Privacy Policy


The personal data collected on our website are processed in compliance with the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and Spanish Organic Law 3/2018 of 5 December on data protection and the guarantee of digital rights.
Furthermore, we guarantee that your personal data is processed fairly, lawfully and transparently, and that it is collected for specified, explicit and legitimate purposes, limited to such purposes and updated only when necessary. The identification of the interested party is not permitted for a longer time than that necessary and the security of such data is guaranteed by the appropriate technical and organisational means.

Who controls your personal data?
The data controller for this website is its owning entities.

Company Name: Federación Aragonesa de Montañismo (FAM)
Address:  C/ Albareda 7, 4º 4ª – 50004 – Zaragoza (Spain)
C.I.F. (Tax ID Number): V50120211
Telephone No.: (+34) 976 227 971
E-mail: /

Company Name: Fédération Française des Clubs Alpins et de Montagne (FFCAM)
Address:  24 avenue de Laumière – 75019 – Paris (France)
SIRET code: 775 671 316 00260
Telephone No.: (+33) 01 5372 8700

Why do we process your data and why are we allowed to do this? Why we can process your data
Personal data are processed by the website owners when you provide them by filling out the registration and/or contact forms, sending e-mails or contacting us by telephone.
The data is processed for the purpose of managing the user registration, providing the requested service, complying with legal requirements, communication with interested parties by any means, and answering queries and requests for information.
  • Managing user registration. When interested parties willingly register on our website, we receive their consent to collect their data in order to finalise the user registration process and store the information that will allow us to provide our services and keep up contact.
  • Transferring data to the accommodation provider with which the booking is made. We use your data to provide our services by managing bookings and transferring them to the accommodation providers in relation to the provision of service where necessary in order to fulfil contractual obligations.
  • Compliance with legal obligations. Specific forms of processing are performed in order to comply with legal obligations, such as for tax or accounting purposes, for which we contact the competent public authorities wherever necessary.
  • Answering queries and requests for information. When interested parties send us their queries or requests for information, we process their data, with their consent, in order to offer them a response.
  • Commercial correspondence with interested parties via any means:
  • When users register on our website, we are able to communicate commercially with them via electronic means regarding our services and activities. Users may object to the collection of their data at that time. In this case, the processing of personal data is justified based on the legitimate interest of the entities to have these messages reach them with the guarantees offered by Article 21 of the Spanish law on information society services and electronic commerce (LSSICE).
  • When interested parties provide their e-mail address when completing this field on our form, we process their data with their consent in order to keep them informed of our services and activities in the form of newsletters via electronic means.
  Interested parties may object to each of the communications sent to them and, additionally, by means of the mechanism described in the section ‘What are your rights?’.  
  • Using storage and retrieval devices. When interested parties visit our website, we use cookies and other tools, with their consent, for the purposes described in our Cookies Policy, where more detailed information is provided.
  • We also use Google reCAPTCHA (hereafter, ‘reCAPTCHA’) on our website. reCAPTCHA is used to verify whether the data entered into our website (for instance, on a contact form) is provided by a person or a bot. In order to do this, reCAPTCHA analyses the certain characteristics of the visitor’s behaviour on the website. This analysis commences automatically when a visitor accesses the website. In its analysis, reCAPTCHA assesses different types of information (e.g. IP address, time spent by the visitor on the website and the movements made by the visitor’s mouse). The data collected during this analysis is sent to Google. reCAPTCHA analyses are performed completely in the background. Processing of data is based on the legitimate interest of protecting the website from spam and automated abuse. You can find further information on Google reCAPTCHA and the Google privacy policy at the following links: and

Who do we give your data to?
We can transfer personal data to third-party processors for the sole purpose of providing us with particular services following our instructions and without using the data for their particular interests in order to allow us to carry out our activities, or to competent public authorities in compliance with legal requirements.

How long do we store your data?
Your data is stored for the time needed to fulfil the purposes described in the Purposes section and in accordance with the periods set out in the provisions of the laws in force of the countries participating in the project.
The period in which the data collected in the guest registration records of accommodation providers in Spain or on their websites is three years from the time of booking for monitoring, in accordance with the provisions of Spanish Organic Law 4/2015 of 30 March on the protection of public safety.
Likewise, data is also stored for the period legally required for tax and accounting purposes by competent public authorities, after which time it is destroyed or erased.

What are your rights?
You may:
  1. Obtain more information
  2. Withdraw your consent after providing it for a specific form of processing
  3. Stop receiving our commercial newsletter by sending the message ‘I no longer wish to receive commercial correspondence’ to the DPO’s e-mail address.
  4. Exercise your rights to:
  • Access, in order to know what personal data of yours we process
  • Correction, for erroneous or inaccurate personal data
  • Erasure, for personal data of your that we have and are not obligated by law to store
  • Objection to our processing of your personal data for a specific purpose
  • Restriction of the processing we perform on your personal data
  • Portability, to obtain the personal data we have from you for your own use

In order to exercise the rights you have under the data protection regulation, you can request that the data controller send you a form allowing you to exercise your rights or directly download any of the forms provided by the Spanish data protection agency, Agencia Española de Protección de Datos, via this link and send it completed with addition proof of identity to the postal or e-mail address of either of the two website owners previously provided.
You can find more information about your rights or lodge a complaint with Agencia Española de Protección de Datos - C/ Jorge Juan, 6. 28001 – Madrid (901 100 099 - 912 663 517).

How do we guarantee the security of your personal data?
We have implemented the appropriate technical and organisational measures necessary to guarantee an adequate level of security that will prevent the destruction, loss or accidental or unlawful modification of personal data, or unauthorised access to or transfer of the data. We have also implemented procedures to respond to any breach of security that may occur to your personal data within the period established by law. Because we contract service providers, we guarantee that they have implemented the adequate security measures for the protection of personal data.

Changes to this Privacy Policy
We have updated this policy in order to adapt it to the requirements and obligations of the General Data Protection Regulation.

This most recent version of the policy is dated: 01-07-2021