Introduction 

Below explains how and why we collect and use your personal data when you visit the University School website. TAI, www.taiarts.com.

Who is responsible for the processing of your data?

When you consult or use www.taiarts.com, or any website within the University domain (taiarts.com), which has referred you to this privacy notice, the University School TAI (“we”, and “the University”) is responsible for the processing of the data.

Our contact information is AULA ABIERTA, SA with CIF: A-80963697; Postal Address: Calle Recoletos 22. Madrid CP. 28001; telephone: 91 447 20 55; e-mail: Data Protection@taiarts.com.

What personal information do we collect and why?

Cookies we use

When you visit our website, the cookies banner appears that allows you to select between the ones we use.

We use cookies and bookmarking techniques to collect the request made by your browser to the server hosting the website. This includes your IP address, the date and time of connection, the browser version used and the page requested. We use this information to ensure the security of our websites. We generally delete it after a maximum of three months. We may need to use and disclose it as necessary in the event of security problems or incidents.

To improve the services we provide, we use the third-party service Google Analytics, and Hotjar to collect standard Internet log information, including IP address. We do this to find out how visitors use our website and to improve its usability. If you have submitted a "do not track" request from your web browser, we will honor it and will not collect analytics data. For more information about how Google Analytics uses this information, see Google's privacy policy.

To remember preferences on social networks we use third-party services that we embed in some of our web pages. Instagram, Facebook, Youtube, Linkedin, DV360, Taboola and Soundcloud may install cookies to measure how you use their services and record what advertising is seen while using their service. This will only happen if you opt-in to receive “Social Marketing Preferences” cookies or if you interact with the embedded content.

Data that you provide us and we use to manage and improve the quality of our services and make ourselves known

By “personal data” that you provide us, we understand any data and information that allows us to identify you, such as your name, image, voice, ID or passport, contact information (address, telephone, email), training data and CV, payment method data, etc.

In order to pursue studies at the University, it is mandatory to provide certain personal, identifying, curricular and economic data, without which the provision of University services would be impossible. For the collection of other data not strictly necessary for the provision of our service, we are subject to what the regulations indicate in this regard regarding requests and denial of consent.

Specifically, we collect your personal data:

• Every time you contact us to request information about our services.
• When you start the application for enrollment in any degree at our University School, as a student, tutor or financial manager.
• When you exchange communications with us either by letter, email, chat service, calls or social networks.
• When you access our website and use the contact forms or fill out a paper form.
• Information that you provide us about your preferences in relation to better provision of the service obtained through surveys or similar means.
• Information that you provide us when you participate in events organized by the University, whether in person or virtual.

Additionally, we can obtain personal data concerning you from other sources such as other Public Administrations: Ministry of the branch, other Universities and secondary education institutions, state and regional Treasury services.

We may also obtain personal data from entities in other countries as a result of the application of exchange programs.

When regulations require it, we require your consent to process your personal information.

What do we use your personal data for?

We process your data for one or more of the following purposes:

• The offer of our academic services.
• The registration procedures and subsequent enrollment in the studies of this University.
• The tasks of administrative and academic management of the files.
• The processing of files for granting scholarships and financial aid.
• The management of teaching and carrying out teaching activities.
• Management of events and summer courses.
• Management of external practices.
• Preparation of qualification and evaluation documents.
• The preparation of certifications, the issuance of titles and complementary documents.
• Improvement of our services, through the preparation of surveys and related means.
• Improvement of our services through call recording.
• Other procedures and services of the University.
• Advertise our services, in which case we will comply with the rules regarding the obligation to request/deny consent.

All this, both in face-to-face format and through the web.

In the event that you are a student enrolled in External Practices, Final Degree Project and Academic Recognition of credits, your data will be processed for the purpose of processing, monitoring and administrative and academic management of said files.

The data will be processed and kept for as long as they are necessary to be able to provide the academic and other services described and satisfy the purposes indicated above.

In each case, when necessary, the user is given the opportunity to consult this privacy policy to accept it and to grant or deny consent, if the processing activity specifically requires it.

If for any processing we need to collect additional personal data not listed above, you will be informed at that time of the use we will make of that information, before you have to provide it.

Our services are not intentionally designed or directed to children 13 years of age or younger. We do not knowingly collect or retain data from children under 13 years of age.

What are the legal bases that legitimize the processing of your data?

The legal bases that legitimize the processing of your data vary depending on the situation of the relationship with the University.

Until the academic relationship with the University is established, the legal basis is the consent granted from the different means of contact to request information about our services, such as queries via web forms (art.6.1.a. RGPD).

In the case of informational telephone calls, you are informed that the calls will be recorded for reasons of improving the quality of the service and you are informed how to access this privacy policy. Consent in this case is granted by continuing with the call after receiving the information message.

Once the contractual relationship is established between the University and the students, the tutors and/or those responsible financially, the legitimacy is based on said contract (art.6.1.b. RGPD) and the data is mandatory to carry out this purpose.

Certain processing of your data is justified by the legitimate interest of the relationship between the University and you (art.6.1.f. RGPD and art.21 LSSI)

There are times when the processing of your data is justified by some legal obligation (art.6.1.c RGPD).

It may be the case that personal data must be processed for reasons of protection of vital or public interests, although this would fall within the field of extraordinary situations not contemplated by this privacy policy (art.6.1.dye RGPD).

Except in cases where the nature of the purpose of the processing requires such processing, data owners may object to the processing in each case. 

How long is the data kept?

They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and from the processing of the data. The provisions of the archives and documentation regulations will apply.

What rights protect you and how to exercise them?

The rights you have are the right of access, rectification, opposition, deletion, limitation, portability, not to be subject to automated individual decisions, 

You can, for example, request information about the personal data we are processing and its rectification if it is inaccurate. In addition, you could request deletion when the data is no longer necessary for the purposes for which it was collected. In this case, you must keep in mind that the files cannot be canceled in many cases because their maintenance is necessary to be able to comply with the obligations imposed by the Law and to be able to satisfy your requests for information, certificates, titles and others.

Currently the university does not use automated systems that allow automated individual decision making.

More information about what each of the rights that protect you consists of can be found in the following link from the Spanish Data Protection Agency https://www.aepd.es/derechos-y-deberes/conoce-tus-derechos. 

You can exercise these rights by means of a request or message to the email address Data Protection@taiarts.com and/or by sending you by post or telephone to the contact information listed above.

To whom is the data transferred?

The data may be transferred, for the purposes indicated above, to providers who collaborate with the University to achieve the objectives. These suppliers are required to maintain confidentiality and adopt appropriate technical and organizational measures.

For example, to send information, cloud services are used to providers specialized in this type of tasks. External providers are also used to manage surveys, record telephone calls and others.

The personal data we process is also shared with group companies, always within a framework of confidentiality and compliance with the privacy policy set forth here. In the rest of the cases, personal data will not be communicated to third parties, except legal obligation, which may include communications to the Ombudsman, Judges and Courts and persons interested in the procedures related to the claims presented.

Are international data transfers carried out?

In principle, international data transfers that may be carried out for reasons of student exchange and similar are carried out with the consent of the student or their representatives.

Other transfers that have to do with the use of services from providers located outside the European economic area are carried out using the appropriate guarantees to carry them out.

How do we keep your data protected?

Personal data that may be collected directly from the interested person will be treated confidentially. Each processing activity is incorporated into the register of processing activities for which Aula Abierta, SA is responsible, which determines the appropriate technical and organizational measures to apply in order to guarantee and certify that the processing complies with European Regulation 2016/679. , of April 27, General Data Protection (RGPD), Organic Law 3/2018 of December 5, Protection of Personal Data and guarantee of digital rights (LOPDGDD), Law 34/2002 of July 11, of the Information Services and Electronic Commerce Society (LSSI) and other applicable regulations. 

Likewise, for each new processing activity, the risks to the rights and freedoms of the interested parties are analyzed and, if appropriate, an impact assessment on data protection is carried out.

Phone Call Recording Privacy Policy. 

In addition to the general terms of our privacy policy, regarding ownership of the person responsible, conservation, communication to third parties and rights, which are the same as those presented above, some particular characteristics of the recording policy are described below. telephone calls regarding the use, the data collected, the purposes and legitimacy of the processing.

This privacy policy applies to the recording of telephone calls between University staff and people interested in learning about the services provided by the University.

Among the data collected, in addition to the basic identification, the voice of the person interested in learning about the services provided by the University is recorded.

The information obtained and stored through the recording system will be used exclusively for the purposes of improving the quality of the service and to identify aspects in which we must continue to make joint work efforts between the different departments and areas of the School (commercial, marketing and academic) and never for biometric or other identification purposes other than those mentioned.

The processing of these data is based on the legitimate interest (RGPD Art.6.1.f) pursued by Aula Abierta, without this implying, in any case, that the interests of Aula Abierta prevail over the rights and freedoms of the interested parties.

Events Privacy Policy. 

In addition to the general terms of our privacy policy, regarding ownership of the person responsible, conservation, communication to third parties and rights, which are the same as those presented above, some particular characteristics of the privacy policy of in-person or online events regarding the use, the data collected, the purposes and legitimacy of the processing.

This privacy policy applies to in-person or virtual attendance at events organized by the University.

The data collected may include the image and voice of the attendees, which may be captured during the development of the event, in person or online, by capturing photographs, videos or audio recordings.

The information obtained and stored in our systems will be used for the following purposes:

• Manage your registration, attendance and participation in our events.
• Send information about our events, activities and services related to your interest.
• Publish or disseminate your image and voice in our media, social networks, website or newsletters, in order to promote our events and make our entity known.

The legal basis for the processing of your personal data is the consent (RGPD Art.6.1.a) that you give us when you register or request to participate in our events, both for registration data and for image and voice data. Likewise, said consent complies with Organic Law 1/1982 of May 5, on Civil Protection of the Right to Honor, Personal and Family Intimacy and One's Own Image.

Privacy policy for sending information of interest. 

In addition to the general terms of our privacy policy, regarding ownership of the person responsible, conservation, data collected, communication to third parties and rights, which are the same as those presented above, some particular characteristics of the policy are described below. privacy of in-person or online events with regard to use, data collected, purposes and legitimacy of processing.

This privacy policy applies to sending information of interest to students, parents and/or guardians and financial managers, who have contracted the services of the University.

The information obtained and stored in our systems will be used for the purposes of reporting activities, events and other information that may be of interest to you based on the contracted services.

The legal basis for the processing of your personal data is article 21 of the LSSI, relating to commercial communications by electronic means and in all this type of communication there is the option to request the cessation of sending further communications in a simple way at the electronic communications received.

Survey Privacy Policy. 

In addition to the general terms of our privacy policy, regarding ownership of the person responsible, conservation, communication to third parties and rights, which are the same as those presented above, some particular characteristics of the privacy policy of surveys regarding the use, the data collected, the purposes and legitimacy of the processing.

This privacy policy applies to the conduct of surveys by the student department among students.

The information obtained and stored through the system used to carry out the surveys will only be analyzed by the student department and will be used exclusively for the purposes of knowing the degree of satisfaction of the students in relation to the service received by the University in its different aspects. , to make improvements in all teaching activity. 

The processing of these data is based on the legitimate interest (RGPD Art.6.1.f) pursued by Aula Abierta, without this implying, in any case, that the interests of Aula Abierta prevail over the rights and freedoms of the interested parties.

We reserve the right to modify this privacy policy at any time to adapt it to legislative or jurisprudential developments, as well as industry practices. In such cases, we will announce the changes introduced on this page reasonably in advance of their implementation.

Last update date: 10/10/2023