List of active policies
Basic information on data protection
Data Controller: La Cooperativa Humanitaria SCCL
Purpose: Provision of services to interested individuals
Legitimation: Compliance with a mission of public interest (Art. 6.1.e GDPR)
Recipients: Data is not disclosed to individuals external to La Cooperativa Humanitaria SCCL
Rights of interested parties: The rights of access, rectification, erasure, opposition to processing, and request for limitation of processing can be exercised by contacting firstname.lastname@example.org (RGPD in the subject).
Below, you can find additional and detailed information on data protection:
The fundamental right to the protection of personal data is regulated by a set of rules aimed at safeguarding this right for individuals.
Recognizing the right to data protection as a fundamental right, La Cooperativa Humanitaria SCCL fully embraces the principles of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, regarding the protection of natural persons concerning the processing of personal data and the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation or GDPR), as well as Organic Law 3/2018, of December 5, 2018, on the Protection of Personal Data and guarantee of digital rights (LOPDGDD). These regulations provide guarantees to individuals regarding the processing of their data. We summarize below the criteria that La Cooperativa Humanitaria SCCL applies to the processing of data carried out through the services offered on our platforms.
Who is the data controller?
La Cooperativa Humanitária is responsible for processing the data of members who join the Moodle platform to attend a digital course or request information from our organization.
La Cooperativa Humanitária (VAT ID ESF55285787), with address C/ Varsovia no82, 08041 Barcelona, phone +34 687041190, email address email@example.com.
For what purposes do we process the data?
La Cooperativa Humanitária processes personal data primarily to provide academic services and complementary or derivative services related to its academic activities, always considering the rights of the individuals concerned.
We process data that is adequate, relevant, and limited to the purposes for which it was obtained. The main purposes include: Academic management of courses held on our platform and information about the activities and services provided by La Cooperativa Humanitária SCCL.
Management of data from our suppliers and employees.
We record and process data from suppliers from whom we obtain services or goods. These can be data from individuals acting on an individual basis, for example, as self-employed, and also data from representatives of legal entities. We obtain only the essential data to maintain the contractual or employment relationship and use them solely for this purpose.
Students and alumni
Data of individuals enrolled in courses that are no longer offered are recorded to maintain a relationship with former students and offer services. If someone wishes not to appear in this registry, they can request removal from the contact list.
Contact. We process data to address inquiries from people using the contact forms on our website. These are used solely for this purpose.
How do we obtain the data?
We obtain data primarily directly from the individuals and usually through specific forms for each purpose. The main process is through registration on our online platform.
How long do we retain the data?
The retention period for data is determined by various factors. It is mainly influenced by the fact that the data remains necessary to fulfill the purposes for which it was collected in each case. Secondly, data is retained to address potential liabilities arising from the processing of data by La Cooperativa Humanitaria SCCL and to respond to any requirements from public authorities or judicial bodies.
As a result, data is retained for the time necessary to fulfill the legal obligations, preserving its legal or informational value (the "limitation of the retention period" requirement of the General Data Protection Regulation). In the case of information certifying the training received by students, the data is retained permanently to preserve the rights of these students.
In certain cases, such as data in accounting documentation and invoicing, tax regulations require keeping them until the liabilities in this matter are prescribed.
In the case of data processed solely based on the consent of the data subject, it is retained until the individual revokes this consent.
What rights do individuals have regarding the data we process?
As envisaged by the General Data Protection Regulation (GDPR), individuals whose data we process have the following rights:
1. Right to Know if Data is Being Processed: Every person has the right to know whether we are processing their data, regardless of whether there has been a previous relationship.
2. Right to be Informed at Collection: When personal data is obtained directly from the data subject, at the time of providing it, they receive clear information about the purposes for which it will be used, who will be responsible for the processing, and the main aspects arising from this treatment.
3. Right to Access: This right includes knowing which personal data is being processed, the purpose of the processing, any communications to other individuals (if applicable), or the right to obtain a copy or know the expected retention period.
4. Right to Request Rectification: This is the right to request the correction of inaccurate data that we are processing.
5. Right to Request Deletion: In certain circumstances, there is the right to request the deletion of data when, among other reasons, it is no longer necessary for the purposes for which it was collected and justified the processing.
6. Right to Request Limitation of Processing: Also, in certain circumstances, the right to request the limitation of data processing is recognized. In this case, the data will cease to be processed and will only be retained for the exercise or defense of claims, in accordance with the General Data Protection Regulation.
7. Right to Data Portability: The right to obtain one's own personal data in a structured, commonly used, and machine-readable format is recognized.
8. Right to Object to Processing: An individual can invoke reasons related to their particular situation, which will result in the cessation of processing their data to the extent that it may cause them harm, except for legitimate reasons or the exercise or defense against claims.
How can these rights be exercised or defended?
The rights listed above can be exercised by sending an email to firstname.lastname@example.org, specifying GDPR in the subject line.
If a satisfactory response has not been obtained in the exercise of these rights, it is possible to file a complaint with the Catalan Data Protection Authority, using the forms or other channels accessible from their website (https://apdcat.gencat.cat/ca/inici/).