DATA PROTECTION AND COOKIES POLICY for King’s College, The British School of Madrid
Corporate Name: King’s College S.L.
Commercial Name: King’s College Madrid
Address: Avda. Pío XII, 92
CIF / NIF: B/28307015
Telephone: +34 918 034 800
Fax: +34 918 036 557
e-Mail: info@kingscollege.es
Entered in the Mercantile Register of Madrid, Volume 10916, Folio 92, Section 8, Page M-172292, first entry.
In accordance with the terms of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the Protection of Individuals with regard to the Processing of Personal Data (GDPR) and the Organic Law on the Protection of Personal Data and Guarantee of Digital Rights, 3/2018 of December 5 (LOPD), King’s College S.L. informs all website users who supply, or are going to supply, their personal data, that their data will be incorporated into an automated file owned by King’s College S.L. which is available to the Spanish Data Protection Authority. Users, by providing their personal data, specifically and freely accept that their personal data will be processed by King’s College S.L. as the data controller in order to carry out the following purposes:
- To identify users.
- To process orders, requests or any other type of petition, which are completed by the user through any course of contact. These are made available to the user through the company web site.
- To carry out statistical surveys about the most demanded products and services in order to improve them.
- To send commercial communications if previously authorised by user by ticking a specified box. Commercial communications will include: newsletters and notices from the webpage, referral of commercial advertisements through e-mail, fax, SMS, MMS, social communities or any other electronic or physical means, present or future, which enables commercial communication.
These commercial communications will be about products or services offered by the King’s College S.L. and other companies which belong to King’s College, as well as by collaborators or partners with whom agreements have been reached regarding commercial promotion among clients. In this case, the third parties will never be able to access to the users’ personal data. In all cases, commercial communications will be carried out by King’s College S.L. and the products and services will be linked only with the King’s College S.L.’s sector.
The personal data object of the treatment may only be communicated to other centers within the group of King’s College with the prior consent of the user and the mentioned personal data will be treated with the same legitimate purposes mentioned herein. The following link includes information on King’s College schools located both in the EU and outside the EU to which personal data may be disclosed to:
All data which is specifically asked for through the website is mandatory. This data is required to provide an optimal service to the user. In the case where the solicited data is not made available, King’s College S.L. cannot guarantee that the information and services required by the user will be tailored to individual needs.
King’s College S.L. guarantees that in every case, the user has rights of access, rectification, erasure, information and object, among others, in the terms set out by the current legislation. Therefore, in accordance with the provisions of GDPR and LOPD, users will be able to exercise their rights by sending a written specific request, along with a copy of their ID card, through the following means:
E-Mail: dpo@kingsgroup.org
Fax: +34 913 592 767
Postal Address: Avda. Pío XII, 92, 28036 Madrid
Similarly, the user will be able to unsubscribe from the reception of commercial communications by clicking in the “unsubscribe” section found in all e-mails sent by the provider.
King’s College S.L. has adopted all necessary technical and organizational means in order to guarantee the confidentiality, security and integrity of personal data that is concerned, as well as to avoid the loss, alteration, destruction and/or access of unauthorised third parties.
COOKIE POLICY
What is a cookie
The provider, through their own account or that of a third contracted party for the benefit of measurement services, can use cookies when the user browses the website. The cookies are files which are sent to the browser through the web server, with the aim to document the users activities during their browsing time. The cookies used by the website are uniquely associated with an anonymous user and their computer, and are not related to the user’s personal data.
Purpose of cookies
Using cookies, it is possible for the server hosting the website to recognize the browser being used in order to facilitate navigation; allowing, for example, users who have registered previously to access areas, services, promotions or competitions reserved exclusively for them without having to register each time. They are also used to measure the audience and traffic parameters, monitor progress and the number of entries.
The user has the possibility to configure their browser in order to be shown when cookies are being used and to prevent their installation on their computer. Please consult the browser’s instructions and user manuals to find out more information.
In order to use the website, the user does not have to allow the installation of cookies sent by the website, or third parties which act on their behalf. Nevertheless, it is necessary for the user to log-in to every service which requires prior registration or log-in details.
Types of cookies
The cookies used in this website are all temporary, with the sole purpose of making future transmission more efficient. In no case will the cookies be used in order to collect personal data.
The cookies used are:
- Analytical cookies (Google Analytics): These allow monitoring and analysis of the user’s behaviour in order to make improvements based on his or her usage of the website and services. As stated by Google, Google Analytics is a free web analytics tool provided by Google that primarily allows website owners to know how users interact with their website. It also enables cookies in the domain of the website being viewed and uses a set of cookies called ” __utma ” and ” __utmz ” to collect anonymous information and report on website trends without identifying individual users.
More information on Google Analytics at:
https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage
- Technical cookies: They allow the user to browse through the website and use its various options or services.
- Plug-in cookies: these cookies are used to share social content. Social networks store and access this type of cookies in the user’s terminal equipment, allowing the social network to identify its members as they interact with the plug-ins.
- Multimedia player cookies: They store technical data, necessary to play video or audio content, maintaining an adequate connection speed, image quality and buffering parameters.
Opting out of cookies
Users can disable cookies on their terminal by configuring their browser, but this will entail a less satisfactory browsing experience that may even be defective. For more information on disabling cookies visit:
https://support.mozilla.org/es/kb/Borrar%20cookies
https://support.google.com/chrome/answer/95647?hl=es
http://windows.microsoft.com/es-xl/internet-explorer/delete-manage-cookies#ie=ie-11-win-7
http://support.apple.com/kb/ht1677?viewlocale=es_ES
http://www.opera.com/help/tutorials/security/privacy/
IP Addresses
The website servers will automatically be able to detect the IP Address and domain name used by the user. An IP Address is a number which is automatically assigned to a computer when it connects to the Internet. All of this information is collected in a file about server activity that allows subsequent processing of data; with the aim to collect statistical measurements only, which show the number of printed pages, the number of visits to web services, the reasons of the visit, the point of access, etc.
Security
The website uses information security technologies which are accepted throughout the industry, such as FireWalls, methods to control access and cryptic mechanisms. All of these have the objective of preventing unauthorised access to the data. In order to carry out these purposes, the user/ client accepts that the provider collects data for purposes of authentication for access control.
POLITICA DE PRIVACIDAD:
King’s College, S.L. is responsible (controller) for processing the personal data of the person concerned and informs you that these data will be treated in accordance with the provisions of current legislation on the protection of personal data, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and the Organic Law on the Protection of Personal Data and Guarantee of Digital Rights.
Basic information on personal data protection
Responsible: King’s College, S.L.
Postal Address: Avda. Pío XII 92, 28036 Madrid (Spain).
Telephone: (+34) 916 585 540
E-mail: dpo@kingsgroup.org
Data Protection Officer: same as previous contact details or dpo@kingsgroup.org
Purpose: To attend the user’s requests and to be able to keep the user informed of them.
Legitimation: Consent
Recipients Data may be transferred to other companies in the King’s Group.
Rights Rectification, suppression, limitation, opposition to processing, and portability of data.
Extended information on personal data protection
Responsible for the treatment
The person responsible for processing the user’s data is King’s College, S.L., domiciled at Avda. Pío XII 92, 28036 Madrid (Spain). With CIF: ESB28307015, Telephone: (+34) 916 585 540 and e-mail dpo@kingsgroup.org
Purpose of data processing
The access by King’s College, S.L. to the personal data will be carried out solely and exclusively for the purpose of King’s College, S.L. to attend to the user’s requests and to be able to keep the user informed, even by electronic means, about our products and services, without being able to apply them or use them for any other purpose for which they have not been expressly authorised by the user.
Conservation of data
The personal data provided shall be kept for as long as their deletion is not requested by the data subject or, as the case may be, for a period of five years from the last confirmation of interest by the data subject, in such cases they shall be destroyed or returned to the data controller. All this without prejudice to the existence of a legal provision requiring the retention of certain data or that the data are useful in the event of a claim arising from the provision of services agreed by the data subject.
Legitimacy for data processing
The legal basis for the treatment of data is the consent of the interested party attending to the requests of the same being able to keep you informed about our products and services.
Recipients
The interested party expressly authorizes the transfer of his/her data to companies King’s College, S.L. for use for the purposes set out in this privacy policy. In the event that the interested party provides King’s College, S.L. with the personal data of third parties, the interested party declares that these data are true and that he has informed and requested the prior and express consent of these third parties to be used by King’s College, S.L.
Exercise of rights
The Interested Party may at any time exercise the following rights, provided for in the RGPD, in relation to the processing of their personal data:
- The right to request access to your personal data.
- Right to request rectification or deletion.
- Right to request the limitation of its processing.
- Right to oppose processing.
- Right to data portability.
Such rights may be exercised by means of a written communication addressed to King’s College, S.L., with address in Avda. Pío XII 92, 28036 Madrid (Spain)., or by e-mail to dpo@kingsgroup.org.
Security measures and levels
King’s College, S.L. has adopted the necessary measures to maintain the required level of security, according to the nature of the personal data processed and the circumstances of the processing, in order to avoid, as far as possible and always according to the state of the art, its alteration, loss, processing or unauthorized access.
Likewise, King’s College, S.L. guarantees that it has implemented mechanisms for:
- Guarantee the confidentiality, integrity, availability and permanent resilience of the treatment systems and services.
- Restore availability and access to personal data quickly, in the event of a physical or technical incident.
- Verify and check, on a regular basis, the effectiveness of the technical and organisational measures implemented to guarantee the security of data processing.
Scope of application
The structure of files, equipment and information systems and the technical and organisational measures implemented to guarantee data security, with the aim of complying with current legislation on data protection, will be applied to all files, temporary or permanent, owned by King’s College, S.L. containing personal data, as well as to any equipment or information system that treats them.
User Consent
The interested party declares to have read, understood and expressly accepted the present Privacy Policy by registering at King’s College, S.L., giving his unequivocal and express consent to King’s College, S.L., to the treatment of the data in accordance with the purposes and services reflected here.
The interested party expressly authorises the transfer of his/her data to third parties so that King’s College, S.L. may carry out the purposes set out in this privacy policy.
Confidentiality and professional secrecy
The data collected in all private communications between King’s College, S.L. and customers or users will be treated with absolute confidentiality, committing King’s College, S.L. to the obligation of secrecy of personal data, to its duty to keep them and take all necessary measures to prevent alteration, loss and unauthorized access or processing, in accordance with the provisions of the Regulation on Security Measures for Automated Files containing personal data.
In addition, information of any kind exchanged between the parties or that which the parties agree has such a nature shall also be considered confidential.
Changes in security and data protection policy
King’s College, S.L. reserves the right to modify its security and data protection policy in order to adapt it to new legislation or case law, as well as those that may derive from existing codes of conduct in the matter, or by strategic corporate decisions, with effect from the date of publication of said modification on the website of King’s College, S.L.