Legal notice and data protection policy
1. Who are we
Fundación Anesvad (the Anesvad Foundation, hereinafter Anesvad) is a non-profit non-governmental development organisation (NGDO) with registered office in Bilbao, Henao, 29-31 (offices) 1º planta and with CIF (Spanish VAT No.): G-48308795.
Anesvad was founded and recognised as an Association in the late 1960s. Subsequently, in 1992, it was established as a Foundation and listed in the Registry of Foundations under state jurisdiction by Ministerial Order of 18/11/1992 with registration number 48-0130. Said registration implies that the common interest of its goals is recognised.
2. What is anesvad’s website
The website you are currently viewing – www.anesvad.org – is the interactive space created by Anesvad in order to provide more information about their services and additional support for their promotional campaigns.
3. Ownership of the website and restrictions on use
The contents of this website are subject to a Creative Commons 3.0 Unported license. They may be copied and shared for non-commercial purposes, as long as the source is cited. Any change, modification or derivation of this work can only be distributed under a license identical to this one.
5. Data protection policy
INFORMATION CONCERNING GENERAL DATA PROTECTION REGULATIONS
Based on the General Data Protection Regulations, we provide you with detailed information related to the processing of your personal data on the part of Anesvad.
Pursuant to this obligation, we provide you with the following information:
Fundación Anesvad with address in Bilbao, Henao, 29-31 (offices) 1º and with CIF: G-48308795.
Data Protection Officer
You can contact our Data Protection Officer via Anesvad’s postal address, which is provided in the previous point, or at this email address: email@example.com
How have we have obtained your data?
We have obtained the data in our possession through the relations you have had with Anesvad up to this point or because of the relations you currently have with our organisation, either because you are a member, you have been a donor or have participated in one of our campaigns, or because you have requested that we send you information concerning our activities, campaigns and initiatives.
What personal data do we process?
The data we will process for the legitimate purposes outlined below are the following: 1. Data needed in order to maintain our relationship with you: name, surnames, age, gender, email address, telephone number, postal address, financial contribution, bank account/card number and NIF (Spanish Tax ID No.).
In the event that you voluntarily provided them to us during the relations we previously had with you, we may also have the following data in our possession: family situation, profession, data concerning the charitable initiative (place, date, objective, focus), recordings of your image and voice.
We also inform you that we will process those additional data you voluntarily provide us with during the future relations and interactions that you have with Anesvad, including those you provide us with via a social network or other application. These data depend on your own privacy settings and use of the social network or application, as well as the privacy policies of each social network or application, so we recommend that you read them carefully before providing us with data via said social networks or applications.
To what end do we process your personal data?
In order to establish a collaborative relationship with you that enables us to achieve Anesvad’s objectives as a foundation, we process the data of our members, donors, partners and other people who have requested information about our work for the following specific activities:
- To send information about Anesvad via SMS, telephone, postal mail, email or instant messaging.
- To request donations, subscription increases and other types of contribution (signatures during campaigns, etc.) and to manage the collection of said fees and/or donations.
- To send the tax certificate.
- To handle your queries when you contact Anesvad.
- To invite you to functions or events that we organise.
- To conduct satisfaction surveys or organise meetings in order to conduct market research that will help us to improve our work.
- To manage our relationship with you.
- To create profiles, with the information which you have directly provided us with, which you have made public or which is publicly available, in order to ensure the proper management of the aforementioned activities. The creation of profiles is not used, under any circumstances, in order to take automated decisions which have legal or other implications which may affect you: all our decision-making processes involve people.
- To manage the promotional activities you carry out for our organisation.
- We also use your data in order to send, by electronic as well as other means, communications regarding activities, campaigns and initiatives which are of a similar nature to those that you have previously participated in, or regarding which you have requested information from us or have sent a request to our organisation. You can opt out of receiving this type of communication, now or at any other time, by sending an email to our Data Protection Officer or by sending a request to our postal address, for the attention of the Data Protection Officer.
On what grounds are we allowed to use your personal data?
The legal ground that allows us to use your personal data is based on the following points:
When you decide to support the work of Anesvad and/or you request to receive information thereon, we need to use the personal data that you voluntarily provide us with in order to manage your contributions and/or to be able to keep you properly informed of the work we do.
By sending your personal information through this website and ticking the box showing that you accept this Data Protection Policy, it is understood that you expressly and unequivocally consent to the processing of your personal data under the terms outlined, as well as, where appropriate, to the sending of informative, promotional or advertising communications by any means, including electronic and telematic.
Anesvad must comply with the corresponding legal obligations such as, for example, Law 10/2010 on the Prevention of Money Laundering and Financing of Terrorism or the current regulations on the protection of personal data.
On the grounds of Anesvad legitimate interest in being able to properly manage your financial contributions, to let you know about existing problems, to be able to comply with our transparency and accountability obligations and so that we can keep you informed and explain where your contributions have gone. Moreover, we need to address more fully your needs, suggestions and desires so that we can increase your level of satisfaction as a donor or person interested in Anesvad’s work.
These legitimate interests respect your right to the protection of personal data, to dignity and to personal and family privacy. We remind you once more that you can opt out of receiving this type of communication, now or at any other time, by sending an email to our Data Protection Officer or by sending a request to our postal address, for the attention of the Data Protection Officer.
When and for what reason can we provide your data to third parties?
Your data may be given to the following parties and for the following reasons:
- Public administrations, for compliance with the legal obligations to which Anesvad is bound due to its area of work.
- Third parties, when they are necessary in order to comply with the obligations derived from the campaigns, activities and initiatives in which you voluntarily participate (for example, banking entities and providers of payment gateways).
- Suppliers, when they need access to your data for the provision of services which Anesvad has contracted from them, and with whom Anesvad has signed the necessary confidentiality and processing of personal data contracts which are required by the regulations in order to protect their privacy (for example, printers).
If Anesvad performs other personal data assignations in the future, we will keep you appropriately informed.
How do we protect your data?
Anesvad adopts the personal data protection security levels required by current legislation, deploying for that purpose the necessary technical and organisational measures in order to prevent loss, improper use, modification, unauthorised access and other potential risks. We use encryption methods and technologies which enable us to protect the security of the information, as well as that of the communications which may be conducted over the Internet.
In Anesvad, only those people who need to use them in order to carry out the tasks they are assigned have access to personal data. We also notify you that, within the various security mechanisms, a system of access codes that only the user and Anesvad know is used.
International data transfers
Anesvad contracts services from technological suppliers in countries which do not have regulations equivalent to those in Europe (“Third Countries”). These suppliers have signed the confidentiality and data processing contracts required by the regulations for suppliers located in Third Countries with Anesvad, applying the guarantees and safeguards necessary in order to preserve their privacy.
If you would like more information about the privacy guarantees, you can contact the Data Protection Officer via the postal and email addresses indicated previously.
For how long will we keep your data?
Your personal data will be kept for as long as your relationship with Anesvad is maintained and, following the termination of this relationship for any reason, for the periods of legal limitation which are applicable. In this case, they will be used for the sole purpose of verifying compliance with our legal or contractual obligations. After said limitation periods have expired, your data will be deleted or, alternatively, anonymised.
You can exercise your rights of access, amendment, deletion and portability, restriction and/or objection to the processing via the postal and email addresses indicated.
Also, if you consider that the processing of your personal data violates regulations or your privacy rights, you can file a claim:
- To the Data Protection Officer, at the postal and email addresses indicated.
- With the Spanish Data Protection Agency, via its electronic headquarters or its postal address.
The donations which you make through the website are executed when Anesvad sends you an email acknowledging receipt and confirming the purchase made.
You must make the payment using credit or debit cards from Visa, Mastercard, American Express, Visa Electron and/or other similar cards, or via the PayPal system. The financial entity which issued the card used to make the payment must have a Spanish bank or savings bank or a branch or a subsidiary financial entity of a foreign financial entity with an office in Spain.
Deberás notificar a Anesvad, mediante email o vía telefónica, cualquier cargo indebido o fraudulento en la tarjeta utilizada para compras en el sitio web, en el menor plazo de tiempo posible, con el objeto de que Anesvad pueda realizar las gestiones que considere convenientes.
You must notify Anesvad as soon as possible, by email or telephone, of any undue or fraudulent charge on the card used to make purchases on the website so that Anesvad can take the necessary steps. Anesvad uses the maximum security measures commercially available in the sector. Moreover, the payment process runs on a secure server using the SSL (Secure Sockets Layer) protocol. The secure server establishes a connection so that the information is transmitted encrypted using 128-bit algorithms, which ensures that it is only intelligible for the user’s computer and that of the website. In this way, using the SSL protocol guarantees:
- That you are communicating your data to Anesvad’s server centre and not to any other.
- That when you share your data with Anesvad’s server centre it is encrypted, avoiding its potential reading or use by third parties.
Likewise, Anesvad states that it does not have access to or store sensitive data related to the payment method which you have used. Only the corresponding payment processing entity has access to this data as a way of managing payments and charges.
7. Acceptance of these terms