1. What is the scope of this policy?
In compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation, GDPR) and Organic Law 3/2018, of 13 December, of Personal Data Protection and guarantee of digital rights (LOPDGDD), DEVSTAT, SERVICIOS DE CONSULTORÍA ESTADÍSTICA, S.L. (hereinafter DevStat) wishes to inform users of the website’s policy concerning personal data we collect, the purposes and method of processing of these data, and the safety methods we adopt to protect them.
This policy is expressed and fully accepted by the user from the moment he/she uses this site or any of its services and communicates personal data, as such communication is voluntary. In case the user does not agree with this policy shall not use any service on this site that requires the communication of personal data to DevStat.
The user is warned that any processing of personal data will be under the scope of the legislation in force in Spain in the field of data protection, established by the GDPR and LOPDGDD and its accompanying regulations and development.
2. Who is the data controller?
DEVSTAT, SERVICIOS DE CONSULTORÍA ESTADÍSTICA, S.L. (DevStat), informs the user of the website that such entity is the data controller and responsible for the processing of personal data carried out through this website.
Postal address: C/ Almirante Cadarso 26, 46005 Valencia
Email address: firstname.lastname@example.org
Phone :+34 960 590 080
3. How can you contact our data protection officer?
You can contact our data protection officer sending an email to email@example.com
4. Minors’ or legally incapable of giving consent persons’ data
If the user is a minor or a legally incapable of giving consent person, DevStat warns of the need to have the consent of his/her parents or legal guardians for the communication of personal data representatives, so DevStat requests to refrain from supplying personal data if one does not count with the consent of parents, guardians or legal representatives when required, not being otherwise DevStat responsible for the actions of the minor or incapable. Nevertheless, DevStat may proceed to the processing of data over fourteen years old with his consent, except in those cases where the Law requires care provision for holders of parental authority or guardianship.
5. How do we guarantee the accuracy and veracity of personal data?
The personal data that the user communicates to DevStat must be truthful, accurate and up to date and only correspond to his/her own identity, through any data collection channel published on this website, such as forms, sending an e-mail, postal communication and/or a telephone call.
It is prohibited to provide data of third parties except with consent or other legitimate basis for processing and for a legitimate purpose in accordance with data protection laws.
The user is solely responsible for the truthfulness, accuracy, updating and correctness of the data provided to DevStat, exonerating DevStat from any liability in this regard. The user also undertakes to keep the personal data duly updated, for which purpose he/she may also exercise his/her right to rectification. In any case, personal data obtained by DevStat directly from the user shall be considered accurate and up to date.
6. For what purpose and on what legal basis will we process your personal data?
This website publishes information on various means and channels through which users can provide their personal data to DevStat, including sending e-mails to the addresses published on the site, making telephone calls and filling in forms. We may process personal data for various purposes, depending on the user’s interaction with us. Each processing of personal data is legally based either on the user’s consent, the necessity to carry out a contract with the user, a legal obligation and/or our overriding legitimate interest depending on the purpose of the processing.
Users who access the website are not required to provide personal information to use it. Therefore, any data communication to that effect constitutes a voluntary manifestation of the user in order to have personalized navigation or services.
The user is hereby informed that the personal data provided to DevStat by accessing and using this site or as a consequence of the same may be processed for the following purposes and on the following legal basis:
- Attention and reply to messages received by e-mail and contact form.
When the user completes the form published on this site, sends an e-mail to the contact addresses published on the site, or calls DevStat by telephone and communicates their personal data to DevStat requesting some type of information or making a query, their personal data will be processed by DevStat to attend to and reply the messages and requests made by the user, legally based on the consent that the user expressly grants.
- Employment at DevStat
When the user fills in the employment form published on this site or sends us an e-mail expressing their interest in working or collaborating with us, based on the legal basis of the consent that the user expressly grants by filling in the form and/or sending their data, their personal data will be processed by DevStat to include them in our employment and freelance pool in order to contact them in future selection processes in case there are vacancies that meet our needs and their experience, studies and preferences.
7. Recipients or categories of recipients of the personal data and international data transfers
All personal data provided by users are strictly confidential and will only be accessible, on a need-to-know basis, to duly authorized personnel of DevStat and third providers acting on our behalf with appropriate technical and organizational security safeguards.
DevStat informs the user that personal data may be communicated to third parties in the following cases:
On the legal basis of compliance with legal obligations deriving from the legal regulations applicable to Union or Member State law, to public administrations and competent authorities, in the event that DevStat is obliged to carry out such communication.
On the legal basis of consent, to third party collaborators and partners of DevStat to assess the selection of candidates and collaborators in specific projects in the event of vacancies that match the profile or preferences of users who have applied to us for employment and/or sent their curriculum vitae.
Furthermore, DevStat informs users that their personal data may be processed on behalf of entities that provide DevStat with various auxiliary services (also known as data processors), as well as support and administration tasks for its systems, through processing contracts and always following DevStat’s instructions, with due guarantees of confidentiality and security.
Also, DevStat may transfer personal data to legitimate recipients in accordance with the legislation established in a third country or to an international organization only in compliance with the provisions of GDPR and LOPDGDD. This means that DevStat may transfer personal data to third-party recipients if:
- Transfers are on the basis of an adequacy decision.
- Transfers are subject to appropriate safeguards.
- Transfers are on the basis of the following conditions for specifics situations, according with article 49 GDPR:
- The data subject has explicitly consented to the proposed transfer, after having been informed of the possible risks of such transfers for the data subject due to the absence of an adequacy decision and appropriate safeguards;
- The transfer is necessary for the performance of a contract between the data subject and the controller, or the implementation of pre-contractual measures taken at the data subject’s request;
- The transfer is necessary for the conclusion or performance of a contract concluded in the interest of the data subject between the controller and another natural or legal person;
- The transfer is necessary for important reasons of public interest;
- The transfer is necessary for the establishment, exercise or defence of legal claims;
- The transfer is necessary in order to protect the vital interests of the data subject or of other persons, where the data subject is physically or legally incapable of giving consent;
- The transfer is made from a register which according to Union or Member State law is intended to provide information to the public and which is open to consultation either by the public in general or by any person who can demonstrate a legitimate interest, but only to the extent that the conditions laid down by Union or Member State law for consultation are fulfilled in the particular case.
8. Data retention period
DevStat will retain the user’s data for as long as the purpose and legitimate basis of the processing is maintained, as well as for the periods established in the regulations in force for compliance with legal obligations and for meeting possible liabilities.
9. Follow us on social networks
Social networks are third party services providers that allow users to participate in a virtual community with others through which you can generate your own public profile where you create and share content, information and personal data with other network users. In a social network, you can create and share pages, profiles or accounts with personal and/or commercial purposes. The operation of the social network is governed primarily by the conditions set by the owner and/or network provider and secondly, when it comes to pages, accounts or profiles for commercial purposes, for the terms and conditions responsible for business account profile or in your case will also be responsible for processing these data.
DevStat has some social networking profiles such as, but not limited to Facebook, twitter, Linkedin. You can follow us and become a fan of the official pages on social networks DevStat mentioned.
The user is informed that the processing of data is performed through the pages, profiles or accounts on social networks DevStat shall be governed by the relevant policies and conditions of both the official and the supplier and operator of each social network if also being such holder and the social network provider the data controller of personal data of the user on the official website are treated.
10. Personal data published on the website
In relation to personal data that may be published on the DevStat website gets on you knowing that these data are part of one or more data processing ownership and responsibility DevStat in which they have been incorporated with the prior consent stakeholders informed and cannot be freely process and user or other third party users replicated – or even reference to their origin – except that the prior informed consent of the person concerned will get done.
Personal data DevStat can post on your web site could include but not limited to any numerical, alphabetical, graphic, photographic, sound or any other individuals concerning identified or identifiable data, such as name, surnames, photos, pictures of events held by DevStat, data published by users of web services and other information.
Therefore, all personal data – including data images, videos, texts, data and other information published on our website on individuals identified and/or identifiable – only user may be used in order to participate and enjoy our web site in the manner prescribed in this policy, or if specific conditions governing a particular service, for private purposes and under the law and non-profit non-commercial purposes of any kind, being banned any use other than those listed, including the incorporation of images or data files or processing and/or create databases of people and/or delivery of advertisements or transferred to third parties, without the prior informed consent of users holder of the information and data, not being responsible DevStat uses the user or other third party users of our website contravenes the provisions made in these and other conditions governing them.
Never the user should consider the DevStat website is a publicly accessible source which can be made available free of personal data, information and content published through it.
11. Safety measures taken in relation to the processing of personal data
DevStat informs the user that, in accordance with the provisions of the GDPR and LOPDGDD, it has adopted the necessary technical and organizational measures to ensure the security of personal data and to prevent alteration, loss, or unauthorized access. DevStat also guarantees the user the duty of professional secrecy regarding the personal data of the users and the duty to protect them.
DevStat also has procedures in place to deal with any suspected data security breach. We will notify the user and any applicable regulator of a suspected data security breach when we are legally required to do so.
DevStat recommends users to use the latest versions of software for Web browsing because of the incorporation of these increased security measures.
We also recommend users to use security mechanisms at their disposal (secure web servers, cryptography, digital signature, firewall, etc.), in order to protect the confidentiality and integrity of their data to the extent that is necessary.
DevStat reminds users that transmission of information via the Internet is not completely secure. So, we cannot ensure the security of personal data transmitted by the user to us via the internet. Any such transmission is at the users’ own risk, and they acknowledge and agree that we shall not be responsible for any unauthorized use, distribution, damage or destruction of personal data, except to the extent we are required to accept such responsibility under the law. Once DevStat has received the user’s personal data, we will use the security measures abovementioned.
12. Rights of data subjects
DevStat informs users of the possibility of exercising their rights of access, rectification, deletion, opposition, limitation of processing, portability, as well as the right not to be subject to decisions based solely on the automated processing of their data.
You may also withdraw the consent granted in those processing operations with such legal basis for processing, without the revocation having retroactive effects.
Any of these rights must be exercised by sending your written request, indicating the right you are exercising, together with a copy of your DNI/NIF or legally valid document that identifies you, to the following addresses:
Postal address: C/ Almirante Cadarso 26, 46005 Valencia
Email address: firstname.lastname@example.org
13. The right to lodge a complaint with a supervisory authority
Likewise, the user is informed that he/she has the right to lodge a complaint with the Spanish Data Protection Agency (www.agpd.es) and postal address at C/ Jorge Juan, 6. 28001 – Madrid, and/or contact telephone number 912 663 517), as well as to request its protection in relation to the exercise of his/her rights.
Prior to filing a complaint with the Spanish Data Protection Agency, and in order to obtain a solution to their complaint or incident, users may contact DevStat’s data protection officer at the following email address email@example.com
14. Additional user rights for commercial communications
Those users who have expressly accepted to receive DevStat commercial communications by e-mail under Articles 21 and 22 of the Law 34/2002, of July 11 of 2022 (LSSICE), have the right to object to the processing of data for the communication of commercial promotions as well as the right to revoke consent given to this purpose at any time by simply notifying their will to DevStat.
To do this, the user can direct his opposition by sending an e-mail to the address: firstname.lastname@example.org
For more detailed information read here our Cookies Policy.
16. Updating policy
17. Contact information