Personal data protection policy
Banco Santander, S.A. (hereinafter, "the Bank") is fully compliant with regulations governing the protection of personal data and in particular with the REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter “GDPR”) and Spanish Organic Law 3/2018 of 5 December on the Protection of Personal Data and Guarantee of Digital Rights (Ley 3/2018, de 5 de diciembre, de protección de datos y garantía de los derechos digitales, hereinafter “LOPDGDD”), in such a way that any personal information supplied by the party concerned when using this website shall be processed in compliance with the legally enforceable safeguards and obligations.
I.- Who is the Data Controller?
- Name: Banco Santander S.A., with Tax Identification Code (CIF) A-39000013
- Data controller’s contact details: firstname.lastname@example.org
- Postal address: Avda. de Cantabria, s/n, Edificio Arrecife planta 2, 28660 Boadilla del Monte (Madrid)
II.- Who is the Data Protection Officer and how can he/she be contacted?
The Data Protection Officer is entrusted with monitoring and enforcing compliance with the GDPR so as to ensure that the personal data provided by the data subject when sending emails to request additional information are protected. To contact the Data Protection Officer, data subjects may write to the following e-mail address: email@example.com.
III.- What are the purposes and legal bases of processing your personal data?
The data processed by the Data Controller via this website consists of data provided by the User in the email necessary to make queries and so that the Data Controller can manage such queries. The provision of this personal data is mandatory in order to manage the queries made.
The purpose of processing the data gathered via the email is to manage the answers to queries made and the legal basis of processing such data is the legitimate interest of the Data Controller in answering the queries made by data subjects and compliance with requests for information they have made.
IV.- For how long do we store your personal data?
Your data will be stored for the period necessary to answer the query made. Subsequently, the data will be stored, but locked, for a period of three years for the establishment, exercise or defence of legal claims relating to the processing of such data.
V.- Will your data be disclosed to third parties?
Your personal data will not be disclosed to third parties.
VI.- What are your rights when you provide us with your data?
If you wish, you may at any time exercise your right to access, rectification or erasure of personal data or restriction of processing of your personal data or object to such processing, portability of your personal data and any other rights laid down in the applicable regulations by making a written request to the following address firstname.lastname@example.org, providing in all cases your National Identity Document (DNI) or other official document certifying your identity.
Without prejudice to any other administrative or judicial remedy, you are entitled to lodge a complaint with the Spanish Data Protection Agency, especially if you are not satisfied with the exercise of your rights, via the website www.agpd.es