1. GENERAL PROVISIONS
1.1 The administrator of the personal data collected through the website statech.pl is Stanislaw Molenda doing business under the name P.P.U.H. "Statech" Stanislaw Molenda, registered address: Klucze 32-310, Osada 4, NIP: 6371179172, registered in the Central Business Register and Information, e-mail address: email@example.com, hereinafter referred to as the "Administrator", who is also the Service Provider, place of business: Klucze 32-310, Osada 4, electronic mail address (e-mail): firstname.lastname@example.org, hereinafter referred to as "Administrator".
1.2 Personal data collected by the Administrator through the website shall be processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the DPA and the Data Protection Act of 10 May 2018.
2. THE TYPE OF PERSONAL DATA PROCESSED, THE PURPOSE AND SCOPE OF DATA COLLECTION
2.1 PURPOSE OF PROCESSING AND LEGAL BASIS.
The controller processes personal data through the statech.co.uk website in case:
a) the user's use of the contact form. Personal data is processed on the basis of Article 6(1)(f) of the RODO as a legitimate interest of the Administrator.
b) signing up for the Newsletter by the user in order to send commercial information electronically. Personal data are processed upon separate consent, based on Article 6(1)(a) RODO.
2.2 THE TYPE OF PERSONAL DATA BEING PROCESSED.
The Administrator processes the following categories of your personal information:
a) Name, Surname
b) Email address
2.3. THE ARCHIVING PERIOD FOR PERSONAL DATA.
Users' personal information is stored by the Administrator:
a) where processing is based on the performance of a contract, for as long as is necessary for performance of the contract and thereafter for a period corresponding to the period of limitation of claims. Unless otherwise provided by a specific provision, the period of limitation shall be six years, and for claims for periodic benefits and claims related to the conduct of business activity - three years.
b) where the basis for data processing is consent, for as long as the consent has not been revoked, and after the revocation of consent for a period of time corresponding to the period of limitation of claims which the Administrator may assert and which may be asserted against him. Unless a specific provision of law provides otherwise, the period of limitation shall be six years, and for claims for periodic performance and claims related to the conduct of business activity - three years.
2.4 When using the website, additional information may be collected, in particular: the IP address assigned to your computer or the external IP address of your Internet provider, domain name, browser type, access time, operating system type.
2.4 Podczas korzystania ze strony internetowej mogą być zbierane dodatkowe informacje, w szczególności: adres IP przypisany do Państwa komputera lub zewnętrzny adres IP dostawcy Internetu, nazwa domeny, typ przeglądarki, czas dostępu, typ systemu operacyjnego.
2.6 The provision of personal data by the user is voluntary.
2.7 Personal data will also be processed by automated means in the form of profiling, provided that the user consents to this on the basis of Article 6(1)(a) of the RODO. The consequence of profiling will be the assignment of a profile to a person in order to make decisions concerning him/her or to analyze or predict his/her preferences, behavior and attitudes.
2.8 The Controller shall take special care to protect the interests of data subjects, and in particular shall ensure that the data it collects are:
a) processed lawfully,
b) collected for specified, legitimate purposes and not further processed in a way incompatible with those purposes,
c) substantively correct and adequate in relation to the purposes for which they are processed and kept in a form which permits identification of data subjects for no longer than is necessary to achieve the purpose of the processing.
3. SHARING OF PERSONAL INFORMATION
3.1 Users' personal data are transferred to the service providers used by the Administrator to operate the website. The service providers to whom the personal data are transferred, depending on the contractual arrangements and circumstances, are either subject to the Administrator's instructions as to the purposes and means of processing the data (processors) or determine themselves the purposes and means of processing the data (controllers).
3.2 Your personal data is stored only within the European Economic Area (EEA).
4. THE RIGHT TO CONTROL, ACCESS AND CORRECT THEIR OWN DATA
4.1 The data subject shall have the right of access to the content of his/her personal data and the right to rectification, erasure, restriction of processing, the right to data portability, the right to object, the right to withdraw consent at any time without affecting the lawfulness of processing carried out on the basis of consent before its withdrawal.
4.2 The legal basis for the user's request:
a) Access to data - Article 15 RODO
b) Rectification of data - Article 16 RODO.
c) Deletion of data (the so-called right to be forgotten) - Article 17 of the RODO.
d) Limitation of processing - Article 18 of the RODO.
e) Data portability - Article 20 RODO.
f) Objection - Article 21 RODO
(g) Withdrawal of consent - Article 7(3) of the RODO.
4.3 In order to exercise the rights referred to in Section 2, you may send a relevant e-mail to the following address: email@example.com.
4.4 When the user exercises the right resulting from the above rights, the Administrator shall comply with the request or refuse to comply with it immediately, but no later than within one month after receiving the request. However, if - due to the complexity of the request or the number of requests - the Administrator is not able to meet the request within one month, it shall meet it within the following two months by informing the user, within one month of receiving the request, about the intended extension of the deadline and the reasons for it.
4.5 If it is determined that the processing of personal data violates the provisions of the RODO, the data subject shall have the right to lodge a complaint with the President of the Office for Personal Data Protection.
5.2 The installation of cookies is necessary for the proper provision of services on the website. The cookies contain information necessary for the proper functioning of the website, and they also give the possibility to develop general statistics on website visits.
5.3 The website uses the following types of cookies: session cookies
"Session" cookies are temporary files that are stored on the user's end device until they log out (leave the site).
5.4 The Administrator uses its own cookies to better understand how a user interacts with the content of the website. The cookies collect information about the user's use of the website, the type of website from which the user was redirected and the number of visits and the length of the user's visit to the website. This information does not record specific personal information about the user, but is used to compile site usage statistics.
5.5 The User has the right to decide on the access of cookies to his/her computer by selecting them in advance in his/her browser window. Detailed information on the possibility and methods of using cookies is available in the software (browser) settings.
6. FINAL PROVISIONS
6.1 The controller shall apply technical and organizational measures to ensure the protection of the processed personal data appropriate to the risks and categories of data protected, and in particular to protect the data against their disclosure to unauthorized persons, acquisition by an unauthorized person, processing in violation of the applicable regulations, and any change, loss, damage or destruction.
6.2 The Administrator shall make available appropriate technical measures to prevent unauthorized persons from obtaining and modifying personal data sent electronically.