Registry of data processing activities
1. MANAGEMENT OF EMPLOYMENT ISSUES |
|
Data controller | CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA
Q2861006A Official address: Calle Mayor 58, planta 1 – 28013 Madrid DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net |
Purpose of the data processing | Management of the employment relationship
Human resources management. Compliance with legal labour obligations Compliance with social security obligations Fulfilment of tax responsibilities arising from the employment relationship. |
Legal basis | GDPR (art.6.1. b): Processing necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures at his or her request.
GDPR (art. 6.1.c): Processing necessary for the fulfilment of a legal obligation applicable to the Data Controller. Royal Legislative Decree 2/2015, of 23 October, approving the revised text of the Law on the Workers’ Statute. Royal Legislative Decree 8/2015, of 30 October, approving the revised text of the General Social Security Act. General Taxation Law 58/2003, of 17 December |
Interested parties | Employees |
Categories of personal data | Identification data, personal characteristics, social circumstances, academic and professional data; detailed data about the employment |
Period of storage | The data will be kept for the time necessary to fulfil the purpose for which they were collected and to determine the eventual responsibilities that may arise from such purpose and from the processing of the data. |
Dissemination of personal data | Banking institutions
General Treasury of the Social Security Private administrative agencies |
International transfers of data | Not foreseen. |
Security measures | See appendix – Security Document. |
2. MANAGEMENT OF ADMINISTRATIVE MANAGER QUALIFICATIONS |
|
Data controller | CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA
Q2861006A Official address: Calle Mayor 58, planta 1 – 28013 Madrid DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net |
Purpose of the data processing | Management of applications and issuing of the Administrative Manager’s Diploma when applicants have passed the necessary requirements (entrance exams, master’s degree in administrative management, etc.). |
Legal basis | GDPR: 6.1.c) Processing necessary for the performance of a legal obligation applicable to the Data controller.
BASIC STATUTE OF THE PROFESSION 424/1963 and GDPR 6.1.a) Consent of the data subject |
Interested parties | Applicants for the Administrative Manager’s Diploma. |
Categories of personal data | Identification data, academic data; detailed data about the employment. |
Period of storage | Indefinite; the applications shall be preserved for the purpose of demonstrating the applicant’s qualifications and for historical archiving purposes. |
Dissemination of personal data | Relevant Ministry with jurisdiction
Mutual Society Administrative Manager’s Associations |
International transfers of data | Not foreseen. |
Security measures | Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document. |
3. MANAGEMENT OF ADMISSION EXAMS |
|
Data controller | CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA
Q2861006A Official address: Calle Mayor 58, planta 1 – 28013 Madrid DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net |
Purpose of the data processing | Management of participation in courses offered and issuance of diplomas |
Legal basis | Resolution of the State Secretariat for the Civil Service (failing this, the appropriate State Secretariat).
Basic Statute of the Profession (D424/1963) art 6.1a) and 6.1 c) GDPR |
Interested parties | Those individuals interested in obtaining the Administrative Manager’s qualification. |
Categories of personal data | Identification data.
Academic data. Data concerning employment particulars. |
Period of storage | Indefinite; the applications shall be preserved for the purpose of demonstrating the applicant’s qualifications and for historical archiving purposes. |
Dissemination of personal data | Relevant Ministry with jurisdiction
Mutual Society of Administrative Managers |
International transfers of data | Not foreseen. |
Security measures | Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document. |
4. INSTITUTIONAL MANAGEMENT |
|
Data controller | CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA
Q2861006A Official address: Calle Mayor 58, planta 1 – 28013 Madrid DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net |
Purpose of the data processing | Management of the COUNCIL’s bodies and its institutional activities, including the summoning of meetings and the preparation and filing of minutes.
Dissemination of personal data on the composition of the Governing Board to the relevant Registries and Public Administrations with jurisdiction. |
Legal basis | GDPR: 6.1.c) Processing necessary for the performance of a legal obligation applicable to the Data controller.
Basic Statute of The Profession 424/1963 |
Interested parties | Members of the Council |
Categories of personal data | Identification data.
Contact data. |
Period of storage | The storage period specified in the applicable regulations; the deletion of the data will be blocked and they will be kept for historical archiving purposes. |
Dissemination of personal data | Administrative Managers’ Associations |
International transfers of data | Not foreseen. |
Security measures | Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document. |
5. INSTITUTIONAL RELATIONSHIPS |
|
Data controller | CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA
Q2861006A Official address: Calle Mayor 58, planta 1 – 28013 Madrid DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net |
Purpose of the data processing | Management of the COUNCIL’s bodies and its institutional activities, including the summoning of meetings and the preparation and filing of minutes.
Dissemination of personal data on the composition of the Governing Board to the relevant Registries and Public Administrations with jurisdiction. |
Legal basis | GDPR: 6.1.c) Processing necessary for the performance of a legal obligation applicable to the Data controller.
GDPR 6.1.f) Legitimate Interests pursued by the Data controller. BASIC STATUTE OF THE PROFESSION 424/1963 |
Interested parties | The data subject, individuals with positions of responsibility in the administration and private entities with which the CGGA maintains employment and institutional relationships. |
Categories of personal data | Identification, contact and professional data. |
Period of storage | The period set out in the applicable regulations. The deletion, elimination or destruction of the data will be carried out in accordance with the provisions of Law 4/1993, of 21 April, on Archives and Documentary Heritage, of the Regional Government of Madrid. |
Dissemination of personal data | Not foreseen. |
International transfers of data | Not foreseen. |
Security measures | Those applied in accordance with the organisation’s security document. |
6. GESTIÓN FISCAL |
|
Data controller | CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA
Q2861006A Official address: Calle Mayor 58, planta 1 – 28013 Madrid DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net |
Purpose of the data processing | Tax management. |
Legal basis | GDPR: 6.1.c) Compliance with Tax regulations. |
Interested parties | Employees and managerial staff of the institution. |
Categories of personal data | Identification data, economic-financial and banking data, as well as any other data necessary for the fulfilment of tax obligations. |
Period of storage | The statutory period of 4 years. |
Dissemination of personal data | Tax administration.
Social Security and Labour Administration. Banking institutions. External Administrative Agency, acting as data processor |
International transfers of data | Not foreseen. |
Security measures | Those applied in accordance with the organisation’s security document. |
7. ACCOUNTING MANAGEMENT |
|
Data controller | CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA
Q2861006A Official address: Calle Mayor 58, planta 1 – 28013 Madrid DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net |
Purpose of the data processing | Accounting management |
Legal basis | GDPR: 6.1.c) Compliance with accounting regulations, General Accounting Plan |
Interested parties | Parties who maintain professional, corporate or commercial relationships with the CGGA |
Categories of personal data | Identification data and transaction data. |
Period of storage | The statutory period of 5 years. |
Dissemination of personal data | Tax Administration.
External Administrative Agency, acting as data processor |
International transfers of data | Not foreseen. |
Security measures | Those applied in accordance with the organisation’s security document. |
8. REGA (Registry of Administrative Managers) |
|
Data controller | CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA
Q2861006A Official address: Calle Mayor 58, planta 1 – 28013 Madrid DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net |
Purpose of the data processing | Processing of the identification and professional data of Administrative Managers. |
Legal basis | GDPR: 6.1.c) Processing necessary for the performance of a legal obligation applicable to the Data controller.
BASIC STATUTE OF THE PROFESSION 424/1963 GDPR 6.1.a) Consent of the data subject. |
Interested parties | Administrative manager |
Categories of personal data | Identification, contact and professional data |
Period of storage | Indefinite.
Historical archives. |
Dissemination of personal data | Administrative Managers’ Associations
Mutual Society of Administrative Managers. These data are publicly accessible |
International transfers of data | Not foreseen. |
Security measures | Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document. |
9. COMPLAINTS MANAGEMENT |
|
Data controller | CONSEJO GENERAL DE COLEGIOS DE GESTORES ADMINISTRATIVOS DE ESPAÑA
Q2861006A Official address: Calle Mayor 58, planta 1 – 28013 Madrid DPO: Emmanuel Matilla Bauzá– consejo@consejogestores.net |
Purpose of the data processing | Processing of complaints submitted to the Council. |
Legal basis | (Art. 6.1 e) GDPR. Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data controller
GDPR 6.1.a) Consent of the data subject. |
Interested parties | Administrative Managers and users who contact the Council. |
Categories of personal data | Identification and contact data. |
Period of storage | The data will be kept for the time necessary to fulfil the purpose for which they were collected and to determine the eventual responsibilities that may arise from such purpose and from the processing of the data. |
Dissemination of personal data | Administrative Managers’ Associations |
International transfers of data | Not foreseen. |
Security measures | Those applied in accordance with Annex II of Royal Decree 3/2010, of 8 January, which regulates the National Security Strategy, and those contained in the organisation’s security document. |