Legal notice and privacy policy
Terms and Conditions of Use
Please read the information contained on this page in order to understand the terms and conditions of use of the official website of the FUNDACIÓN PARA LA INVESTIGACIÓN BIOMÉDICA DE CÓRDOBA (FIBICO).
Instituto de Investigaciones Biomédicas de Córdoba (IMIBIC) - (hereinafter the Entity)
CIF: G14825277
Edificio IMIBIC; Hospital Universitario Reina Sofia
Avda. Menéndez Pidal s/n 14004 Córdoba - SPAIN
T (+34) 957 21 37 00 C 3700
Access to the website implies the binding acceptance by users of all the Terms and Conditions of Use set out in the following sections, as well as in those other pages of the website where particular conditions are stated, with the Entity reserving the right to modify them.
The use of the website is governed by Spanish law and by the content of these Terms and Conditions of Use.
The Entity reserves the corresponding and relevant legal actions in the event of any violation of its rights.
Objectives
The official website has been created in order to make available to citizens and professionals up-to-date information of interest about FIBICO - IMIBIC, as well as about the different activities carried out within it in the field of research, teaching and management.
The objectives of the website include:
- To disseminate the corporate image of the Entity as the basis of its general principles: Orientation towards health results, Social Commitment, Innovation and Excellence of Andalusia.
- To provide information about our organisation, including the centres and units that make it up, the work they carry out and the services they provide.
- To keep up-to-date information on the latest news and developments that occur within the scope of the Entity, as well as the scheduled activities or events related to our purposes.
- To provide specific content for professionals and become an open window for interaction.
Access
The website is intended for all users, especially researchers and healthcare professionals.
Access to this website and any use that may be made of the information included in it are the exclusive responsibility of the person who does so.
The conditions of access to this website shall be subject to current legislation and to the principles of good faith and lawful use by the user, with any type of action to the detriment of the Entity or third parties being generally prohibited.
The Entity reserves the right to suspend access to this website without prior notice, at its discretion, temporarily or permanently, for technical or any other reasons, and may unilaterally modify both the website's own content and the terms and conditions of use.
Liability
The Entity assumes legal responsibility for the content and internal indexes provided on the website, but declines all responsibility for the availability, changes and veracity of the content accessible through links to external web addresses. These external links are included on our website to make it easier for users to expand information, and we rely on a criterion of suitability with regard to the content.
The Entity is in no case responsible for any damage that may be caused as a result of an inappropriate or illegal use of the information owned or linked through the website.
Copyright
The content of the website of FIBICO-IMIBIC is for public use, and may be distributed, copied and displayed free of charge, but always provided that it is done without commercial or advertising purposes, or for medical purposes, and the author is cited.
Any references made on this website to any product, service, process, link, hypertext or any other information using the trademark, trade name, manufacturer, supplier, etc., owned by third parties, are made while fully respecting the legitimate property rights of their owners.
Any copyrighted content not belonging to the Entity is indicated in its corresponding place, as well as the authorisation to publish it.
Contents
The contents of this portal have been prepared by professionals of FIBICO-IMIBIC, except for information from sources external to the website itself, in which case it is indicated by an arrow on the link itself. The contents of the website are reviewed at intervals of no more than three months in order to guarantee to those browsing its pages the currency and relevance of the information. The date on which each page of the portal was updated is shown on it.
The documents on our website and dependent on the management units, both clinical and non-clinical, will be updated at the request of those units. Documents may be subject to review on an exceptional basis only to resolve a possible detected error.
The general contents of the site are subject to criteria of:
- relevance, the information shown is of interest to citizens and professionals.
- correctness, the information shown is correct.
- completeness, the information shown is complete.
- transparency, the information shown has not been biased, censored or manipulated.
Should blog post content be developed, it is selected by the authors themselves according to their professional criteria, and responsibility for the content lies exclusively with them.
The website will provide information on potential conflicts of interest if they exist.
Social Media
The Entity has an official account on the social networks Twitter, Facebook, Youtube, Instagram and LinkedIn
Through these accounts, the Entity aims to inform users in a much faster and more direct way about content related to research, health and training.
The Entity, on its networks, in no case follows individuals, political parties or private institutions that are not of scientific-research relevance. These social networks are not moderated, so they are not used as spaces for exchange and participation between users and the centre.
To contact the Entity, the suggestions and enquiries mailbox should be used. Under no circumstances will personal data or information be published on the website without your express consent.
Prohibited actions and errors
Any user who becomes aware of any action that, by error or irregularly, may modify or alter the content, violate intellectual and industrial property rights, impair the proper functioning or prevent access to this Portal —actions that are expressly prohibited— must report this situation to the Entity through one of the means of contact provided on the Portal.
Webmaster
If you wish to contact those responsible for the website, you can do so through the following email address: info@imibic.org
Enquiries made to the site webmaster will be answered by email personally and immediately within a period of no more than 72 hours on working days from the time the enquiry is made.
Privacy Policy
Pursuant to the provisions of the European General Data Protection Regulation (GDPR 679/2016) and the Organic Law on Data Protection and Guarantee of Digital Rights (LOPDGDD 3/2018), we inform you:
I.- Data controller
- FUNDACIÓN PARA LA INVESTIGACIÓN BIOMÉDICA DE CÓRDOBA (FIBICO)
- Instituto de Investigaciones Biomédicas de Córdoba (IMIBIC)
CIF: G14825277
Edificio IMIBIC; Hospital Universitario Reina Sofia
Avda. Menéndez Pidal s/n 14004 Córdoba - SPAIN
T (+34) 957 21 37 00 C 3700
In the RECORD OF ACTIVITIES (pdf) you can consult in more detail the specific conditions and circumstances for each of the Entity's activities.
I.1.- Data protection officer: DPD@IMIBIC.ORG
The Data Protection Officer (DPO) is responsible for supervising compliance, in matters of personal data protection, with the legal regulations and the policies defined by the Entity.
You may contact the DPO regarding all matters relating to the processing of your personal data and the exercise of your rights under data protection regulations. Consider the role of the DPO as a means for the amicable resolution of complaints when these are not addressed by the controller or processor.
You should know that the DPO will be obliged to maintain secrecy or confidentiality with regard to the performance of their duties, in accordance with European Union and Spanish law.
| Basic information on Data Protection: | |
Controller | FUNDACIÓN PARA LA INVESTIGACIÓN BIOMÉDICA DE CÓRDOBA (FIBICO) - Instituto de Investigaciones Biomédicas de Córdoba (IMIBIC)- CIF: G14825277 Edificio IMIBIC; Hospital Universitario Reina Sofía Avda. Menéndez Pidal s/n 14004 Córdoba - SPAIN T (+34) 957 21 37 00 C 3700 T |
Data Protection Officer | José Montilla Chicano dpd@imibic.org |
Purpose | To meet the needs of the various users —citizens, professionals, suppliers, etc.— through the services made available to them. |
Legal basis | It is mainly based on public interest, the exercise of public powers and compliance with legal obligations. Certain processing operations are based on the consent of the data subject. |
Recipients | No data will be transferred to third parties except for legal obligation or the consent of the data subject. Service providers acting as Data Processors. Linked entities SAS, UCO and others. |
Rights | To access, rectify and delete the data, as well as other rights, as explained in the corresponding chapter. |
Additional information | Consult the rest of the chapters of this privacy policy to expand on this information. |
II.- Processing activities through the website. Purposes.
Processing | Purposes | Period. Always subject to the limitation period for liabilities. |
Processing of non-special personal data: suggestions mailbox, online forms, identification and authentication, etc. | To facilitate their management in suggestions mailboxes, to support identification and authentication processes. | The minimum necessary to handle the enquiry. The provisions of the archives and documentation regulations apply. |
Processing of personal data obtained from browsers: IP address, device identifier, telephone number, information stored in cookies, etc. | To correctly manage the browsers used by you, to maintain traceability and to facilitate functionality and navigation. | That established in each cookie. |
II.1.- Information collected and stored automatically.
When visiting the FIBICO-IMIBIC portal, the following may be collected:
- The Internet protocol (IP) address through which you access the Internet, the date and time of the session, the Internet address from which you connected directly to our portal, the name of the file or the words searched, and the application program (browser) used to access our portal. This information is processed statistically and used exclusively to improve our website. The information thus collected does not identify specific users.
- Information directly provided by the user (first name and surname, email, phone) based on their enquiry, complaint, suggestion, etc.
II.2.- Collection of personal data and processing.
In the event that the user provides personal information through any of the forms that may be available on this website, the Entity guarantees that such information will be processed under the protection of current legislation and in compliance with the provisions of current legislation.
The data provided will be included in the data processing systems for the sole purpose of managing what the user has requested.
III.- Your rights.
The user may exercise at any time the rights provided by the legislation by contacting the Entity or its DPO. You can download the corresponding form and submit it through any means that allows reliable identification and lawfulness.
You should also know that you may turn to the data protection supervisory authority competent in your Autonomous Community or, failing that, to the national supervisory authority (https://www.aepd.es ), to request information and/or the protection of your rights.
IV.- Your obligations
To guarantee the accuracy and veracity of the personal data processed in the information systems subject to this privacy policy, when the Entity collects them (e.g. through forms), you undertake to provide them clearly, reliably and lawfully, in accordance with your real situation, being obliged to communicate any modification of them. This means keeping your personal data updated at all times, being solely responsible for the inaccuracy or falsity of the data provided and for any damage that may be caused as a result.
V.- Security
The Entity will implement appropriate technical and management measures and procedures in such a way as to guarantee the protection of your rights, and always in accordance with data protection regulations and a proactive security policy.
In the event of a security breach that causes the accidental or unlawful destruction, loss, alteration, disclosure or unauthorised access to your personal data, and that poses a serious risk to your rights, the Entity will report the breach without undue delay, including a brief description of the potential impact and a recommendation on the measures to mitigate the possible adverse effects of such breach.
VI.- Complementary technologies
On occasion, some of the Entity's online information systems may make use of cookies or other similar technologies, third-party software libraries, cloud hosting from a particular provider, etc. In order to inform you of how the characteristics of such technologies affect or could affect your privacy, a subset of their corresponding policies is linked below:
VI.1.- Cookies:
A "cookie" is a small file that an Internet portal transfers to a computer's hard drive, allowing the server to "remember" specific information about the session. The Entity's portal may use cookies to facilitate the use of the dynamic features of this portal, and these cookies are linked exclusively to the session identification and language. You can determine whether you wish to enable or disable the acceptance or rejection of cookies in your browser, or configure it to warn you before accepting them. If you do not wish to receive cookies, you may use the website, but you will not be able to use the cookie-dependent features. (more information in COOKIE POLICY)
VI.2.- Javascript:
Javascript is a language used in building websites to improve the user interface, add interactivity to content, build dynamic web pages, access local browser databases, etc., and which has been used in some parts of this website.
You can block the execution of Javascript code on the pages you visit from your browser. However, you should know that, if you do so, your browsing experience through the information shown may be impaired in some visual aspects, although not in the general functionality of navigation and content display. This is why our recommendation is to keep Javascript execution active to fully enjoy the user experience that has been developed.
VII.- Changes to this policy
The Entity reserves the right to modify this privacy policy to adapt it to legislative or case-law developments, changes in the information security policy, as well as to widespread standards and good practices. In such cases, with reasonable advance notice of their implementation, the Entity will announce the changes introduced on this same page.
VIII.- Third parties
VIII.1.- Service providers:
Your data will never be sold or shared with third parties. However, technological support services may be subcontracted to a third party as a service provider. The Entity will guarantee at all times that the service provider will be bound by an appropriate agreement in accordance with data protection regulations, and will ensure at all times that your data remains protected at least in accordance with the same standards of this privacy policy.
VIII.2.- Collaboration with the authorities:
The Entity maintains a direct link with the Andalusian Health Service, related entities such as the Hospital Universitario Reina Sofía, the University of Córdoba and other biomedical research and training centres; on this basis it could communicate and/or transfer data, which will be reported in the collection of data and information. It must also establish relationships with the administrative regulatory authorities competent in matters of personal data protection, to resolve any complaint related to the processing we carry out that we have not been able to resolve directly with you. This means fulfilling the obligatory duty of collaboration to provide the Spanish Data Protection Agency and other competent regulatory authorities with the data, reports, records and supporting documents necessary to carry out their investigative activity.
In the same spirit of collaboration and to the extent required by legal compliance, the Entity may communicate the relevant information to the Courts of Justice, the Public Prosecutor's Office, the Security Forces and Corps, as well as other public authorities for the exercise of their official mission (tax and customs authorities, financial investigation units, etc.).
Security and Confidentiality of communications
The communications made through this application are absolutely confidential. There is even the possibility of submitting and processing anonymous communications.
The identity of the informant will in all cases be kept confidential and will not be communicated to the persons to whom the reported facts refer or to third parties. The identity of the informant may only be communicated to the judicial authority, the Public Prosecutor's Office or the competent administrative authority within the framework of a criminal, disciplinary or sanctioning investigation. Firstly, it is possible to access this website from any computer. If a network technician of the organisation were to investigate the network traffic, they would not be able to trace you. Even so, the web server that hosts the application does not store users' IP addresses.
All information between your browser and the server travels encrypted using the https protocol. If someone intercepts this communication, they will not be able to see its content. This application does not consult external sources to verify the data provided by the informant, nor does it send emails with sensitive information about reports. The disclosures made under this section will be subject to the safeguards established in the applicable regulations. In particular, the informant will be notified before their identity is disclosed, unless such information could compromise the investigation or the judicial proceedings. When the competent authority notifies the informant, it will send them a document explaining the reasons for the disclosure of the confidential data in question.
Once you submit your communication, both it and the files you attach are encrypted using a complex algorithm. Only with the digital certificate of authorised persons can they be decrypted and read. Not even the system administrators who operate the servers can see who is sending a report or its content. The System Officer will be responsible for its diligent investigation and their procedure will comply with the provisions of art. 9 of Law 2/2023. Likewise, there will be a record book of the information received and of the internal investigations to which it has given rise, guaranteeing, in any case, the confidentiality requirements provided for in that law.
This record will not be public, and only at the reasoned request of the competent judicial authority, by court order, and within the framework of judicial proceedings and under its supervision, may the content of the said record be accessed totally or partially.