In compliance with the principles of legality and transparency and in order to provide the information to the interested parties established in articles 13 and 14 of the European Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 (RGPD), we inform you of the characteristics of the  personal data processing carried out under the responsibility of DG EVENTOS, SL :

Processing:  ( I) Web queries. (II)  Billing, tax, accounting and commercial management. (III) Administrative management. (IV) Customer registration.  (V) Attention to the privacy rights of interested parties. (VI) Management of registrations and participation timing, (VII) Dissemination of events, (VIII) Promotion of activities (IX) HR management.

Purpose:  (I)  To handle requests received through the contact forms on the company’s website. (II) To invoice clients, prepare official accounting records and calculate, file, and settle taxes, and prepare commercial documents such as balance sheets and reports. (III) To carry out administrative management related to the business. (IV) To manage client registrations.  (V) To handle requests to exercise rights related to personal data, as well as security breaches that may affect the rights and freedoms of interested parties.  (VI ) To manage event registration and the collection of participation fees. (VII) To disseminate and exploit events worldwide through photographs, films, television, radio, video, the Internet, and any other means. (VIII) To announce events to participants in previous editions.  (IX) Activities related to the selection, training, and compliance with labor and social security obligations.

Legitimation:  (I) Consent of the interested party. (II) Legal obligation imposed by accounting and tax regulations. (III), (IV) and (IX) Application of contractual and pre-contractual measures. Execution of a contract for the provision of services (V)  Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on  the protection of natural persons with regard to the processing of personal data.  (VI) Provision of a service (Article 6.1.b) of the GDPR), (VII) Consent of the Interested Party (Article 6.1.a) of the GDPR), (VIII) Legitimate interest (Article 6.1.f) of the GDPR).

Data Retention Period:  (I) and (IX) The  period necessary to process the request.  (II) Six years for commercial purposes. (III),  (IV) and (V) For the duration of the service and the period necessary to address issues related to the services provided.  (VI) and (VII) Two years after the event. (VIII) Indefinitely, since any publication on the Internet or social networks is beyond the control of the interested party and even of the person responsible for the publication.

The time required to address any liabilities that may arise from all previous treatments.

Recipients:  (VI) Sportmaniacs  ( https://sportmaniacs.com/es/services/inscription/ ) for registration and timing management and RockTheSport ( https://web.rockthesport.com/es/es/master/politicaprivacidad ) for registration management.

Exercise of rights:  You may exercise your rights of access, rectification, erasure, restriction of processing, and objection to processing,  under the terms and conditions established by the GDPR,  by sending a request by email to  info@dgeventos.com , always indicating the reference: “Data Protection” along with some means of proof of identity. You have the right to file a complaint with the Spanish Data Protection Agency, especially if your request has not been addressed.

ADDITIONAL INFORMATION

Who is responsible for the processing of your data?

The owner of this website is DG EVENTOS, SL, so any personal data you provide through this website or through any in-person data collection forms will be processed under the responsibility of DG Eventos, SL.

What personal data do we collect? ( How do  we obtain it?)

We will ask you for the minimum information necessary to carry out the purposes indicated in the following section, typically your first and last name, address, and contact information.

How do we use the personal data we manage under our responsibility?


We use your data for the following purposes:

1. Handling requests received through the contact forms on the company’s website.
2. Issuing invoices to clients, preparing official accounting and calculations, filing and settling taxes, and preparing commercial documents such as balance sheets and financial statements.
3. Administrative management related to the development of the activity.
4. Managing customer registrations.
5. Respond to requests to exercise rights related to personal data, as well as security breaches that may affect the rights and freedoms of data subjects.
6. Manage event registration and participation procedures, such as collecting participation fees and timing qualifying events.
7. Dissemination and exploitation of events worldwide through photography, film, television, radio, video, the Internet, and any other media.
8. Event announcements to participants in previous editions.
9. Activities related to selection, training, and compliance with labor and social security obligations.

And we use your data exclusively for the purposes described above. The data will be stored solely in our information system, with security measures in place to ensure that no one outside of DG Eventos can access it. In all other cases, we will process your data when required by law or to carry out essential activities related to the provision of services to clients. We do not communicate or process data for purposes other than those described above.

For how long?

When data processing is imposed by a regulation, this regulation normally establishes the period during which the data must be processed or stored. Thus, the Commercial Code establishes the obligation to retain data for accounting and commercial purposes for six years, a period that can be extended to fifteen years if certain tax deductions need to be accredited. The Civil Code allows for the exercise of actions arising from the execution of a contract or the provision of a service for five years after its termination.

Disclosure to third parties

As in the previous cases, the data we communicate to third parties is always limited to the minimum necessary for each of the purposes and processing described.

What security measures do we apply to personal data?

DG Eventos, SL, has appropriate policies and technical and organizational measures to safeguard and protect your personal data against illegal or unauthorized access, accidental loss or destruction, damage, and illegal or unauthorized use and disclosure. These measures are compiled and updated in a document identified as the “Security Manual.”

We also take all reasonable precautions to ensure that our staff and employees who have access to your personal data have received appropriate training.

What are your rights as a data subject?

You have the right to request the deletion of your data when, among other reasons, the data is no longer necessary for the purposes for which it was collected. You have the right to obtain confirmation as to whether or not DG Eventos, SL is processing your personal data. You have the right to access and obtain a copy of your personal data, as well as to request the rectification of inaccurate data. In certain circumstances, you may request the restriction of the processing of your data, in which case we will only retain it for the exercise or defense of legal claims. In certain circumstances and for reasons related to your particular situation, you may object to the processing of your data. DG Eventos, SL will stop processing the data, except for compelling legitimate reasons, or for the exercise or defense of potential legal claims. You may also exercise your right to data portability and revoke any consent you have provided. You may exercise these rights by sending an email to  info@dgeventos.com . In certain cases, we may ask you to prove your identity by providing additional information and clearly indicating the right you wish to exercise. Finally, we inform you that you may file a complaint with the Spanish Data Protection Agency, especially if you have not been satisfied with the exercise of your rights.