Privacy Policy

1. Data Controller

In accordance with Regulation (EU) 2016/679 of 27 April 2016 (GDPR) and Spanish Organic Law 3/2018 of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD), the data controller for any personal data published on this website is:

  • Registered Name: PONS ESCUELA DE NEGOCIOS, S.L
  • Tax Identification Number (CIF/NIF): B-86096146
  • Registered Address: Glorieta de Rubén Darío, 4 (28010, Madrid)
  • Contact Email Address (Data Protection Contact): escueladenegocios@pons.es

Likewise, we inform you that PONS Escuela de Negocios has a Data Protection Officer (DPO) who ensures compliance with data protection regulations. The contact details of our DPO are:

2. Personal Data Processed

This website only publishes the following personal data of WAIQ Community members, provided that they have given their explicit and verifiable consent:

  • Full name
  • Professional photograph
  • Brief description of role, speciality or other relevant professional information within the group

No other personal data of website visitors or third parties are collected, stored or published.

3. Purposes of the Processing

The personal data of group members are processed solely for the following purposes:

  • To present and communicate the activity, values, aims and composition of the group
  • To enhance transparency regarding the members who form part of the group
  • To contact members by email, provided that they have given explicit consent, in order to keep them informed about group dynamics, internal updates, events and activities organised within the framework of the group

The legal basis for processing the personal data is the explicit and informed consent of the members whose data are published. Such consent is collected, documented and stored in accordance with applicable data protection regulations.

5. Categories of Recipients

The personal data published on this website may be accessed by:

  • Website visitors: Since the information is publicly available on the Internet, any user may access the published data
  • Technical service providers: The hosting provider may technically access the data for maintenance, security and service availability purposes, always under confidentiality obligations and with data protection commitments

No data are transferred to third parties, except where required by law, at the request of competent authorities or by court order.

6. Email Communications

Where a member has given explicit consent to receive communications, the data controller may send them email messages containing:

  • Information on internal group dynamics and updates
  • Information on events and activities organised within the group
  • Other relevant news for group members

Each email sent will clearly indicate how to unsubscribe or revoke consent.

7. Data Retention Period

Personal data will be kept published only while:

  • The member remains an active member of the group, and
  • Consent has not been revoked

Once consent is withdrawn or the relationship with the group ends, the data will be removed from the website within a maximum period of 10 working days.

Records of consent will be retained in accordance with applicable data protection regulations and internal audit criteria.

8. Data Subjects’ Rights

Any group member whose data are published on this website may exercise the following rights at any time:

8.1 Right of Access

To obtain confirmation as to whether their personal data are being processed and, where appropriate, to access a copy of such data.

8.2 Right to Rectification

To request the correction of inaccurate or incomplete personal data.

8.3 Right to Erasure (“Right to be Forgotten”)

To request the deletion of their personal data, particularly where consent has been withdrawn or the data are no longer necessary for the purposes for which they were collected.

8.4 Right to Restriction of Processing

To request that the processing of their data be restricted in certain circumstances.

8.5 Right to Data Portability

To request that their personal data be provided in a structured, commonly used and machine-readable format and transmitted to another data controller.

8.6 Right to Object

To object to the processing of their personal data at any time, for reasons related to their particular situation.

To not be subject to a decision based solely on automated processing, including profiling.

9. How to Exercise Your Rights

To exercise any of the above rights, the data subject may:

  • Send a request by email to: rgpd_escueladenegocios@pons.es
  • Include in the request: full name, identity document number, the specific right they wish to exercise, and a clear description of the request

The data controller will respond to the request within the time limits established by data protection legislation.

10. Data Security

The owner applies appropriate technical and organisational measures to protect personal data against:

  • Unauthorised access
  • Loss, destruction, alteration or damage
  • Unlawful processing

These measures may include encryption, access restriction, and periodic review of security procedures.

11. Complaints to the Supervisory Authority

Without prejudice to any other administrative or judicial remedy, if a data subject considers that the processing of their personal data infringes applicable data protection regulations, they may lodge a complaint with the Spanish Data Protection Agency (AEPD):

  • Website: www.aepd.es
  • Address: C/ Jorge Juan, 6, 28001 Madrid, Spain

12. Changes to this Privacy Policy

The data controller reserves the right to modify this privacy policy to adapt it to legal changes, changes in the group’s activities or in its data processing practices. Any changes will be published on this website with a new update date.

Last updated: Noviembre 2025

For any questions regarding this privacy policy, please contact: hello@waiq.technology