The purpose of this Personal Data Processing document is to publicize the way in which personal data collected through the Site is collected, processed and protected, so that Users can freely and voluntarily determine if they wish to provide their personal data through it.
Access to and use of the Site implies full acceptance by the User of this personal data processing document and undertakes to fully comply with the terms and conditions contained therein. Therefore, the User must read this Personal Data Processing document carefully each time they intend to use the Site, as it may undergo modifications.
This Personal Data Processing document will be valid only for personal data obtained on the Site and will not be applicable to information collected by third parties on other web pages, even if they are linked to the Site.
In compliance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, on the protection of individuals with regard to the processing of personal data and the free movement of these data (RGPD), the User is informed that the data collected through the Site and/or any data collection form on the Site will be incorporated into the personal data files owned by GOAL SYSTEMS SL with headquarters in Madrid, Calle Juan Hurtado de Mendoza, number 4 — 28036, to manage the User's browsing of the Site, if any; as well as for the purposes indicated in each of the forms included in the website.
The company guarantees the confidentiality of the personal data provided and compliance with all applicable regulations.
In order for the information provided to be always up to date and free of errors, the User must communicate, as soon as possible, any modifications and corrections to their personal data that occur.
In addition, by clicking the “Submit” button (or equivalent) incorporated in the above-mentioned forms, the User declares that the information and data provided in them are accurate and true.
The Company informs its users that it is responsible for the processing carried out on this website, unless specifically determined otherwise for the purposes of the treatment in question.
Through this Privacy Policy, the Company informs Users of the Site, describes the data it collects, how it uses it and Users' options in relation to the data, including how to access and update it.
The User expressly and fully accepts the conditions expressed in this Privacy Policy for the use of the Company Site and any of the Services incorporated therein.
The data protection officer (DPD or DPO) is responsible for ensuring compliance with the data protection regulations to which the company and, therefore, this website is subject. The user can contact the DPD designated by the data controller using the following contact information: dpo@goalsystems.com.
The legal basis for the processing of personal data is the consent of the owner of the same. The Company undertakes to obtain the express and verifiable consent of the User for the processing of their personal data for one or more specific purposes.
When a User fills out any of the forms with the requested personal data, according to the GDPR, they must grant an unequivocal and explicit consent, with a revocable nature and without retroactive effects.
The user will have the right to withdraw their consent at any time. It will be as easy to withdraw consent as it is to give it. As a general rule, the withdrawal of consent will not condition the use of the site.
In those cases in which the User must provide their data through forms to ask questions, request information or for reasons related to the content of the site, they will be informed if the completion of any of them is mandatory because it is essential for the proper development of the operation carried out.
The purpose of this document is to establish and regulate the rules of use, as well as the safeguarding of data on the website www.goalsystems.com (hereinafter, the “website”), meaning a website all pages and content owned by the Company (hereinafter, “the Company”), which are accessed through the domain www.goalsystems.com.
In addition, the Company, owner of the website www.goalsystems.com, informs users that it is responsible for the processing carried out on this website, unless otherwise indicated in the treatment in question.
The Company respects current legislation on the protection of personal data, the privacy of Users and the secrecy and security of personal data, in accordance with the provisions of the applicable regulations on data protection, in particular Regulation 2016/679 of the European Parliament and of the Council of April 27, 2016, adopting the necessary technical and organizational measures to prevent the loss, misuse, alteration, unauthorized access and theft of the personal data provided, taking into account the state of technology, the nature of the data and the risks to which they are exposed.
Specifically, Users of the Site are informed that their personal data may only be obtained for processing when they are adequate, relevant and not excessive in relation to the specific, explicit and legitimate scope and purposes for which they were obtained.
The user will be solely responsible for the cause of false, inaccurate, incomplete or outdated information.
The Company is not responsible for the processing of Personal Data on the site that the User can access through the different links contained on our site.
The Company respects current legislation on the protection of personal data, the privacy of Users and the secrecy and security of personal data, in accordance with which The User guarantees that the Personal Data provided is true, accurate, complete and updated and undertakes to communicate any changes or modifications thereto. In the event that Personal Data is provided from third parties, the User is responsible for having informed and obtained their consent to be provided, for the purposes indicated in the corresponding sections of this Privacy Policy. in the applicable regulations on data protection, in particular Regulation 2016/679 of the European Parliament and of the Council of April 27, 2016, adopting for this purpose the necessary technical and organizational measures to prevent loss, misuse, alteration, unauthorized access and theft of the personal data provided, taking into account the state of technology, the nature of the data and the risks to which they are exposed.
In the event that damages occur to the site or to the person responsible for it or to any other third party due to the communication of erroneous, inaccurate or incomplete information, through the forms inserted on the site and specifically through the section relating to the Registration, the responsibilities derived from such act will be attributed exclusively to the User.
The processing of the User's personal data will be subject to the following principles contained in Article 5 of the RGPD, which are the following:
The Company may collect information about the personal data of our customers or users, which may vary due to technological facilities, or the nature of the service, among others.
The categories of data that are processed by the Company through this Site are only identification and management data, in no case are special categories of personal data processed in the sense provided for in article 9 of the RGPD.
Personal data is collected and managed by the Company for the purpose of facilitating, expediting and fulfilling the commitments established between the Site and the User, or maintaining the relationship by establishing the forms that the User completes, or, where appropriate, to participate in an order or consultation.
In accordance with applicable regulations, does not require your express consent the use of the following types of cookies: (i) technical cookies; (ii) cookies for customizing the user interface marked or chosen by the user himself and (iii) own analytical cookies that only process aggregated data for strictly statistical purposes, provided that the user is offered the possibility to reject them.
Unless otherwise expressly indicated, it will be considered necessary to fill in all fields of each form, for which the User must provide us with true, accurate, complete and updated information.
The User expressly declares that the data provided through the forms on the Site are true, accurate and that he himself has sufficient capacity to dispose of them.
Therefore, the User will be solely responsible for any direct or indirect damage or harm that may be caused to the Company or to third parties by filling out the forms with false, inaccurate, incomplete, outdated or third-party data.
The Company reserves the right to decide whether or not to incorporate the personal data of these people into its files.
The user who makes a false declaration of data, impersonates a third party or performs any other illegal action similar to the previous one may be prosecuted.
Personal data will only be kept for the minimum time necessary for their processing and, in any case, only for the period corresponding to the prescription of the actions of the underlying legal business from which the personal data being processed originate.
The period of conservation of Users' personal data will be subject to the criteria of prescription of actions derived from the underlying legal business from which the personal data of the Users being processed were obtained.
In compliance with the provisions of articles 8 of the GDPR and 13 of the RDLOPD, only those over 14 years of age may consent to the processing of their personal data lawfully by the Company.
If the child is under 14 years of age, the consent of the parents or guardians will be required for treatment, and this will only be granted in cases where it has been authorized by them. To do this, they can send a message to the email address dpo@goalsystems.com.
However, in general, the Company will not process personal information, with reliable knowledge, of children under 14 years of age.
In the event that the Company, while carrying out any control activity, discovers the involuntary collection of information from children under 14 years of age, it will carry out all the necessary measures that, as a provider and host of Content, it is obliged to carry out and may delete such information as soon as possible, except in cases where, by applicable legislation, it is necessary to maintain or mediate the consent of the parents, guardians or legal representative of the minor, as indicated.
The data collected in all private communications between the Company and the Users will be treated with absolute confidentiality, committing to the obligation of secrecy of personal data, to their duty to keep them and to adopt all necessary measures to prevent their alteration, loss and unauthorized treatment or access, in accordance with the new European regulations for the protection of personal data, the applicable legislation for the collection and processing of personal data is as follows, with the application of Regulation 2016/679 of the European Parliament and Council of April 27, 2016 (RGPD) and its implementing regulations.
In addition, information of any kind that the parties exchange with each other, that they agree to be of such nature, or that they simply see about the Content of such information, will also be confidential.
The visualization of data via the Internet does not presuppose direct access to them, without the express consent of the owner for each occasion. The Company is not responsible for any information leak that may result from the user's mismanagement of information.
In addition, the Company guarantees the user compliance with the duty of professional secrecy with respect to their personal data and the duty to keep them. The User can access the site's Privacy Policy at any time, as well as configure their profile to ensure their privacy.
The User is advised not to provide to third parties their identification, password or reference numbers that the Company may provide to them. In addition, to ensure that the protection of professional secrecy between the Company and the User is preserved in all communications, the User must not disclose confidential information to third parties.
The Company undertakes to adopt the necessary technical and organizational measures, according to the level of security appropriate to the risk of the data collected, to guarantee the security of personal data and to prevent accidental or illegal destruction, loss or alteration of personal data transmitted, stored or otherwise processed, as well as unauthorized communication or access to such data.
However, because the COMPANY cannot guarantee the contestability of the Internet, nor the total absence of hackers or others who access personal data fraudulently, the data controller undertakes to notify the User without undue delay when there is a breach of personal data security that could pose a high risk to the rights and freedoms of individuals.
In accordance with the provisions of Article 4 of the RGPD, a personal data security violation is understood to be any breach of security resulting from the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or from unauthorized communication or access to such data.
Personal data will be treated as confidential by the data controller, who undertakes to inform and ensure, through a legal or contractual obligation, that such confidentiality is respected by its employees, associates and anyone to whom the information is provided.
The COMPANY respects current legislation on the protection of personal data, the privacy of Users and the secrecy and security of personal data, in accordance with the provisions of the applicable regulations on data protection, specifically Regulation 2016/679 of the European Parliament and the Council of April 27, 2016, adopting the necessary technical and organizational measures to prevent the loss, misuse, alteration, unauthorized access and theft of the personal data provided, taking into account the state of the art, the nature of the data and the risks to which they are exposed, whether they come from human action or from the physical or natural environment, and recording only personal data in files that meet the conditions established in the said Regulation regarding their integrity and security and those of treatment centers, facilities, equipment, systems and programs.
The User may exercise the following rights recognized in the RGPD against the data controller:
Thus, the User may exercise their rights by means of a communication addressed to the DPD/DPO of the data controller to the email address: dpo@goalsystems.com, in which the User must specify the following information:
This request, as well as any other attached document, must be sent to the following address and/or email.
Postal address: Via Dublín 7, floor 4. 28042 Madrid, Spain.
Email: dpo@goalsystems.com
The Company will not communicate the User's personal data to third parties without obtaining their prior consent, unless the transfer of their data is necessary for the maintenance of the relationship with the User, in which case they will be informed in advance of such transfer.
In any case, when the transfer is not necessary for the maintenance of the relationship with the User, in the data collection forms, the Company will inform the User of the purpose of the processing and of the identity or sectors of activity of the potential transferees of the personal data, previously offering the User the possibility of accepting or not the transfer, depending on the purpose.
The purpose of processing your personal data is, in addition to the purposes described, to be able to send electronic communications with information that the Company may consider of interest or relevant to Users.
The User is informed that through the data collection forms, the Company may obtain their consent to send them commercial communications.
Please give your consent by checking the box that will appear on the data collection forms, as indicated below:
Commercial Communications
The Company may contact the user by regular mail, email, SMS, WhatsApp or any other equivalent electronic communication medium, to send them commercial communications about their products and/or services or, where appropriate, send them commercial communications about products and/or services of identified third parties, or belonging to the indicated sectors, in the corresponding box. In addition, the COMPANY may send commercial communications through social networks such as Facebook, Twitter, Instagram, among others with similar characteristics.
Communications made on the basis of the above will be sent solely and exclusively to those Users who have accepted their referral, through the box inserted for this purpose and that, therefore, it is understood that the User has expressly granted their consent.
In any case, the User is not obliged to receive such advertising and information by checking or not, as the case may be, the corresponding boxes on the form; through a subsequent communication. If at any time the User does not wish to continue receiving communications of this nature, they may revoke their consent by requesting the cancellation of the Service, sending a communication to the following address dpo@goalsystems.com, providing a copy of a document that allows you to prove your identity, or using the link provided for this purpose in the commercial communications received.
For technical reasons and quality of the Services, the website www.goalsystems.com is hosted on the servers of the company Posizionate.com located within the European Union.
This company only provides hosting, database maintenance and/or data processing services for the development of the activity by the COMPANY
The availability of data on the Internet may be limited by many external factors that cannot be controlled or predictable, and the Company will not be responsible for any damage or loss that these may cause when attempting to provide the Services through alternative routes to the Internet.
The company will maintain the highest levels of security to ensure its confidentiality, integrity and availability.
In the event that the User considers that there is a problem or a violation of current regulations in the way in which their personal data is being processed, they will have the right to effective judicial protection and to file a complaint with a supervisory authority, in particular, in the state where they have their usual residence, place of work or place of the alleged violation in the case of Spain, the supervisory authority is the Spanish Data Protection Agency (http://www.aepd.es).
It is necessary that the User has read and complies with the personal data protection conditions contained in this Privacy Policy, as well as with the processing of their personal data for the person responsible for the treatment to proceed in the manner, deadlines and purposes indicated.
The use of the website will imply acceptance of the website's privacy policy.
The Company reserves the right to modify its Privacy Policy, according to its own discretion, or motivated by a legislative, jurisprudential or doctrinal change of the supervisory authority (Spanish Data Protection Agency).
Changes or updates to this privacy policy will be explicitly notified to the user.
This Privacy Policy is adapted to Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, on the protection of individuals with regard to the processing of personal data and the free movement of these data (GDPR).