Privacy policy
Your privacy is very important to us. It is our commitment at BETA Spain to respect and protect the privacy and security of your personal information that we may collect from you.
We only ask for personal information when we truly need it to provide a service to you. The information you share with BETA Spain allows us to provide you with the best experience with our products and services. We collect it by fair and lawful means, with your knowledge and consent. We also let you know why we are collecting it and how it will be used.
This Privacy Policy explains what data is collected on behalf of BETA Spain, as well as how and when it is collected, used, stored and deleted
1. About this Privacy Policy
1.1 This privacy policy outlines the relationship between the Bringing Europeans Together Association Spain, duly registered at Registro Nacional de Asociaciones, Group 1, Section 1, National Number 599013, represented by Eduardo Rafael Roca López de Hierro (hereinafter referred to as “the Association”), acting as the Data Controller and Data Processor, and you, a natural person and a possible member of BETA Spain, acting as a Data Subject with certain rights and obligations, regarding the processing of your personal data.
1.2 For general queries the Association may be reached at spain.beta@gmail.com or at beta-europe.org/member/beta-espana/. The Data Protection Officer of the Association is David Sánchez Lorenzo and they may be contacted via spain.beta@gmail.com
1.3 The terms used within are used in accordance with the definition found in Article 4 of the EU Regulation 2016/679, also known as the General Data Protection Regulation (hereinafter referred to as the GDPR).
1.4 These terms are binding upon you and the Association, and this document cannot serve as a foundation for a claim of membership.
2. What data is collected
2.1 Data collected includes all of the personal information that you disclose during the registration process and throughout your application and participation in the Association. This may include but not limited to:
- 2.1.1 Full name,
- 2.1.2 Date and place of birth,
- 2.1.3 Contact, educational and professional details.
2.2 This may also include among others incidental or meta information such as but not limited to:
- 2.2.1 Dates of registration,
- 2.2.2 Whether or not you participated in the MEU and in what capacity,
- 2.2.3 Documents that you produce as part of your potential membership in BETA Spain.
3. Purpose of collection
3.1 Data is collected for the purpose of facilitating your registration and membership in BETA Spain. It is used to identify you as a member and then to enable you to engage in all the activities of the Association such as but not limited to: contacting other members, working on projects, and participating in projects and events of the Association.
3.2 Failing to provide authentic personal data may result in the failure of facilitation and expulsion by the Association from the programme.
3.3 At times the Association may process your anonymised data in accordance with its legitimate interest in order to promote the interests of the Association and the conference. This excludes the processing of personal data for financial interests.
4. Legal foundations of processing
4.1 Pursuant to Article 6(1)(b) of the GDPR, the Association lawfully processes data based on the contract that you have entered into by completing and and agreeing to the terms and conditions of the registration, and it is processed in order to fulfill that contract.
4.2 Pursuant to Article 6(1)(c) of the GDPR, the Association lawfully processes data based on its legal obligations to which the Association is subject.
4.3 Pursuant to Article 6(1)(f) of the GDPR, your data may be processed based on the Legitimate Interest of the Association such as the marketing or promotion of the Association.
5. How is data processed
5.1 Data is processed by the Association and its sub-processors with whom the Association has entered into a valid agreement on the processing of data in accordance with legislation. The sub-processors are listed in the annex of the privacy policy.
5.2 Processing is done primarily through manual record keeping in addition to third party automated means for platform facilitation such as data retention and data collection. However, this does not involve automated decision making processes as explained in section 9.1.
6. Data retention
6.1 Data is retained for as long as it is necessary for the performance of the registration and determination of membership. Data is retained indefinitely, regardless of whether or not membership selection was successful, however the right to removal as described in section 10.1 may be exercised at your discretion.
6.2 For personal data collected via the contact form, data shall be retained until the full satisfaction of the original query and shall be removed no longer than 10 working days after such completion.
7. Data security
7.1 Data is protected by industry standard security mechanisms, and is being handled throughout the duration of its processing with the intention to minimise all risks possible. This includes the use of encryption and the regular testing, assessing, and evaluating of the effectiveness of technical and organisational measures for ensuring the security of processing and retention of data.
7.2 The number of persons with access to data is minimised to those necessary, and persons with access to data are allowed to process data under the instruction of the Association so as to minimise the risk of accidental or unlawful destruction, loss, alteration, unauthorised disclosure of or access to, personal data.
7.3 In the possibility that a breach has taken place that resulted in the exposure of personal data, the Association shall notify both the competent supervisory authority and the data subject of the data breach within 72 hours of finding out about the incident.
8. Transfers
8.1 Personal data may at times be transported to a third party outside of the European Economic Area. In the case that happens the Association has entered into an agreement with the third party in order to guarantee the transfer of personal data which is subject to appropriate safeguards as in accordance with Article 46 of the GDPR. The third parties to which your data may be transferred are listed in the annex of the privacy policy.
9. No automated decision-making means
9.1 The Association does not employ any means of automated decision making on the basis of the personal data gathered.
10. Data subject rights
10.1 In accordance with Chapter III of the GDPR, you have the following rights over the processing of your personal data:
- The right to access,
- The right to rectification,
- The right to erasure,
- The right to restrict processing,
- The right to object to processing,
- The right to data portability,
- The right to withdraw consent
- The right to lodge a complaint with a supervisory authority.
10.2 To exercise any and all of the abovementioned rights, please contact the Data Protection Officer, as indicated in section 1.2.
10.3 The right to withdraw consent is applicable to the extent that the processing in question is occurring on the legal basis of consent. This will not invalidate the lawfulness of processing before the withdrawal of consent.
10.4 You have the right to object to the processing of your personal data in the case it is being done so incorrectly or done on the basis of the legitimate interest of the Association. This does not extend to the processing done under section 4.3 wherein the Association must fulfil its legal obligations.
10.5 You have the right to at any time rectify any and all inaccuracies of personal data or to complete any and all incomplete categories of personal data.
10.6 Withdrawing consent, objecting, or otherwise requesting to restrict the processing of data that is done in order to fulfil the registration and participation as per section 4.1, may result in the deterioration of services and the Association bears no responsibility for the difficulties brought on by such requests. If such requests would result in the impossibility of exercising the entered into agreement between you and the Association, the Association shall notify you without undue delay.
10.7 The exercise of your right to portability shall be completed without undue delay on the side of the Association, free of charge, notwithstanding any administrative costs incurred in retrieving any data from third parties that shall be charged to the data subject directly. Any data shall be given in a user accessible format. Any repeat exercise of such right may incur administrative costs to the data subject.
10.8 You have the right to lodge a complaint with the relevant data protection authority, the Agencia Española de Protección de Datos, if you feel that your data has been handled in the breach of the law or in breach of this policy. We would urge you to first contact the Association or the Data Protection Officer to clarify any potential queries. If after such a request you are still unsatisfied, you may reach the authority via aepd.es/es.
Annex
List of third parties with which the Association cooperates and has signed a Data Processing Agreement:
- BETA Europe a.i.s.b.l., 60 Rue de la Luzerne 1030 Brussels, Belgium.
- Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043 USA
- YouTube 901 Cherry Avenue, San Bruno, California, USA
List of third parties that are authorised to transfer data outside of the EEA
- Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043 USA
- YouTube 901 Cherry Avenue, San Bruno, California, USA
Especificaciones para esta página web
Who are we
Nuestra dirección web es: https://betaspain.es.
Comments
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
Media
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Cookies
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select "Remember Me", your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Who we share your data with
If you request a password reset, your IP address will be included in the reset email.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.