Contact

Privacy and Data Protection Policy

Inicio > Privacy and Data Protection Policy

This policy has been updated to be effective as of May 25, 2018, with the entry into force of the General Data Protection Regulation (known, in short, as GDPR). The full name of the aforementioned regulation is “REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation)”.

At the same time, it is in compliance with Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights and Law 34/2002, of July 11, on Information Society Services and Electronic Commerce (abbreviated LSSI or LSSI-CE).

Additional information on data protection (second layer of information)

The purpose of this statement is to inform the interested parties of the Privacy and Personal Data Protection Policy implemented by EADTrust, European Agency of Digital Trust S.L. (abbreviated as EADTrust) in the exercise of its activity as a trusted electronic services provider and in all other areas.

Who is responsible for the processing of your data?

  • Identity: EADTrust, European Agency of Digital Trust S.L. NIF: B85626240 Registro Mercantil de Madrid, tomo 26.403, folio 63, section 8, hoja M-475828.
  • Mailing address: C/ Méntrida 6, 28043 - Madrid
  • Phone: +34 91 716 05 55
  • Mail: info@eadtrust.eu
  • Any questions or additional information about how we treat your data, the exercise of rights or other issues related to personal data, please write to: dpd@eadtrust.eu

What data do we collect and process?

In the execution of its corporate purpose EADTrust collects and processes personal data of:

  • Users of electronic notification services “NOTICEMAN”.
  • Customers of other electronic signature services, electronic voting and corporate electronic forum, issuance of certificates and time stamps qualified according to Regulation (EU) eIDAS and non-qualified, among others.
  • EADTrust Job Applicants and Employees
  • Suppliers
  • Users of EADTrust domains and subdomains.
  • Certificate service applicants

EADTrust S.L. respects the principle of data minimization. Therefore, it only requests the minimum adequate and relevant data: identification and contact data; economic, financial and insurance data; academic and professional data; data derived from the employment relationship and data relating to transactions of goods and services.

Whenever we request your personal data, we will inform you clearly what personal data we collect and for what purpose.

The USER, in relation to the data provided, must ensure that they are legitimate and will be responsible for their veracity. The USER must communicate any modification affecting the data, and therefore exonerates EADTrust from any responsibility for updating the information not communicated.

For what purposes do we process your data?

EADTrust processes your information solely for the purpose of handling your requests for information or for the provision of any of our services; or to fulfill your interest in working with us. This includes the possibility that you may receive electronic communications from EADTrust.

These data are necessary to provide the requested services; if you do not provide them, EADTrust will not be able to process your request.

We do NOT create profiles based on this data and no automated decisions are made.

Mail: info@eadtrust.eu

Any questions or additional information about how we treat your data, the exercise of rights or other issues related to personal data, please write to: dpd@eadtrust.eu

With what legitimacy do we process your data?

In accordance with the applicable data protection regulations, your personal data may be processed if:

  • You have given us your consent for the purposes of processing. You may, of course, withdraw your consent at any time.
  • It is necessary for the provision of any of our services through a contractual relationship between you and us.
  • With such processing, we pursue a legitimate interest that is not undermined by your privacy rights. Such legitimate interest will be duly disclosed to you in the privacy notice relating to that particular processing.
  • Required by law

How long do we keep your data?

We retain your personal data in a lawful and appropriate manner and only for as long as it is necessary for the purposes for which it was collected. You can find more information about this in the specific sections of this policy dedicated to the owners of the data we process.

To which recipients will your data be communicated?

The categories of recipients to whom the personal data of the various categories of data subjects may be communicated are:

  • Outsourced payroll, labor and tax consultancy services
  • Occupational Risk Prevention Service
  • Public Bodies and Courts of Justice
  • IP Telephony Provider
  • E-mail providers
  • Hosting and cloud storage service providers located in Europe.

How can you exercise your rights over your data?

You may contact EADTrust at any time to:

  • To know if we process your personal data.
  • Access your personal data and any other information indicated in Article 15.1 of the GDPR.
  • Rectify your personal data that is inaccurate or incomplete in accordance with Article 16 of the GDPR.
  • Delete your personal data in accordance with Article 17 of the GDPR.
  • Limit the processing of your personal data in accordance with Article 18 of the GDPR.
  • Request the portability of your data in accordance with Article 20 of the GDPR.
  • Oppose the processing of your personal data in accordance with Article 21 of the GDPR.

If you have given your consent for any specific purpose, you have the right to withdraw the consent given at any time, without affecting the lawfulness of the processing based on the consent prior to its withdrawal.

You can consult the procedure for the exercise of the rights in this Policy in the section of information for the exercise of rights (here).

Confidentiality and data security

EADTrust undertakes to comply with its obligation of professional secrecy and confidentiality with respect to personal data obtained from data subjects, and to act proactively in taking organizational and technical measures to ensure the security of personal data and prevent its alteration, loss, processing or unauthorized access.

For this purpose, the state of technology and the provisions of current legislation on personal data protection will be taken into consideration.

Use of COOKIES

EADTrust web pages use technical cookies from the content platform, but no analysis or treatment is performed on them, so the application of Article 22.2 of the LSSI, is limited to a use that does not require user consent. Get more information in our COOKIES Policy.

Data protection in electronic communications

EADTrust informs that the personal data of the recipient/s of the e-mails it sends are obtained and processed in accordance with the provisions of its Privacy and Data Protection Policy, Regulation (EU) 679/2016 (RGPD) and Organic Law 03/2018 (LOPD GDD) in force, taking into consideration the provisions of Law 34/2002(LSSI-CE).

This data is added to the register of processing activities managed by EADTrust in its capacity as data controller.

The e-mail messages are addressed exclusively to the addressee(s) that appear in its/their header. The message, the information contained therein, as well as any accompanying documentation, are CONFIDENTIAL. If you receive any message from EADTrust in error, please notify us immediately and destroy the message received. Any unauthorized disclosure, copying, distribution or use of the information contained in EADTrust messages is prohibited by applicable personal data protection legislation.

The sending of electronic communications does not imply the obligation on the part of EADTrust to control the absence of viruses, worms, Trojans and/or any other harmful computer program, and it is the responsibility of the recipient to have the necessary hardware and software tools to ensure both the security of its information system and the detection and elimination of harmful computer programs. EADTrust S.L. is not responsible for any damages that such software may cause to the recipient.

Legal Information

The requirements of this Policy supplement, and do not replace, any other requirements existing under applicable data protection legislation, which shall in any event prevail.

This Policy is subject to periodic review and may be modified by EADTrust at any time. When this occurs, we will notify you of any changes and ask you to re-read the most recent version of our Policy and confirm your acceptance.

You may also check this Policy periodically at www.eadtrust.rgpd.de.

The latest update is as of June 2019.

How can I withdraw my consent to the use of my data?

You can find all the information in the following link: Documentation to withdraw consent on personal data