- MAIN PREMISES REGARDING USER PRIVACY AND DATA PROTECTION
For us, the privacy of users and the protection of their data are human rights.
It is our duty to process users' data respectfully.
Data are a liability and should only be gathered and processed when absolutely necessary.
We hate spam and so we’ll never send, rent out or publish your personal details.
- DATA CONTROLLER
THE AGRICULTURAL TECHNOLOGICAL INSTITUTE OF CASTILE AND LEON
CTRA. BURGOS-PORTUGAL KM. 119
47071 VALLADOLID, SPAIN
Fiscal ID No. (CIF): Q4700613E
Data protection and privacy contact: email@example.com
3.1 Why do we process your personal data?
At the Duero International Wine Fest, we process the data supplied to us by data subjects for the purpose of:
3.1.1 Site visitation tracking (Google Analytics)
Like most websites, we use Google Analytics (GA) to track user interactions. We use this data to establish the number of people using our website and to better understand how they find and use our sections within the site.
Although GA records data such as geographic location, device, web browser and operating system, this information is not used by Duero International Wine Fest
for drawing up profiles or any kind of processing. We are not able to use this data to personally identify users. GA also stores the users’ IP addresses, information we can use to identify them personally, but Google does not give us access to this.
At Duero International Wine Fest, we regard GA as a third-party data processor (see Part 5).
3.1.2 To administer the sending of the information they request of us.
Requests for information or to resolve doubts should be made by sending an email to: firstname.lastname@example.org
The data will be received in a Duero International Wine Fest email account and will be stored. It may be used to help reply to the doubts raised, information on services, quotes and/or sales/marketing actions. These emails and the data they contain will not be forwarded to third parties.
NB: As a user, avoid entering personal or sensitive data into the text field, as it is not designed for this purpose and the Duero International Wine Fest has no resources to verify it in this way.
3.2 How long will we keep your data?
The personal data supplied shall be kept until its deletion is requested by the data subject, exercising his or her rights over the data.
- LAWFUL BASIS
In line with our business model and computer systems, this website is designed to comply with the following national and international laws with regard to data protection and user privacy:
Regulation (EU) 2016/679 (the General Data Protection Regulation or GDPR)
This website’s compliance with the aforementioned legislation means that it is probably compatible with the data protection laws and user privacy legislation of many other countries and territories. If you are not sure whether this website complies with specific legislation on data protection and user privacy in your country of residence, please contact our head of data protection and privacy (whose details are to be found in Part 2) for clarification.
We use a third-party service (Amazon Web Services, Inc., via its subsidiaries and branches in the European Union) to process and store data on our behalf. In such cases, this third-party service acts as the data processor.
The service was carefully chosen by Duero International Wine Fest due to its degree of maturity in complying with the regulations specified in Section 4. The service we use is located in the USA and currently complies with the EU-US Privacy Shield framework
6.1 What are your rights when you supply us with your data?
Everyone has the right to receive confirmation as to whether, at the Duero International Wine Fest, we are processing personal data on them.
Data subjects have the right to access their personal data and to request the rectification of inaccurate data or, if applicable, its deletion when, amongst other reasons, retention of the data is no longer necessary for the purpose for which it was collected.
Under certain circumstances, data subjects may request the restriction of the processing of their data, in which case we shall only keep it for the pursuing of or defence against complaints.
Under certain circumstances, due to their particular situation, data subjects may object to the processing of their data. Duero International Wine Fest, S.A. will cease processing data, except on compelling legitimate grounds, or for the pursuing of or defence against possible complaints.
6.2 How can you contact us to exercise your rights?
There are a number of different ways for users to exercise their rights over the Duero International Wine Fest’s processing of their personal data. They can make requests by writing, in person or by email to email@example.com
They may also make a request to exercise their rights to access, rectification, deletion or objection via the contact form made available to the data subjects by the Duero International Wine Fest. To be able to exercise their rights to access, rectification, deletion or objection, data subjects contacting the Duero International Wine Fest must be able to prove their identity so that the controller can match it with the data stored. As controller of the data supplied by means of this website’s forms, after receiving any notification from users regarding the exercising of their rights to access, rectification, deletion or objection with regard to their personal data, the Duero International Wine Fest shall inform the data subject of the actions carried out within one month (which may be extended to two months in the case of particularly complex requests, with notice of this extension being provided within the first month).
- SOURCE OF THE DATA
All the data is collected directly from the website and always after it has been supplied by data subjects using the forms provided to this end. It is not collected in any other way.
This website’s cookie policies are detailed on the site. Cookies are only stored on your browser after receipt of the user’s explicit consent (never by default or by continuing to browse). Cookie log levels can be changed by users at any time by using the tool provided by the website.
- DATA BREACHES
The Duero International Wine Fest will provide notice of any data breach affecting the database used by this website, or affecting any of our third-party services, to anyone whose data may be affected, and to the authorities, within 72 hours of becoming aware of the breach.
- SECURITY MEASURES
Pursuant to the provisions of applicable data protection regulations, the CONTROLLER is complying with all the stipulations of provisions on the processing of the personal data for which it is responsible, and particularly with the principles set forth in Article 5 of the GDPR. It is thus processed lawfully, fairly and in a transparent manner in relation to the data subject and in a way that is adequate, relevant and limited to what is necessary in relation to the purposes for which it is processed.
The CONTROLLER guarantees that it has implemented the appropriate technical and organisational measures to apply the security measures established by the GDPR to protect Users’ rights and freedoms and has furnished them with sufficient information so that they may exercise them.
A cookie is a small file sent by a website and stored in a user’s browser or device, allowing the website to query the user’s prior activity. Amongst other things, cookies allow websites to store and retrieve information on a user’s or a device’s browsing habits and, depending upon the information they contain and the way the device is used, they may be used to recognise the user.
This website uses the following cookies:
Cookies strictly necessary for providing certain services expressly requested by users: if these cookies are disabled, you will not be able to receive our content and services correctly.
Session cookies, designed to gather and store data whilst users access a website.
Persistent cookies, a type of cookie where the data remains stored in the user’s browser and can be accessed and processed for a period of time defined by the party responsible for the cookie, which can vary from a few minutes to a number of years.
Cookies from social networks, such as Twitter Badge, Facebook Connect and Pinterest, which control interactions with external social network widgets.
It is also possible that, on visiting a website or opening an email containing and advertisement or promotion regarding our products or services, a cookie is installed in your browser, which we will subsequently use to show you advertising associated with the search you have performed, perform monitoring of our advertisements with regard to, for example, the number of times they are viewed, where they appear, when they are viewed, etc.
Users can permit, block or delete cookies installed on their device by configuring the options/preferences of the browser installed on it. If the installation of cookies in your browser is not permitted, it may be that you cannot access some sections of our website.
All modern browsers allow you to change your cookie settings. These settings are usually found under the ‘Options’ or ‘Preferences’ menu of your browser:
Chrome, at http://support.google.com/chrome/bin/answer.py?hl=es&answer=95647
Explorer, at http://windows.microsoft.com/es-es/windows7/how-to-manage-cookies-in-internet-explorer-9
Firefox, at http://support.mozilla.org/es/kb/habilitar-y-deshabilitar-cookies-que-los-sitios-we
Safari, at http://support.apple.com/kb/ph5042