INFORMATION CONCERNING THE PROCESSING OF PERSONAL DATA
1. Identity and contact details of the controller
Miśkowicz Pach i Partnerzy Kancelaria Radców Prawnych seated in Kraków, ul. Armii Krajowej 19, 30-150 Kraków, entered into the register of entrepreneurs of the National Court Register by the District Court for Kraków-Śródmieście in Kraków, XI KRS Economic Department under the number 0000375169, NIP 6772353144, REGON 121433001.
Contact with the Controller is possible in particular by tel. 12 639 58 00 or by e-mail: firstname.lastname@example.org.
2. Purposes of processing
Personal data are processed for the purpose of conclusion and performance of the Agreement on rendering legal services and for its needs, as well as for the purposes of the legitimate interests pursued by the Controller and for compliance with legal obligations to which the Controller is subject.
Personal data are mainly collected directly from the Client. The Controller also processes personal data which have not been collected directly from the Client, e.g. data concerning business activities, data of the Client’s employees and persons representing the Client and acting in the name of the Client.
Personal data are also collected, among others, from persons representing the Client, from the Business Activity Central Register (CEIDG), from the National Court Register (KRS) and from other entities authorised to process personal data.
3. Legal basis of data processing
The legal basis for processing personal data is:
– Article 6 sec. 1 letter b) of the Regulation of the European Parliament and the Council of the EU 2016/679 of 27th of April 2016 r. on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), [hereinafter: the Regulation], that is:
processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
– Article 6 sec. 1 letter f) of the Regulation, that is:
processing is necessary for the purposes of the legitimate interests pursued by the controller, for example:
a) management, exercise and defence in the case of reciprocal claims,
b) ensuring information security,
c) contact with the Client’s authorised employees in matters related to the performance of the Agreement.
– Article 6 sec. 1 letter c) of the Regulation, that is:
processing is necessary for compliance with a legal obligation to which the controller is subject.
– Article 6 sec. 1 letter a) of the Regulation, that is:
the data subject has given consent to the processing of his or her personal data for one or more specific purposes. – concerns consent for replying to an inquiry made via e-mail, form or telephone.
4. Information about the categories of recipients of personal data
The recipients of personal data are entities cooperating with the Controller, including but not limited to: providers of software supporting business processes, postal operators and couriers, e-mail service providers, accounting office, archiving entities.
5. Criteria used to determine the period for which the personal data will be stored
Personal data shall be stored for a period necessary to perform the Agreement, as well as after its performance only in cases and to the extent permitted by law. Within the scope of complying with legal obligations to which the Controller is subject, personal data shall be processed until those obligations have been complied with. Within the scope of the legitimate interests pursued by the Controller, personal data shall be processed until a successful objection is made. Within the scope of data processed on the basis of a consent, personal data will be processed until the consent is withdrawn or the inquiry is answered.
6. Information about the rights of data subjects
You have the right to:
- request from the Controller access to your personal data,
- request from the Controller rectification, erasure of personal data or restriction of processing of your personal data,
- object to the Controller to processing of personal data,
- data portability (the right to have the personal data transmitted directly from one controller to another),
- withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal
in accordance with the Regulation.
7. The right to object to processing
To the extent that personal data are processed on the basis of article 6 sec. 1 letter f), you have the right to object at any time – on grounds relating to your particular situation. The Controller shall then no longer process those personal data, unless the Controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.
8. Information about the right to lodge a complaint with a supervisory authority
You have a right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the Regulation. In Poland, the supervisory authority is the President of the Personal Data Protection Office.
9. Information about whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract, as well as whether the data subject is obliged to provide the personal data and about the possible consequences of failure to provide such data.
Providing personal data in the indicated scope is a requirement for the conclusion of the Contract and is necessary for its performance. Providing these data is voluntary, however without providing them, the conclusion and performance of the Agreement will not be possible.
Providing data necessary to handle the case is voluntary, however without providing them, the handling of the case may not be possible.
Providing data within the contact form is voluntary, however without providing them, answering the inquiry will not be possible.
10. Cookies and other technologies policy
The Controller would like to inform that on his website there may be utilized cookie files or other technologies with the intent of improving the quality and content of the site. Thanks to the cookie files, the Controller receives information about how the Users are using the website, which allows the Controller to optimise his offer.
I. The Controller informs that while using the Controller’s websites, small pieces of IT data (so called “cookie files”) will be installed on your device.
II. Cookie files shall be understood as IT data, in particular text files, stored on the Users’ end devices, designed to assist with using websites. Those files allow identification of the Users’ device and properly display a website tailored to their individual preferences. Cookie files usually contain the name of the website from which they originate, storage time on the end device and a unique number. Data stored inside cookie files will not be linked to the website User’s personal data (name, address etc.).
III. Cookie files are used in order to tailor the contents of websites to the Recipient’s and User’s preferences and to optimise the use of websites. Additionally, they are used in order to generate anonymous, aggregated statistics, which help understand how Users use websites which in turn makes possible to improve the structure and contents of websites. Cookie files are not used to personally identify the User.
Within the Controller’s website there are used:
- two types of cookie files differentiated by their lifetime:
- „session“ files, that is temporary files, which are stored on the User’s end device until the User logs out, leaves the website or turns off the web browser. Temporary files are necessary for the website to properly function. They make log-in and placing orders safer. Without those files, conducting safe transactions would not be possible,
- „permament“ files stored on the User’s end device for a period of time specified within the cookie parameters or until they are deleted by the User.
- four types of cookie files differentiated by their purpose:
- functional files, which are used to store information such as login and password, which makes the use of the Website faster and easier,
- statistical files, thanks to which the Website can be optimized according to the Users‘ preferences,
- ad files, which enable the Users to receive advertisements tailored to their individual preferences and interests,
- social cookies, which enable social networks used by the Users to be integrated into the Website
V. By using the Controller’s website, the Users give their consent to install cookie files and store them on their end device and access the cookie files. The Users may at any time specify the conditions for storage and access of cookies, which includes disabling the ‘accept cookies’ option, by changing the settings of the software used to browse websites so that either the automatic handling of cookies is locked or the User is informed every time a cookie is transmitted to an end device. Detailed information on the possibility and ways of handling cookie files are available within the software (web browser) settings.
VII. The User may at any time after his visit on the website delete the cookie files stored on his device without risk. The detailed information about the possibility and ways of handling cookie files are available within the software (web browser) settings.
VIII. Information about changing cookie settings in each particular browser is available on the following websites:
- Chrome > https://support.google.com/chrome/answer/95647?hl=en
- Firefox >https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
- Internet Explorer > https://support.microsoft.com/en-us/help/278835/how-to-delete-cookie-files-in-internet-explorer
- Opera > https://help.opera.com/en/latest/web-preferences/
- Safari > http://support.apple.com/kb/PH5042