We inform you, in compliance with the provisions of the General Data Protection Regulation (GDPR):
Personal data will be processed by CSIC and incorporated into the processing activity "General Information Inquiries," whose purpose is the management of the inquiry submitted. This purpose is based on the exercise of the functions carried out by this organization.
Personal data may be communicated to other competent services of other administrations when necessary to address your inquiry.
The data will be retained for the necessary period to fulfill the purpose for which it was collected.
Among these obligations is the appointment of a Data Protection Officer (DPO) and the notification to the Spanish Data Protection Agency (AEPD).
If you wish to exercise your right to access, rectify, erase, object to, or limit the processing of your data, or carry out any operation related to the management of your personal data, you can contact the Data Protection Officer through the following <> (a contact needs to be created).
The regulation also requires the publication of an inventory of processing activities by electronic means. Through the following links, you can access those corresponding to the central organization of CSIC and those related to the CSIC Institutes.
CSIC has fulfilled the remaining requirements in terms of data protection, including the creation of internal flows for reporting any security breach, the corresponding risk analyses, and the adoption of appropriate security measures based on the identified risks. Additionally, privacy impact assessments have been conducted in cases where risks have been identified, mainly related to the processing of data within some research projects.
