People who provide the U.S. Chamber of Commerce in Spain with personal data through our website or by other means (for example, social networks) are informed that their data are processed by:
U.S. Chamber of Commerce in Spain
TAX ID: V-08488835
Registered address Plaza Francesc Macià 5, 1º-1ª, 08021 in Barcelona.
Telephone 93 415 99 63 Fax: 93 415 11 98
You are also informed that we have a Data Officer (DO) who is in charge of ensuring compliance with data protection regulations. The contact details of our DO are:
Grounds for processing data
Data may be processed by the U.S. Chamber of Commerce in Spain for any of the following purposes, depending on the reason why it was provided to us:
- To contact the provider of the information, respond to their requests or queries and follow up with them later.
- Where appropriate, to register new members of the Chamber and directors, officers or employees designated as the member’s representative, and day-to-day administration of the Chamber’s activities and coordination and execution of those activities. For billing and collection of services rendered.
- To manage and control the portfolio of members, interested parties or applicants in order to send communications (Newsletter) over our platform.
- To promote relationships between our associates and Spanish and American companies through our events, meetings and committees.
- To promote all of the Chamber’s activities through the photographs posted on our website or social forums.
- All purposes are limited and related to the Chamber’s main objective, which is to provide services that offer advantages and benefits to our members and to sponsor events that are of interest to their business activities.
- To market business directories on a strictly professional level.
Duration of data processing
- The data needed to manage the relationship with the member and for billing and payment of services shall be kept for as long as the contract remains in effect or, in the absence of a contract, for the legally mandated amount of time. Once the relationship has ended, the data may be kept for the time required by applicable law and until such time as there is no longer any liability arising from the contract. (Blocked)
- The data needed to manage queries and requests shall be kept for as long as needed to respond to them.
- The data for sending e-mail communications about the events we organize shall be kept indefinitely, unless and until you ask us to delete it. (This processing requires specific consent)
Legitimacy for processing data
- The legal grounds for processing your data for the purposes mentioned above is the provision of the corresponding service or performance of the associated contract.
- The data shall be retained as long as the parties show mutual interest in doing so, either for the duration of the contract or the consent. The data shall be retained by the Chamber in compliance with mandatory regulations and until the statute of limitations has expired.
- The provision of unambiguous consent.
- Satisfaction of the legitimate business interest by having the ability to offer our associates the opportunity to acquire our services. This legitimate interest is recognized in the applicable laws (General Data Protection Regulation), which expressly envisages the processing of personal data for direct marketing purposes as a legal basis. (Specific consent is required)
However, please note that you have the right to oppose the processing of your data by any of the means described in this Policy.
- Communications may legally be sent to non-customer users who have given their consent, which may be revoked at any time. The withdrawal of such consent shall in no way affect the performance of the contract, and any previous processing of data for that purpose shall not be considered unlawful as a result of the consent being revoked.
In accordance with article 19 of the Data Protection Act 3/2018 of 5 December and article 6.1 f) of GDPR, it is assumed that the processing of the contact data of individual entrepreneurs and independent professionals is lawful, since the data refers to their professional lives and the purpose is to build relationships with the legal entities where the data subjects work. Such lawfulness extends to individual entrepreneurs and independent professionals.
Disclosure of your data
The data may be disclosed to the following entities:
- To our collaborators or partners as needed to render the requested service, either when prior consent has been given or when there is a legal relationship that has been freely and legitimately accepted and whose development, fulfillment and control necessarily implies the connection of said processing with that of the third party.
- Specifically, to our partners as the organizers of an event, meeting or committee. Registration, whether by members or non-members, implies that the registrant consents to such disclosure or transfer to the sponsoring entities of the event, to the authorities for security reasons and where appropriate, between the participants themselves in order for the attendees to get to know one another.
- To financial institutions who handle collections and payments.
- To the competent government authorities, as provided for under the law and for the purposes defined therein or in order to comply with a legal requirement.
The Chamber’s activities are also promoted through the photographs that are disseminated on its website and social media.
Anyone who provides us with their data has the following rights:
- Associates or data subjects can exercise the right of access, rectification, opposition or erasure by writing to the address shown at the top of this document, by sending an email, or by logging onto our website. You are also informed that as data subjects you have the right to request the portability of your data, to restrict processing when the purpose no longer exists or to oppose a specific type of processing.
- Data subjects have the right to withdraw their consent at any time.
- Finally, data subjects have the right to contact the Data Protection Agency or another competent control body or entity that oversees any aspect related to the application of data protection regulations, where users can file complaints and defend their interests as they deem appropriate. They may do so via the website www.agpd.es.
Your data shall not be transmitted outside the European Union without first asking for your express consent.
Implementation of security measures
“AmchamSpain” has adopted the necessary technical and organizational measures to guarantee data security and to prevent the data from being altered, lost or processed without authorization, taking into account the state of the technology, the type of data stored and the risks to which it is exposed, whether arising from human action or from the physical or natural environment. Technical and organizational measures have been adopted to achieve basic security objectives such as: confidentiality, understood as limiting access to information by unauthorized persons; integrity, understood as the maintenance of reliable, high quality information; and availability, understood as guaranteed access to the information system at the request of an authorized user.
Third party data
If you provide data from third parties, you assume the responsibility of informing them beforehand of the provisions of Article 14 of the General Data Protection Regulation pursuant to the conditions established therein.
Updating your data
If your information changes or if you detect any data that is incorrect, please notify us so that we can correct it and keep the information up to date.
Basic information on information channels and how to exercise your rights
1. Email: firstname.lastname@example.org
2. Telephone: Call 93 415 99 63 to speak with a customer service representative.
3. Visit our offices. Plaza Francesc Macià 5, 1º-1ª, 08021 in Barcelona.
Updated 22 May 2019
© 2018 – “American Chamber of Commerce in Spain”
All rights reserved