PRIVACY POLICY

PRIVACY POLICY OF THE WEBSITE

www.abability.es

I. PRIVACY POLICY AND DATA PROTECTION

In compliance with current legislation, ABAbility (hereinafter, also the Website) commits to adopting the necessary technical and organizational measures, as appropriate to the security level of the data collected.

Laws Incorporated in this Privacy Policy

This privacy policy is adapted to the current Spanish and European regulations on personal data protection on the internet, specifically adhering to the following regulations:

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, concerning the protection of individuals with regard to the processing of personal data and on the free movement of such data (GDPR).
Organic Law 3/2018 of 5 December on Personal Data Protection and Guarantee of Digital Rights (LOPD-GDD).
Royal Decree 1720/2007 of 21 December, which approves the Regulation for implementing Organic Law 15/1999 of 13 December on the Protection of Personal Data (RDLOPD).
Law 34/2002 of 11 July on Information Society Services and Electronic Commerce (LSSI-CE).

Data Controller Identity

The data controller for the personal data collected on ABAbility is: Carlos Pérez Sánchez, with NIF: 45688037-D (hereinafter, Data Controller). His contact details are:

Address: C/ Casanova 154 SA, Barcelona, 08036 Spain
Contact Phone: +34 639 503 114
Contact Email: perezsanchez.c@abability.es

Registration of Personal Data

In compliance with the GDPR and LOPD-GDD, ABAbility informs you that personal data collected through the forms on its pages will be incorporated and processed in our file to facilitate, streamline, and meet the commitments established between ABAbility and the User or to maintain the relationship established in the forms the User completes, or to respond to a request or inquiry.

Additionally, in compliance with the GDPR and LOPD-GDD, unless the exception provided for in Article 30.5 of the GDPR applies, a record of processing activities will be maintained, specifying, by purpose, the processing activities carried out and the circumstances established in the GDPR.

Principles for the Processing of Personal Data

The processing of the User’s personal data will adhere to the following principles outlined in Article 5 of the GDPR and Article 4 et seq. of Organic Law 3/2018, of 5 December, on Personal Data Protection and the Guarantee of Digital Rights:

Principle of lawfulness, fairness, and transparency: User consent will always be required after full transparency about the purposes for which personal data are collected.
Purpose limitation principle: personal data will be collected for specific, explicit, and legitimate purposes.
Data minimization principle: only the strictly necessary personal data will be collected for processing purposes.
Accuracy principle: personal data must be accurate and kept up to date.
Storage limitation principle: personal data will only be kept to allow User identification for as long as necessary for processing purposes.
Integrity and confidentiality principle: personal data will be processed in a manner that guarantees security and confidentiality.
Accountability principle: the Data Controller is responsible for ensuring that the above principles are met.

Categories of Personal Data

The only category of data processed on ABAbility is identifying information. Special categories of personal data, as defined in Article 9 of the GDPR, are not processed.

Special categories of personal data include those that reveal ethnic or racial origin, political opinions, religious or philosophical beliefs, or trade union membership, and data related to health, genetic or biometric data used to uniquely identify an individual, data related to sexual life, or the sexual orientation of a person.

Legal Basis for Processing Personal Data

The legal basis for processing personal data is consent. ABAbility is committed to obtaining the User’s explicit, verifiable consent to process their personal data for one or more specific purposes.

The User has the right to withdraw consent at any time. Withdrawing consent will be as simple as giving it. As a general rule, withdrawing consent will not condition the use of the Website.

Purposes of Processing Personal Data

Personal data are collected and managed by ABAbility to facilitate, streamline, and meet the commitments established between the Website and the User or to maintain the relationship established in the forms that the User completes or to respond to a request or inquiry.

Data may also be used for commercial, operational, and statistical purposes, related to ABAbility’s corporate purpose, as well as for data extraction, storage, and marketing studies to tailor the Content offered to the User and improve the quality, functionality, and browsing experience on the Website.

Upon obtaining personal data, the User will be informed about the specific purpose(s) for which personal data will be processed; that is, the use(s) to be made of the information collected.

Retention Periods for Personal Data

Personal data will only be retained for the minimum necessary time for processing purposes, and in any case, for no more than the following period: 18 months, or until the User requests their deletion.

Recipients of Personal Data

The User’s personal data will not be shared with third parties.

Rights Related to Personal Data Processing

The User may exercise the following rights recognized by the GDPR and Organic Law 3/2018, of 5 December, on Personal Data Protection and the Guarantee of Digital Rights against ABAbility and the Data Controller:

Right of access
Right to rectification
Right to erasure (“right to be forgotten”)
Right to restriction of processing
Right to data portability
Right to object
Right not to be subject to a decision based solely on automated processing, including profiling

The User can exercise their rights by written communication addressed to the Data Controller with the reference “GDPR-www.abability.es,” specifying:

Name and surname of the User and a copy of their ID.
The specific request or information they wish to access.
Address for notifications.
Date and signature of the requester.
Any supporting document for the request.

Confidentiality and Security of Personal Data

ABAbility commits to adopting the necessary technical and organizational measures, according to the security level appropriate to the risk of the data collected, to guarantee the security of personal data and prevent its accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.

This Website has an SSL (Secure Socket Layer) certificate, ensuring that personal data is transmitted securely and confidentially, with data transmission between the server and the User fully encrypted.

II. ACCEPTANCE AND CHANGES TO THIS PRIVACY POLICY

It is necessary for the User to have read and agreed with the personal data protection terms contained in this Privacy Policy and to accept the processing of their personal data so that the Data Controller can proceed in the manner, during the periods, and for the purposes indicated. The Website’s use implies acceptance of its Privacy Policy.

ABAbility reserves the right to modify its Privacy Policy based on its criteria or prompted by a legislative, jurisprudential, or doctrinal change of the Spanish Data Protection Agency. Changes or updates to this Privacy Policy will not be explicitly notified to the User. It is recommended that the User check this page periodically to be informed of the latest changes or updates.

This Privacy Policy has been updated to comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, concerning the protection of individuals with regard to the processing of personal data and the free movement of such data (GDPR) and Organic Law 3/2018, of 5 December, on Personal Data Protection and Guarantee of Digital Rights.

This Legal Notice and General Terms of Use of the website document was created by FC Abogados online on 02/19/2024.