UD ES-EU

Privacy Policy

This privacy policy regulates the processing of personal data provided by users and interested parties in the services offered by the University of Deusto in accordance with the provisions of the General Data Protection Regulation 2016/679 of the European Parliament and of the Council of April 27, 2016.

The purpose of this Privacy Policy is to explain how personal data is collected, processed, and protected by the University of Deusto, and its clauses are aimed at:

  • To anyone requesting information related to any of the products and services offered by the University of Deusto.
  • The owner of the personal data collected through the various paper forms or available on the University of Deusto website.
  • The holder of the contracts signed with the University of Deusto.

It also regulates the processing of personal data provided in the past through various channels of contact with the University of Deusto with reference to this Policy, provided that it does not contradict what was expressly accepted at the time the data was provided, which will be respected in all cases.

RESPONSIBLE OF THE TREATMENT

Entity: Univeristy of Deusto
NIF: R4868004E
Mailing address: Avenida de las Universidades, 24 – 48007 Bilbao
Telephone: 94 413 94 30
e-mail: privacidad@deusto.es

PURPOSES OF PERSONAL DATA PROCESSING

The University of Deusto processes personal data collected for the provision of academic and non-academic services and for sending communications by physical and electronic means relating to our activities and services, as well as for creating profiles linked to the preferences of users and interested parties, without this implying the adoption of automated decisions that generate effects for individuals.

With regard to each of the services offered, users will find a specific information policy on this privacy portal relating to the processing of personal data requested for the provision of the service in question.

SOURCE OF DATA

The personal data collected comes directly from the information provided by the interested parties or from the University’s information systems.

The University of Deusto obtains its data from:

  • The information you provide us through the various web forms and on paper that the University makes available to you for obtaining information,
  • User registration management on University service portals.
  • The information you provide us through the various contracts you may sign with the University.

In general, the categories of personal data we will process are:

  • identifying data.
  • contact data.
  • academic data.
  • professional data.
  • economical data.
  • laboral data.

ACCURACY AND TRUTHFULNESS OF THE DATA PROVIDED

Users and interested parties in the activities and services of the University of Deusto guarantee and are responsible, in any case, for the accuracy, validity, and authenticity of the personal data provided, and undertake to keep them duly updated.

CONSERVATION

The personal data provided by users and interested parties will be kept by the University for as long as necessary to fulfill the purposes for which, in each case, they were collected in order to maintain the relationship or link between the interested party and the University, without prejudice to their right to object to certain processing (including the withdrawal of consent for those types of processing that require it) and/or to request the deletion of such data.

If any of these circumstances arise, your personal data will be blocked, during which time access to it will be limited to the following purposes:

  • For the attention of possible liabilities related to the processing of your data.
  • To respond to any requests from public administrations, judges, courts, and the Public Prosecutor’s Office.

Once the blocking period has ended, your personal data will be permanently deleted.

If you have provided your personal data through any of the contracts you may enter into with the University, the blocking period will be ten (10) years from the end of the contractual relationship or, where applicable, from the date on which the right to object to the processing or the right to erasure of your personal data becomes effective.
If you have provided your personal data through the various forms available on the University of Deusto website, the retention period will generally be three (3) years, without prejudice to any specific period that may be established for each specific processing of personal data.
In any case, they will be kept for the legal periods of compliance with legal obligations required of the University of Deusto.

LEGITIMACY. TITLE OF LAWFULNESS ENABLING THE PROCESSING OF PERSONAL DATA

The legal basis for the processing of personal data shall be in accordance with the terms established in Article 6 of the General Data Protection Regulation, relating to ordinary data, or, where applicable, Article 9 of said Regulation relating to special categories of data, with the data subject being informed of the legal basis or bases invoked for each service provided, which may be:

  • Legitimacy through the execution of a contract or legal relationship to which the interested party is a party.
  • Legitimacy due to compliance with a legal obligation.
  • Legitimacy based on the legitimate interest of the University of Deusto.
  • Legitimacy based on the express consent given by the data subject.

RECIPIENTS

During the processing of personal data, the University of Deusto will not transfer any such data except in compliance with a legal obligation or with the consent of the data subject, who will be asked for consent if necessary and informed of the consequences of not doing so, specifically the impossibility of providing the service in question.

The provision of the various services offered by the University of Deusto may require the use of communications to IT service providers or other service providers acting as data processors for the University, subject to conditions of confidentiality and security in the processing of data. These providers may be located outside the European Union under the agreement between the United States and the European Union called “Privacy Shield,” information on which is available at: https://www.privacyshield.gov

RIGHTS

You have the following rights:

  • Right to request access to your personal data.
  • Right to request rectification or erasure.
  • Right to request the restriction of processing.
  • Right to object to processing.
  • Right to data portability.
  • Right to withdraw consent.

You can consult the “Protection of rights” section of this privacy website for detailed information on your rights and how you can exercise them.

More information at this link:

Deusto privacy policies