As of May 25, 2018, all entities processing personal data are obliged to apply the Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter: RODO).
Out of concern for the security of the personal data entrusted to us, we have implemented procedures to prevent breaches of personal data security. The procedures in place are in accordance with the law, in particular:
(a) Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC,
(b) The Personal Data Protection Act of May 10, 2018,
(c) The Law on Provision of Electronic Services dated July 18, 2002.
Personal Data may be processed by us on the basis of the consent expressed by the User and in cases where the provisions of law authorize us to process personal data in order to perform the contract concluded between the parties, based on the provisions of law or when the processing is necessary for the purposes arising from the legitimate interests pursued by us as the Administrator.
The Service performs the functions of obtaining information about Users and their behavior in the following ways:
(a) through information obtained when using the Service:
- IP address – each computer connected to the Internet is assigned a unique number, i.e. IP address, and on its basis it is possible, for example, to identify the country from which a given user connects to the network,
- cookies – so-called “cookies” – text files created and stored on the User’s computer when visiting the website,
- information in server logs – our servers automatically record such data as the page request sent by the User, the date and time of the request and sending of the response, device data (e.g. hardware model), browser name and version, browser language, type of operating system,
(b) the service may save, in addition, information about connection parameters (including time stamp, IP address).
The data collected in Section 4 is not used in any way for marketing purposes.
Users’ personal data left in our service will not be made available to third parties or transferred to third countries or international organizations.
The personal data contained in the contact form or sent to us in an e-mail message is accessible to the individual who put it there. The individual also has the right to rectify personal data, the right to request erasure or restriction of processing, the right to data portability, to object to processing, and to withdraw consent to processing – in the cases and under the conditions specified in the RODO. The detailed scope of the User’s rights is given in the information clause below.
The website may contain links to other websites, such websites are not supervised by our service in any way. These websites may have their own privacy policies and regulations, with which we recommend that you familiarize yourself.
Information about cookies
Cookies are used for the following purposes:
a) creating statistics that help to understand how Service Users use websites, which allows to improve their structure and content,
b) maintaining a session of a User of the Website,
c) determining the profile of the User in order to display him/her tailored materials in advertising networks, in particular Google network,
d) remembering to change font size and contrast.
The Website uses two main types of cookies: “session” (session cookies) and “permanent” (persistent cookies). “Session” cookies are temporary files that are stored on the User’s terminal device until the User logs out, leaves the website or shuts down the software (web browser). “Permanent” cookies are stored on the User’s end device for the time specified in the parameters of the cookies or until they are deleted by the User.
INFORMATION REGARDING THE PROCESSING OF PERSONAL DATA
In connection with the processing of your personal data, we inform you – in accordance with Article 13(1) and (2) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27.04.2016 on the protection of natural persons in relation to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (Official Journal of the EU L of 04.05.2016, No. 119, p. 1) hereinafter referred to as “RODO” that:
I. DATA CONTROLLER
The Administrator of your personal data is Ramachandran Poland Limited Liability Company. The Administrator can be contacted in writing via snail mail at: ul. Wojciecha Korfantego 141 B, 40 – 154 Katowice, via email: email@example.com or by telephone at: 32 201 91 06.
II. LEGAL BASIS AND PURPOSES OF PERSONAL DATA PROCESSING
Your personal data will be processed in order to:
1) the provision of website services by us – for this purpose we process such information as your IP address, information about cookies, data about the web browser you use, data about your activity on our website, session data (legal basis: Article 6(1)(f) RODO, as well as geolocation data – only if you have given us your consent (legal basis: Article 6(1)(a) RODO),
2) to handle a matter or provide you with an answer to a question or request sent to us within the framework of an e-mail message sent to us – on the basis of the consent you have given us, expressed through the explicit affirmative action of sending us a message and providing your personal data (legal basis: Article 6(1)(a) RODO),
3) To conclude and perform a contract, including necessary contact (legal basis: Article 6(1)(b) RODO),
4) fulfill legal obligations incumbent on us as an Administrator, including accounting and bookkeeping and archiving obligations (legal basis: Article 6(1)(c) RODO),
5) to conduct analyses of the quality of our services in order to improve their functionality and to keep statistics on the use of our website, using cookies, IP addresses, browser data, website activity and sessions (legal basis: Article 6(1)(f) RODO).
III. INFORMATION ON THE REQUIREMENT/VOLUNTARINESS OF PROVIDING DATA AND THE CONSEQUENCES OF NOT PROVIDING PERSONAL DATA
Provision of personal data is voluntary, but necessary for the purpose of processing – without the provision of personal data it will not be possible to carry out the processing. Providing data for the purpose of issuing an invoice is a legal requirement and results from the Law on Value Added Tax.
IV. RECIPIENTS OF PERSONAL DATA
(1) Recipients of your personal data will be only entities authorized under the law, including the National Tax Administration or other state authorities.
(2) Recipients of personal data may also be entities providing courier or postal services.
(3) Your personal data may be transferred to entities processing personal data on behalf of the Administrator, e.g. IT service providers, entities providing accounting, HR and payroll services, entities which provide marketing or website hosting services for us, as well as other entities processing data for the purpose specified by the Administrator – however, such entities process data only on the basis of a contract with the Administrator.
- your personal data may also be transferred to our partners, i.e. companies with whom we cooperate by combining products or services.
V. STORAGE PERIOD OF PERSONAL DATA
Your personal data will be processed:
1) until the end of your use of our website – in the case of implementation of website services,
2) for a period of 3 months in the case of responding to or dealing with a matter arising from an email sent to us or for statistical purposes,
3) until you withdraw your consent, if the processing is based on the consent given to us,
4) for a period of 5 years after the termination of the contract.
VI. RIGHTS OF DATA SUBJECTS
In connection with the processing of personal data, you have the right to:
1) Access to the content of your personal data – that is, the right to obtain confirmation as to whether the Administrator is processing your data and information regarding such processing,
2) Obtain a copy of your personal data – that is, the right to obtain a copy of your personal data that is processed by the Administrator, with the first copy being free of charge, while for subsequent copies the Administrator is entitled to charge a reasonable fee,
3) Correction of personal data – if the data processed by the Administrator is incorrect or incomplete,
4) Deletion of personal data – if data are no longer necessary for the purposes for which they were collected, consent to data processing is withdrawn, objection to data processing is raised, data are processed unlawfully,
5) Restriction of personal data processing – when the data are incorrect you may request restriction of data processing for a period allowing you to verify the correctness of the data, the data will be processed unlawfully, but you do not want them to be deleted, the data will not be needed by the Administrator, but may be needed by you to defend or assert claims, or if you raise an objection to data processing – until it is determined whether the legitimate grounds on the part of the Administrator override the grounds for the objection;
6) Portability of personal data – that is, you have the right to receive in a structured, commonly used machine-readable format your personal data provided to the Controller, and you have the right to send this personal data to another Controller without hindrance from the Controller to whom the personal data was provided, if the processing is based on consent or contract and the processing is automated,
7) To object to the processing of personal data – you have the right to object at any time – on grounds related to your particular situation – when your personal data are processed by the Administrator for the performance of a task carried out in the public interest or in the exercise of public authority entrusted to the Administrator or on the basis of the Administrator’s legitimate interest, or to the processing of data for direct marketing purposes,
8) Withdraw consent to the processing of personal data at any time without affecting the legality of the processing performed before its withdrawal – if the processing is performed on the basis of the consent granted to us, in the cases and under the conditions specified in the RODO. The rights listed in points 1-8 above can be exercised by contacting the Administrator.
- In the cases and under the conditions specified in the RODO. The rights listed in points 1-8 above can be exercised by contacting the Administrator.
VII. RIGHT TO LODGE A COMPLAINT TO A SUPERVISORY AUTHORITY
You have the right to lodge a complaint with the President of the Office for Personal Data Protection when it is substantiated that your personal data is processed by the Administrator contrary to the provisions of the RODO.
VIII. AUTOMATED DECISION-MAKING, INCLUDING PROFILING
Your personal data will not be processed in an automated manner, including profiling.
IX. TRANSFER OF PERSONAL DATA TO A THIRD COUNTRY OR INTERNATIONAL ORGANIZATION
Your personal data will not be transferred to international organizations and third countries.