Performing information obligations regarding the protection of personal data arising from Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016. on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (Journal of Laws of the European Union, L. of 2016, No. 119, p. 1) (“GDPR”) which entered into force on May 25, 2018. in connection with obtaining personal data from you, we provide the following information:
1. Who is the administrator of personal data?
We would like to kindly inform you that the administrator of your personal data, i.e. the entity that determines the purposes and methods of their processing is “TAEURO” with its registered office at ul. Białowieska 38, Wrocław 54-235, registered under NIP number 897-137-01-00.
2. Who is the Data Protection Officer and how to contact him?
We have appointed a Data Protection Officer who can be contacted at the Administrator’s postal address or electronically via the address firstname.lastname@example.org in all matters regarding the processing of personal data and the exercise of rights related to the processing of personal data.
3. For what purpose are your data processed and on what basis?
The data provided by you will be processed in order to:
· Consent of the person to the processing of personal data by the Administrator – (art.6 par.1 lit.a) RODO)
conclusion and implementation of contracts concluded with you – the legal basis for data processing is the necessity of processing for the conclusion and implementation of the contract – (art.6 par.1 lit.b) GDPR)
· Establishing, pursuing claims or defending against claims related to the contract concluded with you – the legal basis for data processing is the necessity of processing to implement the legitimate interest of the administrator; the administrator’s legitimate interest is the possibility for him to pursue claims and defend against claims – (art.6 par.1 lit.f) GDPR)
· Compliance by the Administrator with the obligations to store accounting documents regarding the implementation of contracts – the legal basis for data processing is the necessity to fulfill the legal obligation incumbent on the Administrator, resulting from the Accounting Act – (Article 6 (1) (c) GDPR)
· Marketing, i.e. offering products and services provided by the Administrator – the legal basis for data processing is the necessity of processing to implement the legitimate interest of the administrator; the legitimate interest of the administrator is to provide clients with information about products and services provided by the Administrator – (art.6 par.1 lit.f) GDPR)
· In order to examine customer satisfaction – the legal basis for data processing is the necessity of processing to implement the legitimate interest of the administrator; the administrator’s legitimate interest is to maintain the high quality of our service and the level of our customers’ satisfaction with products and services – (Article 6 (1) (f) GDPR)
4. Will decisions be made in your case automatically based on profiling?
The administrator does not make decisions based on the automated processing of personal data, including profiling, resulting in legal effects for the person whose data is being processed.
5. Can you refuse to provide the personal data we are asking for?
Providing data in connection with the contract is necessary to conclude the contract and perform activities under the contract – without providing it will not be possible to conclude the contract. Providing data for marketing purposes is completely voluntary.
6. Will your personal data be made available by the Administrator to other entities?
· Entities processing data on our behalf and on the basis of contracts concluded with us, e.g. IT companies operating our systems; subcontractors providing services to us; intermediaries in the sale of our services and products; companies providing accounting services, complaint processing, invoicing and settlement of contracts, service quality testing, debt collection, analytical, audit, advisory, legal and tax services.
· Other entities that as administrators process your data on their own behalf, e.g. postal and courier companies – in connection with forwarding correspondence; companies conducting payment activities – in connection with payments made; companies purchasing debts from us – in connection with the sale of debts; companies providing accounting, legal and tax services to us – to the extent that they become a data administrator.
7. Will your personal data be transferred to third countries or international organizations (outside the European Economic Area)?
The administrator will not transfer your data to third countries or international organizations (outside the European Economic Area).
8. How long will your personal data be processed:
Personal data will be processed until the claims due to concluded contracts expire or until the obligation to process data resulting from legal provisions expires or your consent is withdrawn, if the processing was based on consent.
9. What rights do you have?
You have the right to:
access to the content of your data and rectification, deletion, processing restrictions,
transferring personal data, i.e. to receive information about the processed personal data from the Administrator, in a structured, commonly used machine-readable format, to the extent that your data is processed for the purpose of concluding and performing a contract or on the basis of consent. You can send your personal data to another data administrator
object to the processing of personal data to the extent that the basis for the processing of personal data is the legitimate interest of the Administrator.
the right to withdraw consent at any time to the extent that the basis for the processing of personal data is consent. Withdrawal of consent does not affect the lawfulness of the processing we have carried out on the basis of this consent before its withdrawal.
lodging a complaint to the President of the Office for Personal Data Protection
10. How can you exercise your rights?
The administrator provides data subjects with the exercise of their rights regarding the protection of personal data under the GDPR (Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free flow of such data, and repealing Directive 95/46 / EC).
In order to exercise the above rights, please contact the Data Administrator or the data protection officer to whom the contact details have been indicated above.
11. How to exercise your right to lodge a complaint?
If you believe that we process your personal data contrary to the law, you have the right to lodge a complaint with the supervisory body dealing with the protection of personal data, i.e. the President of the Office for Personal Data Protection.