PRIVACY POLICY - Les Arts

PRIVACY POLICY

The aim of this policy is to inform interested parties about the different processing carried out by this organisation through its website that affects your personal data, pursuant to the provisions established in the Personal Data Protection and Guarantee of Digital Rights Act 3/2018, of 5 December, and in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016.

  1. IDENTIFICATION AND CONTACT DETAILS OF THE DATA CONTROLLER

The organisation Palau de les Arts “Reina Sofía”, Fundació de la Comunitat Valenciana, domiciled at Avenida del Profesor López Piñero (Historiador de la Medicina), 1 (46013) Valencia (Spain), with Tax ID No. G97544829, contact phone number: 961975800 and electronic mail: lopd@lesarts.com.

 

DATA PROTECTION OFFICER

The Regional Department of Transparency, Social Responsibility, Participation and Cooperation, domiciled in Passeig de l’Albereda, 16, Valencia, contact phone number: 961922421.

  1. PURPOSES OF PROCESSING OF YOUR PERSONAL DATA
  • USERS/BROWSERS OF WEBSITE OF DATA CONTROLLER.

We process your personal data provided through our web forms to:

  • Respond to requests, complaints and incidents passed on through our contact channels incorporated in the website.
  • Understand browser conduct on the website in order to detect potential IT attacks on our website.
  • Comply with legal obligations directly applicable to us and which regulate our activity.
  • Protect and exercise our rights and respond to claims of any nature.
  • As the case may be, to send commercial communications relating to goods or services that form part of our activity and/or provide news bulletins related to our sector.

We process your personal data provided through web forms to:

  • Manage commercial relations.
  • Provide services contracted from us.
  • Handle issues related to sending and receiving products acquired through this website.
  • Deal with administrative, accounting and tax matters.
  • Deal with requests, complaints and incidents passed on through our contact channels incorporated in the website.
  • Understand browser conduct on the website in order to detect potential IT attacks on our website.
  • Comply with legal obligations directly applicable to us and which regulate our activity.
  • Protect and exercise our rights and respond to claims of any nature.
  1. LEGAL BASIS FOR DATA PROCESSING
  • USERS/BROWSERS OF WEBSITE OF DATA CONTROLLER.
  • This lies in the consent you have provided us with to process your data for the purposes indicated. The refusal to provide your personal data will mean that it is impossible to process your data for the purposes mentioned.
  • To comply with the legal obligations applicable to us. In this case, the interested party cannot refuse the processing of personal data.
  • In our legitimate interest to protect our image, business and path, preventing attacks on our website. In this case, the interested party cannot refuse the processing of personal data, although they may exercise the rights recognised in Section Eight of this policy.
  • Performance of a contract they are party to or to apply pre-contractual measures. The refusal to provide your personal data will mean that it is impossible to process your data for the purposes mentioned.
  • This lies in the consent you have provided us with to process your data for purposes outside of the performance of the existing contract. The refusal to provide your personal data will mean that it is impossible to process your data for the purposes mentioned.
  • To comply with the legal obligations applicable to us. In this case, the interested party cannot refuse the processing of personal data.
  • In our legitimate interest to protect our image, business and path preventing attacks on our website. In this case, the interested party cannot refuse the processing of personal data, although they may exercise, as the case may be, the rights recognised in Section Eight of this policy.
  1. DEADLINES OR CRITERIA TO STORE DATA

The personal data provided shall be stored for the time necessary to comply with the purposes for which they were initially collected.

Once the data cease to be necessary for the processing in question, these shall remain duly blocked so that, as the case may be, they can be provided to the competent public authorities or bodies, courts or tribunals, or to the Public Prosecutor’s Office, in accordance with the statute of limitations of such actions as may derive from the relationship with the client and/or the legally provided deadlines for data storage.

  • THE CIVIL CODE. Between 5 and 15 years, according to the case, in accordance with the provisions of Article 1964.2 of this legal code.
  • THE CODE OF COMMERCE. For 6 years in accordance with the provisions of Article 30 of this code. This applies to the corporate information related to: invoices issued and received, receipts, amendment invoices, bank documents, etc.
  • THE GENERAL TAX ACT. For 4 years in accordance with the provisions of Articles 66 and 70 of this act. This applies to information related to tax obligations.
  1. AUTOMATED DECISIONS AND PROFILING

The website does not take automated decisions or undertake profiling.

  1. RECIPIENTS

During the period of data processing, the organisation may transfer the data to the following recipients:

  • Judges and courts.
  • State law enforcement agencies.
  • Other competent public authorities and bodies, when the data controller is under a legal obligation to provide the personal data.
  • Banks and financial institutions, in the case that they contract us.
  1. INTERNATIONAL DATA TRANSFERS

The organisation does not make international transfers of any data.

  1. RIGHTS

Interested parties may exercise at any time, and completely free of charge, the rights of access, rectification and erasure, and request the limitation of the processing of their personal data, challenge their processing, request the portability of them (provided that this is technically possible) and withdraw the consent provided, and, as the case may be, when appropriate, not be subject to a decision based solely on automated processing, including profiling.

To that end, they may use the forms enabled by the organisation or write to the postal address or electronic mail address indicated above. At any event, their request must be accompanied by a photocopy of their National Identity Document or equivalent document, for the purpose of accrediting their identity.

In the event that that they feel their rights have been breached in relation to the protection of their personal data, particularly when they have not obtained satisfaction in the exercise of their rights, they can make a claim to the competent control authority for data protection (Spanish Data Protection Agency), through its website: www.agpd.es.

In compliance with the provisions of Article 21 of the Information Society and Electronic Commerce Services Act 34/2002, should you not wish to receive more information on our services, you can de-register by sending an electronic mail to the address lopd@lesarts.com.

  1. VERACITY OF THE DATA

The interested party guarantees that the data provided are true, exact, complete and up-to-date; undertaking to inform any change in the data provided through the channels enabled to this end and indicated in Section One of this policy. They shall be responsible for any damage or harm, whether direct or indirect, that any breach of this obligation may cause.

In the event that the user provides third-party data, they must declare that they have the consent of the interested parties and undertake to convey to them the information contained in this clause, exempting the organisation from any liability deriving from non-compliance with this obligation.

 

 

Last revision: 01/10/2021