1- Initial information

At FUNDACIÓ TECNOCAMPUS MATARÓ- MARESME we consider that your personal information is very important. For this reason, we treat it in a confidential and secure manner. We are committed to guaranteeing the privacy of personal data at all times and not collecting unnecessary information.

To access our website you do not need to register beforehand. If you need more information about any of the services indicated, you can contact us through the forms that you can find on our website.

In accordance with Regulation (EU) 2016/679, of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, as well as with Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights, we provide you with information on the processing of your data through this Privacy Policy.
 

2- Who processes the data?

The Data Controller is the FUNDACIÓ TECNOCAMPUS MATARÓ- MARESME (TecnoCampus Foundation), with registered office at Avinguda d'Ernest Lluch, nº 32. 08302 Mataró (Barcelona), NIF G62034111, tel. (+34) 93 169 65 00, email rgpd@tecnocampus.cat, registered in the Register of Foundations of the Generalitat de Catalunya, with the number 1354 of the Register.

Data Protection Officer: You can contact our Data Protection Officer via email. rgpd@tecnocampus.cat 

 

3- For what purposes do we process your data? And what is the legitimate basis for the processing?    

The TecnoCampus Foundation processes personal data taking into account the rights of individuals and respecting the proportionality of the processing, that is, we process the data in an appropriate, relevant and limited manner to fulfilling the explicit purposes that motivated its collection. 

The TecnoCampus Foundation processes personal data mainly to provide academic services, to send communications relating to our activities and services and to develop relationships with third parties. Specifically, the purposes of processing carried out through our website are indicated below, as well as the legal basis that allows their processing.
 

PURPOSELEGITIMATION
  • Contact (“more information” forms). Manage the response to requests and/or queries made by the user, as well as retain the data for the management of subsequent follow-ups with people who have shown interest in the studies or services of TecnoCampus.
  • The basis for legitimation is the legitimate interest of the controller (article 6.1.f) of the GDPR) to adequately monitor requests for information and assess the interest of potential future students or users. In any case, the interested party may object to this processing at any time.
  • Documentation download forms. Manage the downloads of documents such as the catalog of undergraduate or continuing education courses, in order to send this documentation via the indicated email address.
  • The basis for legitimizing the processing is the execution of the pre-contractual relationship in accordance with article 6.1.b) of the GDPR.
  • Registration for activities, programs or information sessions.  Manage registrations for these activities, programs and/or information sessions,
  • The basis for legitimizing the processing is the execution of the pre-contractual relationship in accordance with article 6.1.b) of the GDPR.
  • Pre-registration.  Management of pre-registrations for university master's degrees and own master's and postgraduate degrees (HUB4T).
  • The basis for legitimizing the processing is the execution of the pre-contractual relationship in accordance with article 6.1.b) of the GDPR.
  • Academic management. Students at the University Center will be able to access the E-Campus intranet for their academic management. 
  • The basis of legitimacy is the execution of the contractual relationship based on article 6.1.b) of the GDPR. This contractual relationship has its legal basis in Organic Law 6/2001, of December 23, on universities, in Law 1/2003, of February 19, on universities of Catalonia and its implementing regulations.
  • Subscription to TecnoCampus newsletters (Park, Network, entrepreneurship, Hub4T, and others)
  • The basis for legitimizing the processing is express consent in accordance with article 6.1.a) of the GDPR.
  • Email management.  The purposes of data processing are to respond to inquiries received, as well as the management of the commercial and/or professional relationship.
  • The legal basis is the contractual or pre-contractual relationship between the Data Controller and the data subject, in accordance with article 6.1.b) of the GDPR.
  • Bibliosearch. Management of the lending service of the Library – CRAI of TecnoCampus. 
  • The legal basis is the contractual or pre-contractual relationship between the Data Controller and the interested party, in accordance with article 6.1.b) of the GDPR.
  • Work with us. The data will be processed for the purpose of responding to your request and being part of the selection process or the self-application process.
     
  • The processing of personal data is legitimized by the application of pre-contractual measures at your request in accordance with article 6.1.b) of the GDPR; or by express consent in the case of self-applications under article 6.1.a) of the GDPR. 


The processing based on legitimate interest has been assessed according to a balancing test, taking into account the reasonable expectation of people who contact through the website, with the aim of receiving information and ongoing support. Only the data strictly necessary and for the time essential for this purpose will be processed.
 

4- To whom is the data communicated?

Unless we are subject to regulations that require us to transfer your personal data by legal imperative, or you give us your express consent, we will not transfer your personal data to third parties.

 

5- Are international data transfers made?

International data transfers are not carried out to third countries outside the European Union.

 

6- How long do we keep the data? 

There are several factors that determine the retention time of personal data, which is why, in this sense, the TecnoCampus Foundation has a data retention protocol. 

In general, data must be kept for the time necessary to preserve its legal or informative value and to prove compliance with legal obligations, but not for a period longer than necessary for the purposes of the processing (“retention period limitation”). 

In the case of information processed on the basis of contractual or pre-contractual execution, the data will be kept for the duration of this relationship and subsequently will only be kept for the time necessary to comply with legal obligations. 

Regarding the processing based on the consent of the interested party, it will be kept until this person revokes this consent or the data is no longer necessary for the specific processing. 
 

 

7- What rights do you have as a user and how can you exercise them?


1. Right of access

As a user, you can ask us to explain what we do with your personal data.

In addition, you can request information from us about the purpose of processing your personal data, how long we keep your data, what rights you have as a user, whether your data has been transmitted to a third country or to an international organization, the existence of automated decisions or whether profiling exists on the website, among others.


2. Right of rectification

If the personal data you have provided to us is inaccurate or incomplete, you have the right to rectify or complete it. Contact us and we will rectify the data you request.


3. Right to limitation of processing

As a user you can request the limitation of the processing of your personal data when:
• You contest the accuracy of your personal data, for a period that allows us to verify its accuracy.
• If the processing is unlawful and you oppose the deletion of your personal data and, instead of deleting it, you request that its use be limited.
• If we no longer need your data for the purposes of the processing, but you need it to formulate, exercise or defend claims.


4. Right of deletion

You can request that we immediately delete your personal data. We are obliged to delete this data immediately, when the data is no longer necessary for the purposes for which it was collected. You can also ask us to delete your data, when you change your mind about consent, you object and there are no justified reasons for the processing, your data is processed incorrectly, it must be deleted to comply with a legal obligation or your data is obtained in connection with a legal offer.


5. Right to information

If you have exercised your right to rectification, deletion or limitation, we are obliged to inform all recipients to whom your personal data have been communicated about this rectification, deletion or limitation of processing, unless this proves impossible or involves a disproportionate effort.
As a user, you have the right for the controller to inform you about who these recipients are.


6. Right to data portability

You have the right to receive the personal data you have provided to us in a structured, commonly used and machine-readable format. You also have the right to transmit these data to another controller without us being able to prevent this.


7. Right to object

As a user, you have the right to object at any time, for reasons arising from your particular situation, to our use of the personal data made available to us.

We will stop processing your personal data unless we have compelling legitimate grounds for using it, which override your interests, rights and freedoms or the processing is intended to establish, exercise or defend claims.
 

8. Right to revoke the declaration of consent relating to data protection

As a user, you have the right to change your declaration of consent regarding data protection at any time. This change of decision regarding consent will not affect the lawfulness of the processing that took place based on the consent given before its revocation.


9. Automated individual decisions, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects on the User or significantly affects him/her in a similar way.


10. Right to lodge a complaint with a supervisory authority

As a user, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or place of infringement, if you consider that the processing of personal data creates a violation of the GDPR.
Specifically, you can file a complaint with the Catalan Data Protection Authority, through the forms or other channels accessible from its website (https://apdcat.gencat.cat/ca/inici) 


11. Where can you exercise your rights?

You can request the exercise of your rights through the following channels: 
• Electronic headquarters of the TecnoCampus Foundation
• Email: rgpd@tecnocampus.cat 
• Letter addressed to the General Secretariat of TecnoCampus “Data Protection”, at Avinguda d'Ernest Lluch, 32. 08302 Mataró


12. Is it mandatory to provide all the information requested in the data collection forms?

Regarding the forms on the Website, you must complete those marked as "required". Failure to complete the required personal data or to do so partially may mean that the TecnoCampus Foundation cannot meet your requests and, consequently, the TecnoCampus Foundation will be exonerated from all liability for the non-provision or incomplete provision of the services requested.
The personal data that the User provides to the TecnoCampus Foundation must be current so that the information in the records is up-to-date and error-free. The User will be responsible for the veracity of the data provided.

13. What security measures do we have in place?

We inform you that we care for and use your personal data in accordance with current regulations on data protection and information society services.

We have implemented the necessary technical and organizational security measures that guarantee the security of the User's personal data and prevent its alteration, loss, processing and/or unauthorized access in accordance with the state of technology, the nature of the stored data and the risks to which they are exposed, whether they come from human action or the physical or natural environment, in accordance with the provisions of current regulations.