- Account controller
This account is controlled by CENTRO DE ESTUDIOS GRESOL, S.L., with tax identification number (N.I.F.) B08556995, which is a Spanish company with a registered office at Carretera de Sabadell a Matadepera, Km.6, 08227, Terrassa (Barcelona), and registered in the Trade Registry of Barcelona in Volume 24129, Page 16, Sheet B-64775 (hereinafter, “Gresol”).
Contact: dpo@gresolschool.com
- Purpose
The purpose of this document is to inform Users of Gresol’s official pages on internet social networks and online video platforms (hereinafter, referred to collectively as “Social Networks”) in relation to the processing their personal data undergoes.
- Personal data protection
3.1. What data are processed?
In general, Gresol does not extract data from Social Networks. Gresol only has access to the data that the User has decided to publish on Social Networks, such as his/her name, alias, nickname, photograph or avatar, and all other data included on the User’s profile.
3.2. What are these data used for?
These data are solely used to manage normal use of Social Networks, and Users may be answered publicly or privately, depending on the circumstances, or a message written by a User may be re-posted using the tools or functions available to this end on Social Networks.
3.3. Recipients of the data
In general, Gresol does not extract Users’ data from Social Networks, nor does it communicate them to third parties; however, simple use of the Social Network’s tools and functions (such as mentions or re-posting a message) involves communication of the User’s data to all other users of the Social Network in question.
The User must be aware of the consequences of using Social Networks.
3.4. Data storage
In general, Gresol does not extract Users’ data from Social Networks, therefore, the data are stored exclusively on the information systems of the Social Network in question.
These systems are usually located in countries outside the European Union whose legislation does not offer a suitable level of data protection in the opinion of the European authorities.
However, some Social Networks may adhere to programs or working frameworks to guarantee their commitment to European data protection standards, such as the Privacy Shield (https://www.privacyshield.gov/).
Gresol recommends that the User consult the privacy terms and conditions of the Social Network in question and verify the guarantees it offers in terms of data protection.
3.5. Legal base that legitimizes processing
The legal base that legitimizes the processing indicated is the User’s express consent, which is granted by accepting the privacy terms and conditions of the Social Network in question and the link with Gresol that the User has authorized or requested.
Consent may be withdrawn at any time using the Social Network’s mechanisms to remove the link with Gresol.
3.6. Data processing time frames
Given the nature of the processing developed by Gresol, the data pertaining to Social Network Users will be processed indefinitely until the User exercises his/her right to suppression.
3.7. What rights does the User have and how can they be exercised?
Data protection regulations guarantees the following rights to Users:
- Access: Allows the User to find out what information is stored, from where it has been obtained, to whom it has been facilitated and for what purposes it is processed.
- Rectification: Allows the User to rectify any erroneous or out of date data.
- Suppression: Allows the User to ensure his/her data is no longer processed.
- Opposition: Allows the User to ensure his/her data are no longer used for a specific purpose.
- Limitation: Allows the User to restrict processing of his/her data such that they are stored for a subsequent purpose.
- Portability: Allows the User to obtain a copy of his/her data in electronic format and, in certain circumstances, request that they be communicated to another service provider. This is only applicable for computerized processing developed with the User’s consent or to fulfil a contract.
Users may exercise these rights by writing to Gresol at the aforementioned postal address or email address, confirming their identity by attaching a copy of their ID document and certifying their status of User of a specific Social Network.
However, in general, Gresol does not extract User data from Social Networks, therefore, there will be certain rights that Gresol may not facilitate to Users.
If Users require further information in this regard, or if they believe their right to data protection has been violated, they may contact the Spanish Data Protection Agency (www.aepd.es) or GRESOL’S Data Protection Officer (dpo@gresolschool.com).
- Liability for Social Networks
Gresol is not liable for the actions, tools, mechanisms, functions or procedures inherent to Social Networks.
Any claim due to a violation caused by a specific Social Network should be addressed to the company that manages or is responsible for said Social Network.