Privacy policy

Your data, your rights, our obligations

This document contains information on the data processing carried out from the “TIMEPAC Academy” website ( of the European project "Towards Innovative Methods for Energy Performance Assessment and Certification”, with Grant Agreement number 101033819, based on the principles of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC General Data Protection Regulation (GDPR) and of the Spanish Organic Law 3/2018 on the Protection of Personal Data and the Guarantee of Digital Rights (LOPDGDD).

Who is responsible for the processing of personal data?

The Responsible for the treatment of the data obtained through this website is the Fundació Privada Universitat i Tecnologia (hereinafter FUNITEC), with tax identification number G60643558 and domiciled at Sant Joan de La Salle, 42, 08022 Barcelona, Spain; telephone number +34 93 290 24 00, e-mail and web page FUNITEC is registered in the Registry of Foundations of the Government of Catalonia with the number 744. FUNITEC is the owner of La Salle University Centre of Higher Education, a part of the Ramon Llull University.

For any question related to the protection of personal data, please contact

What is the role of the Data Protection Officer?

The Data Protection Officer (DPO) is the person who supervises compliance with our data protection policy, ensuring that it is properly processed and that people's rights are protected. His/her functions include attending to any doubts, suggestions, complaints or claims of the people whose data we hold and process. You can contact the Data Protection Officer by writing to our postal address or email (, or calling at our telephone number.

For what purpose do we process the data?

We treat personal data keeping in mind the rights of people and always proportionally to each case. We process the adequate, pertinent and required data for the fulfilment of the explicit purposes for which it was obtained; in short, only those data necessary to make the development of the "TIMEPAC" project possible.

We list below the data treatments that we carry out:

  • Participants in project activities, including the TIMEPAC Academy: We register the participants in activities of the project, in order to provide information about them.

  • Representatives or interlocutors of the "TIMEPAC" project partners: We collect information about them to disseminate on our website.

  • Newsletter subscribers: We register the data of the people interested in receiving information about the project activities.

How do we obtain the data?

Data collection is mainly done through forms and e-mail.

What is the legal entitlement to process the data?

The legal basis that legitimizes the data processing that we carry out is the consent of the interested party (article 6.1.a GDPR), the provision of services (art. 6.1.b GDPR) and the legitimate interest of the project promoters (art. 6.1.f GDPR).

To whom are the data provided?

As a general criterion, personal data are not provided to third parties. In the case of participants in project activities, their curriculum vitae, photograph and contact information are disseminated from the website.

How long do we keep the data?

The retention time of the data is determined by different factors. Firstly, as long as the data is necessary to meet the purposes for which they were obtained in each case. Secondly, to deal with possible liabilities for the processing of the data. Lastly, to meet any requirement of public administrations or judicial bodies.

Consequently, the data must be kept for the time necessary to preserve its legal or informative value and to demonstrate compliance with legal obligations, but not for a period longer than necessary to fulfil these purposes.

In the case of data that is processed exclusively based on the consent of the person concerned, they are kept until this person revokes this permission.

What rights do people have in relation to the data we process?

In accordance with the General Data Protection Regulation, the people whose data we process have the following rights:

  • To know about the treatment:

    • Any person has the right to know if we process his/her data, regardless of whether there has been a previous relationship.

  • To be informed at the time of collection:

    • When the personal data is obtained from the interested party, at the time of providing it, they must have clear information about its purpose, those responsible for the treatment and the consequences derived from it.

  • To access the data:

    • Very broad right that includes being informed in detail about the personal data that is subject to treatment and its purpose, knowing whether the data will be provided to third parties, obtaining a copy of the stored data and knowing the expected retention period.

  • To rectification:

    • It is the right to request the modification of inaccurate data treated by us.

  • To revoke the information:

    • Under certain circumstances there is the right to request the deletion of data when, among other reasons, it is no longer necessary for the purposes for which they were collected and processed

  • To request limitation of treatment:

    • In certain circumstances there is also the right to request the limitation of the data processing. In this case, the data will no longer be processed and will only be kept for the purpose of defending claims, in accordance with the General Data Protection Regulation.

  • To portability:

    • In the cases provided for in the regulations, the right is recognized to obtain one's own personal data in a structured format for common use that can be processed by a computer, and to transmit them to another data controller if the data subject so decides.

  • To be opposed to treatment:

    • A person may give personal reasons to stop processing their personal data.

  • To not receive information:

    • We immediately respond to requests not to continue receiving information about our activities and services.

How can rights be exercised or defended?

The rights that we have just listed can be exercised by means of a written request to FUNITEC at the postal address (Sant Joan de La Salle, 42, 08022 Barcelona, Spain) or through the e-mail

In any case, either to present complaints, ask for clarifications or make suggestions, it is possible to contact the Data Protection Officer by e-mail at

If a satisfactory response has not been obtained in the exercise of these rights, it is possible to file a complaint with the Catalan Data Protection Authority, using forms or other channels accessible on its website

Loading the web debug toolbar…
Attempt #