PRIVACY POLICY
I. General information
- I inform you that the data I have obtained are processed in accordance with the provisions of EU and national law and in conditions guaranteeing their security. The administrator of the personal data (hereinafter referred to as: Administrator) collected through the website is Andriy Dementiy conducting business activity under the firm Adwokacka Adwokat Andriy Dementiy, Al. Jerozolimskie 101 lok. 5 02-011 Warsaw, NIP: 8222392134 e-mail: kancelaria@ad-adwokat.pl..
- This document has been drawn up to inform you of the rules governing the processing of personal data by the Firm, including the use of the data provided and of cookies and other technologies within the website, available at www.ad-adwokat.pl..
II. Legal basis for data processing
- Personal data collected by the Administrator are processed in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereinafter ‘RODO’), the Act of 10 May 2018 on the protection of personal data (Journal of Laws 2018, item 1000) and the Act of 18 July 2002 on the provision of electronic services (Journal of Laws 2017, item 1219, as amended)..
- The controller only processes personal data that the user has provided in connection with the use of the website. The processing of the data takes place in the scope of concluding and performing a contract, including for issuing an invoice or bill and performing a service (scope of data: name, surname, address, delivery address, e-mail) - Art. 6 para. 1 lit. b RODO, the establishment of cooperation (data scope: name, surname, address, e-mail address, telephone number, other data provided by the applicant in the application form) - art. 6 sec. 1 lit. a RODO, the assertion of claims (data scope: name, surname, address, delivery address, e-mail, other data necessary to prove the existence of a claim or the defence of rights) - art. 6 sec. 1 lit. f RODO, fulfilment of legal obligations incumbent on the Administrator in connection with the running of the business (data scope: all data obtained from the user) - art. 6 sec. 1 lit. c RODO, conducting own marketing and promotional activities (data scope: name, surname, address, e-mail, telephone number) art. 6(1)(f) RODO, to carry out marketing and promotional activities on the basis of a separately granted consent - art. 6(1)(a) RODO, to send commercial information by electronic means pursuant to art. 10(2) of the Act on the provision of services by electronic means of 18 July 2002 (Journal of Laws of 2017, item 1219 as amended), including the sending of a newsletter (data scope: name, surname, address, delivery address, e-mail) - Article 6(1)(a) RODO, including the sending of a newsletter and the use of telecommunications terminal equipment and automatic calling systems for direct marketing purposes in accordance with Article 172 of the Act of 16 July 2004. Telecommunications Law (Journal of Laws of 2017, item.1907 as amended).
III. What data is collected by ADMINISTRATOR?
- The administrator collects or may collect the following personal data through the contact form available on the site or through direct contact from the user (e-mail, telephone):
- identification data (including name, surname, date and place of birth),
- contact details (telephone number, address, e-mail address),
- other data provided by the user in the course of contacting the administrator.
- In connection with filling in the contact form or subscribing to the newsletter subscriber list, the user is given access to this Privacy Policy and data about the ADMINISTRATOR. The provision of personal data is voluntary, but necessary to contact the Administrator or to provide the newsletter service.
- Viewing the content of the website does not require the provision of personal data other than automatically acquired information about your connection parameters.
IV. Profiling of collected data
- The controller does not profile your personal data.
V. Processing times for personal data
- Personal data will be processed for a period of:
- necessary for the performance of the contracts concluded through the website, including after their performance, in order for the parties to be able to exercise their contractual rights, as well as for the possible assertion of claims;
- until the purpose of data processing ceases, i.e. the end of the respective recruitment process, if your consent to data processing concerned only the respective recruitment process until you withdraw your consent or object to data processing - in cases where your personal data are processed on the basis of a separate consent;
- by the end of the calendar year following the year in which they were submitted.
- The controller shall also store your personal data in cases where this is necessary to comply with his/her legal obligations, resolve disputes, enforce user obligations, maintain security, prevent fraud and abuse. The duration of data processing in the above cases is determined on a case-by-case basis, but may not exceed 10 years from the fulfilment of the above purposes.
VI. User rights
- The administrator shall ensure that the rights referred to in paragraph 2 below are exercised by users. In order to exercise the rights, an appropriate request should be sent by e-mail to: kancelaria@ad-adwokat.pl or by post to: Kancelaria Adwokacka Adwokat Andriy Dementiy, Al. Jerozolimskie 101 lok. 5 02-011 Warsaw
- The user is entitled to:
- access to the content of the data,
- rectification/updating of data
- erasure of data
- restriction of data processing
- data portability,
- to object to the processing of data, to withdraw consent at any time, whereby withdrawal of consent shall not affect the legality of processing performed on the basis of consent before its withdrawal,
- lodge a complaint to the supervisory authority, i.e. the President of the Office for Personal Data Protection. - The Administrator shall consider the submitted requests immediately, but no later than within two weeks of their receipt. However, if - due to the complexity of the request or the number of requests - the Administrator is not able to consider the user's request within the indicated time limit, the Administrator shall inform the user about the intended extension of the time limit and indicate a time limit for the consideration of the request, but not longer than 2 months..
- The controller shall communicate the rectification or erasure of the personal data or the restriction of the processing which he has carried out in accordance with your request to any recipient to whom the personal data have been disclosed, unless this proves impossible or involves a disproportionate effort.
VII. Release of information
- In order to perform the contract, the Administrator may share the data collected with entities including: employees, associates, courier companies, online payment system operators, entities providing IT services to us. In such cases, the amount of data transferred is limited to the required minimum. Personal data may be disclosed to the competent public authorities if required by the applicable laws.
- To recipients not mentioned above, the personal data processed shall not be made available externally in a form that would allow any identification of users.
- In connection with the Administrator's use of Google's services, your data may be transferred to the United States of America (USA), the country of Google LLC's headquarters. As Google LLC has joined the EU-US Privacy Shield programme, which guarantees an adequate level of data protection as required by EU legislation, your personal data is protected to the extent required by the RODO.
VIII. Technical measures
- The controller shall make every effort to secure personal data and protect them from third parties and shall perform data security supervision throughout the processing period in such a way as to ensure protection against unauthorised access by third parties, damage, distortion, destruction or loss.
IX. Transfers of personal data outside the European Economic Area
- Personal data is not transferred to countries outside the EEA. ADMINISTRATOR uses servers for data storage located in countries within the EEA..
X. Cookies
- The cookies used by the Administrator are safe for the user's device. In particular, it is not possible via this route for viruses or other unwanted software or malware to enter the user's device. These cookies make it possible to identify the software used by the user and to adapt the website individually for each user. Cookies usually contain the name of the domain from which they originate, the length of time they are stored on the device and the assigned value..
- Types of cookies:
- session cookies: are stored on the user's device and remain there until the session of the respective browser ends. The stored information is then permanently deleted from the device's memory. The mechanism of session cookies does not allow any personal data or any confidential information to be retrieved from the user's device;
- persistent cookies: these are stored on the user's device and remain there until they are deleted. Ending the session of the browser concerned or switching off the device does not delete them from the user's device. The mechanism of permanent cookies does not allow any personal data or any confidential information to be retrieved from the user's device.
- The user has the option to restrict or disable the access of cookies to their device. If this option is exercised, the use of the website will be possible, except for functions that by their nature require cookies. It is recommended to use software with cookies enabled.
- The administrator uses cookies for the following purposes:
- service configuration;
- recognise the website user's device and its location and display the website accordingly, tailored to the user's individual needs;
- remembering the history of pages visited on the site in order to recommend content;
- authenticate the user on the website and ensure that the user's session is maintained on the website;
- correct configuration of selected functions of the site, allowing, in particular, verification of the authenticity of the browser session - ensuring safety and reliability;
- optimising and increasing the efficiency of the services provided;
- analyses and audience researchi.
- Google Analytics - Веб-сайт www.ad-adwokat.pl використовує інструмент Google Analytics, наданий компанією Google LLC, що базується в Маунтін-В'ю, США. Google Analytics - це інструмент для аналізу активності користувачів на сайті www.ad-adwokat.pl з метою його оптимізації та покращення (законний інтерес Адміністратора). Google Analytics жодним чином не ідентифікує користувачів www.ad-adwokat.pl. Для отримання додаткової інформації про інструмент Google Analytics користувачі можуть звернутися до роз'яснень, підготовлених компанією Google: https://support.google.com/analytics/answer/6004245 Для отримання детальної інформації про те, як відмовитися від відстеження Google Analytics на всіх використовуваних веб-сайтах, будь ласка, зверніться до https://tools.google.com/dlpage/gaoptout Translated with DeepL.com (free version).
XI. Revision of privacy and cookies policy
- The Administrator has the power to change this document, the current content of the Privacy Policy is available on the following website.
- This document does not limit any of your rights under generally applicable law..
XII. Purpose of processing
- Users' personal data will be processed for the following purposes:
- contact in connection with the provision of legal consultations - by contacting the Administrator via the contact form, by writing directly to the email addresses or by calling the telephone number indicated on the website www.ad-adwokat.pl, users provide their personal data. The basis for the processing of your data in this case is your consent to be contacted by the Administrator in connection with the provision of legal consultations by the Administrator, i.e. Article 6(1)(a) of the DPA. On the other hand, the processing of users' data in order to answer the questions sent and to conduct further correspondence is based on the Administrator's legitimate interest (Article 6(1)(f) RODO). Once contact has ended, your personal data will be processed on the basis of the Administrator's legitimate interest in archiving correspondence with you, i.e. on the basis of Article 6(1)(f) RODO;
- Recruitment - data provided to us by users in connection with the submission of a CV or cover letter will be processed on the basis of Article 6(1)(a) RODO - i.e. on the basis of users' voluntary consent. Users' data will also be processed on the basis of Article 6(1)(f) RODO, i.e. on the basis of the Administrator's legitimate interest in pursuing or defending against possible claims.