PRIVACY POLICY WEBSITE

Understand how we protect and manage your personal data.

PLAIN CONCEPTS Group is committed to the protection of your privacy and to compliance with the legislation on the protection of personal data, specifically, with the General Data Protection Regulation (hereinafter, GDPR) and the personal data protection legislation applicable in each country where the different companies of the PLAIN CONCEPTS Group are domiciled. The processing of personal data carried out by PLAIN CONCEPTS, will be done in accordance with the principles of loyalty, legality, adequacy and transparency, always in accordance with specific, explicit and legitimate purposes. PLAIN CONCEPTS undertakes to keep your data up to date and to keep it only for the time necessary to fulfill the purposes of the processing.

This website is the property of PLAIN CONCEPTS, S.L.U. (hereinafter, PLAIN CONCEPTS), an entity of Spanish nationality and domiciled in Spain (State belonging to the European Union and the European Economic Area), Responsible for the Processing of the personal data collected through this website. You can consult the information relating to the entity that manages the website by accessing the link called Legal Notice that is incorporated at the bottom of the website.

This Privacy Policy informs you of how PLAIN CONCEPTS will process your personal data as a result of using this website.

By using this website, you consent to the collection, processing, transfer, storage and other processing of your personal data in accordance with this Privacy Policy and its terms. If you do not fully agree with them, you should not use this website.

Any updates or modifications to this Privacy Policy will be communicated to you through this website.

1.- Who is the data controller?

The Data Controller is PLAIN CONCEPTS, S.L.U. (A company belonging to the PLAIN CONCEPTS Group) with CIF: B24532178 and registered office at C/ Gran Vía Don Diego López de Haro, 1º, 8ª planta, 48001 Bilbao (Vizcaya), Spain.

If you have any questions regarding the processing of your personal data, do not understand or need the translation of this Privacy Policy into another language, you can contact us at the address gdpr@plainconcepts.com.

We also inform you that PLAIN CONCEPTS has a designated Data Protection Officer (hereinafter DPO), who can be contacted at the address dpo@leasba.com.

2.- What personal data do we process and how do we collect it?

In this Privacy Policy, “personal data” means any information that identifies you or can be used to identify you.

The personal data processed by PLAIN CONCEPTS are:

Those that you provide to us by filling in the forms you fill in or through the different email accounts that are made available to you on the website for contacting PLAIN CONCEPTS.
Those that you provide us with for your registration in the Newsletter service. PLAIN CONCEPTS will only process the personal data necessary to fulfill the purposes of registration of the service. This data is your name and email address.
Those that you may provide in each of the forms where your personal data are collected. (For example: Job offers, Events or Whistleblowing Channel). In each of these forms you will find specific information on the data required, the purposes for which they will be used, the third parties to whom, if applicable, they may be transferred, the legitimacy of the processing, etc.

3.- For what purpose do we process your personal data?

PLAIN CONCEPTS will process your personal data for the following purposes:

Answer and attend to any queries or request you may have.
Manage your subscription to the Plain Concepts Newsletter, and therefore, send you by electronic means information of interest about congresses, events, projects, activities, news, and any other information of interest about PLAIN CONCEPTS.
To answer your request to apply for a job position and to carry out the necessary steps for the processing of your application (in this case, the Privacy Policy that you will accept before sending your application will be applicable).
To send commercial communications.
To use them for any other purpose required or permitted by applicable legislation or when you have given your express consent.

4.- Which is the legitimacy for the processing of your personal data?

The legal bases pursuant to Article 6 of the GDPR for the processing of your personal data are as follows:

Consent of the data subject (you) (Art. 6.1.a GDPR): For the processing of your personal data when subscribing to the Newsletter and to respond to queries or requests that you may make, the legal basis that legitimizes the processing is your consent that you are giving when accepting this Privacy Policy or the consent that you are giving when contacting us and, therefore, the need for such processing to attend and respond to the query or request for information that you make to us.
Compliance with a legal obligation (Art. 6.1.c GDPR): Some processing of your personal data may be processed in compliance with current legal obligations that apply to PLAIN CONCEPTS. When this happens, you will be informed of the details of the processing, as well as the rule that requires the specific processing.
Legitimate interest of PLAIN CONCEPTS (Art. 6.1.f GDPR): PLAIN CONCEPTS may have a legitimate interest in processing your data, to analyse the usability of the website, as well as your degree of satisfaction, as this may be of benefit to you.

5.- To whom will your data be communicated?

Your personal data may be transferred to the following groups:

Service suppliers: If necessary, PLAIN CONCEPTS may transfer your personal data to the appropriate suppliers for the development and execution of the purposes of the processing. In these cases, PLAIN CONCEPTS, as the data controller, has signed the confidentiality and data processing contracts required by current regulations.
Companies belonging to the PLAIN CONCEPTS Group: There is the possibility that your data may be transferred to one of the companies of the Group, for internal administration purposes or to provide specific services necessary for the development and execution of the processing.

6.- How long will we keep your data?

Data will be kept as long as the interested party does not exercise their right of deletion or for the time necessary to maintain the purpose of the processing. However, the data will be kept for the corresponding period to comply with legal obligations, during the applicable limitation periods to meet possible liabilities arising during processing. In this case, the data will be kept duly blocked until the limitation period for any legal liabilities associated with the processing has elapsed. In the event that they are removed, it will be carried out by applying the appropriate security measures to guarantee their total destruction.

7.- Data transfer to third countries.

It is possible that in order to send the Newsletter, manage your requests, collect data from forms and emails, it is necessary to transfer some data to non-European countries (which you consent to by accepting this Policy) such as the USA, etc. USA, for which there is an adequacy decision by the European Commission (EU- USA Data Privacy Framework Decision of 10 July 2023).

Specifically, data transfers to third countries may occur when using the services of the provider ActiveCampaign, LLC, which, in accordance with its Privacy Policy (https://www.activecampaign.com/legal/privacy-policy), may transfer information to other Group subsidiaries and external entities located outside the European Economic Area that provide services to it under contract. Such transfers are made on the basis of Adequacy Decisions approved by the European Union. However, this company has incorporated into the contracts signed between the parties the Standard Contractual Clauses (SCC) approved by the European Commission, which allow for the secure processing of data in accordance with current data protection regulations.

Some of the companies in the PLAIN CONCEPTS group are located outside the European Economic Area, which entails an international transfer of data. Specifically, to the following group companies:

PLAIN CONCEPTS CORP INC. (United States of America): The US has an adequate level of protection for personal data, as there is an adequacy decision by the European Commission (EU- USA Data Privacy Framework Decision of 10 July 2023).
PLAIN CONCEPTS UK LTD (United Kingdom): The guarantee for this international transfer of data is based on the existence of an Adequacy Decision of the European Commission: Commission Implementing Decision (EU) 2021/1773 of 28 June 2021

8.- Which are your rights?

The data subject (you) can exercise their rights under current data protection legislation. Specifically:

Right of access to your personal data: You have the right to obtain confirmation from the controller as to which of your personal data is being processed or not and whether an international transfer of your personal data is taking place.
Right to rectification of the wrong or inaccurate data: You have the right to obtain without undue delay from the controller the rectification of inaccurate personal data concerning you. Considering the purposes of the processing, you have the right to have incomplete personal data completed for you, including by means of an additional statement.
Right of deletion or cancellation: You have the right to obtain erasure of your personal data without undue delay where:
The data are no longer necessary in relation to the purpose for which it was collected.
The data are out of date.
The consent is withdrawn by the interested party. This withdrawal of consent shall not affect the lawfulness of the processing that has been previously carried out on the basis of the corresponding legitimation.
The data have been used unlawfully.

Right to data portability: you have the right to have the controller transmit your data to another controller, which will be done in a structured format that is commonly used and machine-readable when the processing is carried out by automated means.
Right to restriction of the processing: in certain circumstances, you may request the restriction of the processing of your data, in which case the data will only be kept for the purpose of pursuing or defending claims.
Right to object: You may object to the processing of your personal data in certain circumstances and for reasons relating to your particular situation. In this case, PLAIN CONCEPTS will stop processing both personal data, except in those cases in which there is an overriding legitimate interest or the exercise or defense of possible claims.

The interested party may exercise their rights by sending an email to the gdpr@plainconcepts.com address, indicating the reason for their request and the right they wish to exercise. If we consider it necessary, because there are reasonable doubts as to whether we can identify you, we may ask you to copy a document proving your identity. You can also send a communication to the Data Protection Officer by sending an email to dpo@leasba.com.

In those cases in which you feel that your rights regarding the protection of your personal data have been violated, especially when you have not obtained satisfaction in the exercise of your rights, you can file a complaint with the Data Protection Supervisory Authority, specifically the Spanish Data Protection Agency, through its website: www.aepd.es.

As the PLAIN CONCEPTS Group processes data in different EU Member States, its main point of contact may be a Supervisory Authority of another EU Member State, which can find its contact details at the following link: https://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm.

9.- Links to other websites.

PLAIN CONCEPTS websites may contain links to other websites, which we may consider to be useful to you. However, PLAIN CONCEPTS is not responsible for the content published on such websites, nor for their Privacy Policies. PLAIN CONCEPTS encourages you to carefully review the Privacy Policy before using these websites to ensure that you are satisfied with the information that is collected.

10.- Children’s use policy.

This website is not directed to minors in accordance with applicable current legislation. Parents, guardians or legal representatives will be solely responsible for all acts carried out on this website by the minors in their care, including the completion of the forms with the personal data of said minors and the ticking, where appropriate, of the boxes that accompany them.

11.- Security Measures.

PLAIN CONCEPTS applies all the security measures required by the regulations on the protection of personal data, with the aim of protecting your rights and freedoms. PLAIN CONCEPTS implements the necessary measures to guarantee the confidentiality of the personal data of all persons under its responsibility.

12.- Privacy Policy Modifications.

PLAIN CONCEPTS reserves the right to modify or update this Privacy Policy at any time. In the event that any clause of this Privacy Policy is annulled or considered null and void, the rest of the conditions will not be affected, and will fully retain their validity and validity, in accordance with the regulations in force applicable at all times.

13.-Information on Cookies.

This website may use Cookies. For more information, please consult our Cookies Policy.

ANNEX 1

CHANGE CONTROL

Version	Date	Responsible Person	Remarks
01	2022	José Luis Sánchez Calvo	Initial version
02	2024	José Luis Sánchez Calvo	Modifications
03	2025	Cesar Calleja Álvarez	Modifications: International transfer. New provider “Active Campaign”

The Data Protection Officer:

Cookie	Duration	Description
__cfduid	1 year	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
__cfduid	29 days 23 hours 59 minutes	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
__cfduid	1 year	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
__cfduid	29 days 23 hours 59 minutes	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
_ga	1 year	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_ga	1 year	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_ga	1 year	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_ga	1 year	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_UA-326213-2	1 year	No description
_gat_UA-326213-2	1 year	No description
_gat_UA-326213-2	1 year	No description
_gat_UA-326213-2	1 year	No description
_gid	1 year	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
_gid	1 year	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
_gid	1 year	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
_gid	1 year	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
attributionCookie	session	No description
cookielawinfo-checkbox-analytics	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category .
cookielawinfo-checkbox-necessary	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-necessary	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-non-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non Necessary".
cookielawinfo-checkbox-non-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non Necessary".
cookielawinfo-checkbox-non-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non Necessary".
cookielawinfo-checkbox-non-necessary	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non Necessary".
cookielawinfo-checkbox-performance	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Performance".
cppro-ft	1 year	No description
cppro-ft	7 years 1 months 12 days 23 hours 59 minutes	No description
cppro-ft	7 years 1 months 12 days 23 hours 59 minutes	No description
cppro-ft	1 year	No description
cppro-ft-style	1 year	No description
cppro-ft-style	1 year	No description
cppro-ft-style	session	No description
cppro-ft-style	session	No description
cppro-ft-style-temp	23 hours 59 minutes	No description
cppro-ft-style-temp	23 hours 59 minutes	No description
cppro-ft-style-temp	23 hours 59 minutes	No description
cppro-ft-style-temp	1 year	No description
i18n	10 years	No description available.
IE-jwt	62 years 6 months 9 days 9 hours	No description
IE-LANG_CODE	62 years 6 months 9 days 9 hours	No description
IE-set_country	62 years 6 months 9 days 9 hours	No description
JSESSIONID	session	The JSESSIONID cookie is used by New Relic to store a session identifier so that New Relic can monitor session counts for an application.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
viewed_cookie_policy	1 year	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
viewed_cookie_policy	1 year	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
wmc	9 years 11 months 30 days 11 hours 59 minutes	No description

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
sp_landing	1 day	The sp_landing is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.
sp_t	1 year	The sp_t cookie is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.

Cookie	Duration	Description
_hjAbsoluteSessionInProgress	1 year	No description
_hjAbsoluteSessionInProgress	1 year	No description
_hjAbsoluteSessionInProgress	1 year	No description
_hjAbsoluteSessionInProgress	1 year	No description
_hjFirstSeen	29 minutes	No description
_hjFirstSeen	29 minutes	No description
_hjFirstSeen	29 minutes	No description
_hjFirstSeen	1 year	No description
_hjid	11 months 29 days 23 hours 59 minutes	This cookie is set by Hotjar. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
_hjid	11 months 29 days 23 hours 59 minutes	This cookie is set by Hotjar. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
_hjid	1 year	This cookie is set by Hotjar. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
_hjid	1 year	This cookie is set by Hotjar. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
_hjIncludedInPageviewSample	1 year	No description
_hjIncludedInPageviewSample	1 year	No description
_hjIncludedInPageviewSample	1 year	No description
_hjIncludedInPageviewSample	1 year	No description
_hjSession_1776154	session	No description
_hjSessionUser_1776154	session	No description
_hjTLDTest	1 year	No description
_hjTLDTest	1 year	No description
_hjTLDTest	session	No description
_hjTLDTest	session	No description
_lfa_test_cookie_stored	past	No description

Cookie	Duration	Description
loglevel	never	No description available.
prism_90878714	1 month	No description
redirectFacebook	2 minutes	No description
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.