Privacy Policy

Identity	Virtual School Canada S.L.
Postal address	C/ Santa Engracia, 15, 2INT, Madrid (SPAIN)
Phone	+34 722 144 601
Email	[email protected]

We process the information provided to us by our clients and other interested parties for the following purposes:

1. PURPOSES OF A CONTRACTUAL NATURE: to facilitate the management of the provision of the agreed services, to maintain the commercial relationship, as well as any other service that is contracted subsequently.
2. PURPOSES BASED ON THE CONSENT OF THE INTERESTED PARTY: For marketing purposes, to offer products or services of our own or of third-party companies related to the services of courses abroad.
3. PURPOSES BASED ON LEGITIMATE INTEREST, pursuant to the provisions of article 19 of the LOPDGDD (Organic Law 3/2018 of December 5) and article 6.1.f) of Regulation EU 2016/679, regarding contact details, function or positions performed by natural persons who provide services in a legal entity, referring only to the data necessary for their location and to maintain relations of any kind with the legal entity in which the affected party provides their services.

The data is processed as DATA CONTROLLER, when it is collected and processed by us.

The data is processed as DATA PROCESSOR, when the company processes the data to provide a service to a third party entity that is responsible for the data.

The personal data provided will be kept,

• For as long as required to fulfill the purpose for which they are collected, or as long as the contractual relationship requires, including the time necessary, in accordance with applicable regulations, to comply with the relevant obligations and actions that may arise from it.
• The retention period for data relating to the student's academic record will be 10 years. This is established by art. 2 and 6 of Organic Law 6/2001, of December 21, on Universities and regulations on archives and documentation.
• As long as its deletion is not requested by the interested party.

being blocked when the first of the three events mentioned above occurs.

From that moment on, it will be at the exclusive disposal of Judges and Courts, the Public Prosecutor's Office or the competent Public Administrations, in particular the data protection authorities, to address possible liabilities arising from the processing, during the limitation period of these. Once the aforementioned period has elapsed, the data will be deleted.

Profiling is not carried out.

As DATA CONTROLLER, the legal basis for the processing of your data is based on:

1. On the contractual relationship and execution of the contract signed with us.
2. In the event that you have expressly given your consent, the legal basis is said consent.
3. In the legitimate interest, under article 19 of the LOGPGDD.

As DATA PROCESSOR, it is the responsibility of the entity that has contracted us as a service provider, in its capacity as DATA CONTROLLER, to establish the legitimacy and treatment model.

The data is communicated to our collaborators who perform services such as subcontractors, collaborating legal firms in charge of processing.

Pursuant to Commission Decision 2002/2/EC of 20 December 2001, with respect to entities subject to the scope of application of the Canadian data protection law, data controllers and processors may carry out international transfers of data to that country without the need for authorization from the Spanish Data Protection Agency, provided that the data processing complies with the provisions of the GDPR and other applicable regulations.

In relation to any other transfer of your personal data to countries outside the EEA, the firm will implement the appropriate specific measures to ensure an adequate level of protection of your personal data.

• Any person has the right to obtain confirmation as to whether or not we are processing personal data that concerns them.
• Interested persons have the right to access their personal data, as well as to request the rectification of inaccurate data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purposes for which it was collected.
• In certain circumstances provided for in Article 18 GDPR, interested parties may request the limitation of the processing of their data, in which case we will only retain them for the exercise or defence of claims.
• Interested parties may object to the processing of their data for marketing purposes, including profiling. The Foundation will stop processing the data, except for compelling legitimate reasons or the exercise or defence of possible claims.
• By virtue of the right to portability, interested parties have the right to obtain the personal data concerning them in a structured format for common use and machine reading and to transmit it to another controller.

By writing to the addresses indicated above. 

If you believe that the Foundation has not correctly resolved your request, you may request the protection of the Spanish Data Protection Agency, whose data can be consulted at www.agpd.es”

1. Identification data.
2. Data about your professional function or activity.
3. Health data
4. Economic-financial information.

Special categories of articles 9 and 10 of the GDPR may be processed. In these cases, Virtual School Canada S.L. complies with the requirements of articles 9 and 10, and explicit consent is obtained.

Personal data is treated confidentially in accordance with the privacy and security policies established by Virtual School Canada S.L.

The data received or collected are those necessary to fulfill the purposes indicated.

As DATA CONTROLLER, the personal data we process comes from the information you provide us when you request services or resources, access our website, or establish any type of relationship with us, directly or indirectly.

As DATA PROCESSORS, the data comes from the DATA CONTROLLER, or we collect it for him during the provision of the service contracted with the CONTROLLER.