Privacy Policy

1. GENERAL PROVISIONS

The administrator of personal data collected through the website wazdan.com is Wazdan Solutions Sp. z o.o., located at Technologiczna 4/1B.11, 45-839 Opole, registered in the National Court Register under the number KRS 0000432056, VAT ID 1132858720, REGON 146308621, with a share capital of PLN 5,000.00, email address: hr@wazdan.com, hereinafter referred to as the “Administrator,” also acting as the Service Provider.

Personal data collected by the Administrator through the website is processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as GDPR, and the Act on Personal Data Protection of 10 May 2018.

2. TYPE OF PROCESSED PERSONAL DATA, PURPOSE, AND SCOPE OF DATA COLLECTION

PROCESSING PURPOSE AND LEGAL BASIS The Administrator processes personal data through the use of the contact form by the user. Personal data is processed based on Art. 6(1)(f) GDPR as the legitimate interest of the Administrator.

TYPES OF PROCESSED PERSONAL DATA The Administrator processes the following categories of user’s personal data:

  • First and last name,
  • Date of birth,
  • Address (residence),
  • Email address,
  • Phone number.

PERIOD OF ARCHIVING PERSONAL DATA User’s personal data is stored by the Administrator:

  • In the case of processing based on the performance of a contract, for the duration necessary to perform the contract and subsequently for a period corresponding to the statute of limitations. Unless a specific provision states otherwise, the limitation period is six years, and for claims related to periodic benefits and business activities – three years.
  • In the case of processing based on consent, until the consent is withdrawn, and after the withdrawal, for a period corresponding to the statute of limitations for claims that the Administrator can raise and that can be raised against him. Unless a specific provision states otherwise, the limitation period is six years, and for claims related to periodic benefits and business activities – three years.

Additional information, such as the IP address assigned to the user’s computer or the external IP address of the Internet provider, domain name, browser type, access time, and operating system type, may be collected during the use of the website.

Navigation data, including information about the links and references the user decides to click on or other actions taken on the website, may also be collected from users. The legal basis for such activities is the legitimate interest of the Administrator (Art. 6(1)(f) GDPR), aimed at facilitating the use of electronically provided services and improving the functionality of these services.

Providing personal data by the user is voluntary.

Personal data will also be processed in an automated manner in the form of profiling if the user consents based on Art. 6(1)(a) GDPR. The consequence of profiling will be assigning a profile to a person to make decisions, analyze, or predict preferences, behaviors, and attitudes.

The Administrator takes special care to protect the interests of the individuals whose data is processed, ensuring that the data collected is:

  • Processed lawfully,
  • Collected for specified, lawful purposes and not processed further in a way incompatible with those purposes,
  • Substantially correct and adequate in relation to the purposes for which they are processed and stored in a form that allows the identification of the individuals concerned, no longer than necessary to achieve the processing purpose.

3. SHARING OF PERSONAL DATA

User’s personal data is transferred to service providers used by the Administrator to operate the website. Service providers to whom personal data is transferred either follow the Administrator’s instructions regarding the purposes and methods of processing (processing entities) or independently determine the purposes and methods of processing (administrators), depending on contractual agreements and circumstances.

User’s personal data is stored exclusively within the European Economic Area (EEA).

4. RIGHT TO CONTROL, ACCESS OWN DATA CONTENT, AND CORRECTION

The person whose data is processed has the right to access the content of their personal data and the right to correct, delete, limit processing, the right to data portability, the right to object, and the right to withdraw consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent before its withdrawal.

Legal bases for user requests:

  • Access to data – Art. 15 GDPR
  • Rectification of data – Art. 16 GDPR
  • Erasure of data (right to be forgotten) – Art. 17 GDPR
  • Restriction of processing – Art. 18 GDPR
  • Data portability – Art. 20 GDPR
  • Objection – Art. 21 GDPR
  • Withdrawal of consent – Art. 7(3) GDPR

To exercise the rights mentioned in point 2, you can send a relevant email to the address: biuro@zmanagement.pl.

In the event of a user exercising a right resulting from the above rights, the Administrator fulfills the request or refuses to fulfill it immediately, but no later than within one month of receiving it. However, if – due to the complex nature of the request or the number of requests – the Administrator cannot fulfill the request within one month, they will fulfill it within the next two months, informing the user in advance within one month of receiving the request about the intended extension of the deadline and its reasons.

If it is found that the processing of personal data violates the GDPR provisions, the person whose data it concerns has the right to lodge a complaint with the President of the Office for Personal Data Protection.

5. “COOKIES” FILES

The Administrator’s website uses “cookies” files.

The installation of “cookies” files is necessary for the proper provision of services on the website. “Cookies” files contain information necessary for the proper functioning of the site and also allow for the development of general statistics on visits to the website.

The website uses two types of “cookies” files: session and persistent.

“Session” cookies are temporary files that are stored on the user’s end device until logging out (leaving the site).

“Persistent” cookies are stored on the user’s end device for the time specified in the parameters of the “cookies” files or until they are deleted by the user.

The Administrator uses their own cookies files to better understand the user’s interaction with the content of the site. The files collect information about how the user uses the website, the type of site from which the user was redirected, and the number of visits and time of the user’s visit to the website. This information does not record specific personal data of the user but serves to develop statistics on the use of the site.

The user has the right to decide on the access of “cookies” files to their computer by selecting them in their browser window. Detailed information on the possibilities and methods of handling “cookies” files is available in the settings of the software (web browser).

6. FINAL PROVISIONS

The Administrator applies technical and organizational measures to ensure the protection of processed personal data appropriate to the threats and categories of data protected, particularly securing data against disclosure to unauthorized persons, taking over by an unauthorized person,