet Multimedia S.L.
  • CIF: B95189932
  • Address: Ribera De Axpe, 11, edificio A, local 209, Erandio, 48950, Bizkaia
  • Telephone: (+34) 944 64 93 39
  • Mail: [email protected]

The Controller guarantees compliance with the current regulations on personal data protection, reflected in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons (GDPR) and in Organic Law 3/2018, of 5 December, on the Protection of Personal Data and the Guarantee of Digital Rights (LOPDGDD). It also complies with).

What principles do we apply when processing data?

In processing your personal data, the Controller will apply the following principles that comply with the requirements of the GDPR:

  • Principle of lawfulness, fairness and transparency: the Controller will always require consent for the processing of personal data which may be for one or more specific purposes about which the Controller will inform the User beforehand with absolute transparency.
  • Principle of data minimisation: The Controller shall request only the data strictly necessary for the purpose or purposes for which it is requesting them.
  • Principle of limitation of the storage period: The Controller shall keep the personal data collected for the time strictly necessary for the purpose or purposes of the processing.
  • Principle of integrity and confidentiality: The personal data collected will be processed in such a way that their security, confidentiality and integrity are guaranteed.
  • The Controller takes the necessary precautions to prevent unauthorised access or improper use of its users’ data by third parties.

Purpose, why do we process your data?

The personal data and the purpose of the processing by the Data Controller are different depending on the information capture system:

  • Contact forms: The Data Controller requests personal data which may include: name and surname, email address, telephone number and website address in order to respond to users’ queries.

The completion of the registration form is compulsory in order to access and enjoy certain services offered on the website. Failure to provide the personal data requested or not accepting this data privacy policy means the impossibility of registering, subscribing or participating in any of the promotions in which personal data is requested.

Origin of the data. Where do we obtain your data from?

The personal data collected comes directly from the information provided by the interested parties through the website of the Data Controller. To browse the website it is not necessary to provide any personal data.

The Data Controller obtains your data:

  • When contacting through the contact forms.

Legitimation, what is the legitimacy for the processing of your data?

The legal basis for the processing of your data will be based on:

  • The data subject’s consent to the processing of their data, in accordance with Article 6. 1. a) of the European General Data Protection Regulation. In this case, the processing will be carried out in response to the user contacting the Data Controller via instant messaging systems, as well as through the forms on the website of the Data Controller by enabling the user to tick the box «I have read and accept the privacy policy».
  • The necessary performance of a contract to which the data subject is a party or for the implementation at his or her request of pre-contractual measures, in accordance with Article 6. 1. b) of the European General Data Protection Regulation.

Recipients To whom do we disclose your data?

Personal data will not be transferred except in compliance with legally established obligations or to support the services linked to this processing.

How long will we keep your data for?

We will keep your personal data for at least 5 years if you are a customer and for the strict fulfilment of the legal obligations established in the regulations.

If you are not a customer, we will keep your data for the minimum time necessary to manage our relationship.

Cookies policy

In order for this website to function correctly, it needs to use cookies, which is information that is stored in your web browser.

You can consult all the information relating to the policy of collection and treatment of cookies on the Cookies Policy page.

Rights, what are your rights when you provide us with your data?

As a consequence of the processing of your personal data by the Data Controller, current legislation grants you a series of rights. Below, we offer you a summary explanation of each right, in order to make it easier for you to exercise them:

  • Right of access: you will have the right to know what personal data we process about you and the purposes for which we process it.
  • Right of rectification: Your data will always be yours, and as such, you may ask us to rectify it at any time if the data in our records is incorrect.
  • Right of deletion: You may request, at any time, that your personal data be deleted from our files. However, as indicated in the section on data retention above, please note that, in certain circumstances, compliance with current legislation may prevent the effective exercise of this right.
  • Right to object: you may object to the processing of your data in relation to any of the purposes for which we process your data, in accordance with the privacy policies applicable in each case.
  • Right to restrict processing: you may request the restriction of processing in the following cases:
    • If you believe that the data we hold about you is not correct or accurate;
    • If you believe that we are not lawfully processing your data, but you would prefer us to limit the processing of your data to erasure;
    • If the data we hold is no longer required by us for the purpose for which we collected it, but you need us to retain it in order to pursue legal claims;
    • If, having exercised your right to object to any processing, you have not yet received a response from us.
  • Right to data portability: you have the right, where technically feasible and reasonable, to request that personal data that you have provided directly to us be transferred to another data controller. If we are able to do so, we will provide your data directly to that other controller, but if not, we will provide it to you in a standard format.

Where we process your data on the basis of your consent, you may withdraw your consent at any time, without this having any consequences for you other than, depending on the right exercised, not being able to provide you with certain services.

You may exercise your rights by contacting the Data Controller by any of the following means:

  1. By e-mail addressed to the relevant Data Controller (referred to in the heading of the document).
  2. By postal mail addressed to the relevant Data Controller (referred to in the heading of the document).

If you do not wish to exercise a specific right, but you have the need to make a query or suggestion in relation to the processing of your personal data, you may also contact the relevant Data Controller, (referred to in the heading of the document).

Please note that you may always, in any case, lodge a complaint with the competent data protection authority if you consider that we have not processed your data lawfully or that we have not complied with your requests or rights.

In Spain, this Competent Authority is the Spanish Data Protection Agency.

Minor consents, what happens if you are a minor?

In the event that some of our services are specifically aimed at minors under fourteen years of age, we will request the consent of parents or guardians for the collection of personal data or, where appropriate, for the automated processing of data in accordance with article 7 of the LOPDGDD.

Accuracy, veracity and security of the data, how do we treat your data?

The User is solely responsible for the veracity and correctness of the data included, exonerating us from any responsibility in this regard. Users guarantee and are responsible, in any case, for the accuracy, validity and authenticity of the personal data provided, and undertake to keep them duly updated. The user agrees to provide complete and correct information in the registration or subscription forms. We are not responsible for the veracity of the information that is not of our own elaboration and of which another source is indicated, so neither do we assume any responsibility for hypothetical damages that may arise from the use of such information.

We also reserve the right to update, modify or delete the information contained on the website and may even limit or deny access to such information.

We shall not be liable for any damage or harm that the User may suffer as a result of errors, defects or omissions in the information provided by the responsible party, provided that it comes from outside sources.

The data will be treated confidentially and will be subject to appropriate technical and organisational security measures to prevent its alteration, loss, processing or unauthorised access.

You may lodge a complaint with the Spanish Data Protection Agency, especially when you have not obtained satisfaction in the exercise of your rights, at the postal and/or electronic address indicated on the page www.aepd.es.