This privacy notice is effective as of June 2022.
We are committed to user privacy and recommend reading this privacy notice carefully, which explains the practice regarding the processing of your personal data and sets forth your privacy rights.
This privacy notice offers information exclusively about the processing of personal data that we may collect on our website, https://busleague.eu/.
Mainly, this data protection notice informs individuals in relation to their personal data which we will process, the purposes of the processing, the recipients or categories of recipients of the personal data, the period for which the personal data will be stored and the data protection rights and how they should be exercised. This information is based on the Regulation (UE) 2016/679 of the European Parliament and of the council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.
- Who processes your personal data?
The controller is the Valencian Institute of Building (IVE, hereinafter), a Spanish foundation.
If you want to contact us, you can write an email at email@example.com
- What personal information do we collect and for what purposes?
The personal data that we may collect while you are browsing on our website could be the following:
Identification and contact information. Your email address, name and surname, country, and IP address if you accept the cookies.
Other information that you can provide us. For instance, all information included in your messages or in the attached documents which you have sent to us.
We may collect this information through several ways like our forms, messages received and our profiles in social media.
- Purposes of the processing
We will collect your personal information for several reasons, which we detail below.
|Reply your queries and requests in our communication channels (mail, forms and profiles in social media)||Article 6.1.a) GDPR: consent.|
|Statistics purposes about web uses||Article 6.1.a) GDPR: consent.|
|Electronic communications through mailing the Newsletter||Article 6.1.a) GDPR: consent.|
The processing of the personal data that we will do in our social media profiles aims to reply to your requests and to keep you informed about the news. We are obliged to respect the terms and conditions of the social media platforms created for professional profiles. You, too, have to comply with the terms and conditions when you create an account on any platform. So, you accept the processing of your personal data which the platform will carry out. Thus, both platform and us, are controllers of your personal data with different purposes and conditions which you accept when you create an account and use the buttons “Like”, “Follow” or similar in our profiles. Although both are controllers, we don’t have connections with social media companies.
- For how long do we retain your data?
Information will be stored until that will be necessary to comply with the purposes, or you remove your consent for specific purposes.
Subsequently, the personal data may be stored, but blocked, in our information systems for a period of time imposed by legal requirements on prescriptions. The time for data retention will rely on the legislative framework of each country. During this time, we will not process your information with other purposes, but keep it blocked. Finally, when the legal period of time ends, we will eliminate all information about you.
- How do we share information we collect?
We work with other companies who help us run our business (“Service Providers”). These Service Providers will only process personal information pursuant to our instructions.
In addition, we are a member of a European consortium formed by companies with the same goal. So, in some cases, your personal data may be communicated to some of them to attend your inquiries.
In conclusion, your personal information will not be communicated to third parties and may only be accessed by authorized parties for the instructions and purposes informed in this privacy notice.
- International data transfer
It is possible that your information is not in the European Economic Area (EEA) borders because some Service Providers are based in countries outside the EEA. The international data transfers are ensured because we will implement appropriate safeguards, for example, with the Standard Contractual Clauses approved by the European Commission, including supplementary measures as necessary.
- How to exercise your data protection rights
We recognize individuals’ data protection rights. You have the right to access, rectification, erasure, restriction, to object the processing and to request data portability if it is possible. You may email us at firstname.lastname@example.org with any Rights Request, and we will respond within thirty (30) days. Your request should contain a detailed and accurate description of the right exercised.
When there are reasonable doubts regarding your identity, you might be asked to provide a copy of a document, which help us to verify your identity. It can be any document such as your ID card or passport. The use of your personal information for your identification is strictly limited: the data will only be used to verify your identity and will not be stored for longer than needed for this purpose.
To object the processing for receiving the newsletter, you can do it through two ways: (1) to click “unsubscribe” in the emails that you receive; (2) email us indicating your right request.
In addition, you have the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
If you consider that we have not attended to data protection rights correctly, you have the right to lodge a complaint with a supervisory authority.
Finally, we should inform you that we don’t process your personal data for automated decision-making purposes.
- Technical measures to ensure the processing
We take all reasonable steps to protect information we receive from you from accidental or unlawful destruction, loss, alteration, and unauthorized disclosure or access. We have put in place appropriate physical and technical measures to safeguard and secure your information, and we make use of privacy-enhancing technologies such as encryption.
- Accuracy and verify in relation with the information provided by individuals
You ensure the accuracy, authenticity and validity of the data provided when you contact us. You must keep updated and engage with it.
- Age requirements
If you want to contact us, you must be 18 years or over. We do not accept queries from people under 18. You are responsible for your compliance. If we are aware that you are a minor, we will immediately delete all your personal information.
- Changes in the privacy notice
We may change the present privacy notice without relevant impact on the rights and freedom of data subjects. However, if we do, we notify you through a warning on our website. Therefore, we recommend you regularly verify this privacy notice.