I. GENERAL PROVISIONS
- The Administrator of personal data collected through the www.iscon.pl website is Sebastian Kaliński conducting business activity for the company under the name ISCON, registered address: ul. Rakoszycka 2i, 55-300 Środa Śląska, NIP (Tax Identification Number): 8951080787, REGON (National Business Registry Number): 021170071, registered in Central Registration and Information on Business, e-mail address: firstname.lastname@example.org, hereinafter referred to as ‘the Administrator’, being simultaneously the Provider.
- The Customer’s personal data is processed in accordance with the personal data protection act of 29 August 1997 (Journal of Laws Dziennik Ustaw No. 133, pos. 883, as amended) as well as the electronic services provision act of 18 July 2002 (Journal of Laws Dziennik Ustaw No. 144, pos. 1204, as amended).
- The administrator endeavours to protect the interests of people to whom the data is related, and especially ensures that the collected data is:
- processed in accordance with the law,
- collected for legitimate purposes and not subjected to further processing not aligned with those purposes,
- factually correct and appropriate for the purposes for which it is processed, as well as stored in a form allowing for involved people to be identified for a period of time no longer than necessary to achieve the purpose of the processing.
II. THE PURPOSE AND SCOPE OF DATA COLLECTION
- Customers’ personal data collected by the Administrator is used for the purpose of:
- contacting the Customer.
- The Administrator processes the following personal data of the Customer:
- Name and surname,
- E-mail address.
- The Administrator may process the following data distinguishing the way the Customer uses online services (operational data):
- Designations identifying the network termination or the ICT system used by the Customer,
- Information regarding the start time, termination time and the scope of each use of electronic services by the Customer,
- Information regarding the use of electronic services by the Customer.
- For the Provider’s services to be performed electronically through the website, it is necessary to provide the personal data referred to in point 2.
- When contacting the Provider by means of e-mail or a contact form, the submitted data is recorded, so that the enquiry can be responded to.
III. THE BASIS FOR DATA PROCESSING
- Using the website and concluding agreements for service provision electronically through the website requires personal data to be provided, which is entirely voluntary. The person to whom the data relates makes an independent decision whether to commence using services performed electronically by the Provider in accordance with Terms and Conditions.
- Pursuant to Article 23 of the personal data protection act of 29 August 1997 (Journal of Laws Dziennik Ustaw No. 133, pos. 883, as amended), data processing is permitted, among others, when:
- the person to whom the data relates expresses consent, unless concerning deletion of related data,
- it is necessary for the fulfilment of an agreement in which the person to whom the data relates to is a party or when it is necessary in order to take action on the request of the person to whom the data relates to before the agreement is concluded.
- Processing of personal data by the Administrator is always handled in accordance with the basis for data processing referred to in point 2. Data processing will relate to the fulfilment of the agreement or to the necessity of taking action before the conclusion of an agreement, on the request of the person to whom the data relates (point 2b).
IV. THE RIGHT TO CONTROL AND ACCESS THE CONTENT OF ONE’S PERSONAL DATA AS WELL AS TO CORRECT IT
- The Customer has the right of access to their personal data as well as the right to correct it.
- Each person has the right to control the processing of personal data which relates to them and is included in the data collected by the Administrator, especially the right to demand amending, updating or correcting personal data, temporary or permanent suspension of its processing or deleting it if it is incomplete, obsolete or untrue, has been collected as a violation of the law or is no longer necessary for the purpose for which it has been collected.
- The rights included in points 1 and 2 can be exercised by sending a relevant e-mail to: email@example.com or via subsite Data Access Request.
V. COOKIE FILES
- The Provider’s website uses cookie files. Not changing browser settings on part of the Customer is tantamount to expressing consent to their use.
- Installing cookie files is required for the services offered on the website to be performed correctly. Cookie files include information necessary for the correct operation of the website, especially those requiring authorisation.
- The website uses the following kinds of cookie files:
- Temporary session cookies, which are stored in the end device of the Customer until they log out (leave the website).
- Persistent cookies, which are stored in the end device of the Customer for the period of time specified by cookie file settings or until they are removed by the User.
- Analytical cookies, which help recognise the way the Customer interacts with website content and organise the arrangement. Analytical cookies gather data on how Customers use the website, the type of website the Customer was redirected from, as well as the number of visits and time spent on the site. This information does not record specific personal data of the Customer, but helps develop usage statistics for the website.
- The User can decide the extent of access cookie files have to their computer by selecting it in their browser window. Detailed information on options and the way cookie files are handled is available in software (internet browser) settings.
VI. FINAL PROVISIONS
- The Administrator uses technical and organisational means to ensure processed personal data is appropriately protected, taking into consideration possible threats and the category of data under protection, in particular protecting the data from being shared with or captured by unauthorised people, being processed in contravention of effective regulations, being changed, lost, damaged or destroyed.
- The Provider applies appropriate technical means preventing digital personal data from being obtained or modified by unauthorised people.
VII. GOOGLE ANALYTICS
- The www.iscon.pl website makes use of Google Analytics, a website analysis service offered by Google Inc. (Google). Google Analytics uses so-called cookies, which are text files saved on the Customer’s computer to help analyse website activity. Information on the way this website is used is gathered by a cookie file, typically sent to a Google server in the United States and stored there. In case of activating IP anonymisation on this website within the European Union countries or other countries which are a party to the European Economic Area Agreement, the Customer’s IP address will be first shortened by Google. Only in special cases is the full IP address transferred to a Google server in the United States and then shortened. On request of the website owner, Google makes use of this information for analysis of website usage, compiling reports concerning website activity and for providing further services related to website and internet usage for the website owner.
- The IP address transferred by the browser within the Google Analytics service is not matched with any other data by Google.
- The www.iscon.pl website uses Google Analytics with the ‘anonymizeIp()’ extension. This means IP addresses are further processed after being shortened to exclude the possibility of relating it to specific people. If collected data concerning the Customer can be related to a specific person, such a relation will be immediately excluded and such data will be deleted right away.