The ANC firmly advocates the fundamental rights to privacy and the protection of personal data, as well as compliance with state and European laws regarding privacy.
This privacy statement describes how the ANC treats and protects the personal data of the people who use our websites, as well as in the context of our internal activities.
- Responsibility for processing
The National National Assembly, with registered address at carrer de la Marina, 315, 08025 Barcelona (Catalonia) is responsible for the processing of the personal data that you provide us on the website. Our contact details are telephone number (0034) 933471714, and email firstname.lastname@example.org. You can also contact email@example.com request additional information.
- The data we compile
The personal data provided by the users may be treated by the ANC, as Responsible for processing, and will at all times be stored and processed inside European territory.
When forms are used in order to collect personal data, the data provided by the user will be taken as being correct, since it is the user him or herself who voluntarily introduces the data into the forms available on our website and who vouches for its veracity.
- Purposes of the processing of personal data
The personal information that you provide us with the registration form included on this website will be processed in order to reply to your queries.
- Period of storage of your personal data
This data will be kept until the activity ends or until the user requests its deletion.
- Legitimacy for the processing of your personal data
The legal basis for the processing of your personal data is the free and explicit consent given at the moment you voluntarily provide your personal data in the contact form and accept the processing of your data in the corresponding boxes.
- Communication of your personal data to third parties
The ANC will not communicate the personal data that you have given us to any third party, except for requirements issued by courts of the public authorities in the exercise of their powers.
- Rights that can be exercised
Anyone has the right to obtain clear and understandable information on whether their personal data are being processed by the ANC.
Interested parties have the right to access their personal data, as well as to request the rectification of inaccurate data or, if necessary, request their deletion when, among other reasons, the data are no longer necessary for the purpose for which that were given, or when revoking the consent granted. In the exercise of opposition to the processing of their data, parties may also exercise their right to limit the processing, so that the data will not be deleted but the processing thereof will be subject to limitations. 
The exercises of portability and processing for automated individual decisions do not apply in such cases, given their nature and the purposes for the data being processed.
The exercise of the aforementioned rights may be requested by post or electronic mail, enclosing a copy of your ID-card or passport and laying out the right that you wish to request before the ANC, through the addresses provided in point 2 of this Policy.
- Right to file a complaint before the controlling authority
You may always file a complaint before the competent control authority.
- Security measures that apply to personal data
The ANC applies all necessary technical and organizational measures, bearing in mind the risks that arise in the processing of personal data, in particular as a result of the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or processed in another way, or the communication of or unauthorized access to these personal data. 
The application of the planned technical and organizational measures takes into account the state of the art, the costs of application, and the nature, scope, context and purposes of the processing, as well as the variable risks of probability and severity as regards the rights and freedoms of natural persons. The ANC applies these security measures to ensure an adequate level of security so as to mitigate the risks detected in analyses performed prior to processing, and throughout the life cycle of personal data and their processing.
We recommend users to read before each access and browsing the web.