Privacy policy

Privacy and Cookies Policy Polyland sp. z o.o.

  1. The hereby document containing the Privacy Policy and the use of Cookies on our website polyland.pl: (hereinafter referred to as the ‘Website’) has been created and adopted by Polyland sp. z o.o. with its registered seat in Kraków at ul. Królewska 65a/1, 30-081 Kraków, entered into the Register of Entrepreneurs, kept by the District Court for Kraków, XI Economic Department of the National Court Register (Sąd Rejonowy dla Krakowa, Wydział XI Gospodarczy Krajowego Rejestru Sądowego), under KRS no. 0000583802, with a share capital of PLN 10,000, NIP 677-239-45-80, REGON 362875560 (hereinafter referred to as the ‘Company’) in order to:
    • emphasise the particular importance we attach to protecting the privacy of visitors to the Website.
    • provide Users with information on the use of Cookies on this Website, as required by the provisions of the Telecommunications Law (Prawo telekomunikacyjne) of 16 July 2004 (Dz. U. No. 171, item 1800 as amended), hereinafter referred to as the ‘Telecommunications Law’, in the version in force from 22 March 2013.
  2. Below are the rules on the collection and use of user information applicable to the Website and to the order requests for the service provided electronically, the subject of which is the provision of translations.
  3. Our overriding objective is to ensure that the Service Users’ privacy is protected at a level at least equivalent to the standards set out in the applicable legislation, in particular the Act of 18 July 2002 on the provision of services by electronic means , hereinafter referred to as the “Act on the provision of services by electronic means”, the REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (EU) 2016/679 of 27 April 2016 on the protection of natural persons in relation to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as ‘GDPR’), the Personal Data Protection Act, hereinafter referred to as the ‘Personal Data Protection Act’, and the Telecommunications Law.
  4. In addition, we store http requests directed to our Website. This means that we automatically know the IP addresses of the computers that are used to view the content of our service. The resources viewed are identified by their URLs.

I
Collection and use of information

  1. The Website limits the collection and use of information about its Users to the necessary minimum required to provide services to them at the desired level, pursuant to Article 18 of the Act on Provision of Services by Electronic Means.
  2. The provision of other personal data (i.e. data that is not necessary for the provision of the service by electronic means) is not obligatory, it is at the discretion of the person to whom the data relates, and its processing by the Company depends on his/her consent.
  3. This information shall not be made available to third parties, subject to Section III.11, unless:
    • with the prior express consent of the data subjects to do so, or
    • if the obligation to provide such data is (shall be) imposed by law.
  2. The company can act in two roles:
    • as the administrator of the personal data within the meaning of GDPR, which also gives the possibility of entrusting the processing of the data collected within the Website to other entities pursuant to art. 31 of the aforementioned Act.
    • as a personal data processor, processing personal data on behalf of the administrator on the basis of a data processing entrustment agreement or in connection with the performance of a translation contract.
  3. The Website includes an order form that allows customers to place an order for the services offered by the Company. The data collected in this way is mainly used to fulfil commitments to them.
  4. Customers’ contact information is also used to contact them when necessary (e.g. when an order needs to be confirmed), i.e. in connection with the performance of a contract.

II
Cookies

  1. The term ‘Cookie’ as used in this document refers to cookies and other similar tools as described in Directive 2009/136/EC of the European Parliament concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications) and Article 173 of the Telecommunications Law.
  2. Cookies are small text files which are stored on your computer or other mobile device when you use websites. These Cookies are used, among other things, to make use of the various functions provided on a website or to confirm that a user has seen certain content from a website. They can be read by our system, as well as by systems belonging to other entities whose services we use (e.g. Facebook, Google).
  3. The user can manage the Cookies used by the Company or by any other third party providers by changing the settings of their web browser.
  4. At the same time, the Company notes that if you reject cookies, some of the functions offered by our website may not function properly, or even, in some cases, this may involve preventing you from using the chosen service altogether.

  5. The Administrator stores Cookies on the User’s terminal equipment and then accesses the information contained therein for statistical purposes, for marketing purposes (remarketing, recovery of abandoned baskets) and to ensure the proper functioning of the Website.

  6. Cookies are used for:

a) adapting the content of the Website’s pages to the User’s preferences and optimising the use of the websites; in particular, these files allow for the recognition of the Website User’s device and the appropriate display of the website, adapted to the User’s individual needs;

b) compiling statistics that help us understand how Users use the Website, so that we can improve its structure and content;

  1. Cookies are placed in the Service User’s terminal equipment and may also be used by advertisers and partners cooperating with the Company.

III
User data protection

  1. The Company is committed to protecting any information disclosed by Users in accordance with standards of security protection and confidentiality. We take all reasonable precautions to protect your personal data and require the same from all third parties who process such data on our behalf. Access to personal data is restricted to prevent unauthorised access, alteration or misuse of data, and is granted to our employees only on a need-to-know basis.
  2. Access to the personal data of website users has been restricted in a restrictive manner so that this information does not fall into the hands of unauthorised persons. Only a limited number of authorised employees of the Company have access to personal data in accordance with the Personal Data Protection Act and the executive act issued on its basis.
  3. The Service provides Users with the option to remove information about themselves from our database and allows them to stop receiving information sent by email. Instructions on how to do so will be included in the content of the messages we send.
  4. Purposes and grounds for processing personal data. In order to provide services in accordance with its business profile, the Company processes your personal data, for various purposes, but always in accordance with the law. Below you will find the specified purposes of processing your personal data, together with the legal bases.
  5. Personal data is processed for:

    1. Provision of services by electronic means, performance of the service by the Company – the legal basis for such data processing is Article 6(1)(b) GDPR, which allows personal data to be processed if it is necessary for the performance of the contract or taking steps to enter into the contract;

    2. to handle a complaint – the legal basis for such processing is Article 6(1)(b) GDPR, which allows personal data to be processed if it is necessary for the performance of a contract or taking steps to enter into a contract;

    3. to send, by means of electronic communication, marketing offers about offers, promotions and news about our products – the legal basis for such data processing is Article 6(1)(a) GDPR, which allows personal data to be processed on the basis of freely given consent

    4. sending newsletters about offers, promotions and news concerning our products – the legal basis for such data processing is Article 6(1)(a) GDPR, which allows personal data to be processed on the basis of voluntarily given consent

    5. issuing an invoice and fulfilling other obligations under tax law, such as keeping accounting records for 5 years – the legal basis for such processing is Article 6(1)(c) GDPR, which allows personal data to be processed if such processing is necessary for the Personal Data Controller to comply with its obligations under the law;

    6. establish, assert or defend against claims – the legal basis for such processing is Article 6(1)(f) of the GDPR, which allows personal data to be processed if, by doing so, the Personal Data Administrator is pursuing its legitimate interest (in this case, the Company’s interest is to have personal data to establish, assert or defend against claims, including those of customers and third parties);

    7. archival and evidential – for the purpose of safeguarding information that can serve to prove facts of legal significance. The legal basis for such data processing is Article 6(1)(f) of the GDPR, which allows personal data to be processed if, by doing so, the Personal Data Administrator is pursuing its legitimate interest (in this case, the Company’s interest is to have personal data to prove certain facts related to the provision of services, e.g. when some government authority requests it);

    8. the use of Cookies on the website shall process such textual information (Cookies will be described in a separate section). The legal basis for such processing is Article 6(1)(a) of the GDPR, which allows us to process personal data on the basis of freely given consent (when you first access the website, you are asked if you agree to the use of Cookies);

    9. administration of the website – this data is saved automatically in the so-called server logs every time the website belonging to the Company is used. The administration of the website without the use of the website and without this automatic recording would not be possible. The legal basis for such data processing is Article 6(1)(f) of the GDPR, which allows personal data to be processed if, by doing so, the Personal Data Administrator pursues its legitimate interest (in this case, the Company’s interest is the administration of the website);

  6. Right to withdraw consent. If the processing of your personal data is based on your consent, you may withdraw this consent at any time, at your discretion.
  7. If you would like to withdraw your consent to the processing of your personal data, this can be done by: sending an e-mail directly to the Company at biuro@polyland.pl.
  8. If the processing of your personal data was carried out on the basis of your consent, revoking your consent does not render the processing of your personal data until then unlawful. In other words, we are entitled to process your personal data until you revoke your consent and revoking your consent does not affect the lawfulness of the previous processing.
  9. Requirement to provide personal data

The provision of any personal data is voluntary and at your discretion. However, in some cases, the provision of certain personal data is necessary in order to meet your expectations for the use of the services.

  1. Automated decision-making and profiling

We kindly inform you that we do not carry out automated decision-making, including on the basis of profiling. The content of the enquiry that is sent is not subject to automated evaluation by the IT system.

  1. Recipients of personal data

Like most companies, we use the assistance of other entities in our business, which sometimes involves the transfer of personal data. Therefore, if necessary, we provide your personal data to the IT service providers cooperating with us, lawyers who perform services, an accounting company, a hosting company, an insurance company, a delivery service, but such entities process data on the basis of a contract with the controller and only in accordance with the controller’s instructions.

  1. In addition to this, it may happen that, for example, on the basis of a relevant legal provision or a decision of a competent authority, we will also have to provide your personal data to other entities, whether public or private. Therefore, it is extremely difficult for us to predict who may make a request for your personal data. Nevertheless, for our part, we assure you that we analyse every request for personal data very carefully and very thoroughly, so as not to inadvertently pass on information to an unauthorised person.

  2. Period of processing of personal data. In accordance with current legislation, we do not process your personal data ‘indefinitely’, but for the period of time that is necessary to achieve the stated purpose and for the purpose of defending or asserting claims. After this period, your personal data will be irreversibly deleted or destroyed.
  3. Rights of data subjects
    1. Please be advised that you have the right to:
      • access to your personal data;
      • rectification of personal data;
      • erasure of personal data;
      • restriction of the processing of personal data;
      • object to the processing of personal data;
      • portability of personal data.
    2. We respect your rights under data protection legislation and strive to facilitate the exercise of these rights to the greatest extent possible.
    3. We would like to point out that the rights listed are not absolute and therefore we may lawfully refuse you in certain situations. However, if we refuse to comply with a request, this is only after careful consideration and only if it is necessary to refuse the request.
    4. Regarding your right to object, we explain that you have the right to object at any time to the processing of your personal data on the basis of a legitimate interest of the Data Administrator in relation to your particular situation. However, you must bear in mind that, in accordance with the regulations, we may refuse to take your objection into account if we show that:
      • there are legitimate grounds for the processing which override your interests, rights and freedoms, or
      • there are grounds for the establishment, assertion or defence of claims.
    5. Furthermore, you may object at any time to the processing of your personal data for marketing purposes. In such a situation, upon receipt of your objection, we will cease processing for this purpose.
    6. You can exercise your rights by:
      • sending an email directly to the Company at: biuro@polyland.pl.
    7. Right to lodge a complaint. If you believe that your personal data is being processed contrary to applicable law, you may lodge a complaint with the President of the Data Protection Authority.
  4. Your personal data will not be transferred to third countries or processed by automated means.
  5. This Privacy Policy is subject to change and an updated version will be posted on the Polyland Website. We will provide you with reasonable notice of any material changes. We encourage you to visit the Site frequently to learn how we process your personal information.
  6. To the extent not covered by this Privacy Policy, the data protection regulations apply.
  7. This Privacy Policy is effective as of 25 May 2018.