PRIVACY POLICY
YWAM MADRID

WEBSITE PRIVACY POLICY

 1. INFORMATION FOR THE USER

 YOUTH WITH A MISSION, hereafter the DATA CONTROLLER is responsible for the processing of the USER’s personal data, and informs the same that this data will be treated in accordance with the provisions set out by the (EU) Regulation 2016/679 of 27 April 2016 (GDPR), for which it provides the following information about data processing:

PURPOSES OF PROCESSING:

Activities related to the development of the activity carried out by YOUTH WITH A MISSION. If the DATA CONTROLLER plans to further process the personal data for a purpose other than that for which it was collected, they will provide the data subject, prior to said subsequent treatment, information about the additional purpose and any additional information. The data will not be processed in a manner inconsistent with those purposes; the further processing of personal data for archival purposes in the public interest, for scientific and historical research or statistical purposes shall not be considered incompatible with the initial purpose.

Personal data will not be used for automated processing for profiling nor will they be used to make any decisions based solely on automated processing, including profiling.

PERIOD DATA WILL BE RETAINED:

Data will be retained as long as necessary for the purposes of authorized processing.

LAWFUL BASIS:

The data subject’s consent and data processing necessary to carry out the requested activity. The legal basis for processing: Art. 9.2.a and Art.6.1 a and b GDPR.

RECIPIENTS:

Transfer of data

The data subject’s data will only be transferred by legal obligation or for reasons related to the service offered by YOUTH WITH A MISSION through a service delivery contract with the Data Processor.

Transfer to third countries

The transfer of data to third countries or international organizations is not foreseen. In the event that the Data Controller foresees the transfer of personal data to third countries, the data subject must be informed in advance.

RIGHTS:

Right to withdraw consent and rights of access, rectification, deletion, limitation, opposition and data portability.

HOW YOU MAY EXERCISE YOUR RIGHTS:

You can exercise the rights of access, rectification, deletion, limitation, opposition and data portability, by contacting the DATA CONTROLLER at Plaza Grande, 1, Torrejón de Ardoz, 28850 Madrid; email: [email protected].

RIGHT TO WITHDRAW CONSENT:

The withdrawal of consent shall not affect the lawfulness of data processing based on consent before its withdrawal.

RIGHT TO LODGE A COMPLAINT WITH THE SUPERVISORY AUTHORITY (AEPD)

CONTACT DETAILS OF THE DPO:

Avenida Brasil 17, 28020 Madrid. Email: d[email protected]

2. COMPULSORY OR OPTIONAL NATURE OF THE INFORMATION PROVIDED BY THE USER

By marking the corresponding boxes and entering data in the fields, marked with an asterisk (*) in the contact form or presented in download forms, USERS expressly and freely and unequivocally accept that their data are necessary for the supplier to meet their request; the inclusion of data in the remaining fields being voluntary. USERS guarantee that the personal data provided to the DATA CONTROLLER are true and are responsible for communicating any modification thereof.

The DATA CONTROLLER informs and expressly guarantees USERS that their personal data shall not in any case be transferred to third parties, and that whenever they make any kind of transfer of personal data, the express, informed and unequivocal consent of the USERS shall be requested in advance. All data requested through the website is mandatory, as they are necessary for the provision of an optimal service to the USERS. In case not all the data are provided, it is not guaranteed that the information and services provided will be completely adjusted to your needs.

3. SECURITY MEASURES

That in accordance with the provisions in the regulations in force on personal data protection, the DATA CONTROLLER complies with all the provisions of the GDPR regulations for the processing of personal data under its responsibility, and manifestly within the principles described in article 5 of the GDPR, for which they are processed in a lawful, loyal and transparent manner in relation to the data subject and adequate, pertinent and limited to what is necessary in relation to the purposes for which they are processed.

The DATA CONTROLLER guarantees that they have implemented appropriate technical and organizational policies to apply the security measures established by the GDPR in order to protect the rights and freedoms of the Users and has communicated the appropriate information so that they can exercise them.

SOCIAL MEDIA PRIVACY POLICY

1. INFORMATION FOR THE USER

Who is the DATA CONTROLLER in charge of processing your personal data?

YOUTH WITH A MISSION, hereafter the DATA CONTROLLER, informs the USER that they have created profiles on social media networks such as Facebook, Instagram, Twitter, LinkedIn, YouTube, Vimeo and Google +, responsible for the processing of the USER’s personal data on said networks, and informs the USER that the data will be treated in accordance with the provisions set out by the (EU) Regulation 2016/679 of 27 April 2016 (GDPR), the Organic Law 3/2018 of 5 December (LOPDGDD) for which it provides the following information about data processing:

What is the purpose of processing your personal data?

 Purpose of processing: to maintain a relationship between the USER and the DATA CONTROLLER that may include the following operations:

  • To process requests and enquiries submitted to the DATA CONTROLLER.
  • To provide information about activities and events organized by the DATA CONTROLLER.
  • To provide information about products or services offered by the DATA CONTROLLER.
  • To interact through official profiles.

Why do we process your personal data?

Legal basis of the processing: Article 6 of GDPR, the data subject has given consent to the processing of his or her personal data for one or more specific purposes. The USER has a profile on the same social network and has decided to join the social network of the DATA CONTROLLER thereby showing interest in the information published on it, therefore, when requesting to follow our official profiles, he/she provides us with his/her consent for the processing of those personal data published on his/her profile.

The USER may access the privacy policies of the social network in question at any time and set up their profile to ensure that their privacy is protected.

The DATA CONTROLLER has access to and processes the USER‘s public information, especially their contact name. These data are only used within the social network itself and will only be incorporated into a file owned by the DATA CONTROLLER when necessary to process the USER‘s request.

How long is your personal data stored?

 Data retention criteria: data will be kept as long as the USER does not revoke the consent given as indicated in this privacy policy.

To whom do we give your personal data?

Communication of the data: the information provided by the USER through the DATA CONTROLLER’s social networks, including their personal data, can be published, always depending on the services that the USER accesses, so it may be publicly available to other third-party USERS of social networks. From the profile of each social network, the USER can configure what information to make public in each case, view the permissions that have been granted, delete or disable them, as with any third-party application that they no longer wish to use.

No communication of personal data to third parties outside the network is foreseen, unless it were necessary for the development and implementation of the aims of the data processing, to our communications service providers with which we have signed contracts of confidentiality and data processing as required by the current privacy legislation.

What are your rights?

 User’s rights: these can only be satisfied in relation to the information which is under the control of the DATA CONTROLLER.

  • The right to withdraw consent at any time.
  • The right of access, rectification, portability and deletion of your data and the limitation or opposition of its processing.
  • Right to claim a claim with the supervisory authority (aepd.es) if you consider that the data processing does not comply with current regulations.

Contact information for you to exercise your rights:

YOUTH WITH A MISSION: Plaza Grande, 1 – 28850 Torrejón de Ardoz (Madrid). E-mail: [email protected]

Contact details of the Data Protection Officer: Avenida Brasil, 17, 28020 Madrid. Email: [email protected]

2. USE OF THE PROFILE

The DATA CONTROLLER may carry out the following:

  • Access public profile information.
  • Publication on the USER‘s profile of all information already published on the DATA CONTROLLER‘s social network.
  • Send personal and individual messages via the social network’s channels.
  • Update the status of the page, which shall then appear on the USER‘s profile.

The USER may at all times control their connections, remove any content that no longer interests them, and restrict with whom they share connections, for which they must access their privacy settings.

3. PUBLICATIONS

The USER, once having joined the DATA CONTROLLER’s page, may publish on it comments, links, images or photographs, or any other type of multimedia content supported by the social network. The USER must, in every case, be the owner of the published content, have copyright and intellectual property rights, or the consent of the third parties in question.

It is strictly prohibited to post anything, whether in the form of texts, graphics, photographs, videos, etc., that violates, or is likely to violate, standards of morals, ethics, good taste, or decorum; and/or that may infringe on, contravene, or violate intellectual or industrial property rights, image rights, or the law.

In these cases, the DATA CONTROLLER reserves the right to immediately withdraw the content, being authorised to request permanent blockage of the USER.

The DATA CONTROLLER shall not be responsible for the contents that a USER has freely published.

The USER should remember that other users have access to their posts, therefore, they are primarily responsible for their own privacy.

The images that may be published on the social network shall not be stored in any file by the DATA CONTROLLER but will remain in the social network.

4. DATA OF MINORS OR PEOPLE WITH SPECIAL NEEDS

Access and registration to the DATA CONTROLLER‘s social networks is prohibited to persons under 18 years of age. Therefore, if the USER has special needs, the intervention of their legal guardians or their legal representation shall be required by means of valid documentation attesting representation.

The DATA CONTROLLER expressly disclaims any liability arising from the use of social networks by minors or people with special needs. The DATA CONTROLLER‘s social networks do not knowingly collect any personal information from minors, so if the USER is a minor, they should not register with or use the DATA CONTROLLER’s social networks nor provide any personal information.