- GENERAL PROVISIONS
1.1. The controller of the personal data collected through the www.intsolutions.pl website is Bartłomiej Zwardoń running the business activity under the name INT Language Solutions Bartłomiej Zwardoń, address of the registered office: ul. Hoża 43/49 lok. 147; 00-681 Warsaw, address for delivery: ul. Hoża 43/49 lok. 147; 00-681 Warsaw, NIP: 5262876032, REGON: 146835929, registered in the Central Business Register and Information on Business Activity, e-mail address: email@example.com, hereinafter referred to as the “Controller”, who is also the Service Provider. Place of business: Hoża 43/49 lok. 147; 00-681 Warsaw, address for delivery: ul. Hoża 43/49 lok. 147; 00-681 Warsaw, NIP: 5262876032, REGON: 146835929, electronic mail address (e-mail): firstname.lastname@example.org, hereinafter referred to as “Controller”.
1.2. Personal data collected by the Controller through the website shall be processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as “GDPR” and the Personal Data Protection Act of 10 May 2018.
- TYPE OF PERSONAL DATA PROCESSED, PURPOSE AND SCOPE OF DATA COLLECTION
2.1. PURPOSE OF PROCESSING AND LEGAL BASIS. The Controller processes personal data via www.intsolutions.pl in the following cases:
2.1.1. the user’s use of the contact form. Personal data are processed on the basis of Article 6(1)(f) of the GDPR as a legitimate interest of the Controller.
2.1.2. in order to send commercial information to the user electronically. Personal data are processed upon separate consent, on the basis of Article 6(1)(a) of the GDPR.
2.2. TYPE OF PERSONAL DATA PROCESSED. The Controller processes the following categories of user’s personal data:
2.2.1. First and last name,
2.2.2. E-mail address,
2.2.3. Telephone number,
2.3. PERSONAL DATA ARCHIVING PERIOD. Users’ personal data are stored by the Controller:
2.3.1. where the basis of data processing is the performance of a contract, for as long as it is necessary for the performance of the contract, and thereafter for a period corresponding to the period of limitation of claims. Unless otherwise stipulated by a specific provision, the period of limitation shall be six years, and for periodic performance claims and claims related to the conduct of business activity – three years.
2.3.2. where the basis for data processing is consent, for as long as the consent is not revoked, and after the revocation of the consent for a period of time corresponding to the period of limitation of claims which the Controller may assert and which may be asserted against him. Unless a specific provision of law provides otherwise, the period of limitation shall be six years, and for claims for periodic performance and claims related to the conduct of business activity – three years.
When using the website, additional information may be collected, in particular: the IP address assigned to your computer or the external IP address of your Internet provider, domain name, browser type, access time or operating system type.
Navigation data may also be collected from the users, including information about links and references they choose to click on or other actions they take on the website. The legal basis for such activities is the legitimate interest of the Controller (Article 6(1)(f) of the GDPR), consisting in facilitating the use of services provided electronically and improving the functionality of these services.
The provision of personal data by the user is voluntary.
Personal data will also be processed in an automated manner in the form of profiling, provided that the user consents to this on the basis of Article 6(1)(a) of the GDPR. The consequence of profiling will be the assignment of a profile to a person in order to make decisions concerning him/her or to analyze or predict his/her preferences, behavior and attitudes.
The Controller shall take special care to protect the interests of data subjects, and in particular shall ensure that the data collected by him are:
2.8.1. processed lawfully,
2.8.2. collected for specified, legitimate purposes and not further processed in a way incompatible with those purposes,
2.8.3. substantively correct and adequate in relation to the purposes for which they are processed and stored in a form which permits identification of data subjects for no longer than it is necessary to achieve the purpose of the processing.
- SHARING OF PERSONAL DATA
3.1. Users’ personal data shall be provided to the service providers used by the Controller in the operation of the website. The service providers to whom the personal data are transferred, depending on the contractual arrangements and circumstances, are either subject to the Controller’s instructions as to the purposes and means of processing the data (processors) or determine themselves the purposes and means of processing the data (controllers).
3.2. Users’ personal data are stored exclusively within the European Economic Area (EEA).
- THE RIGHT TO CONTROL, ACCESS AND RECTIFY YOUR OWN DATA
4.1. The data subject shall have the right to access the content of their personal data, rectify or delete them, restrict their processing, transfer them, object to their processing, or withdraw the consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent before its withdrawal.
4.2. Legal grounds for the user’s request:
4.2.1. Access to data – Article 15 of the GDPR
4.2.2. Rectification of data – Article 16 of the GDPR.
4.2.3. Deletion of data (the so-called ‘right to be forgotten’) – Article 17 of the GDPR.
4.2.4. Restriction of processing – Article 18 of the GDPR.
4.2.5 Data transfer – Article 20 of the GDPR.
4.2.6 Objection – Article 21 of the GDPR
4.2.7 Withdrawal of consent – Article 7(3) of the GDPR.
4.3. In order to exercise the rights referred to in paragraph 2, the user may send an appropriate e-mail to: email@example.com.
4.4. In the situation when the user exercises the right resulting from the above, the Controller shall fulfill the request immediately or refuse to fulfill it, however, no later than within one month after receiving the request. However, if – due to the complexity of the request or the number of requests – the Controller will not be able to comply with the request within one month, he will do so within the next two months by informing the user about the intended extension of the deadline and the reasons for it within one month of receiving the request.
4.5. If it is established that the processing of personal data violates the provisions of the GDPR, the data subject shall have the right to lodge a complaint with the President of the Office for Personal Data Protection.
5.1. The Controller’s website uses “cookie” files.
5.2. The installation of “cookies” is necessary for the proper provision of services on the website. Cookies contain information necessary for the proper functioning of the website, and also provide the possibility to compile general statistics on website visits.
5.3. The website uses session and permanent cookies:
5.3.1. “Session” cookies are temporary files, which are stored on the user’s end device until logging out (leaving the site).
5.3.2. “Permanent” cookies are stored on the user’s end device the time specified in the parameters of cookies or until they are deleted by the user.
5.4. The Controller uses its own cookies to better understand how the user interacts with the content of the website. The files collect information about the user’s manner of use of the website, the type of website from which the user was redirected and the number of visits and their time. This information does not record specific personal data about the user, but is used to compile statistics about the use of the website.
5.5. The user has the right to decide on the access of cookies to his/her computer by selecting them in advance in his/her browser window. Detailed information on the possibility and methods of using cookies is available in the software (browser) settings.
- FINAL PROVISIONS
6.1. The Controller shall apply technical and organizational measures to ensure the protection of the processed personal data which are appropriate to the risks and categories of data covered by the protection, and in particular to protect the data against their disclosure to unauthorized persons, acquisition by an unauthorized person, processing in violation of the applicable provisions of law, and change, loss, damage or destruction.
6.2. The Controller shall provide appropriate technical measures to prevent acquisition and modification by unauthorized persons of personal data sent electronically.