Privacy Policy

MAGOS FOUNDATION wants to inform users and clients of its website about the policy regarding the processing and protection of personal data of those individuals who voluntarily use the contact forms provided on the website https://tesorosdelosmagos.com, which involve the communication of their personal data.

1.- IDENTIFICATION OF THE DATA CONTROLLER

MAGOS FOUNDATION (hereinafter referred to as the CONTROLLER), with NIF G72499726, informs users and clients of its website about the existence of an automated file of personal data, whose controller is MAGOS FOUNDATION, located at PASAJE PALACIO VALDÉS 22, 29140 – MALAGA, where the personal data communicated by users and clients to the CONTROLLER is collected and stored.

2.- POLICY UPDATES

The CONTROLLER may modify this privacy policy without prior notice whenever necessary to adapt it to any legislative, regulatory, jurisprudential, or administrative changes, or in order to align this policy with the instructions issued by the Data Protection Agency or the legitimate purpose of the CONTROLLER. Any modification of this policy will be published and communicated on this website and within the policy itself.

3.- PURPOSE OF THE FILE

The CONTROLLER does not request data from users visiting its website; therefore, the communication of personal data by the user through its website can only be understood to occur when they voluntarily use the available forms to contact the CONTROLLER, as in these cases the processing of the data is inevitable and implicit in order to respond to their request. For these cases and those described in the following section, the entity informs the client that the processing of the data is carried out for the following purposes: To carry out all management related to the preparation of budgets, contracting, and providing services, as well as attending to and responding to received communications and maintaining historical records of business relationships.

4.- CONSENT

The CONTROLLER informs that this privacy policy contains all aspects related to the processing of personal data that it carries out as the responsible party. Thus, it is informed that when the user does not maintain business relations with the CONTROLLER and sends an email or contacts through another communication channel, indicating other personal data, that user will be giving their free, unequivocal, specific, informed, and express consent for the processing of their personal data by the CONTROLLER, for the purposes established above, as well as to attend to their communication or send documentation. For the same purposes, the CONTROLLER informs that if the client sends an email or contacts through another communication channel, their personal data due to the position they hold in a company—whether as an administrator, manager, representative, and/or any other role as a contact person in the company—will be understood as that communication carrying the provision of their free, unequivocal, specific, informed, and express consent for the processing of their personal data by the CONTROLLER, for the purposes established above, as well as to attend to their communication or send documentation.

5.- RECIPIENTS OF YOUR PERSONAL DATA

The CONTROLLER only plans to make transfers or communications of data that, according to the European Data Protection Regulation 2016/679 of April 27, 2016, must be made to fulfill its obligations with Public Administrations in the cases required in accordance with the current legislation in each matter at any given time and, if applicable, to other bodies such as Judges, the Public Prosecutor’s Office, Courts, the Court of Accounts, or the Ombudsman. The CONTROLLER also informs the user that any other transfer of data that must be made will be communicated to them when provided for by the GDPR, informing them explicitly, precisely, and unequivocally of the recipients of the information, the purpose for which the data will be used, and the nature of the data transferred, or, when the GDPR establishes it, prior explicit, specific, and informed consent will be requested from the user. Likewise, the CONTROLLER is not responsible for the data processing carried out by third parties to whom the CONTROLLER refers its visitors through hyperlinks.

6.- DATA QUALITY

The CONTROLLER warns the user that, unless there is a legally constituted representation, no user can use the identity of another person and communicate their personal data. Therefore, the user must always keep in mind that they can only include personal data corresponding to their own identity and that are adequate, relevant, current, accurate, and true. For these purposes, the user will be solely responsible for any direct and/or indirect damage caused to third parties or the CONTROLLER due to the use of personal data of another person, or their own personal data when they are false, erroneous, outdated, inadequate, or irrelevant. Likewise, the user who uses the personal data of a third party will be liable to that third party for the obligation of information established in Article 5.4 of the GDPR when the personal data has not been collected from the interested party themselves and/or for the consequences of failing to inform them.

7.- EXERCISING YOUR RIGHTS

The CONTROLLER complies with the guidelines of the European Data Protection Regulation 2016/679 of April 27, 2016, and other applicable regulations at any given time, and strives to ensure the proper use and processing of users’ personal data. The CONTROLLER informs the user of the possibility of exercising their rights of access, rectification, cancellation, limitation of processing, portability, and opposition by sending an email to magos.fundacion@gmail.com. The user may exercise their rights or revoke the consent granted in this Privacy Policy at any time by sending an email to magos.fundacion@gmail.com. They also have the right to file a complaint with the Spanish Data Protection Agency, especially if they have not received satisfaction in exercising their rights.

8.- SECURITY MEASURES ADOPTED

The CONTROLLER informs the user that, in accordance with the provisions of the GDPR and the Development Regulation, it has adopted the necessary technical and organizational measures to ensure the security of personal data and to prevent alteration, loss, unauthorized processing, or access, taking into account the state of technology, the nature of the data stored, and the risks to which they are exposed. Likewise, the CONTROLLER guarantees the user compliance with the professional secrecy obligation regarding the personal data of users and the obligation to keep them confidential.

9.- COMPUTER SECURITY POLICY

The CONTROLLER informs users of the website that there are security tools installed on its website, including antivirus, antispyware, and antispam.

10.- COOKIES AND IPs

This website informs that cookies are used. The CONTROLLER does not use spamming techniques.

11.- DURATION OF PROCESSING

The processing will be carried out while the service is being provided, during customer service processes, human resources selection processes, and as long as necessary to comply with legal and tax requirements.

12.- CONTROL ENTITY

The CONTROLLER informs you that you can make any type of complaint regarding the processing of your personal data to the control entity, the Spanish Data Protection Agency, through its website https://www.aepd.es/.