OpenEUdebate
Welcome to the Jean Monnet OpenEUdebate Network

Privacy Policy

I. PRIVACY AND DATA PROTECTION POLICY

As per the provisions established in current law, OpenEUDebate (hereinafter, also https://openeudebate.eu/) promises to adopt all necessary technical and organisational measures in accordance with the security level suited to the risk of the data compiled.

Laws incorporated into this privacy policy

This privacy policy is adapted to current Spanish and European law on online personal data protection. Specifically, it adheres to the following standards:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data (GDPR).
  • Organic Law 3/2018, of 5 December, on Personal Data Protection and Digital Rights Guarantee (LOPD-GDD).
  • Royal Decree 1720/2007, of 21 December, passing the Regulation which develops Organic Law 15/1999, of 13 December, on Personal Data Protection (RDLOPD).
  • Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI-CE).
Identity of the personal data controller

The CIF (tax ID) of OpenEUDebate is:Q2818013A and its contact information is the following:

In compliance with the provisions of the GDPR and LOPD-GDD, we inform you that any personal data gathered by OpenEUDebate through the forms appearing on its websites will be added to and processed in our archives in order to facilitate, streamline and fulfil the commitments established between OpenEUDebate and you (the User) or the maintenance of the relationship established in the forms you complete, or to respond to your request or query. Thus, in conformance with the provisions of GDPR and LOPD-GDD, except when adhering to the exception provided for in Article 30.5 of the GDPR, the Controller will maintain a register of processing activities which specifies, according to their purposes, the processing activities performed and the other circumstances established in the GDPR.

Principles applied to the processing of personal data

Your personal data will be processed in accordance with the following principles contained in Article 5 of the GDPR and in Article 4 and the following of Organic Law 3/2018, of 5 December, on Personal Data Protection and Guarantee of Digital Rights:

  • Lawfulness, loyalty and transparency principle: your consent will always be required for the processing of your personal data, and you will be given completely transparent information on the purposes for which this data will be processed.
  • Limitation of purpose principle: your personal data will be gathered for specific, explicit and legitimate purposes.
  • Data minimisation principle: all personal data collected will be strictly necessary in relation to the purposes for which it will be processed.
  • Accuracy principle: your personal data will be accurate and always kept up to date.
  • Storage limitation principle: personal data will be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data is processed.
  • Integrity and confidentiality principle: all personal data will be processed in a form which guarantees its security and confidentiality.
  • Accountability principle: the Data Controller will be responsible for ensuring that the previous principles are fulfilled.
Categories of personal data

The only category of data processed by OpenEUDebate is identifying data. Under no circumstances will the company process special personal data categories in the sense of Article 9 of the GDPR.

Legal basis for processing personal data

The legal basis for processing your personal data is your consent. OpenEUDebate promises to acquire your express and verifiable consent for the processing of your personal data for one or various specific purposes.

You have the right to withdraw your consent at any time. Retracting consent will be as easy as providing it. As a general rule, the retraction of consent will not affect the Website's use.

Whenever you, the User, are required or able to provide your data through forms for making enquiries, requesting information or reasons related to the content of the Website, you will be informed if the provision of your data is essential for the proper execution of the operation performed.

Purposes for which your personal data will be processed

Your personal data will be gathered and processed by OpenEUDebate for the purpose of facilitating, streamlining and fulfilling commitments established between the Website and you, the User, or for maintaining the relationship established in the forms you have completed or for responding to a request or enquiry.

Moreover, your data may be used for commercial purposes to support personalisation, operation and statistics, and activities inherent to the business objective of OpenEUDebate, as well as for the extraction and storage of data and marketing studies used to match the Content offered to your needs, as well as to improve quality, functioning and browsing on the Website.

Whenever personal data is obtained, you will be informed of the specific purpose or purposes of the handling to which your personal data will be subjected, that is, of the use or uses to be made of the information gathered.

How long your personal data will be kept

Your personal data will only be kept for the minimum time necessary for the aims of its processing and, as the case may be, only for the following period: 2 years, or until you request its deletion.

As soon as your personal data is obtained, you will be informed on the period for which your personal data will be kept or, when this is not possible, the criteria used to determine this period.

Personal data recipients

Your personal data will not be shared with third parties.

In any event, as soon as your personal data is obtained, you will be informed on the recipients or recipient categories of your personal data.

Personal data of minors

As per the provisions established in Article 8 of the GDPR and Article 7 of Organic Law 3/2018, of 5 December, on Personal Data Protection and Digital Rights Guarantee, you may only consent to the legal processing of your personal data by OpenEUDebate if you are 14 years or older. The personal data of minors under 14 years of age may only be processed with the consent of a parent or guardian, and the processing will only be legal in the extent to which this parent or guardian has authorised it.

Secrecy and security of personal data

OpenEUDebate promises to take all necessary technical and organisational measures, depending on the security level appropriate to the risk of the data gathered, to guarantee the security of your personal data and prevent the destruction, loss or accidental or illegal alteration of personal data transmitted, kept or processed in any other way, or the unauthorised communication of or access to this data.

However, since OpenEUDebate cannot guarantee the impregnability of the Internet nor the total absence of hackers or others who may access your personal data in a fraudulent way, the Data Controller promises to inform you, with no undue delay, in the occurrence of a personal data security breach likely to entail a significant risk to the individual rights and liberties of natural persons. According to the provisions of Article 4 of the GDPR, a personal data security breach is understood as any security violation which causes the destruction, loss or accidental or illegal alteration of personal data transmitted, kept or processed in any other way, or the unauthorised communication of or access to this data.

Personal data will be treated as confidential by the Data Controller, who promises to inform and guarantee, via legal or contractual obligation, that this confidentiality is respected by all employees, associates, and anyone to whom the Controller makes the information available.

Rights derived from the processing of personal data

You, the User, have over OpenEUDebate, and thus may exercise before the Controller, the following rights recognised in the GDPR and in Organic Law 3/2018, of 5 December, on Personal Data Protection and Guarantee of Digital Rights:

  • Right of access: You have the right to obtain confirmation on whether or not OpenEUDebate is processing your personal data and, if the answer is yes, obtain information on the specific personal data and the processing which OpenEUDebate has performed or is performing, as well as the origin of this data and the recipients of all completed or anticipated communications of it.
  • Right of rectification: You have the right to have inaccurate personal data rectified or completed if, considering the purposes of processing, this data is incomplete.
  • Right to erasure (“the right to be forgotten”): You have the right, unless established otherwise by current law, to have your personal data erased if it is no longer necessary for the purpose it was originally collected or processed for; you have withdrawn your consent to the processing and this processing has no other legal basis; you object to the processing and there is no overriding legitimate interest to continue it; your personal data has been processed illegally; your personal data must be erased to comply with a legal obligation; or your personal data has been obtained through a direct offer for information society services to a minor under 14 years of age. In addition to erasing the data, the Data Controller, considering the technology available and the cost of its application, must take reasonable measures to inform all parties responsible for processing your personal data of your request for any link to this data to be erased.
  • Right to restrict processing: You, the User, have the right to restrict the processing of your personal data. You have the right to obtain the restriction of processing if you contest the accuracy of your personal data; the data has been unlawfully processed; the Controller no longer needs the personal data, but you need the Controller to keep it to exercise a claim; and when you have opposed its processing.
  • Right to data portability: If the processing has been effectuated through automated means, you will have the right to receive your personal data from the Data Controller in a structured, commonly used and machine readable format, and to transmit this data to another data controller. Whenever it is technically possible, the Data Controller will transmit your data directly to this other controller.
  • Right to object: You have the right for your personal data not to be processed or for its processing by OpenEUDebate to cease.
  • Right not to be subject to a decision based solely on automated processing, including profiling: It is your right not to be subject to an individualised decision based solely on the automated processing of your personal data, including profiling, unless the current law states otherwise.

Thus, you may exercise your rights via written communication to the Data Controller with the subject heading "GDPR-OpenEUDebate", specifying:

  • Your name, surnames and a copy of your DNI (national ID card). In cases where the request may be submitted through a representative, it will be necessary to identify the person who represents the User through the same means and provide a document accrediting the representation. The photocopy of your DNI may be replaced by any other legally valid means of accrediting identity.
  • List of the specific motives of your petition or the information you wish to access.
  • Notification address.
  • Date and your signature.
  • Any documents which accredit the petition you have chosen to submit.

This petition, and all other documents attached, may be sent to the following mailing and/or email address:

Links to third-party sites

The Website may include links which make it possible to access the websites of third parties distinct from OpenEUDebate and thus not operated by OpenEUDebate. The owners of these websites will have their own data protection policies, the owners themselves being, in any event, responsible for their own archives and privacy practices.

Complaints to the supervisory authority

If you, the User, believe there is a problem or infraction of current law in the way in which your personal data is being processed, you will have the right to effective legal protection and to present a complaint before a supervisory authority, in particular, in the State where you habitually reside, where you work or where the supposed infraction has taken place. In the case of Spain, the supervisory authority is the Spanish Data Protection Agency (http://www.agpd.es).

Login

Did you forget your password? Do you want to sign up?
  1. Home
  2. Privacy Policy
We use own and third party cookies to display advertisements related to your preferences by navigation. If you continue navigating we consider that you accept the use of cookies. More info