We wish to assure you that, out of concern for our customers’ privacy, we take care to ensure the security of the personal data we gather, in accordance with the personal data protection act.
ADMINISTRATOR’S DISCLOSURE REQUIREMENTS
The Administrator of the personal data processed within the scope and for the purposes stipulated by the Administrator is:
TICOL Sp. z o.o.
ul. Kolejowa 45, 55-300 Środa Śląska
NIP 9131611312, REGON 021519160
The Administrator processes data in accordance with the law, collects it for defined legal purposes and does not submit it to further processing inconsistent with those purposes. The data is gathered solely within the scope which is relevant and necessary to the purposes for which it is processed. The Administrator processes personal data as part of the business he conducts, in particular for the purposes of:
1. Taking actions before concluding or executing an agreement to which the person whose data is processed is a party (art.6 para. 1 b of GDPR);
2. Fulfilling a legal obligation imposed on the Administrator, in particular to issue invoices and accounting and fiscal documents (6 para 1 c GDPR). Data gathered for this purpose will be stored for the period stipulated by the applicable legislation, in particular the Accounting and Tax Regulation Acts.
3. On the basis of the Administrator’s legally justified interest, i.e. marketing his own services, seeking or protecting claims, creating lists, analyses and statistics for our internal requirements (art. 6 para. 1 f of GDPR); Data gathered for this purpose will be stored for the period during which we are threatened with legal consequences, or until the person whom the data concerns submits an objection;
4. On the basis of consent, in particular for obtaining permission to contact the subject of the data (art. 6 para. 1 a of GDPR): Data gathered in this way will be stored until the consent is withdrawn or the Administrator considers it unnecessary.
At the same time, the administrator declares that:
- he will make every effort to ensure that the personal data being processed is protected against unauthorised access by third parties, including by using technical and organisational security measures of a high standard.
- The data may only be provided to entities authorised to obtain it pursuant to mandatory provisions of law.
- The Administrator may entrust the processing of personal data to another entity on behalf of the Administrator, by means of a written agreement.
- Personal data is not provided to third countries or to international organisations.
- Provision of data for purposes connected with fulfilling legal obligations is compulsory. In other cases, the provision of personal data is voluntary, however failure to provide data which is indicated as being necessary makes it impossible to use the Administrator’s services. If processing of the data is necessary to execute an agreement to which the person whom the data concerns is a party, or to take actions at the request of the person whom the data concerns before concluding an agreement, it is necessary to provide the required data in the scope defined.
- If the person whom the data concerns has consented to the processing of his/her personal data for one or more purposes,then he/she is entitled to withdraw that consent at any moment without any effect on the legality of that data being processed subject to the consent before it was withdrawn.
- The person whom the data concerns is entitled to access to the content of his/her personal data, and to correct and complete it.
- The data administrator does not use profiling, which is a form of automated processing of personal data involving using personal data to assess certain personal aspects of the person, in particular to analyse or predict aspects of his/her personal preferences and interests. The Administrator does not take any automated decisions in individual cases based on profiling, does not take any decisions based solely on automated processing, including profiling, and which could have a significant effect on the person whom the data concerns.
- The Administrator implements the appropriate measures to protect the rights, freedom and legally justified interests of the person whom the data concerns.
- In the event of any suspicion or discovery by the person whom the data concerns that the personal data is being processed illegally, he/she is entitled to submit a complaint to the supervisory body - the Personal Data Protection Authority.
- To obtain additional information with regard to matters concerning the principles for processing and protecting the personal data held by the Administrator, contact the Data Administrator at:
email address: firstname.lastname@example.org
GDPR: Regulation of the European Parliament and of the Council (EU) no. 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95.46/EC (General Data Protection Regulation).