Skip to content Skip to footer
¿Hablamos?
¿Hablamos?
Close

Privacy Policy

I. PRIVACY POLICY AND DATA PROTECTION

In compliance with the current legislation, mdbacademy.com (hereinafter also referred to as the Website) is committed to adopting the necessary technical and organizational measures according to the appropriate level of security for the risk of the data collected.

 

Legislation Incorporated in this Privacy Policy

This privacy policy is adapted to the current Spanish and European regulations on personal data protection on the internet. Specifically, it complies with the following regulations:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).
  • Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights (LOPD-GDD).
  • Royal Decree 1720/2007, of 21 December, approving the Regulation for the development of Organic Law 15/1999, of 13 December, on the Protection of Personal Data (RDLOPD).
  • Law 34/2002, of 11 July, on Information Society Services and Electronic Commerce (LSSI-CE).

 

Identity of the Data Controller

The data controller for the personal data collected on mdbacademy.com is:

  • MDB Academy
  • NIF: NL004429408B73
  • Address: Posthoornstraat, 11 3011WD Rotterdam – Netherlands
  • Contact Phone: +31 610 300 556
  • Email: contact@mdbacademy.com

 

Personal Data Record

In compliance with the GDPR and LOPD-GDD, the personal data collected through the Website’s forms will be incorporated into our file for the purpose of facilitating, expediting, and fulfilling the commitments established between mdbacademy.com and the User, or maintaining the relationship established in the forms completed by the User, or to attend to a request or inquiry.

Unless the exception in Article 30.5 of the GDPR applies, a record of processing activities will be maintained, specifying the processing activities according to their purposes and other circumstances established in the GDPR.

 

Principles Applicable to Personal Data Processing

The processing of personal data will be governed by the following principles:

  • Lawfulness, fairness, and transparency: User consent will be required with prior fully transparent information on the purposes of data collection.
  • Purpose limitation: Data will be collected for specific, explicit, and legitimate purposes.
  • Data minimization: Only the strictly necessary data for the purposes will be collected.
  • Accuracy: Data must be accurate and up-to-date.
  • Storage limitation: Data will be kept only for the time necessary for its processing purposes.
  • Integrity and confidentiality: Data will be processed in a way that ensures its security and confidentiality.
  • Proactive accountability: The Data Controller will be responsible for ensuring compliance with the above principles.

 

Categories of Personal Data

Only identification data will be processed. No special categories of data will be processed, such as data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, or data concerning a natural person’s sex life or sexual orientation.

 

Legal Basis for Data Processing

The legal basis for the processing of personal data is the User’s consent, which can be withdrawn at any time. The withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

If data collection is necessary to complete a form for inquiries, requests, or service information, the User will be informed whether it is mandatory to complete any of them.

 

Purposes of Data Processing

Personal data will be collected and managed to facilitate, expedite, and fulfill the commitments established between the Website and the User, maintain the relationship in the completed forms, or respond to inquiries or requests.

The data may also be used for commercial purposes, personalization, operational and statistical activities, and marketing studies to improve the quality of the services offered.

At the time of data collection, the User will be informed of the specific purpose(s) for which the data will be processed.

 

Data Retention Period

Personal data will only be retained for the minimum time necessary for its processing purposes or until the User requests its deletion.

 

Data Recipients

User data will not be shared with third parties without express consent unless required by law.

If the Data Controller intends to transfer data to a third party, the User will be informed at the time of collection.

 

Data of Minors

Only those over 14 years of age may provide consent for their data to be processed. If the User is under 14 years old, parental or guardian consent will be required.

 

Data Security

mdbacademy.com adopts the necessary technical and organizational measures to guarantee the security of personal data and prevent unauthorized access, destruction, or alteration of data.

The Website uses SSL certificates to encrypt the transmission of personal data between the server and the User.

However, due to the nature of the internet, mdbacademy.com cannot guarantee absolute invulnerability and will notify the User without undue delay if any security breach occurs that may pose a high risk to the User’s rights and freedoms.

 

User Rights

Users have the following rights under the GDPR and LOPD-GDD:

  • Right of access: Obtain confirmation of whether personal data is being processed.
  • Right of rectification: Request correction of inaccurate or incomplete data.
  • Right of erasure (right to be forgotten): Request the deletion of personal data when no longer necessary.
  • Right to restriction of processing: Limit the processing of personal data in certain circumstances.
  • Right to data portability: Receive personal data in a structured, commonly used, and machine-readable format.
  • Right to object: Object to the processing of personal data.
  • Right not to be subject to automated decision-making: Not be subject to a decision based solely on automated processing.

To exercise these rights, the User must contact the Data Controller via contact@mdbacademy.com.

 

Third-Party Links

The Website may include links to third-party websites with their own privacy policies. mdbacademy.com is not responsible for their practices.

 

Complaints to the Supervisory Authority

If the User believes that their personal data is not being processed in accordance with the regulations, they have the right to file a complaint with the relevant supervisory authority in their country of residence.

 

II. ACCEPTANCE AND CHANGES TO THIS POLICY

It is necessary for the User to have read and accepted the privacy policy to proceed with the processing of their data.

mdbacademy.com reserves the right to modify this Privacy Policy based on legislative, jurisprudential, or doctrinal changes. It is recommended that the User periodically review this page.