Privacy policy at EMTEL Śliwa sp. k.

EMTEL Śliwa sp. k.  pays special attention to the protection of privacy and respect for your personal data. Each user has the right to know what data we obtain, where we store them, how and for what purpose we use them, as well as what is their source and storage period.

The purpose of this “Privacy Policy” is to fully describe the process of collecting and processing your data, as well as to provide information about your rights.

Pursuant to Art. 13 sec. 1 and 2 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (general regulation on data protection), Journal of Laws UE.L.2016.119.1 (hereinafter: GDPR), we hereby inform that:

EMTEL Śliwa sp. k. is the Data Controller with its registered office at Mickiewicza 66, 41807 Zabrze.

The data is collected automatically when you enter the website and is collected for security and statistical purposes.

By entering the website of our company, the cookie information appears and the question for consent to their use appears. Cookie files (so-called cookies) are small text files sent by a website that is visited by an internet user to an internet user’s device (computer, smartphone, tablet, etc.). Cookies do not contain personal data and do not interfere with the operation of the computer. They are used to identify the browser and are required to use some of the functions available on the website.

The Data Controller uses two types of cookies:

• Session cookies: they are stored on the User’s device and remain there until the end of the browser session. The saved information is then permanently deleted from the device memory.
• Persistent cookies: they are stored on the User’s device and remain there until they are deleted. Ending a browser session or turning off the device does not delete them from the User’s device.

When disabling cookies, please note that the website may not function properly. The cookie policy can be found at the link: http://emtel.pl/index.php/privacy-policy/?lang=en

These data are not used for profiling.

The legal basis for the processing of the above-mentioned data is Art. 6 sec. 1 point f) GDPR – “processing is necessary for the purposes of the legitimate interests pursued by the Data Controller”. These data are necessary for EMTEL Śliwa sp. k. to provide services at the highest level.

Your data collected automatically will be stored for a period of 14 months, and in the case of cookies, for an hour or until the browser window is closed.

You have the right to:

1. be informed about processing operations,
2. access your personal data,
3. to rectify / supplement the data,
4. delete data (“the right to be forgotten”),
5. limit data processing,
6. transfer data,
7. to object,
8. not to be profiled.

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with the supervisory authority, which is the President of the Personal Data Protection Office.

In matters related to the protection of your personal data, you can also contact the Data Protection Officer by writing to the e-mail address: medical@emtel.pl

EMTEL Śliwa sp. k. also uses Google Analytics to analyze website traffic.

The service administrator uses external cookies to collect general and anonymous static data via the analytical tools of Google Analytics (external cookie administrator: Google Inc., based in the USA).

The service administrator uses external cookies to present advertisements tailored to the User’s preferences using the Google AdSense online advertising tool (external cookie administrator: Google Inc. based in the USA).

Google Analytics uses IP addresses to determine the geographic location of users and to protect the operation of the service and ensure security.

We reserve the right to amend this “Privacy Policy”.

---

Protection of personal data at EMTEL Śliwa sp. k.

EMTEL Śliwa sp. k. attaches great importance to the protection of personal data. We realize that they should be properly protected, and you should have the right to reliable and complete information on how they are processed. Only complete information will guarantee you the possibility of exercising your rights. The overriding aim is always to protect the rights and freedoms of individuals.

Processing takes place on the basis of the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), the Act of May 10, 2018 on the Protection of Personal Data and internal data protection policies.

The General Data Protection Regulation (hereinafter: GDPR) bases the processing of personal data on the following principles:

• compliance with the law, fairness and transparency – provide the legal basis for processing, process in a diligent and acceptable manner for the entity, also taking into account the Data Controller’s business goals, and finally, in a clear manner for the data subject;
• purpose limitation – indicate the purpose of the processing;
• minimizing the scope of data – we collect only as much data as necessary;
• limitation of storage – we do not process longer than required by law or the purposes of processing;
• integrity and confidentiality – data cannot be modified or destroyed, and should be properly secured;
• accountability of personal data processing – the Data Controller should demonstrate compliance with the provisions of the GDPR.
  EMTEL Śliwa sp. k. is the Data Controller with its registered office at Mickiewicza 66, 41807 Zabrze.

In matters related to processing, you can contact the Data Protection Officer: medical@emtel.pl

Personal data collected by EMTEL Śliwa sp. k. is processed for the purpose of implementing contracts with contractors, human resources management processes, employment, administrative processes and OHS.

The data is processed on the basis of:

• consent of the data subject;
• contracts;
• fulfillment of the legal obligation incumbent on the Data Controller;
• the legitimate interest of the Data Controller, which is the proper performance of contracts, as well as securing any future claims.

The recipients of the data will be IT service providers, contractors, entities providing health and safety services, entities providing property protection services, as well as entities offering legal services.

Personal data will be stored for the period resulting from individual acts, and if it is not specified, for the period that the Data Controller deems justified and reasonable, taking into account the purpose of processing.

If this is not excluded by specific regulations, you have the following rights:

• the right to request the Data Controller to access your data;
• the right to demand their rectification;
• the right to request their removal;
• the right to request the restriction of their processing;
• the right to object to their processing;
• and the right to data portability.

The source of the data may be both an agreement concluded directly by you with EMTEL Śliwa sp. k. as well as an indirect agreement concluded by your employer (in the case of a subcontractor). The data source may also be other data controllers who entrusted us with data for processing. Sometimes the source of data will be publicly available registers, e.g. KRS (in the case of natural persons running a sole proprietorship).
Data can therefore be collected directly or indirectly.

Your data will not be used for profiling and automated decision making.

If the processing is based on your consent, you have the right to withdraw it at any time. This does not affect the lawfulness of the processing carried out before the consent is withdrawn.

In a situation where the provision of data does not depend on your consent, their processing results from the provisions of the concluded contract or legal provision. Then, failure to provide them will result in the inability to perform the contract.

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with the supervisory authority, which is the President of the Personal Data Protection Office.