1. Collection and Use of Personal Information
In accordance with Regulation EU 2016/679 of the European Parliament and Council from April 27, 2016 (GDPR) and its development regulations, the data processor, in compliance with the Section 28 of the Regulation mentioned previously, informs to all the users of the website or application that have provided or will provide their personal information, that it will be incorporated into an automated file that is incorporated in the Record of processing activities, as the section 30 of the GDPR requires.
The users expressly accept, in a free and unequivocal way to the data controller, that the personal information is treated by the data processor for providing its service, as well as information regarding it.
The user has the possibility of setting up his/ her computer so that a notification informs about the reception of cookies. You will need to consult the instructions and user manuals of your browser for more information.
The cookies used in this website are always temporary, and will never be used for collecting personal information.
3. Collection and use of technical information
The servers of the website will be able to detect and register information from the browser in our servers, including your IP adress, information of the cookies and the web page you requested. An IP adress is a number that is automatically assigned to a computer when it connects to Internet.
All this information is registered in an activity file of the server properly registered that allows the subsequent processing of the information with the purpose of obtaining statistic measurements that will help us know the number of page impressions, the number of times the web services are visited, the order of the visits, the access point, to receive troubleshooting and customer support, as part of our efforts to protect your account and the functionality of the application.
Controllers are to take appropriate technical and organizational measures to ensure the requisite data security, which protects personal data against accidental or unlawful erasure, unauthorized use, alteration, loss, destruction as well as against unauthorized disclosure or unauthorized access. To achieve these purposes, the user/ client accepts the obtainment of information by the data processor for a valid authentication of the access controls. In relation to this, all the connections to the application are encrypted by using Secure Socket Layer SSL, and all the sensitive information is encrypted when it is stored, disjoining the personal information from the clinical one. Having regard to the state of the art and the cost of their implementation, such measures shall ensure a level of security appropriate to the risks represented by the processing and the nature of the data to be protected. Special categories of personal data are to be given special protection. The security measures to be provided relate in particular to computers (servers and workplace computers), networks, communication links and applications. Specific measures used to ensure adequate protection of personal data include antivirus, admission controls, system access controls, data access controls, transmission controls, intrusion systems input controls, job controls, availability controls and segregation controls. All the security processes are audited annually and follow the standards of the normative UNE-EN-ISO 27001: 2013 of security.
Please be aware that the protection of your personal information is also your responsibility. Passwords must always be kept in a safe spot, as well as any other information extracted from the platform. All the information and backup of it is stored in EU servers. Therefore, all the stored information is subject to the laws and jurisprudence of the EU.
The data processor can modify this policy at any moment. Even though this modification will be notified to the data controller or promoter of a concrete project, we kindly ask you to review this policy on a periodic basis.
7. Rights of the Users
We inform you that you can exercise your rights, which are mentioned and explained in the "Caaring® Terms and Conditions" document, by getting in contact with: Persei Vivarium S.L. Calle Gran Vía 62, 5th floor, 28013, Madrid (Spain), or either through the following e-mail address: firstname.lastname@example.org