using the contact form service on the Website for the execution of the contract provided in electronic form. Legal basis: the need to fulfill the contract for the provision of the contact form service (Article 6(1)(b) GDPR)
– e-mail address
– name
– phone number
4 When using the Site, additional information may be downloaded, including the IP address assigned to the Client’s computer or external IP address of the Internet provider, domain name, browser type, access time, and operating system type
1.1. Processors. The Administrator uses providers who process personal data only at the request of the Administrator. These include, among others: providers providing hosting services, accounting services providing marketing systems, systems for analyzing traffic on the Site, systems for analyzing the effectiveness of marketing campaigns
1.2. Administrators. The Administrator uses suppliers who do not act solely on instructions, but who themselves determine the purposes and methods of using the Clients’ personal data. They provide electronic payments and banking services.
3.1. If the basis for the processing of personal data is consent, then the Customer’s personal data is processed by the Administrator until the withdrawal of consent, and after the withdrawal of consent – during the period of time corresponding to the statute of limitations for claims that may be raised by the administrator and that may be brought against him. Unless otherwise provided in a special provision, the statute of limitations is six years, and for periodic payment claims and business-related claims, three years.
3.2. If the basis for data processing is the performance of the contract, the Customer’s personal data is processed by the Administrator as long as it is necessary for the performance of the contract, and after that during the period corresponding to the statute of limitations. Unless otherwise provided in a special provision, the statute of limitations is six years, and for periodic payment claims and business-related claims, three years.
4. Upon request, the Administrator provides personal data to authorized state bodies, in particular organizational divisions of the prosecutor’s office, the police, the president of the Office of Personal Data Protection, the president of the Office of Competition and Consumer Rights Protection. or the President of the Office of Electronic Communications.
The administrator uses two types of cookies:
2.1. Session cookies: after the browser session ends or the computer is turned off, the saved information is deleted from the device’s memory. The mechanism of session cookies does not allow downloading any personal data or any confidential information from the Clients’ computers.
2.2. Persistent cookies: are stored in the memory of the Customer’s end device and remain there until they are deleted or expire. The mechanism of persistent cookies does not allow downloading any personal data or any confidential information from the Client’s computer.
3.1. analysis and research, as well as audience audits, in particular, to create anonymous statistics that help to understand how Customers use the Website, which allows to improve its structure and content.
4.1. presentation of a map indicating the location of the Administrator’s office on the information pages of the Website via the website maps.google.com (external cookie administrator: Google Inc., located in the USA)
5. The cookie mechanism is secure for the computers of customers visiting the Website. In particular, in this way, it is impossible for viruses or other unwanted software or malicious software to enter the Client’s computers. However, customers have the ability to restrict or disable access to cookies on their computers in their browsers. If you use this option, you will be able to use the website, except for functions that by their nature require cookies.
6. The administrator can collect IP addresses of clients. An IP address is a number assigned by an Internet service provider to the computer of a person visiting a Website. An IP number allows you to access the Internet. In most cases, it is assigned to your computer dynamically, that is, it changes every time you connect to the Internet, and for this reason, it is usually considered non-personally identifiable information.
The IP address is used by the Administrator to diagnose technical problems with the server, to create statistical analyses (for example, to determine from which regions we receive the most visits), as information useful for the administration and improvement of the Website, as well as for security purposes and possible problem detection, which burden the server.
1.1. The customer has the right to withdraw any given consent
1.2. Withdrawal of consent takes effect from the moment of withdrawal.
1.3. The withdrawal of consent does not affect the processing carried out by the Administrator in accordance with the law before its withdrawal.
1.4. Withdrawal of consent does not entail any negative consequences for the Client but may prevent further use of services or functionality, which, according to the law, the Administrator can provide only with consent.
2.1. The Client has the right to object at any time – for reasons related to his specific situation – to the processing of his personal data, including profiling, if the Administrator processes his data on the basis of a legitimate interest, for example, the marketing of the Administrator’s products and services. maintaining usage statistics, certain features of the Website, and facilitating the use of the Website, as well as satisfaction surveys.
2.2. Refusing to receive marketing communications about products or services by e-mail will mean the Client’s objection to the processing of his personal data, including the creation of a profile for these purposes.
2.3. If the Customer’s objection turns out to be justified, the Administrator will have no other legal grounds for processing personal data, the Customer’s personal data, the processing of which the Customer objected to, will be deleted.
3.1. The client has the right to request the deletion of all or some personal data.
3.2. The client has the right to request the deletion of personal data if:
3.2.1. personal data are no longer required for the purposes for which they were collected or processed
3.2.2. withdrew the special consent in terms of personal data processing based on his consent
3.2.3. he objected to the use of his data for marketing purposes
3.2.4. personal data is processed illegally
3.2.5. personal data must be deleted to comply with legal obligations under Union law or the law of a Member State to which the Controller is subject
3.2.6. personal data were collected in connection with the offer of information society services.
3.3. Despite the request for the deletion of personal data in connection with raising an objection or withdrawing consent, the Administrator may retain certain personal data to the extent that processing is necessary to establish, file or defend claims, as well as to fulfill a legal obligation that requires processing in accordance with Union law or the law of a Member State to which the Controller is subject.
In particular, this applies to personal data, in particular: name, surname, and e-mail address, the data of which is stored for the consideration of complaints and claims related to the use of the Administrator’s services, or additionally the address of residence/mailing address, order. number, the data of which is stored for the purpose of considering complaints and claims related to concluded contracts of sale or provision of services.
4.1. The customer has the right to request the restriction of the processing of his personal data. Submitting a request until it is considered prevents the use of certain functionalities or services, the use of which involves the processing of the data covered by the request. The administrator will not send any messages, including marketing messages.
4.2. The customer has the right to request restriction of the use of personal data in the following cases:
4.2.1. when you doubt the correctness of your personal data – then the Administrator limits their use for the time necessary to check the correctness of the data, but no more than 7 days
4.2.2. when the data processing is illegal and instead of deleting the data, the Client requests restriction of its use
4.2.3. when personal data are no longer needed for the purposes for which they were collected or used, but are needed by the Client to establish, file, or defend claims
4.2.4. if he objects to the use of his data – then the limitation refers to the time required to consider whether – due to a special situation – the protection of the interests, rights, and freedoms of the Client prevails over the interests pursued by the Administrator through processing. personal data of the Customer.
5.1. The Customer has the right to receive confirmation from the Administrator whether personal data is being processed, and if so, the Customer has the right to:
5.1.1. access your personal data
5.1.2. to receive information about the purposes of processing, the categories of personal data being processed, the recipients or categories of recipients of this data, the planned period of storage of the Customer’s data or the criteria for determining this period (when determining the planned period of data processing is not possible), about the rights of the Client in accordance with the GDPR, and also about the right to file a complaint with a supervisory authority, about the source of this data, about automated decision-making, including profiling, and about the safeguards applied. in connection with the transfer of this data outside the European Union
5.1.3. get a copy of your personal data.
6.1. The Client has the right to demand from the Administrator the immediate correction of any incorrect personal data concerning him/her. Taking into account the purposes of the processing, the data subject has the right to request the completion of incomplete personal data, including by submitting an additional application, or sending a request to the e-mail address in accordance with §6 of the Privacy Policy.
7.1. The Client has the right to receive his personal data, which he has provided to the Administrator, and then send them to another personal data administrator of his choice. The customer also has the right to request that the Administrator send personal data directly to such an administrator if it is possible from a technical point of view. In this case, the Administrator sends the Client’s personal data in the form of a file in CSV format, which is a widely used, machine-readable format that allows sending the received data to another personal data administrator.
8. In the event that the Client exercises the right arising from the above-mentioned rights, the Administrator fulfills the requirement or refuses to fulfill it immediately, but no later than one month from the moment of its receipt. However, if due to the complexity of the request or the number of requests, the Administrator cannot satisfy the request within a month, he will satisfy it within the next two months, informing the Client within one month from the moment of receiving the request – about the expected extension of the term and its reasons.