In compliance with the provisions of applicable national and European legislation on the protection of personal data, we inform you that the personal data that our customers or potential customers may provide us with (both referred to as the “Customer(s)” ), either by using the form provided on our website (the “Website”), by sending an e-mail to the address provided for this purpose, by means of e-mails addressed to our professionals or by any other means of communication, will be included in a file of which IRIS Technology Solutions S.L. (hereinafter the CONTROLLER) with Value Added Tax ID number B64446123 and registered office in C/Velázquez 94 1ª Planta, 28006 Madrid, is the owner and data controller.
a. Consent and collected data
b. Purpose of processing and legal basis
c. Who we communicate your data to
The CONTROLLER will not transfer your personal data to third parties, unless it is legally required or if the Customer has previously authorized us to do so or if it is necessary for the provision of the requested Services. In order to be able to offer the appropriate Service to the Customer and to manage the relationship with you, the CONTROLLER contracts the provision of services from certain companies which, subject to compliance with the legal requirements, may be given access to your personal data solely for the purposes providing the Service.
d. International transfers of personal data
The General Data Protection Regulation (GDPR) offers several mechanisms to enable the transfer of personal data outside the European Union (EU). These mechanisms have been set up to check that the level of protection is adequate or to ensure the implementation of appropriate security measures when transferring personal data to a non-EU country.
This level of security can be achieved through standard contractual clauses. It is possible to confirm that the level of protection is adequate through verification procedures such as those in the EU-US Privacy Shield framework. In our current contracts on data processing, we undertake to maintain a mechanism that enables the transfer of personal data outside the EU, as stipulated in the Data Protection Directive. In addition, we will make the appropriate commitment as of 25 May 2018 (inclusive), when the GDPR enters into force.
European data protection authorities have also confirmed that our standard contractual clauses meet the necessary security requirements. This demonstrates that IRIS Technology Group’s contractual commitments comply with the Data Protection Directive and provide a legal framework for the transfer of personal data from the EU to other parts of the world.
e. Period of storage of personal data
We will retain your personal data for the duration of the contractual relationship or, where applicable, until you state your wish to have your personal data deleted from our file. From that moment on, the CONTROLLER will keep your personal data blocked during the legally required periods, and in any event, for a period of 10 years in accordance with the regulations on the prevention of money laundering and financing of terrorism. We will destroy your personal data after the expiry of the legally required period.
f. Exercise of rights
You may exercise your rights of access, rectification, deletion, limitation of the processing, opposition and portability of personal data by sending a written communication with a photocopy of your ID card to the CONTROLLER at the following e-mail address: email@example.com .
g. Complaint to a supervisory authority
You are informed that you have the right to file a complaint with the Spanish Data Protection Agency (www.aepd.es) as the supervisory authority if you consider that the CONTROLLER has not processed your personal data in accordance with the applicable legislation on the protection of personal data.
The CONTROLLER undertakes to adopt the technical and organizational security measures established by law to guarantee the security of your personal data and to prevent their alteration, loss, unauthorized processing or access, taking into account the state of technology, the nature of the data stored and the risks to which they are exposed, all in accordance with the provisions of the applicable regulations.
i. Assignment of third party data to the CONTROLLER
In the event of providing the CONTROLLER with the personal data of third parties required for the provision of the Services, you declare that you have previously obtained their express consent to transfer them to the CONTROLLER.
The CONTROLLER cannot guarantee the absence of viruses or other malware that may affect the computer equipment of the USER. The latter should, therefore, take measures to avoid possible risks of this kind in view of the current state of telecommunications. The CONTROLLER is not responsible for interruptions to the website caused by force majeure or circumstances beyond its control.
Links and Cookies
It is forbidden to include contents or services in third party websites that could harm the image of this website or the CONTROLLER, and the latter reserves the right to prohibit, limit or demand the cancellation of the links made, when it deems appropriate, without under any circumstances being required to pay any kind of compensation for this reason.
What are cookies?
A cookie is a file that is placed in Website when you access and use it. Cookies allow us to store and retrieve information about your browsing habits on the Website. The information they obtain is related, for example, to the number of pages you visit, the frequency and recurrence of visits, the length of your visit, etc.
Our website uses first party cookies which are set by our web server as opposed to a different web server. They are categorised as strictly necessary, which are essential to the operation of the website, and performance cookies which collect anonymous information about the usage of our website. By using our website you agree that we can place these types of cookies on your device.
To prevent the installation of cookies, please follow the instructions of your browser:
- Internet Explorer: click on “Tools > Internet Options” menu and then select the “Privacy” tab. Select the desired setting and click on the advanced settings button. Activate the “Override automatic cookie handling” box. Select the “Accept” or “Block” option. We recommend activating the “Always allow session cookies” option to enable the optimal browsing on our website.
- Firefox: click on “Tools > Options” in the menu bar and select the “Privacy” tab. Depending on the browser version you are using, select or deselect “Accept cookies from sites” or “Tell sites that I do not want to be tracked”. Any cookies installed can be removed by clicking on the “remove individual cookies” option.
- Chrome: click on “Tools > Settings” menu, and then select the tab “Privacy > Content settings”. After selecting the option “Show advanced options”, select the desired cookie setting. If you do not want cookies to be installed, you may select the option “Block third-party cookies and site data”.
- Opera: In the “Settings > Options” menu, go to the “Advanced” tab. In the “Cookies” menu select the options “Accept” or “not accept cookies ever.” If you want to have a greater level of control over the cookies that are installed on your computer, we recommend you to select the option “Ask before accepting cookies.”
- Safari: click on “Tools > Preferences” and select the “Security” tab. Under the heading “Accept cookies” choose “Always” or “Never”. If you have an iPhone, you must go to “Settings > Safari” and then select whether you do or do not want to accept cookies. If you use another browser, you can get more information on configuring the installation of cookies through the help section or assistance from that browser.
If you need help to carry out the configuration of your browser cookies, please send us an email to firstname.lastname@example.org and we will contact you as soon as possible to help you.
Updates and changes to the Cookies Policy:
The CONTROLLER may change this Cookies Policy in accordance with legal and regulatory requirements, or with the aim of adapting this policy to the instructions issued by the Spanish Data Protection Agency, for which reason the user is advised to visit it periodically.
Nullity and ineffectiveness of clauses
If any clause included in these GENERAL CONDITIONS and/or the SPECIFIC CONDITIONS is declared totally or partially null and void or ineffective, such nullity or ineffectiveness shall affect only that provision part thereof that is null and void or ineffective, and the GENERAL CONDITIONS and SPECIFIC CONDITIONS shall remain in force in all other respects, and such provision, or part thereof that is affected, shall be deemed null and void.
Applicable law and jurisdiction
For any issue or discrepancy that may arise regarding the website, contents and services contracted, the USER and the CONTROLLER, expressly waiving any other jurisdiction that may apply to them, expressly submit to Spanish law, the jurisdiction of Spanish Courts and, in particular, the Courts of Madrid, unless the applicable law specifically determines another jurisdiction or different legislation.