privacy policy

política de privacidad

As a user, you must carefully read this Legal Notice each time you intend to use the Website, as it may be subject to modifications. The City Council of Santiago de Compostela (hereinafter also the PROVIDER or the CONTROLLER) reserves the right, at any time and without prior notice, to modify the content and information on the website, as well as these General and Specific Conditions, without any obligation to provide prior notice or inform users; publication on the website being sufficient. In compliance with the GDPR (EU Regulation 2016/679 of April 27, 2016), Organic Law 3/2018, of December 5, on the Protection of Personal Data and the guarantee of digital rights and other current legal regulations on the matter, we inform you that personal data will become part of our processing activities.

DATA OF THE PERSON IN CHARGE

City Council of Santiago de Compostela P1507900G. Pazo de Raxoi, Praza do Obradoiro, Santiago de Compostela (A Coruña).

The processing we carry out, as a result of the collection of your data through the forms on the website, or that you provide us by other means, will have the following purposes:

  • Information about the products and/or services offered by THE CONTROLLER, displayed in the content of its pages.
  • Respond to requests for information, questions, complaints, or suggestions requested by the User.
  • To send information via newsletter, internet, SMS, fax, or any other means. The user must give their consent for these communications by checking the appropriate box at the bottom of the forms provided for submitting their data.

The signatory guarantees the accuracy of the data provided and undertakes to communicate any changes to the data. Failure to provide the requested personal data or failure to accept this data protection policy will prevent the user from subscribing, registering, or receiving information about the CONTROLLER’s products and services. The signatory has the right to withdraw the consent given at any time. Withdrawal of consent will not affect the lawfulness of the processing previously carried out.

PRINCIPLES APPLIED TO DATA PROVIDED BY THE USER

  • Principle of legality, fairness, and transparency: We will always require your consent to process your personal data for one or more specific purposes, which we will inform you about in advance with absolute transparency.
  • Purpose limitation: Collected for specific, explicit, and legitimate purposes, and will not be further processed in a manner incompatible with those purposes.
  • Data minimization principle: We will only request data strictly necessary in relation to the purposes for which we need it. The minimum amount possible.
  • Accuracy principle: Data will be accurate and, if necessary, updated.
  • Retention limitation principle: Data will be kept for no longer than necessary for the purposes of processing, depending on the purpose.
  • Integrity and confidentiality principle: Your data will be processed in a way that guarantees adequate security and confidentiality. You should know that we take all necessary precautions to prevent unauthorized access or misuse of our users’ data by third parties.
  • Proactive Accountability: THE CONTROLLER will be responsible for compliance with the stated principles, and we will adopt the technical and organizational measures that allow us to demonstrate compliance.

LEGITIMATION OF THE TREATMENT

The CONTROLLER is authorized to process personal data for the purposes indicated, based on:

  • Consent granted by the data subject by signing the relevant forms and checking the box provided for this purpose.
  • For compliance with legal obligations, if any, applicable to the data controller.

The data subject has the right to withdraw the consent given at any time. Withdrawal of consent will not affect the lawfulness of the processing previously carried out.

CONFIDENTIALITY AND RECIPIENTS

The CONTROLLER guarantees that it has implemented appropriate technical and organizational measures to ensure the security established by applicable law and prevent the alteration, loss, or theft of personal data, as well as any unauthorized processing or access, and to protect the rights and freedoms of users. It also undertakes to respect their confidentiality and to process data in accordance with its intended purposes. It also undertakes to comply with the duty of confidentiality. Furthermore, it guarantees that processing and recording in files, programs, systems, or equipment, premises, and centers comply with the integrity and security requirements and conditions established in current regulations. Notwithstanding the foregoing (taking into account at all times the vulnerabilities of current technology, as well as the risks of varying probability and severity associated with each type of processing), Internet security measures are not impregnable, and leaks may occur due to malicious acts by third parties. Data will be communicated to:

  • Public Administrations, where applicable.
  • Data processors.

Data will not be transferred to third parties, except by legal obligation. Should it become necessary to transfer data to third parties, prior notification will be provided requesting express consent for such transfer. The entity RESPONSIBLE for data processing, as well as those involved in any phase of processing and/or the entities to whom the data has been communicated, are required to observe professional secrecy and adopt the necessary levels of protection and technical and organizational measures within their reach to guarantee the security of personal data, avoiding, as far as possible, unauthorized access, unlawful modification, theft, and/or loss of data, in order to ensure the appropriate level of security for the CONTROLLER’s files, according to the nature and sensitivity of the data provided by users of this Website.

INTERNATIONAL TRANSFERS

No international transfers will be made without your consent.

DATA RETENTION PERIOD

Personal data will be retained to respond to the user’s request and will be deleted from our system once it has been addressed. If a contractual relationship is initiated, once it has been fulfilled, your personal data will be stored and duly blocked, in accordance with current sector regulations. Withdrawal of consent will not affect the lawfulness of any processing previously carried out.

DATA COLLECTION FORMS

USERS WHO DO NOT AGREE WITH THIS POLICY SHOULD NOT ENTER ANY DATA THROUGH THIS WEBSITE. The use of certain services or requests to the CONTROLLER will be conditional on prior completion of the corresponding User registration form. All information provided by the User through the Website forms for the aforementioned or any other purposes must be truthful. For these purposes, the User guarantees the authenticity of all data provided and will keep the information provided up to date. The User is responsible for any false or inaccurate information provided and for any damages caused to the CONTROLLER. In data collection forms, fields marked with an asterisk (*) are mandatory, indicating which data are required. Therefore, if the User does not provide the corresponding data, the CONTROLLER may leave the request unanswered and/or deny the corresponding service. By providing and entering the data and checking the box provided for this purpose, the user gives unequivocal consent to the CONTROLLER to process the data provided for the purposes mentioned above. Please check the consent boxes before submitting the forms. This way, we obtain consent and have proof of it:

[] * I have read and accept the Legal Notice and Privacy Policy

[] Check this box if you wish to receive commercial information esta casilla si desea recibir información comercial

DECLARATION OF COMMITMENT TO THE PREVENTION AND ERADICATION OF DIGITAL BULLYING

We are committed to data protection and gender equality, and therefore, we pledge to ensure respect for the processing of personal data and the principles set forth in data protection regulations, specifically in Article 5 of the General Data Protection Regulation. We thus undertake the commitment to prevent, raise awareness, and respond to any cases of cyberbullying we become aware of, whether workplace or sexual. Through this declaration of commitment, we raise awareness of the risks posed by the Internet and ICTs in relation to this type of conduct and promote a culture of respect for individual privacy and awareness in the use of personal data. We express our profound rejection of workplace bullying and sexual or gender-based harassment and express our commitment to preventing and eradicating these behaviors. We are strongly opposed to the use of personal data that involves unlawful data processing, which could undermine employees’ right to privacy and confidentiality. We are firmly committed to the protection of personal data, which is necessary to safeguard the fundamental right to honor and personal and family privacy. Consequently, we respect the principles of Article 5 of the General Data Protection Regulation and will minimize the processing of our employees’ personal data that may increase the risk of conduct constituting harassment. In any case, we will take into account the potential gender impact of any processing carried out.

USER DATA SUBJECT TO PROCESSING

The following data will be processed through the forms on this website: Name, surname, ID number, nationality, postal address, email address, telephone number, and data provided by the data subjects themselves. If the Data Subject provides, at any time, data from third parties, the Data Subject declares that it has their consent and undertakes to provide them with the information contained in this document.

We inform you that the images and photographs of people (including those of minors) that the CONTROLLER may publish on the website are the property of THE CONTROLLER, and that, in order to obtain them, the prior consent of the data subject (and/or their parents, guardians, or legal representatives) has been obtained. Users are advised that they may not use them without prior authorization.

COMMUNICATIONS AND MESSAGING AND VIDEO CONFERENCING APPLICATIONS

The CONTROLLER does not send commercial emails that have not been previously requested or authorized by the User. If attending to your request implies the need to contact you, and video conferencing and/or instant messaging applications (Zoom, WhatsApp, Skype or similar) are used to expedite this communication, we inform you that the use of these types of applications may not be secure for the exchange of personal data. Also, that the data incorporated into these applications is stored on servers that are not always located within the EU area. Therefore, you must give us your consent when requesting us to communicate with you through these means, without prejudice to your right to withdraw consent to process the data at any time, which will imply the termination of the communications and will not affect the legality of the processing previously carried out.

ACCURACY AND TRUTHFULNESS OF THE DATA

The user is solely responsible for the truthfulness and accuracy of the data submitted to the CONTROLLER, and the CONTROLLER is exempt from any liability in this regard. Users guarantee and are responsible, in all cases, for the accuracy, validity, and authenticity of the personal data provided, and undertake to keep it duly updated. The user agrees to provide complete and accurate information on the registration or subscription form.

COOKIES, CONTRACTING CONDITIONS AND LEGAL NOTICE

  • You can view information about cookies through the dedicated link on the website.
  • You can view the portal’s terms of use through the dedicated link on the website.
  • You can access the terms and conditions through the link on the website, as well as when purchasing or reserving a product or service.

ACCESS TO SOCIAL NETWORKS AND/OR THE BLOG

When users leave comments on the website, we collect the data displayed in the comment form, as well as the visitor’s IP address and browser user agent string to help detect spam. If users access or subscribe to social media or the blog, we inform you that the data provided will be processed to manage their subscription to the blog or to the social media follow-up list. When they unsubscribe, they will be deleted using appropriate security measures to ensure pseudonymization of the data or their complete destruction.

The PROVIDER will process your data to inform you about the provider’s activities, products, or services through these social media platforms, as well as for any other purpose permitted by the regulations of the social media platforms. However, the PROVIDER will not be responsible for their own privacy policies.

PARTICIPATION IN FORUMS AND PUBLISHING YOUR TESTIMONY

We remind you that posts on social media, blogs, and similar sites will be publicly displayed to users of the website and may be shared by them. If you wish to participate or post your opinion on the website’s forums, social media, blogs, etc., we inform you that the data you provide will be processed to address your questions and suggestions, and to regulate your participation. Any registration or transmission of personal data provided by the user implies unequivocal knowledge and acceptance of the [Legal Notice] and Privacy Policy posted on the website.

RIGHTS OF INTERESTED PARTIES

Le informamos que tiene derecho a solicitar el acceso, rectificación, portabilidad y supresión de sus datos y la limitación y oposición a su tratamiento dirigiéndose a Concello de Santiago de Compostela, enviando un correo electrónico a  axencialocaldecolocacion@santiagodecompostela.org; indicando como Asunto: “protección de datos”. Tiene derecho a retirar el consentimiento prestado en cualquier momento. La retirada del consentimiento no afectará a la licitud del tratamiento efectuado anteriormente. También tiene derecho a presentar una reclamación ante la autoridad de control www.aepd.es si considera que pueden haberse visto vulnerados sus derechos en relación con la protección de sus datos.

CHANGES TO THIS PRIVACY POLICY

The CONTROLLER reserves the right to modify this policy to adapt it to new legislation or jurisprudence.

APPLICABLE LAW AND JURISDICTION

For all purposes, the relationship between the CONTROLLER and the Users of its online services, present on this Website, are subject to Spanish law, to which the parties expressly agree. The Courts and Tribunals of Santiago de Compostela (A Coruña) shall have jurisdiction to resolve all disputes arising from or related to its use.

Scroll to Top
Powered by  GDPR Cookie Compliance
Privacy summary

This website uses cookies so we can offer you the best user experience possible. The cookies' information is saved in your browser and has functions such as recognizing you when you come back to our web or helping our team understand which sections of the web you find more interesting or useful. Consult our privacy policy.