FUNDACIO PRIVADA INSTITUT D’ESTUDIS FINANCERS, hereinafter DATA CONTROLLER, is the Controller of the User’s personal data and informs him/her that these data shall be processed in accordance with the provisions of Regulation (EU) 2016/679 of 27 April (GDPR) and the Organic Law 3/2018 of 5 December (LOPDGDD), providing the following information on the processing:
Purpose of the processing: to maintain a commercial relationship with the User. The planned processing operations are:
Legal basis of the processing: the Data Subject’s consent.
Data retention criteria: data shall be stored for no longer than is necessary to maintain the purpose of the processing, and when such purpose is no longer necessary the data shall be erased with appropriate security measures to ensure the pseudonymisation of the data or their complete destruction.
Data disclosure: The data will not be disclosed to third parties, unless legally obliged to do so.
Rights of the User:
Contact information for exercising rights:
|FUNDACIO PRIVADA INSTITUT D’ESTUDIS FINANCERS.|
|Josep Tarradellas, 123 2 – 08029 BARCELONA (Barcelona).|
|Contact details of the DPO: Diagonal 131 – firstname.lastname@example.org|
The Users, by marking the corresponding boxes and entering data in the fields, marked with an asterisk (*) in the contact form or download forms, accept expressly and in a free and unequivocal way that their data are necessary for the supplier to meet their request, voluntarily providing their data in the remaining fields. The User ensures that the personal data provided to the CONTROLLER are true and is responsible for communicating any changes to them. The CONTROLLER informs and expressly ensures users that their personal data will not be transferred to third parties under any circumstances, and that whenever any type of personal data transfer is made, the express, informed and unequivocal consent of the Users will be requested in advance. All data requested through the website are mandatory, as they are necessary for the provision of an optimal service to the User. In the event that not all of the data is provided, there is no guarantee that the information and services provided will be completely adapted to the User’s needs.
That in accordance with the provisions of the current regulations on the protection of personal data, the CONTROLLER is complying with all the provisions of the GDPR regulations for processing the personal data for which they are responsible, and is manifestly complying with the principles described in Article 5 of the GDPR, by which they are processed in a lawful, fair and transparent manner in relation to the data subject and appropriate, relevant and limited to what is necessary in relation to the purposes for which they are processed. The CONTROLLER guarantees that all appropriate technical and organisational policies have been implemented to apply the security measures established by the GDPR in order to protect the rights and freedoms of Users, and has communicated the appropriate information for them to be able to exercise their rights and freedoms.