Registry of data processing activities

 

1.     MANAGEMENT OF EMPLOYMENT ISSUES

Data controller CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA

Q2861006A

Official address:  Calle Mayor 58, planta 1 – 28013 Madrid

DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net

Purpose of the data processing Management of the employment relationship

Human resources management.

Compliance with legal labour obligations

Compliance with social security obligations

Fulfilment of tax responsibilities arising from the employment relationship.

Legal basis GDPR (art.6.1. b): Processing necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures at his or her request.

GDPR (art. 6.1.c): Processing necessary for the fulfilment of a legal obligation applicable to the Data Controller.

Royal Legislative Decree 2/2015, of 23 October, approving the revised text of the Law on the Workers’ Statute.

Royal Legislative Decree 8/2015, of 30 October, approving the revised text of the General Social Security Act.

General Taxation Law 58/2003, of 17 December

Interested parties Employees
Categories of personal data Identification data, personal characteristics, social circumstances, academic and professional data; detailed data about the employment
Period of storage The data will be kept for the time necessary to fulfil the purpose for which they were collected and to determine the eventual responsibilities that may arise from such purpose and from the processing of the data.
Dissemination of personal data Banking institutions

General Treasury of the Social Security

Private administrative agencies

International transfers of data Not foreseen.
Security measures See appendix – Security Document.

  

 

2.     MANAGEMENT OF ADMINISTRATIVE MANAGER QUALIFICATIONS

Data controller CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA

Q2861006A

Official address:  Calle Mayor 58, planta 1 – 28013 Madrid

DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net

Purpose of the data processing Management of applications and issuing of the Administrative Manager’s Diploma when applicants have passed the necessary requirements (entrance exams, master’s degree in administrative management, etc.).
Legal basis GDPR: 6.1.c) Processing necessary for the performance of a legal obligation applicable to the Data controller.

BASIC STATUTE OF THE PROFESSION 424/1963 and

GDPR 6.1.a) Consent of the data subject

Interested parties Applicants for the Administrative Manager’s Diploma.
Categories of personal data Identification data, academic data; detailed data about the employment.
Period of storage Indefinite; the applications shall be preserved for the purpose of demonstrating the applicant’s qualifications and for historical archiving purposes.
Dissemination of personal data Relevant Ministry with jurisdiction

Mutual Society

Administrative Manager’s Associations

International transfers of data Not foreseen.
Security measures Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document.

 

 

3.     MANAGEMENT OF ADMISSION EXAMS

Data controller CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA

Q2861006A

Official address:  Calle Mayor 58, planta 1 – 28013 Madrid

DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net

Purpose of the data processing Management of participation in courses offered and issuance of diplomas
Legal basis Resolution of the State Secretariat for the Civil Service (failing this, the appropriate State Secretariat).

Basic Statute of the Profession (D424/1963) art 6.1a) and 6.1 c) GDPR

Interested parties Those individuals interested in obtaining the Administrative Manager’s qualification.
Categories of personal data Identification data.

Academic data.

Data concerning employment particulars.

Period of storage Indefinite; the applications shall be preserved for the purpose of demonstrating the applicant’s qualifications and for historical archiving purposes.
Dissemination of personal data Relevant Ministry with jurisdiction

Mutual Society of Administrative Managers

International transfers of data Not foreseen.
Security measures Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document.

 

 

4.     INSTITUTIONAL MANAGEMENT

Data controller CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA

Q2861006A

Official address:  Calle Mayor 58, planta 1 – 28013 Madrid

DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net

Purpose of the data processing Management of the COUNCIL’s bodies and its institutional activities, including the summoning of meetings and the preparation and filing of minutes.

Dissemination of personal data on the composition of the Governing Board to the relevant Registries and Public Administrations with jurisdiction.

Legal basis GDPR: 6.1.c) Processing necessary for the performance of a legal obligation applicable to the Data controller.

Basic Statute of The Profession 424/1963

Interested parties Members of the Council
Categories of personal data Identification data.

Contact data.

Period of storage The storage period specified in the applicable regulations; the deletion of the data will be blocked and they will be kept for historical archiving purposes.
Dissemination of personal data Administrative Managers’ Associations
International transfers of data Not foreseen.
Security measures Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document.

  

 

5.     INSTITUTIONAL RELATIONSHIPS

Data controller CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA

Q2861006A

Official address:  Calle Mayor 58, planta 1 – 28013 Madrid

DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net

Purpose of the data processing Management of the COUNCIL’s bodies and its institutional activities, including the summoning of meetings and the preparation and filing of minutes.

Dissemination of personal data on the composition of the Governing Board to the relevant Registries and Public Administrations with jurisdiction.

Legal basis GDPR: 6.1.c) Processing necessary for the performance of a legal obligation applicable to the Data controller.

GDPR 6.1.f) Legitimate Interests pursued by the Data controller.

BASIC STATUTE OF THE PROFESSION 424/1963

Interested parties The data subject, individuals with positions of responsibility in the administration and private entities with which the CGGA maintains employment and institutional relationships.
Categories of personal data Identification, contact and professional data.
Period of storage The period set out in the applicable regulations. The deletion, elimination or destruction of the data will be carried out in accordance with the provisions of Law 4/1993, of 21 April, on Archives and Documentary Heritage, of the Regional Government of Madrid.
Dissemination of personal data Not foreseen.
International transfers of data Not foreseen.
Security measures Those applied in accordance with the organisation’s security document.

 

 

6.     GESTIÓN FISCAL

Data controller CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA

Q2861006A

Official address:  Calle Mayor 58, planta 1 – 28013 Madrid

DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net

Purpose of the data processing Tax management.
Legal basis GDPR: 6.1.c) Compliance with Tax regulations.
Interested parties Employees and managerial staff of the institution.
Categories of personal data Identification data, economic-financial and banking data, as well as any other data necessary for the fulfilment of tax obligations.
Period of storage The statutory period of 4 years.
Dissemination of personal data Tax administration.

Social Security and Labour Administration.

Banking institutions.

External Administrative Agency, acting as data processor

International transfers of data Not foreseen.
Security measures Those applied in accordance with the organisation’s security document.

 

 

7.     ACCOUNTING MANAGEMENT

Data controller CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA

Q2861006A

Official address:  Calle Mayor 58, planta 1 – 28013 Madrid

DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net

Purpose of the data processing Accounting management
Legal basis GDPR: 6.1.c) Compliance with accounting regulations, General Accounting Plan
Interested parties Parties who maintain professional, corporate or commercial relationships with the CGGA
Categories of personal data Identification data and transaction data.
Period of storage The statutory period of 5 years.
Dissemination of personal data Tax Administration.

External Administrative Agency, acting as data processor

International transfers of data Not foreseen.
Security measures Those applied in accordance with the organisation’s security document.

  

 

8.     REGA (Registry of Administrative Managers)

Data controller CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA

Q2861006A

Official address:  Calle Mayor 58, planta 1 – 28013 Madrid

DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net

Purpose of the data processing Processing of the identification and professional data of Administrative Managers.
Legal basis GDPR: 6.1.c) Processing necessary for the performance of a legal obligation applicable to the Data controller.

BASIC STATUTE OF THE PROFESSION 424/1963

GDPR 6.1.a) Consent of the data subject.

Interested parties Administrative manager
Categories of personal data Identification, contact and professional data
Period of storage Indefinite.

Historical archives.

Dissemination of personal data Administrative Managers’ Associations

Mutual Society of Administrative Managers.

These data are publicly accessible

International transfers of data Not foreseen.
Security measures Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document.

  

 

9.     COMPLAINTS MANAGEMENT

Data controller CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA

Q2861006A

Official address:  Calle Mayor 58, planta 1 – 28013 Madrid

DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net

Purpose of the data processing Processing of complaints submitted to the Council.
Legal basis (Art. 6.1 e) GDPR. Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data controller

GDPR 6.1.a) Consent of the data subject.

Interested parties Administrative Managers and users who contact the Council.
Categories of personal data Identification and contact data.
Period of storage The data will be kept for the time necessary to fulfil the purpose for which they were collected and to determine the eventual responsibilities that may arise from such purpose and from the processing of the data.
Dissemination of personal data Administrative Managers’ Associations
International transfers of data Not foreseen.
Security measures Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document.