Skip to content

PRIVACY POLICY

acmarkitektur.com

 

I. PRIVACY POLICY AND DATA PROTECTION

In compliance with the provisions of current legislation, ACM Architecture (hereinafter also the Website) undertakes to adopt the necessary technical and organizational measures, according to the level of security adapted to the risk of the data collected.

Laws covered by this Privacy Policy

This privacy policy is adapted to Spanish and European regulations regarding the protection of personal data on the Internet. Specifically, it respects the following rules:

      • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).
      • Organic Law 3/2018, of December 5, on the Protection of Personal Data and the Guarantee of Digital Rights (PDLR).
      • Royal Decree 1720/2007, of 21 December, approving the Regulation for the development of Organic Law 15/1999, of 13 December, on the Protection of Personal Data.
      • Law 34/2002, of July 11, on Information Society and Electronic Commerce Services.

    Identity of the person responsible for the processing of personal data

    The person responsible for the processing of personal data collected at ACM Architecture is Aroa Centeno Macias, Tax ID: 34108936M (hereinafter, the data controller). Here are your contact details:

    The controller of the personal data collected in ACM Architecture is: with Tax ID/CIT number: and is registered with the following registration details:. Its representative is: (hereinafter, the controller). Here are your contact details:

    Address: Santxoenea Street, 4W, 20100 Errenteria, Gipuzkoa

    Contact phone number: 655714139

    Contact email: aroarkit@gmail.com

     

    Personal data registration

    In compliance with the provisions of the GDPR and the GDPR, we inform you that the personal data collected by ACM Architektur through the forms created on its pages will be incorporated into our file and processed in order to facilitate, facilitate and fulfill the commitments established between ACM Architektur and the User, or to maintain the relationship established in the forms filled out by ACM Architektur, or to respond to a request or query. Likewise, in accordance with the provisions of the GDPR and the GDPR, a record of processing activities is maintained, which, according to its purposes, specifies the processing activities carried out and the other circumstances established in the GDPR.

    Principles applicable to the processing of personal data

    The processing of the user’s personal data must comply with the following principles contained in article 5 of the GDPR and article 4 of Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights:

     

        • Principle of legality, loyalty and transparency: The user’s consent will be required at all times, after providing completely transparent information about the purposes for which personal data is collected.
        • Purpose limitation principle: personal data will be collected for specified, explicit and legitimate purposes.
        • Data minimization principle: the personal data collected will only be those that are strictly necessary for the purposes for which they are processed.
        • Accuracy principle: personal data must be accurate and always kept up to date.
        • Principle of limitation of the retention period: personal data will only be kept in a form that allows the User to be identified for the time necessary for the purposes of the processing.
        • Principle of integrity and confidentiality: personal data will be processed in a way that guarantees their security and confidentiality.
        • Principle of proactive responsibility: the controller will be responsible for ensuring that the above principles are met.

       

      Categories of personal data

      The categories of data processed in the ACM Architecture are only identification data. Special categories of personal data are not processed in any way, in line with Article 9 of the GDPR.

      The categories of data processed in the ACM Architecture are both identification data and special categories of personal data, within the meaning of Article 9 of the GDPR.

      Special categories of personal data are those revealing: ethnic or racial origin, political opinions, religious or philosophical beliefs, trade union membership and the processing of genetic data, biometric data for the unique identification of a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation.

      To process special categories of personal data, the user’s explicit consent will be required for one or more specific purposes.

      Legal basis for the processing of personal data

      The legal basis for the processing of personal data is consent. ACM Architecture undertakes to request the User’s specific and verifiable consent to process their personal data for one or more specific purposes.

      The user has the right to withdraw their consent at any time. Withdrawing consent will be as easy as granting it. As a general rule, withdrawing consent will not affect the use of the Website.

      When the user must or may provide their data through forms to make inquiries, request information or for reasons related to the content of the website, they will be informed if the completion of any of them is mandatory, as they are essential for the proper development of the operation carried out.

       

      Purposes of personal data processing

      ACM Arquitectura collects and manages personal data in order to facilitate, expedite and fulfill the commitments established between the website and the user, or to maintain the relationship established in the forms filled out by the latter or in response to a request or query.

      Likewise, the data may be used for commercial purposes: personalization, operational and statistical, and activities inherent to the social purpose of ACM Architecture, as well as for data extraction, storage and marketing studies, to adapt the content offered to the user, and to improve the quality, operation and navigation of the website.

      At the time personal data is obtained, the user will be informed of the specific purposes for which the personal data will be processed, that is, the use or uses that will be made of the information collected.

       

      Personal data retention periods

      Personal data will only be retained for the minimum period necessary for processing, and in any case only for the following period: one year, or until the user requests the deletion of the data.

      When personal data is obtained, the user will be informed of the period for which the personal data will be stored or, where this is not possible, of the criteria used to determine this period.

       

      Recipients of personal data

      The user’s personal data will not be shared with third parties.

      In any case, at the time personal data is obtained, the user will be provided with information about the recipients or categories of recipients of the personal data.

      The user’s personal data will be shared with the following recipients or categories of recipients:

      Aroa Centeno Macias con domicilio en Santxoenea Kalea, 4W, 20100 Errenteria, Gipuzkoa

      If the controller intends to transfer personal data to a third country or international organisation, the user will be informed at the time the personal data are obtained of the third country or international organisation to which the data are intended to be transferred, as well as whether or not the Commission has made a decision to adapt the data.

       

      Personal data of minors

      In accordance with the provisions of Article 8 of the GDPR and Article 7 of Organic Law 3/2018, of December 5, on the Protection of Personal Data and the Guarantee of Digital Rights, only those over the age of 14 may give their consent to the lawful processing of their personal data by ACM Arquitectura. In the case of minors under the age of 14, the consent of their parents or guardians will be required for the processing, and the processing will only be considered lawful to the extent that they have given their consent.

       

      Confidentiality and security of personal data

      ACM Architecture undertakes to take the necessary technical and organizational measures, according to the level of security adapted to the risk of the data received, to ensure the security of personal data and to prevent the unauthorized access or communication of personal data transmitted, stored or otherwise processed.

      The website has an SSL (Secure Socket Layer) certificate, which ensures that personal data is transmitted securely and confidentially, since the transmission of data between the server and the user, and in the return, is fully encrypted.

      However, since ACM Architecture cannot guarantee the impenetrability of the Internet, nor the absence of hackers or others who fraudulently access personal data, the data controller undertakes to notify the User without undue delay if the security of personal data is breached and this could result in a significant risk to the rights and freedoms of natural persons. In accordance with Article 4 of the GDPR, a breach of security of personal data is considered any breach of security that leads to the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or to the unauthorized disclosure or access of such data.

      The data controller will treat personal data as confidential. The controller undertakes to inform and guarantee that this confidentiality will be respected by its employees, associates and any person to whom the information is made available, by means of a legal or contractual obligation.

       

      Rights arising from the processing of personal data

      The user has control over the ACM Architecture and, therefore, may exercise the following rights recognized in the GDPR and in Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights, before the data controller:

          • Right of access: The user has the right to confirm whether ACM Architektur is processing their personal data and, if so, to obtain information about their specific personal data and the processing that ACM Architektur has carried out or is carrying out, as well as, among other things, information about the origin of said data and the recipients of communications made or planned regarding said data.
          • Right to rectification: The user has the right to modify their personal data if they are incorrect or, taking into account the purposes of the processing, incomplete.
          • Right to erasure (“right to be forgotten”): Unless otherwise provided by applicable law, the user has the right to have their personal data erased if the data are no longer necessary for the purposes for which they were collected or processed; if the user has withdrawn consent to the processing and there is no other legal basis for the processing; if the user objects to the processing and there are no other legitimate grounds for continuing the processing; if the personal data have been processed unlawfully; if the personal data must be erased for compliance with a legal obligation; or if the personal data were obtained as a result of a direct offer of information society services to a minor under 14 years of age. In addition to erasure, the controller, taking into account available technology and the cost of its implementation, must take reasonable steps to inform the controllers processing the personal data of the data subject’s request to erase any link to such personal data.
          • Right to restriction of processing: This is the right of the user to restrict the processing of their personal data. The user has the right to obtain restriction of processing when they contest the accuracy of their personal data; when the processing is unlawful; when the controller no longer needs the personal data, but the user needs them to make claims; and when the user has objected to the processing.
          • Right to data portability: If the processing is carried out by automated means, the user has the right to receive his/her personal data from the controller in a structured, commonly used and machine-readable format and to transmit it to another controller. Whenever technically possible, the controller will transmit the data directly to the other controller.
          • Right to object: The user has the right to object to the processing of their personal data or to have ACM Architecture suspend the processing of this data.
          • The right not to be subject to a decision based solely on automated processing, including profiling: The user has the right not to be subject to an individualized decision based solely on automated processing of their personal data, including profiling, unless otherwise established by current legislation.

         

        Thus, the user may exercise their rights by sending a written notification to the data controller with the reference “RGPD-acmarkitektur.com”, specifying the following:

            • Name, surnames and copy of the user’s national identity card. In cases where representation is accepted, it will also be necessary to identify the person representing the user by the same means, as well as a document that certifies the representation. A photocopy of the national identity card may be replaced by any other legally valid means that certifies identity.
            • The request, with the specific reasons for the request or the information sought.
            • Address for notifications.
            • Date and signature of the applicant.
            • Any document that verifies the request made.

          This application and any other attached documents can be sent to the following address and/or email:

          Postal address: Santxoenea street, 4W, 20100 Errenteria, Gipuzkoa

          Email: aroarkit@gmail.com

           

          Links to third-party websites

          The website may contain hyperlinks or links that allow access to third-party websites other than ACM Arquitectura, and therefore not operated by ACM Arquitectura. The owners of these websites will have their own data protection policies and will be responsible, in each case, for their files and privacy practices.

           

          Complaints to the supervisory authority

          If the user believes that there is a problem or infringement of the current regulations regarding the processing of his/her personal data, he/she has the right to effective judicial protection and to file a complaint with a supervisory authority, in particular in the country of his/her habitual residence, place of work or place of the alleged infringement. In the case of Spain, the supervisory authority is the Spanish Data Protection Agency (https://www.aepd.es/).

           

          II. ACCEPTANCE AND MODIFICATIONS TO THIS PRIVACY POLICY

          It is necessary for the user to have read and agree to the terms of protection of personal data contained in this privacy policy, as well as to accept the processing of their personal data, so that the data controller can proceed with the processing in the manner, within the time limits and for the purposes indicated. Using the website implies acceptance of the Website Privacy Policy.

          ACM Arquitectura reserves the right to modify its Privacy Policy at its discretion, or as a result of a change in the law, jurisprudence or doctrine of the Spanish Data Protection Agency. Changes or updates to this Privacy Policy will not be explicitly communicated to the User. The User is advised to consult this page periodically to be informed of the latest changes or updates.

          This privacy policy was updated to adapt to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and to Organic Law 3/2018 of 5 December on the Protection of Personal Data and the Guarantee of Digital Rights.

          On 12/04/2024, this website Privacy Policy document was created using the free online web privacy policy template generator.