The controller of personal data processed to the extent and for the purpose necessary to provide services is BGC Group Prosta Spółka Akcyjna, ul. Księdza Piotra Wawrzyniaka 6, 53-022 Wrocław. Phone no.: …………………, email: …………….
The Controller has appointed a Data Protection Officer.
Data subjects may contact the Data Protection Officer, Andrzej Burkiewicz, on all matters related to the processing of their personal data and the exercise of their rights under data protection regulations:
by email at iod@bosetti.pl,
or by post to the Controller’s address.
Personal data is processed for the purpose of providing services, including the performance of contracts and the sale of products, as well as where processing is necessary for the purposes of the legitimate interests pursued by the Controller, in particular direct marketing of the Controller’s own products or services. Processing may also occur for other purposes subject to the data subject’s consent, where required by applicable law. In particular, this includes consent to receive marketing communications and commercial information about the Controller’s own products and services and those of its partners, sent via electronic and telephone communication. The data subject has the right to withdraw consent at any time.
The Controller processes personal data lawfully, collects it for specified, legitimate purposes, and does not further process it in a way incompatible with those purposes. Data is collected only to the extent that is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed. The Controller does not process special categories of personal data. Providing personal data is voluntary; however, it is necessary for the provision of services.
The Controller takes all reasonable measures to protect personal data against unauthorized access by third parties, implementing high-level organizational and technical security measures. Personal data is not shared with any unauthorized recipients. The Controller may, by means of a written agreement, entrust the processing of personal data to another entity acting on its behalf. Data may be disclosed only to entities legally entitled to receive it under applicable laws.
Personal data is retained for the duration necessary to perform the relevant contract and for the period prescribed by applicable laws. It will not be retained longer than is necessary to fulfill the legitimate purposes pursued by the Controller or a third party, including, for example, for the purpose of pursuing claims related to business activities. For purposes for which the data subject has consented to the processing of their personal data, the data is retained until the consent is withdrawn.
The data subject has the right to request access to their personal data, rectification, erasure, restriction of processing, and – in cases provided for by law – to object to processing. They also have the right to data portability. The data subject also has the right to lodge a complaint with a supervisory authority if they find that their personal data is being processed unlawfully.
If the data subject has given consent to the processing of their personal data for one or more specific purposes, they have the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
Providing personal data is voluntary; however, failure to provide data marked as required will make it impossible to respond to the enquiry or process it further. If the processing is necessary for the performance of a contract to which the data subject is a party or to take steps at the request of the data subject prior to entering into a contract, provision of the required data is essential.
The Controller does not carry out profiling, which means a form of automated processing of personal data consisting in the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s personal preferences and interests.
Cookies Policy.
The Controller may use cookies when users access services through the Controller’s website. Cookies used on the website are associated solely with the user’s browser – users remain anonymous (their names or other personal identifiers are not collected). This information is stored by the Controller’s server on the user’s computer and can be read by the Controller’s server each time it connects to the user’s computer. Cookies provide statistical data on user traffic and site usage. The Controller may also use cookies to monitor user activity on the website. Users may configure how internet cookies are handled at any time by enabling manual cookie handling instead of automatic handling (user settings). For details, users should refer to the help section of their browser, typically found under “Internet Options” or similar. Disabling cookies, whether by blocking or requesting approval for their use, may hinder or even prevent access to certain services provided by the Controller.
