Educalecrín

Menu
Contact

Privacy Policy

PRIVACY POLICY OF THE WEBSITE

educalecrin.com

I. PRIVACY AND DATA PROTECTION POLICY

In accordance with current legislation, Educalecrín (hereinafter also the Website) is committed to adopting the necessary technical and organizational measures appropriate to the level of security required by the data collected.

Legislation incorporated in this privacy policy

This privacy policy is adapted to current Spanish and European legislation on the protection of personal data online. Specifically, it complies with the following regulations:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016 (GDPR).
  • Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights (LOPD-GDD).
  • Royal Decree 1720/2007, of 21 December, approving the implementing regulation of Organic Law 15/1999, of 13 December, on the Protection of Personal Data (RDLOPD).
  • Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI-CE).
Identity of the data controller

The controller of the personal data collected through Educalecrín is EDUCALECRÍN S.COOP. GALEGA XUVENIL, with NIF/CIF: F-16845752 (hereinafter, the Controller). Contact details are as follows:

  • Address: R/ Ramón Aller, 67 – 4ºB, 36500 Lalín, Pontevedra
  • Phone: +34 687 37 46 67
  • Email: educalecrin@gmail.com
Registration of personal data

In accordance with the GDPR and LOPD-GDD, we inform you that personal data collected through forms on Educalecrín will be incorporated and processed in our file in order to facilitate, streamline, and fulfill the commitments established between Educalecrín and the User, or to maintain the relationship established in the forms filled out by the User, or to respond to a request or inquiry.

Unless exempted under Article 30.5 of the GDPR, a record of processing activities is maintained, specifying the activities carried out and other relevant aspects as established in the GDPR.

Principles applicable to personal data processing

The processing of User data will adhere to the following principles as per Article 5 of the GDPR and Article 4 of Organic Law 3/2018:

  • Lawfulness, fairness, and transparency: User consent will always be required after providing transparent information about the purposes of data collection.
  • Purpose limitation: Data is collected for specified, explicit, and legitimate purposes.
  • Data minimization: Only the data strictly necessary for its purposes will be collected.
  • Accuracy: Data must be accurate and kept up to date.
  • Storage limitation: Data will be kept only for as long as necessary for processing purposes.
  • Integrity and confidentiality: Data will be processed securely and confidentially.
  • Accountability: The Controller is responsible for compliance with the above principles.
Categories of personal data

Educalecrín processes only identifying information. In no case are special categories of personal data (as defined in Article 9 of the GDPR) processed unless explicitly indicated.

Should special categories be processed—such as data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, or data concerning a person’s sex life or sexual orientation—explicit consent will always be required.

Legal basis for data processing

The legal basis for processing personal data is consent. Educalecrín undertakes to obtain express and verifiable consent from the User for one or more specific purposes.

The User has the right to withdraw consent at any time. Withdrawing consent will not affect the legality of processing based on prior consent.

Where forms are used for inquiries or requests, it will be indicated if any fields are mandatory because they are essential for the operation.

Purpose of data processing

The data is collected to facilitate and fulfill commitments between the User and the Website or to handle User requests and inquiries.

Data may also be used for operational, statistical, and marketing purposes related to Educalecrín’s activities and to improve website content and navigation.

At the time of data collection, Users will be informed of the specific purposes of processing.

Data retention periods

Personal data will be kept for the minimum time necessary for its processing purposes, and in any case for no longer than 12 months or until the User requests deletion.

The User will be informed of the retention period or the criteria used to determine it.

Data recipients

User data will not be shared with third parties except where indicated.

Currently, the following service may access data:

  • Google Analytics

If the Controller intends to transfer data internationally, the User will be informed of the destination and adequacy decision of the European Commission if applicable.

Minors

In compliance with Articles 8 of the GDPR and 7 of Organic Law 3/2018, only those over the age of 14 may lawfully give consent. For children under 14, parental or guardian consent is required.

Data security and confidentiality

Educalecrín implements appropriate security measures to protect against unauthorized access, disclosure, alteration, or destruction of personal data.

The Website uses SSL (Secure Socket Layer) encryption to secure data transfer.

Although complete internet security cannot be guaranteed, the Controller will notify Users without undue delay of any data breach that may pose a risk to their rights and freedoms.

All data will be treated as confidential, and all persons with access are bound by legal or contractual confidentiality obligations.

Rights of the User

Users have the following rights under the GDPR and Organic Law 3/2018:

  • Right of access to verify if data is being processed and to obtain information.
  • Right to rectification of inaccurate or incomplete data.
  • Right to erasure (right to be forgotten) under specific conditions.
  • Right to restriction of processing under certain circumstances.
  • Right to data portability in a commonly used, machine-readable format.
  • Right to object to the processing of their personal data.
  • Right not to be subject to automated decisions, including profiling.

To exercise these rights, Users can contact the Controller with the subject “GDPR-educalecrin.com”, and include:

  1. Name, surname, and a copy of a valid ID.
  2. Specific request or information to access.
  3. Notification address.
  4. Date and signature.
  5. Any supporting documents.

Requests may be sent to:

Postal address: c/ Ramón Aller, 67 – 4ºB 36500 Lalín (Pontevedra)

Email: educalecrin@gmail.com

Links to third-party websites

The Website may contain links to third-party sites. Educalecrín is not responsible for their privacy practices. Each third party is responsible for their own data policies.

Complaints to supervisory authorities

If the User believes their data is being misused or rights are being violated, they may file a complaint with the appropriate data protection authority. In Spain, this is the Spanish Data Protection Agency (https://www.aepd.es/).

II. ACCEPTANCE AND CHANGES TO THIS PRIVACY POLICY

Users must have read and agree to this Privacy Policy, and consent to the processing of their data in accordance with the purposes, terms, and duration specified herein.

Educalecrín reserves the right to modify this policy at its discretion or due to legal, jurisprudential, or regulatory changes. Changes will not be explicitly notified, so Users are advised to check this page periodically.

This Privacy Policy was updated in compliance with Regulation (EU) 2016/679 and Organic Law 3/2018.