Privacy and data protection policy

Privacy and data protection policy

CEGADRONE’S Privacy POLICY was updated in July 2020.

Your privacy is important to CEGADRONE. That is why we have developed a Privacy Policy that describes how your data is collected, used, disclosed, transferred and stored.

Please take a moment to familiarize yourself with the privacy practices, and if you have any questions,
please do not hesitate  to contact us.

Basic information on Data Protection

Purpose– Respond to your request for information
– Formalize your enrollment in a course 
– Commercial and administrative management of customers and suppliers. Management of curriculum that can arrive through email.
– Access to the platform available by the client for the management of their information.
Legitimation– Consent of the interested party.
– Service contract.
RecipientsNo data will be transferred to third parties, except legal obligation
RightsYou have the right to access, rectify and delete the data, as well as other rights, as explained in the additional information.
Información adicionalYou can consult the additional and detailed information about our Data Protection Policy, by pressing +info


Leader for the Treatment: 

  • CIF: B-87526323
  • Address: c / Príncipe 6, 40260 Fuentepelayo (Segovia)
  • Telephone: (+34) 910 225 354

Leader contact: 

  • c / Nanclares de Oca, 1 / F / 1º F, 28022 Madrid
  • Email:
  • Telephone: (+34) 910 225 354

Data protection principles

In the processing of personal data, CEGADRONE will respect the following principles:

  • Principle of legality : personal data will be processed to the extent that at least one of the conditions provided for lawful processing is verified: (i) when the owner of the data has given their consent; when the treatment is necessary for (ii) the execution and management of a contract, (iii) the fulfillment of a legal obligation, or (iv) the pursuit of a legitimate interest of the company or third parties.
  • Principle of good faith and purpose limitation : personal data will be collected and processed for specific purposes communicated to the interested party and, in no case, for different purposes.
  • Principle of minimization and limitation of conservation : only personal data that is adequate, relevant and not excessive will be processed, and for the time strictly necessary for their respective purposes.
  • Principle of transparency : the owners of the data will be clearly informed about the main characteristics and protection measures of their personal data, in particular, about the respective purposes of treatment and eventual transmission to third parties.
  • Principle of need for access : only workers and collaborators whose functions require it will have access to personal data processed by CEGADRONE.


For what purpose do we process your personal data? 

At CEGADRONE, SL we treat the information provided by the interested person based on the following purposes:

  • Respond to your request for information
  • Formalize your enrollment in a course 
  • Commercial and administrative management of clients and suppliers.
  • Resume management that can come through email.
  • Give access to the platform available by the client for the management of their information.

In compliance with Regulation (EU) 2016/679 regarding the protection of natural persons with regard to the processing of personal data, it informs the users of the Website that the data provided through our website Through the forms and / or e-mails received, and which are considered personal data, they will be incorporated into our information systems, in order to be able to manage the requested service, answer your request and / or process your request. .

Users guarantee and respond, in any case, to the veracity, accuracy, validity, authenticity, relevance and non-excessiveness of the Personal Data provided, and undertake to keep them duly updated.

The person responsible for the file has adopted the security levels of protection of Personal Data legally required, and has installed all the means and technical measures available according to the state of technology to avoid loss, misuse, alteration, unauthorized access and theft of the Personal Data provided, in order to ensure your privacy.

In no case will they be used for different purposes or transferred to third parties. CEGADRONE is clearly positioned against ‘spam’, so in no case will it use personal data to send unsolicited commercial communications without your authorization.

The communications that are made by email or by any other electronic means will be necessary to manage your request.

However, they will be those that have been expressly consented to or authorized by the recipients in accordance with Law 34/2002, of July 11, on Services of the Information Society and Electronic Commerce, except as provided in article 21.2 of this same Law, in the wording given by the First Final Provision of the new General Telecommunications Law.

The user has the confidentiality and the duty of secrecy of all those who process the data in his name and on his behalf. Notwithstanding the foregoing, the user is aware of the possibility that the security of communications through the network is not invulnerable.

Terms or criteria for data retention:

The data for the management of the relationship with the client and the billing and collection of services will be kept for as long as the contract is in force. Once said relationship has ended, if applicable, the data may be kept for the time required by the applicable legislation and until the possible responsibilities derived from the contract are prescribed.

The data for the management of inquiries and requests will be kept for the time necessary to respond to them, with a maximum period of one year.

The data for sending commercial communications of our products or services will be kept indefinitely until, where appropriate, you express your desire to delete them.

The curriculum vitae data for selection processes will be kept for six months. 

CEGADRONE will keep your personal data once its relationship with you has ended, duly blocked, during the limitation period of the actions that may arise from the relationship with the interested party.

In the management platform, which CEGADRONE makes available to the client, the client’s data will be kept for 2 years from the end of the contract, as long as the client does not request its deletion or delivery. 

Once blocked, your data will be inaccessible to CEGADRONE, and will not be processed by it, except for making it available to public Administrations, Judges and Courts, for the attention of possible responsibilities arising from the treatments, as well as for the exercise and defense of claims before the Spanish Agency for Data Protection.


What is the legitimacy for the processing of your data? 

The legal bases that allow us to process your data for each of the indicated purposes are:

a) Contractual relationship : it is the one that applies when a service is requested.

b) Legitimate interest : to attend to the queries and claims that you raise and to manage the recovery of the amounts owed.

c) Your consent :

  • If you are a User, by checking the box that appears in the forms and that is displayed in the “Contact”, you have authorized us to send you the communications identified above;
  • If you are the representative or contact person of an Entrepreneur or Professional, by checking the corresponding box when you contact us or when contracting any of our services, you have authorized us to send you the identified communications.

d) The law : such as when a judicial or administrative authority requests data from us to comply with the provisions of a legal norm.


To which recipients will your data be communicated ?: 

Your data will not be communicated to any third party not related to the provision of the service, except for current legal obligations. In any case that this possibility changes, you will be duly informed requesting your consent for said assignment. 

However, we inform you that, for the correct provision of services, it is possible that different service providers contracted by our entity (those in charge of treatment) may have access to the personal information necessary to carry out their functions.

These services provided by third parties are necessary for the development of our activity and the provision of the service, and at all times, the treatment of the data they carry out is governed by a contract that binds the person in charge with respect to our entity. In no case will they use the information for other purposes and will treat it in accordance with the guidelines stipulated by our entity, in accordance with our privacy policy and current regulations on data protection.

Our entity, in its commitment to the privacy and protection of the User’s data, will only choose service providers that offer sufficient guarantees to apply appropriate technical and organizational measures, so that the treatment is in accordance with the applicable legislation on data protection and guarantees the protection of the User’s rights.

We also inform you that our entity uses basic information storage systems in the cloud (Cloud) through the service provider in the United States Dropbox, Inc., a technology company that currently offers all the guarantees required in terms of protection of data. That is why this entity appears on the official lists of entities with security guarantees that you can consult at the following link:

During the duration of the treatment, CEGADRONE will carry out the foreseen legal assignments, management with banking entities and organizations or people directly related to the person in charge

Social media policy

CEGADRONE has a corporate profile on the social networks Facebook, Twitter, Linkedin, Youtube and Vimeo. Thus, by virtue of the provisions of the Personal Data Protection regulations, CEGADRONE is “Responsible for the processing of your data” due to the existence of said profiles on social networks and the fact that they follow us and we can follow them .

The foregoing means that, if you decide to join our corporate profile as a follower or give a “Like” or a “Like” to our content or profile, you accept this policy, where we explain your rights and how we use your data.

As the person responsible for the treatment of your data, we guarantee confidentiality in the treatment and compliance with your rights, always under the effects of the aforementioned regulations.

On the other hand, we inform you that we will use these social networks to announce news or relevant information related to the services we offer, or on topics that we consider to be of interest to you. Using the functionalities of these platforms, you may receive news with this type of information on your wall or on your profile.

Now, we also let you know that there is no link between CEGADRONE and said platforms or social networks, so you will accept their use policy and conditions once you access them and / or validate their notices, terms and conditions in the procedure of registration, CEGADRONE not being responsible for the use or treatment of your data that is done outside the strict relationship and provision of services indicated in this policy.


What are your rights when you provide us with your data?

Rights of access: 

Any person will have the right to obtain CEGADRONE confirmation of whether or not personal data concerning them is being processed and, in such case, they have the right to access them.

Rectification Rights: 

Anyone will have the right to request CEGADRONE to rectify any inaccurate data concerning them.

Suppression Rights: 

Any person will have the right to request CEGADRONE to delete the personal data that concerns them when, among other reasons, the data is no longer necessary for the purposes for which it was collected.

Portability Rights: 

The interested party will have the right to have personal data transmitted directly from CEGADRONE to another person in charge when technically possible.

Right to Limitation of Treatment: 

In certain circumstances, the interested parties may request the limitation of the processing of their data, in which case we will only keep them for the exercise or defense of claims.

Opposition Rights: 

The interested party will have the right to object at any time, for reasons related to their particular situation, to which personal data concerning them are subject to treatment.

How to exercise the above rights?

The interested party may exercise their rights by sending a request letter, with the reference “Data Protection”, attaching a copy of their ID or identification document equivalent to:

  • CEGADRONE to the address, previously detailed, of the Data Controller, or
  • The email account detailed above in the Responsible Contact

Right to withdraw the consent given: 

The interested party may revoke at any time the consent given for the processing of their data by writing to CEGADRONE at the address, previously detailed, of the Person in Charge of Treatment, or to the email previously detailed in the Contact of the Person in charge, with the reference Protection of Data, attaching a copy of your ID or equivalent identification document, without this revocation of consent affecting the treatment based on the consent prior to its withdrawal.

Right to complain to the Control Authority:

In any case, the interested party may, if he understands that his rights have been violated, file a claim with the Spanish Agency for Data Protection, with address at calle Jorge Juan 6, 28001 in Madrid, telephone 901 100 099, and website


Origin of the Data: 

All the data of the interested party processed by CEGADRONE have been freely informed by the interested party.

In the event that personal data are included in the request, by persons who do not own them, the user must, prior to their inclusion, inform said persons of the points contained in the previous paragraphs. CEGADRONE is exempt from any responsibility for the breach of this requirement.

In which sections of the website do we collect your data

  • Through the contact form of the Website
    In this form you must indicate your name, surname and email so that we can contact you, as well as the data that we may require and others that you consider in the message you send us.
  • Through social networks
    We may collect your data through your user profile on the social networks that we use from CEGADRONE, which are detailed in section 9 of this policy.
  • Through our corporate email
    Through our email: you can write to us and / or request the information you consider necessary to clarify doubts related to our services or about the operation of our Website.
  • Through the registration on our platform
    You can register as a user of the platform to manage your business information.

Other means of collecting your data

  • When we exchange contact information at fairs, events, or strictly professional public relations
    Within the framework of professional spaces and situations, such as fairs, events or direct public relations, we may obtain contact information of workers or professionals, in order to establish a business relationship for the provision of services, networking dynamics or commercial activities in general. An example of this is the exchange of cards of our workers with other professionals.
  • When they request our services, we
    collect the name, surname and contact information of the client, as well as any other information that you provide us, limited to the purpose of our services and protected by our duty of confidentiality. This information may include data from other members of your organization. Subsequently, we will treat this data in order to make a proposal, provide the service, carry out after-sales service and, ultimately, keep the client informed about CEGADRONE products and services similar to the one contracted or offered.
  • When we evaluate the possibility of hiring workers,
    we collect or send us curricula vitae, in which in addition to academic data there are data related to professional and academic experience. The purpose is to assess the incorporation of these workers into our workforce.

Unambiguous acceptance for data processing

In accordance with everything expressed in this privacy policy, the user accepts the following data processing:

  • As a visiting user and / or information requestor .
    The treatment for the purpose of attending you in the requests or queries that you have made us through the channels that we have on our platform and already mentioned in this policy.
  • As a registered user .
    The treatment for the purpose of providing the requested service, attending you in the doubts or queries you may have regarding the platform, our service or the conditions applicable to it.

    The treatment for the purpose of sending you information that we think may be of interest to you, about company news, news, content that we think may also be of interest to you.
  • As a follower user on social networks .
    Treatment for the purpose of managing and publishing content or information that may appear on your profiles or walls that are associated with our company or collaborators and we think they may be of interest to you. In no case to access your personal data and treat them for purposes that are not informed or consented.

Versions of the data protection policy

CEGADRONE reserves the right to modify its Data Protection Policy according to its criteria, due to a regulatory change or the organization’s practice. Such modifications will be published on this website, providing the necessary resources to the user to read them. In any case, the relationship with users will be governed by the rules provided at the precise moment in which this website is accessed.

Date of last update: July 20, 2020