This policy determined the procedure of processing of personal data of natural persons that are users of www.renoma-wroclaw.pl site (the ”Service”).
The Service data controller is Dom Handlowy Renoma sp. z o.o. spółka komandytowa with its registered office in Warsaw, National Business Register no. 0000589297, ul. Twarda 18, 00-105 Warsaw. Contact address for the personal data purposes: firstname.lastname@example.org.
When processing personal data of the Service users, we do our best to ensure that the data is processed securely, duly and legally, as well as in a manner comprehensible for the Service users.
The Service acquires information about its users and their activity through:
Forms and questionnaires
In the Service, the following forms may be used:
Data collected in the Service via forms is limited only to the necessary scope, i.e. primarily the content of the message addressed to the Service and the e-mail address provided by the user. Unless the questionnaire is anonymous, the user voluntarily provides data necessary for the provision of a certain service (e.g., an e-mail address is necessary for subscribing to the newsletter via that channel).
The processing of personal data provided in forms or questionnaires is based on the performance of a contract – a service provided electronically via the Service and consisting in the provision of such a form (Article 6 paragraph 1 letter b) of the GDPR), whereas the Newsletter is provided on the basis of the user’s consent (Article 6 (1) (a) of the GDPR), which covers also the requirements of the regulations on electronic marketing.
The consent may be withdrawn at any time (after its withdrawal we will stop sending the Newsletter). Withdrawal of consent does not affect the lawfulness of the processing we have conducted on the basis of consent before its withdrawal.
Information about certain activities of users are subject to logging to the server. These data is used only to administer the Service and to ensure the most efficient hosting services.
The browsed resources are identified by URL addresses. In addition, recorded may be:
The above data is not associated with specific persons browsing the site. The above data is used only for the purpose of the Service administration.
The processing described above is carried out on the basis of the legitimate interest of the controller (Article 6 (1) (f) of the GDPR). The legitimate interest pursued by the data controller is to ensure the Service operation, as well as safety and order.
The Service may use plug-ins of social networking sites, such as Facebook.com, Instagram, Google+, Twitter or Pinterest, marked with universally recognizable icons of these entities. This may be done by inserting within the Service a code referring to the above sites. Thanks to the plugs it is possible to share in the external network the content which the user finds interesting. The operation is carried out through social networking sites, after logging in to them.
If the user uses the above plugins, the Service processes the following data and forwards it to a relevant social networking site: date and time of access, website visited, IP address, domain name. The selected social networking site will be an independent controller who processes personal data in accordance with their privacy policies, and the Controller has no control over the manner of data processing by the social networking service. Each user should become familiar with the principles of data processing by individual social networking sites before using functionalities they offer.
On our websites there are also external links, for example to our Facebook or Instagram accounts. By using these links the user leaves the website (Service).
Cookies are non-adverse files that do not cause any configuration changes to end devices or software installed on the devices. They permit the Controller to identify a device and a web browser used, and to determine whether the device has already visited the Service. In such a way, it is possible to process data regarding the use of the Service, which in combination with other data may constitute personal data.
The entity that installs cookies on the end device of the Service user and that gains access to them is the Service operator.
Cookies are used for the following purposes:
a) create statistics that help to understand how the Service users use websites, which allows improving website structure and content;
b) maintaining the Service user’s session (after logging in), thanks to which the user does not have to re-enter the login and password on each subsite of the Service;
c) defining a user’s profile in order to display to the user personalized materials in advertising networks, in particular the Google network.
The Service uses two basic types of cookies: session cookies and persistent cookies. Session cookies are temporary files that are stored on the user’s end device until logging out, leaving the website or turning off the software (web browser). Persistent cookies are stored in the user’s device for the time specified in the cookie file parameters or until they are deleted by the user.
Software for browsing websites (web browser) usually by default allows storing cookies on the user’s device. The Service users may change the settings in this scope. The web browser allows deletion of cookies. It is also possible to automatically block cookies. Detailed information is provided in the help file or documentation of the web browser.
Cookies installed on the Service user’s end device may also be used by advertisers and partners cooperating with the Service (the so-called third party cookies). They are used to provide properties or functions from third parties on a website or via a website (e.g. advertising functions and content – creating a user’s interest profile and displaying relevant advertisements on other websites; videos and web analytics services). Installers of third party cookies may recognize the end device when it is used to visit both a certain website and websites of the advertisers and partners cooperating with the Service.
Cookies may be used by advertising networks, in particular the Google network, Facebook, to display advertisements tailored to the manner of the Service use by the user. Cookies can save information about the user’s navigation path or the time of staying on a certain page. In terms of information about user preferences collected by the Google advertising network, the user can view and edit information resulting from cookies using the tool: https://www.google.com/ads/preferences/.
Cookies are used with the user’s consent (Article 6 (1) (a) of the GDPR) expressed through the use of the site without changing the browser settings, for analytical and statistical purposes, as well as for customizing the site to individual needs and for advertising purposes (i.e. staying on a website). By doing so, the user agrees to cookies placement on his/her end device (computer, tablet, smartphone) and to the use of information stored in cookie files by the Controller, as well as advertisers and partners cooperating with the Service.
A default setting in most search engines is the acceptance of all cookies. However, it is possible to change the settings in such a way that the search engine requested acceptance of cookies, or accepted or rejected only certain types of cookies, or rejected all of them.
At any time it is possible to withdraw consent or object to the processing of data by changing browser settings concerning cookies (so that the browser accepts, rejects certain cookies, or requests the acceptance of cookies – depending on the function of the software used). Withdrawal of consent does not affect the legality of the processing carried out prior to withdrawal.
Personal data processed as part of the Service are received by:
The data provided in the forms may be transmitted to entities executing technical aspects of certain services – this refers in particular to the transfer of information about the registered domain holder to entities being the Internet domain operators (primarily Scientific and Academic Computer Network – NASK), payment services or other entities, with whom the Service cooperates.
Data are made available to third parties only within the limits permitted by law. Data enabling identification of a natural person is only provided with that person’s consent. The Controller may be required to provide information collected by the Service to authorized authorities on the basis of lawful requests, to the extent resulting from the request. The Service administrator has exercised due diligence in order to adequately secure the personal data provided, in particular against disclosure to unauthorized persons.
Data Storage Period
We store personal data for the period necessary to achieve the goals, of which you have been informed. The period of storage of personal data is determined in accordance with the provisions of law in force.
Each person has the right to access his/her data, as well as to data rectification, deletion, processing restrictions, the right to transfer data or to object to their processing, the right to withdraw consent at any time. Withdrawal of consent does not affect the lawfulness of the processing which was carried out on the basis of consent before its withdrawal.
The data subject has the right to lodge a complaint with the supervisory body in Poland (the Office for Personal Data Protection), when he/she considers that the processing of his/her personal data violates the GDPR provisions.