CHANGE OF THE PROVISIONS CONCERNING THE PROTECTION OF PERSONAL DATA
in connection with the entry into force of the EU Regulation on the Protection of Personal Data (GDPR), the purpose of which is to harmonize the rules for the processing of personal data in the European Union (EU), we provide below information on the processing of your personal data. As an administrator, we are responsible for their use in a manner consistent with the contract and applicable regulations.
The administrator of your Data is:
NEW YEAR’S EVE WÓJCIK TON PRINT NEW YEAR’S EVE WÓJCIK
For what purpose and on what basis do we process your personal data?
We use your personal data obtained during the conclusion of the contract and during its term for the following purposes:
- conclusion and performance of the contract that connects us, including considering complaints and making settlements during the term of the contract or until their completion (legal basis: Article 6 (1b) of the GDPR);
- fulfillment of legal obligations incumbent on us on the basis of generally applicable provisions of law, including the act on the protection of persons and property, tax and accounting regulations concerning, inter alia, issuing and storing bills, invoices and other accounting documents (legal basis: art.6 par.1 c of the GDPR);
- direct marketing of our products or services and reminders regarding recurring services (legal basis: Article 6 (1) (f) of the GDPR – i.e. the legitimate interest of the administrator);
creating for our internal needs summaries, analyzes and statistics aimed at improving the quality of our services (legal basis: Article 6 (1) (f) of the GDPR – i.e. the legitimate interest of the administrator);
- determining, defending and pursuing claims arising from the contract for the period of limitation (legal basis: Article 6 (1) (f) of the GDPR – i.e. the legitimate interest of the administrator);
verification of payment credibility when concluding, extending or extending the scope of this or another contract (legal basis: Article 6 (1b) of the GDPR); this also applies to data obtained by us from other sources, and if you conclude another contract with us – your data already held by us before its conclusion;
If you have consented to the processing of your personal data, the consent statement specifies the purpose for which we will process this data.
For the above-mentioned purposes, except for the fulfillment of legal obligations, we may perform profiling, i.e. automated analysis of your data and the development of predictions about preferences or future behavior.
Who do we share your data with?
We provide your data:
- entities processing your data on our behalf and on the basis of contracts concluded with us:
IT companies operating our IT systems or providing us with IT tools on the basis of contracts concluded with them;
- entities intermediating in the sale of our services and products or the organization of marketing campaigns;
- entities providing us with accounting services, service quality testing, debt recovery, analytical, auditing, advisory, legal and tax services;
- other entities that, as controllers, process your data on their own behalf;
- entities operating postal or courier – in connection with the transmission of correspondence;
entities conducting payment activity (e.g. banks) – in connection with payments made;
entities providing us with accounting, legal and tax services – to the extent that they will become the data controller.
Will your data be transferred outside the European Economic Area?
Currently, we do not transfer your data and we do not plan to transfer your data outside the European Economic Area (EEA), which includes the European Union member states as well as Norway, Iceland and Liechtenstein.
What are your rights related to the processing of personal data?
You can submit to us:
- rectification of incorrect data;
- deletion of data processed unreasonably;
- restriction of processing by suspending data operations for a specified period of time or not deleting data (the application should indicate the appropriate way to limit processing);
- access to data, including providing information about the processed data or a copy of the data;
data transfer (if the conditions contained in Article 20 (1) of the GDPR have been met);
objection to the processing of your personal data (including profiling):
if the basis for processing is direct marketing of our services or products – then we are obliged to complete data processing for this purpose;
- if the basis for processing is our legitimate interest or public interest – then we are obliged to terminate the processing of data for these purposes, unless we demonstrate:
(a) the existence of grounds for establishing, investigating or defending claims, or (b) valid legally justified grounds for data processing, which according to