1. OUR COMMITMENT TO PRIVACY
1.1. The companies indicated in clause 2, their affiliates, subsidiaries, or controlling companies (hereinafter, “Our”, “Company” or “We”), respect the privacy of any person who visits or use the website stated in clause 16 (hereinafter, they are collectively referred to as the “Website”).
2.1. The company responsible for the Website and the processing of personal data included in the use o visit of the Website, is GLOBAL INTEGRATED SOLUTIONS CHILE SpA (hereinafter, “Company”, “our”, “responsible”), with address at Agustinas 815, Department 906, commune of Santiago, Santiago de Chile. You can contact the Company via the email address firstname.lastname@example.org. Personal data is any information about you that can identify you personally (hereinafter, “interested party”, “you”, “user” or “your”) including, without limitation, your name, address, telephone number or email address (hereinafter, the “Personal Data”). The interested party can be a natural or legal person, as appropriate, who for any reason accesses, visits and/or uses our Website.
3. ACCESS TO INFORMATION
3.1. The contents of the Website are free for users, however, there is information that is limited to registered users in any of the services available (e.g. courses) through the Website. To access them, users registered in any service will be able to access with the usernames and passwords that correspond to them as members.
4. DATA COLLECTED
4.1. The Company will not collect through the Website any Personal Data, unless you provide it to us voluntarily. If you do not want us to collect your Personal Data, please refrain from providing it. However, you must bear in mind that, if you do not provide us with your Personal Data, you will not be able to access and make use of certain services and information available through the Website. The Personal Information collected by the Company will be incorporated into virtual servers owned by DigitalOcean, LLC.
4.3. The data that could have been supplied or supplied by the users that we are authorized to collect during the access and use of any of the services available on the Website refer to:
4.3.1. Information that you provide when registering for any of the services available on the Website, which may include names, type and number of document, business name, telephone number, email address and / or any other information that allows you to individualize it. In all cases that you provide Personal Data, and in accordance with current legislation, you declare that the Personal Data provided is correct, true, updated, and corresponds to you and not to third parties.
4.3.2. The information provided by registered users of any service on the Website will be used to send data on programs, academic activities, extension, communications, and academic content of interest. In addition, these users may request the deletion of their data or to unsubscribe directly.
4.3.3. Data of the subscribers, users and / or visitors who make use of this Website. This can be through computerized processes to record activities (activity patterns, browsing and audience). For them, the personal identification of users and / or visitors will not be necessary.
4.3.4. The information contained in or related to any communication (questions, queries, comments, request for information or materials, etc.) that you send us through our Website, including the content of the communication and the metadata associated with the communication. Be careful when deciding to reveal any Personal Data in public activities such as comments in messages between Users and in forums, chats, uploads of any community within the Website, since the Company will not be responsible for the use that third parties may make of said information.
4.3.5. The activity and information published in community discussions, chats, forums, uploads, and other interactive features of the Website.
5. HOW DO WE USE THE PERSONAL DATA WE COLLECT?
The User authorizes us to collect, process, anonymize and generally process their Personal Data for the following purposes and purposes:
5.1. Visit and registration in our Website: To register and use our Website, you must fill out a “registration form” with Personal Data that is collected in order to provide our services through our Website, your consent being the basis of legitimacy of this treatment.
The data collected in the registry is the following: contact information, profile photo (optional), account username, email address, name and surname, postal address, unique national number, user ID, occupation, phone number (including mobile phone number), password, among others. The purposes of the collection and storage of personal data indicated are:
5.1.1. Maintain, provide and improve the commercial service contracted by the user.
5.1.2. Allow the user to manage the use of the Website.
5.1.3. Personalize the user experience and adapt it to their needs.
5.1.4. Guarantee the proper functioning and security of the Website.
5.1.5. Use email service providers to send emails on our behalf informing of essential circumstances for the proper management of the service.
5.1.6. Customer service.
5.1.8. Compliance and Fraud Prevention.
You can update or modify your profile information and contact information at any time, except for the information of the company representative when you act as a Customer who contracts our service. Profile information is not publicly available in the Website.
5.2. Contact form: Through our “contact form” you can send us any questions or comments regarding our Company and the services we provide. The form allows you to collect personal data such as name and surname, email address, as well as any other voluntarily provided. That is why we will only process the information necessary to respond to your query or need and provide the best possible service.
5.3. Use of the service: For the provision and use of contracted services, personal data of the user necessary for logging into the Website will be processed. Furthermore, the functionalities of the Website allow the user to collect non-personal data through video, audio, files, and documents, as long as you grant permission to the Website and taking into account that the responsible party does not have any access to the data collected by any of these means on the part of the user. During the session, we may collect some information about your user experience, which will be processed in order to offer service improvements, profile preferences, and provide the most suitable functionalities available to users. In the use of the Website, circumstances may arise that require customer service, technical support, training, during which we will collect personal data solely for the purpose of resolving incidents for our users. We will also send notifications, reminders, and alerts, as well as information about your account or changes in the Website, necessary for the proper functioning and correct use of the Website, which can be disabled in the settings panel of the same.
5.4. Payment for services: Our Website offers paid services, so we work with a secure payment gateway provided by PayPal Pte. Ltd. and Webpay Plus, who will use payment data solely and exclusively to complete the payment transaction selected by our users. Payment can also be made through a direct bank transfer operation, for which the ordinary billing data of the user will be used. Once the payment is completed, a notification about its successful completion is generated through an email service provider, for purely informational purposes.
5.5. Email communication: We use your email address to provide you with information about your account and information related to purchased services and products, to deliver the requested or subscribed service, as well as reminders and information related to your account and requests. Occasionally, we may send news content through our newsletter to those users who have consented, which may include educational information about the Website, promotional material related to it, and updates, among other related content. You can request at any time to unsubscribe from these communications by sending us your request to be removed from the distribution list at email@example.com.
5.6. We may share information about the User to respond to subpoenas, search warrants, court proceedings, court orders, legal processes, or other law enforcement measures, to establish or exercise our legal rights, or to defend against legal claims.
5.9. In addition to the scenarios identified above, we may share information about the Users for any other purpose that is disclosed to them at the time we collect his information or pursuant to their consent.
6. SHARED MULTIMEDIA RESOURCES
6.1. The User registered in any service of the Website is responsible for any content generated and uploaded within the Website and by uploading and / or sharing the content the User (i) grants consent to allow the processing of Personal Information that may be present in the shared or uploaded content; (ii) must have the consent of all third parties that eventually appear in it.
6.2. Upon request, we will always remove or edit any content you have provided to us, except in cases where such removal is not possible, or recommended, in accordance with the law.
6.3. All rights relating to the Website and its contents, including intellectual property rights, belong to the Company.
6.4. By accessing the Website, the user will have the right to review all the information that is available on it, only being able to use it for private and non-commercial purposes. Notwithstanding the foregoing, the Website is not responsible for the veracity or accuracy of the information contained in the links to other websites or that has been delivered by third parties.
6.5. The Company does not authorize the use of the images contained on the Website, with the exception of those published in the “News” section, clearly indicating their source or origin.
7.1. Cookies are small files that we generate from our API and are sent to your browser, mobile application or related software and stored on your device.
7.2. Cookies often include an anonymized unique identifier, which makes it possible to track and store user preferences on our website, as well as technical information about their use.
7.3. The website collects anonymous records during user visits, this is done through cookies, web-workers, or similar technologies to retain information about users and their use of the software.
7.4. The Website uses the cookies used by WooCommerce for the purpose of selling courses in various ways:
7.4.1. Helps WooCommerce determine when cart contents/data changes.
7.4.2. Contains a unique code for each customer so that it knows where to find the cart data in the database for each customer.
7.4.3. Activate the recently viewed products widget.
7.4.4. Allows customers to dismiss the Store Notice.
7.5. The website uses “pixel” technology, which are fragments of code in our communication channels that allow us to collect anonymous information about the performance of online advertisements and mail marketing, as well as to route broadcast messages on other platforms. like social networks, search engines and other platforms.
8. MINOR USERS
8.1. The User registered in any service of the Website, must be at least 18 years old, or the age of majority in his province, territory, or country, to register and use or buy our products and services. People under 18 years of age, or the applicable age of majority, may use any service on the Website only with the participation and consent of a parent or legal guardian, and under this person’s account and otherwise subject to these Terms. If you are under the age of 18, you are not allowed to provide any Personal Information to the Company, on the Website or through any other service provided by the Company. Please do not send us any information about yourself, including your name, address, telephone number, or email address.
8.2. The Company does not knowingly collect or request Personal Information from anyone under the age of 18 or knowingly allow such individuals to register. If we learn that we have collected Personal Information from a person under the age of 18, we will delete that information as soon as possible.
8.3. If you think we might have information from or about a person under 18, please contact us at firstname.lastname@example.org or email@example.com.
9. RETENTION PERIOD FOR PERSONAL DATA
We will retain documents and process the personal data contained in them on our servers for the time necessary to fulfill the purpose stated in each of them, provided that the user does not exercise their right to deletion.
Once the purpose of the processing is fulfilled, and without prejudice to legal regulations to the contrary, the Company will proceed to delete the stored personal data, unless there is a legal or contractual obligation that requires their retention for the exercise and defense of judicial and/or administrative actions and claims. The collection, storage, modification, structuring, and, if necessary, deletion of data provided by data subjects constitute processing operations carried out by the Company, with the aim of ensuring the proper functioning of the Website, content development, and the management, administration, information, provision, and improvement of the service.
10. DATA RECIPIENTS
10.1.The Company may grant access or transmit the personal data provided by the user to third-party service providers with whom it has entered into data processing agreements, and who only access such information to provide a service on behalf of and on behalf of the Data Controller. These third parties have signed confidentiality agreements with the controller, committing to maintain the confidentiality and security of the personal data to which they have access, in compliance with the provisions of the GDPR.
- Accounting Advisory: for the proper accounting maintenance of the Company.
- IT Advisory: for software development and maintenance of digital resources.
- Hosting of architecture and Virtual Private Cloud (VPC): to host all the software and data necessary to run the Website.
- Payment service provider.
If you would like more information about these third parties, please contact us at firstname.lastname@example.org. If you do not agree with any of the sub-processors from which we cannot reasonably separate our services, the only solution will be to cancel your subscription to the service that we cannot reasonably provide without a new sub-processor. This cancellation of service will be without the right to a refund of payments made for subsequent periods.
11. TRANSFER OF PERSONAL DATA
The data will not be communicated to any third party, except legal obligation or, in any case, upon request of the User’s consent, without prejudice to the following:
11.1. On the other hand, the Company may give access or transmit the personal data provided by the User, to third party service providers, with whom it has signed agreements, and who only access this information to provide a service in favor and on behalf of the Company.
11.2. The Company may give access or transmit the personal data provided by the User, to third parties linked to the Website, with whom they have decided to follow, interact, share, and socialize. The personal data, records, and any type of information that you decide to share, by your own decision, will be available to others, which means that the data that the User wishes to leave as public, other users of the Website may have access and the Company cannot control or ensure compliance with the security policy.
11.3. Likewise, the Company may share your information with related companies, with suppliers or with other third parties to the extent required for any of the purposes described in Section 5 above.
11.4. In compliance with the regulations established by the GDPR regarding international data transfers, we inform you that due to the use of service providers who process personal data of our users, the following international data transfers are carried out:
11.4.1. DigitalOcean LLC, located at 101 6th Ave, New York, NY 10013, United States, for cloud information storage. In contracting with this provider, the corresponding Standard Contractual Clauses for Module Two, approved by the European Commission, have been signed, as established in the following link: https://www.digitalocean.com/legal/data-processing-agreement DPA.
12.1. Technical and organizational precautions: In order to comply with the principles of data security, integrity, and confidentiality in accordance with the GDPR, the Company has implemented the following reasonable and necessary technical and organizational precautions to ensure the security of the personal data collected and to prevent tampering, loss, unauthorized access, or fraudulent use of the registered user’s personal information in the Website:
12.1.1. Measures to ensure the physical security of locations where personal data is processed: The Company’s offices are located in non-recognizable buildings that are physically monitored and managed 24 hours a day to protect data, prevent unauthorized access, and mitigate environmental threats. CCTV cameras are used to monitor physical access to the offices. Cameras are placed to monitor perimeter doors, entrances and exits, reception areas, external areas such as parking lots, and other areas of the buildings.
12.1.2. Provision of access: To minimize the risk of data exposure, the Company follows the principle of least privilege through a system access control model. Company staff is authorized to access the user’s personal data according to their job function, position, and responsibilities, and such access requires approval. Access rights to non-time-based production environments are reviewed at least semi-annually. An employee’s access to the personal data of our users is immediately revoked upon the termination of their employment. To access the production environment, an authorized employee must have a unique username and password. Before a Company employee gains access to the production environment, management must approve such access.
12.1.3. Password control: The current password management policy for employees in the Company focuses on the use of longer passwords, including special characters, and requires frequent password changes.
12.1.4. Sharing data with business partners: In order to ensure data security, our company shares personal information with its business partners, such as IP addresses, geographical location, and general user data, always using aggregated and anonymized data. Due to the non-identifiable nature of this information, its processing is exempt from personal data protection regulations.
12.1.5. User data backup: The Company regularly backs up information provided by users, which is hosted on the infrastructure of data centers of DigitalOcean, LLC..
12.1.6. Protection against computer viruses: The Company protects its computers with antivirus software and firewalls.
12.1.7. Email protection: The Company uses email services that have security features to protect emails from spam, phishing, and malware.
12.1.8. Data security: Currently, the Website version boasts a robust layer of security thanks to the implementation of an SSL certificate. This is essential for preventing any data leakage through network interception.
13.1. The Company has controls in place to maintain the confidentiality of user data. All employees and contracted staff of the Company are subject to the Company’s internal policies regarding the confidentiality of user data and are contractually obligated to comply with these obligations.
14. SECURITY AND USER RESPONSIBILITY
14.1. The User acknowledges that the transmission of information through the Internet is inherently insecure, and we cannot guarantee the security of the data sent through the Internet.
14.3. The User is responsible for maintaining the confidentiality of the password that he or she uses to access and use any of the services on our Website; We will not ask you for your password except when you log in to our Website.
14.4. The Website includes hyperlinks and details of third-party websites or applications, but we have no control and are not responsible for the privacy policies and practices of third parties. The Company recommends that you consult the privacy practices of such Internet sites before using them.
14.5. We reserve the right to block and / or delete User accounts, language, photographs, videos that do not comply with the purpose and purposes of the Website and that are obscene, violent, sexual, offensive, discriminatory. The User of the content is responsible for complying with the conditions of use of the Website.
15.1. DigitalOcean, LLC: The Company’s servers are hosted by DigitalOcean LLC in the United States of America and are protected by DigitalOcean, LLC’s environmental and security controls. The production environment within DigitalOcean, LLC where the Company’s services and user data segment services are hosted is logically isolated on a virtual private server. User data stored on DigitalOcean, LLC is encrypted at all times. DigitalOcean, LLC does not have access to unencrypted user data. More information about the security of DigitalOcean, LLC is available at https://www.digitalocean.com/legal/data-processing-agreement.
16. USER RIGHTS
16.1. The holders or owners of the data may exercise a series of rights in relation to the processing of their personal data, established by current Law. These rights may be exercised by one of the following people:
16.1.1. By the Holder, who must sufficiently prove her identity by the different means made available to him by the person in charge.
16.1.2. By their successors, who must prove such quality.
16.1.3. By the representative or attorney-in-fact of the Holder, prior accreditation of the representation or power of attorney.
16.1.4. By stipulation in favor of another and for another.
16.2. The User may at any time exercise the rights granted by current Laws, specifically he will be able to:
16.2.1. Access: You have the right to contact the Company to find out if your personal data is being processed and to obtain information about the purposes, data being processed, third parties to whom the data is communicated, retention period, origin, the existence of automated decisions including profiling, the existence of international transfers, and to obtain a copy of the personal data being processed. We may charge a small fee unless it is a second copy.
16.2.1. Rectification: You have the right to obtain the correction of inaccurate or incomplete personal data, clearly indicating the data and the correction in the request, and providing supporting documents as appropriate.
16.2.1. Objection: You have the right to object to the Company processing your personal data.
16.2.1. Deletion (“Right to be Forgotten”): This right allows you to request that the Company delete your personal data from the databases that contain them. It can be exercised once personal data has been used for the purposes for which it was collected, if consent is withdrawn, if the right to object has been exercised, and for compliance with a legal obligation. The Website user acknowledges and accepts that in the event of a request to block or delete their personal data, such requests will not affect data processing carried out prior to the user’s request, which will remain valid and lawful.
16.2.1. Restriction of data processing: This right is exercised when challenging data processing or in the case of previous objection to data processing. It also involves preventing deletion and requesting data retention in the event of exercising or defending claims.
16.2.1. Data portability: The data subject has the right to receive their personal data that concerns them in a structured, commonly used, and machine-readable format and to request our Company to transfer the data to another data controller/recipient if it is technically feasible and not prevented by the designated recipient.
16.3. If the user wishes to exercise any of their rights, please send your request to GLOBAL INTEGRATED SOLUTIONS CHILE SPA through our email address: email@example.com, and it will be responded to within a maximum period of one month, as established by the international GDPR regulation. Each request must contain at least one of the following information:
16.3.1. Name and some means, to respond to your request within the deadlines established in the applicable law.
16.3.2. Copy of your identity document, passport or any other document that proves your identity or proves the personality of your legal representative, and in case the request is made through the legal representative, accompany the document that proves your powers as a representative.
16.3.3. Clear and precise description of the personal data on which it is sought to exercise any of the rights of access, rectification, opposition, cancellation, or revocation, as well as the clear and precise description of your request and any other element that facilitates the location of Personal Information.
16.3.4. Date and signature of the applicant; and any other element or document that facilitates the location of said personal data.
16.4. The User should note that we need to retain certain information for record-keeping purposes and / or to complete any transaction that has begun before requesting such change or deletion (for example, when enrolling in a course, it may not be possible to change or delete the Personal Information provided until after the completion of the enrollment). We will retain your personal data for the period necessary to fulfill the purposes described in this Policy unless a longer retention period is required or permitted by law. On the other hand, the User acknowledges and accepts that in the event of a request to block or cancel their personal data: (i) the requests will not affect data processing carried out prior to the User’s request, which will continue to be valid and legitimate. and (ii) your ability to correctly use the Website and its functions could be affected and may even make its use impossible.
17.1. The Company is Global Integrated Solutions Chile SpA, with address at Agustinas 815, Office 906, municipality of Santiago, city of Santiago, Chile. The Website consists of its services, content, software, tools, and its related websites: ifarming.cl, ifarming.ai.
17.2. The contact to exercise the Rights of the Users and ask questions related to the processing of their personal data is: firstname.lastname@example.org or email@example.com.