Details of the person responsible for data processing:
The operator of this website and responsible for the content is the Canarina Foundation for Nature and the Environment (hereinafter referred to as the Canarina Foundation) with its registered office at Schützenstraße 24, 78462 Konstanz/Germany. German tax number 09041/20572. Telephone: +49 7531 365580. Authorised representatives: Ms Anne Striewe, Ms Ines Eckert and Mr Elmar Uricher.
E-mail of the data protection coordinator: email@example.com
General contact e-mail: firstname.lastname@example.org
The Data Protection Policy has been developed in accordance with the provisions of the European Data Protection Regulation RGPD 679/2016 of 27 April and the Organic Law on the Protection of Personal Data and the Guarantee of Digital Rights LOPDGDD in 3/2018 of 5 December. The aforementioned policy may change due to changes in legislation and/or case law, which will be announced in this case.
Purpose of processing of personal data:
The data is processed for the purpose of providing the service and facilitating the information requested by the interested party.
Legal basis for processing:
The legal basis justifying the processing of the data subject’s personal data is set out in Article 6 of the General Data Protection Regulation.
The processing is only lawful if at least one of the following conditions is met:
(a) the data subject has given consent to the processing of his or her personal data for one or more specific purposes;
(b) processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures at the request of the data subject;
(c) processing is necessary for compliance with a legal obligation to which the controller is subject;
(d) processing is necessary for the protection of the vital interests of the data subject or another natural person;
(e) processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
(f) processing is necessary for the purposes of the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.
Data collected and type of legitimation:
In the case of transmission, this falls under Article 21.2 of LSSI-CE 34/2002 and the authorisation may be revoked at any time by the data subject in accordance with Article 22 of the same law.
Accuracy and truthfulness of the data provided:
The user who sends the information to FUNDACIÓN CANARINA is solely responsible for the accuracy and veracity of the data contained therein and releases FUNDACIÓN CANARINA from any responsibility in this regard.
In any case, the interested parties guarantee and are responsible for the correctness, validity and authenticity of the personal data transmitted and undertake to keep it duly updated. Therefore, the user undertakes to provide complete and correct information in the registration or application form.
FUNDACIÓN CANARINA shall not be held responsible for the truthfulness of information that it has not produced itself and for which it indicates another source, nor shall it accept any responsibility for hypothetical damages that may arise from the use of such information.
FUNDACIÓN CANARINA shall not be held liable for any damages that the user may suffer as a result of errors, defects or omissions in the information provided by FUNDACIÓN CANARINA, insofar as it comes from external sources.
Recipients and disclosure of data:
There will be no disclosure of data to third parties unless such disclosure is required by law, in which case it will be to an administration or public body.
Time and criteria for data retention:
The data will be kept for at least 4 years or longer if there are notifications, and in any case until the data subject requests its cancellation.
Security measures applied:
Security measures are implemented according to the criteria of confidentiality, integrity and availability. These include restricted access to information, the use of firewalls and anti-virus programmes, and the creation of back-up copies and images of the systems concerned in order to avoid any eventuality.
Exercise of rights:
Data subjects have the right to request from the controller access to, rectification or erasure of, restriction of or opposition to processing of, and portability of, their personal data by sending the request to the email address email@example.com. You also have the right to lodge a complaint with the supervisory authority (Spanish Data Protection Agency https://www.aepd.es). You also have the right to withdraw your consent at any time.