Purpose of this policy
This website collects some Personal Data from its Users.
These privacy practices are provided exclusively for the site in question and not for any other websites that may be accessible by following the links present in GAMMA-MRI website, for which GAMMA-MRI assumes no liability.
In addition, Users guarantee that they are of legal age and that the data provided are true, precise, complete, and up to date, with them being responsible for any damages, whether direct or indirect, that may be caused as a consequence of non-fulfilment of said obligation.
Should the Data provided belong to a third party, the Users guarantee that they have informed said third party of the aspects contained in this document and obtained its authorization to provide its Data for the purposes indicated.
The “Data Controller” responsible for data processing is TECNOLOGIAS AVANZADAS INSPIRALIA SL (INSPIRALIA), Calle Manuel Tovar 49 28034 Madrid, Spain.
Data Controller contact email: firstname.lastname@example.org.
Types of data collected
The types of Personal Data that this website collects are limited to Name and Email address of the Users.
The Users are free to supply Personal Data in the application form (form “Contact”) to request information, material or other communications related to GAMMA-MRI project. Refusal to provide Personal Data will make it impossible to fulfil the request.
In cases where the application form specifically states that some Data is not mandatory, Users are free not to communicate that Data without consequences to the availability or the functioning of the service.
Users who are uncertain about which Personal Data is mandatory are welcome to contact the Data Controller.
Users are responsible for any third-party Personal Data obtained, published or shared through this website and confirm that they have the third party’s consent to provide the Data to the Data Controller.
Place and purpose of data collection
The Data is processed at the Data Controller’s operating offices and only by the employees or persons appointed for data processing by the Data Controller, or where required by persons involved with the operation of this website.
The Data concerning the Users will be used for the sole purpose of providing the requested service and will be disclosed to third parties only if necessary for the required purpose.
Data processing methods
Personal Data will be processed using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated.
Data will be processed only for the period of time strictly necessary to achieve the objectives for which they are collected.
Specific security measures are observed to prevent the loss, illegal or improper use of data as well as unauthorized access, according to the obligations to comply with minimum security measures.
GAMMA-MRI website contains links to other websites that are not under our control. We cannot be held liable for errors, contents, cookies, publication of illegal or immoral contents, banners or files that do not comply with the requirements of statutory legislation or for compliance with the Data protection act of sites not managed by us.
Communication of personal data
The Data Controller guarantees the security, confidentiality and protection of Personal Data at any stage of the processing of the same.
Personal Data will be solely and exclusively collected and processed for the fulfilment of requests by Users, meticulously complying with legal regulations on Personal Data protection, the security of information and other applicable rules.
International transfer of data
Personal Data will not be transferred to third countries or to international organizations without previously obtaining the consent, and, in any case, this shall be done to entities that guarantee a level of security and protection equivalent to that required in Data protection regulations in Europe (i.e., Regulation (EU) 2016/679).
Terms of storage
The Data will be stored for the time necessary to attend to Users’ requests, and, once these have been attended to, for the time during which the purpose of the processing continues to be valid or until any possible future responsibilities prescribe, whatever the class of these may be, and, in any case, always provided that Users do not exercise their rights of objection and cancelation.
The Data Controller may be allowed to retain Personal Data for a longer period whenever the Users have given consent to such processing, as long as such consent is not withdrawn.
Once the retention period expires, Personal Data shall be deleted. Therefore, the right of access, the right to erasure and the right to rectification cannot be enforced after expiration of the retention period.
Personal Data will be processed in an absolutely confidential manner at all times, and respecting the mandatory duty to secrecy in respect of the same, in conformity with that provided in applicable regulations, adopting, for this purpose, any measures of a technical and organizational kind that may be necessary to guarantee the security of the Data and prevent any modification, loss, or non-authorized processing or accessing of the same, taking into account the state of the art, the nature of the Data stored and the risks to which they are exposed.
Exercising of rights
Any requests to exercise Users’ rights can be directed in writing to the email address email@example.com, specifying the subject of the request. These requests can be exercised free of charge and will be addressed by the Data Controller.
Users are in any moment entitled to:
a) Withdraw their consent at any time. Users have the right to withdraw consent where they have previously given their consent to the processing of their Personal Data.
b) Object to processing of their Data. Users have the right to object to the processing of their Data if the processing is carried out on a legal basis other than consent.
c) Access their Data. Users have the right to learn if Data is being processed by the Data Controller, obtain disclosure regarding certain aspects of the processing and obtain a copy of the Data undergoing processing.
d) Verify and seek rectification. Users have the right to verify the accuracy of their Data and request the correction of imprecise Data and the integration of incomplete Data.
e) Restrict the processing of their Data. Users have the right, under certain circumstances, to restrict the processing of their Data. In this case, the Data Controller will not process their Data for any purpose other than storing it.
f) Have their Personal Data deleted or otherwise removed. Users have the right, under certain circumstances, to obtain the erasure of Data when, among other reasons, the Data is no longer necessary for the purposes for which they were collected.
g) Lodge a complaint. Users have the right to submit a claim relating to the protection of their Personal Data to the Spanish Data Protection Agency, at Calle de Jorge Juan, 6, 28001 Madrid.
Should the changes affect processing activities performed on the basis of the Users’ consent, the Data Controller shall collect new consent from the Users, where required.