This Privacy Notice has been drawn up in order to present rules of protection of privacy of persons using online service accessible at argdiap.pl website and rules of processing and protection of personal data resulting from personal data protection regulations, in particular from Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation; hereinafter referred to as “GDPR”).
THE PERSONAL DATA CONTROLLER
The personal data Controller is the owner of online service – Association “Stowarzyszenie ArgDiaP” with its seat in Cracow (post code: 30-045), Poland, 2 Królewska Street, entered into the register of associations of National Court Register under number KRS: 0000738735 by the District Court for Kraków-Śródmieście in Cracow XI Commercial Division of National Court Register, having tax identification number (NIP): 6772435853, REGON: 380680753.
In case of any questions or doubts about any case related to personal data protection, You may contact with the Controller by sending an e-mail to the address: firstname.lastname@example.org or by post to the address of the Association’s seat indicated above.
PERSONAL DATA PROCESSING REGUALTIONS
Personal data is processed in compliance with GDPR, Polish personal data protection act of 10 May 2018 (consolidated text Journal of Laws of year 2019, entry 1781 as amended) and Polish providing services electronically act of 18 July 2002 (consolidated text Journal of Laws of year 2020, entry 344 as amended).
The Controller Administrator exercises all due care in order to protect your interests, as the data subject. In particular, the Controller ensures that:
- a) collected personal data is processed in a transparent, reliable and lawful manner,
- b) the collection of personal data shall occur only for stated and lawful purposes, within the scope adequate to these purposes,
- c) personal data is stored in the manner ensuring its security, in the form enabling to identify data subjects,
- d) personal data is stored not longer than it is necessary to achieve the purpose of processing.
THE PURPOSE AND THE BASIS OF PROCESSING PERSONAL DATA
The Controller may process such personal data as: IP address, name and surname, e-mail address, phone number, as well as other personal data which you give to the Controller on your own initiative.
The collected personal data shall be processed in particular for the purpose of providing answers and explanations for your questions, including in the case of contracting with the the Controller via e-mail address, as well as in order to allow you to use the newsletter service. The controller may initiate such functionalities in the webservice argdiap.pl as: registration for scientific conferences, declaration to cooperate on projects, and other similar. The basis of processing personal data provided by you is article 6 (1) letter b of GDPR. The provided personal data may processed as well for the purpose of realization of the Controller’s legitimate interests and fulfilling legal obligations of the Controller, and also in order to assert and defend from legal claims when they are connected to the content provided to the Controller through the webpage.
Using the service argdiap.pl and its specific functionalities, and therefore providing personal data is voluntary, however in the event of refusal of providing such data, using the service might be obstructed and providing answers for your inquiries – impossible.
RECIPIENTS OF PERSONAL DATA
Your personal data may be processed – in the necessary scope – by entities cooperating with the Controller. These entities shall be entitled to conduct data processing on behalf of the Controller in accordance with concluded agreements.
Furthermore, the Controller may provide your personal data to competent state authorities if they request to provide such data on the basis of provisions of applicable law.
Essentially, your personal data shall not be transferred outside the European Economic Area, excludind the possibility of the Controller using information society services, including hosting services or cloud computing functionalities. In such cases, the Controller shall make sure that service provider offers the level of security compatible with the requirements of GDPR and other appropriate regulations.
THE PERIOD OF STORAGE OF PERSONAL DATA
The period of storage of personal data shall not be longer than it is necessary, according with article 5 (1) letter e of GDPR. The Controller shall not store personal data, if the purpose of the processing has ceased to be binding, in particular after the period of limitation of parties’ claims.
Cookies files are small text information in the form of automatically processed text files, sent by the server which are saved and associated exclusively with your web browser. Cookies files gather inter alia data of following categories: IP address, information about operating system and used web browser; these files do not interfere with your data or settings. The Controller may process, during the use of the website by the visitors, data contained in cookies files, for following purposes:
- a) adjustment of the webpage content to your preferences (e.g. concerning the font size or the webpage layout) and optimization of the use of the webpage,
- b) conducting anonymous statistics depicting the way of use the webpage (in the scope of information such as IP address, web browser type and operating system, language and time zone settings, access time and addresses of referencing webpages).
The consent to store and access to cookies files on your device is given through your web browser settings. The majority of web browsers available on the market accept saving cookies files by default. You have the possibility to specify the conditions of using cookies files by your web browser settings, in particular you may partially reduce (e.g. temporarily) or completely disable the possibility of saving cookies files.
If you do not give or if you want to withdraw previously given consent for using cookies files by the webpage, you shall appropriately modify the settings of used web browser in the scope of cookies files by blocking is use.
Detailed information on changing cookies files settings and their independent removal is available in the help section of your web browser. Below are listed exemplary hyperlinks to information on deleting cookies files in the most popular web browsers:
- Google Chrome: https://support.google.com/accounts/answer/32050?co=GENIE.Platform%3DDesktop&hl=en
- Mozilla Firefox: https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox
- Internet Explorer: https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies
THE SERVER LOGS
Using the web page is associated with sending queries to the server on which the webpage is stored. Each query addressed to the server is saved in the server logs.
The logs contain inter alia your IP address, date and time of the server and also information on web browser and operating system you use. The logs are saved and stored on the server.
The data saved in server logs is not associated with specific persons using the web page and is not used by us in order to your identification. The server logs are only auxiliary materials used for webpage management and its content is not disclosed to anyone, but persons authorized to manage the server.
RIGHTS OF THE DATA SUBJECT
In regard to processing personal data by the Controller, you shall have the following rights:
- the right to access your personal data undergoing processing by the Controller,
- the right to rectification of your personal data,
- the right to obtain a copy of your personal data undergoing processing by the Controller and also the right to obtain this copy in a structured, commonly used and machine-readable format,
- the right to request the restriction of processing your personal data,
- the right to request the erasure of your personal data,
- the right to lodge a Claim to the President of Polish Personal Data Protection Authority.
The withdrawal of the consent to process your personal data does not affect the lawfulness of the processing based on consent before its withdrawal.
AUTOMATED DATA PROCESSING
The Controller shall not collect any personal data in an automated manner through the webpage, except for the information contained in cookies files. The information collected in cookies files, collected in an automated manner shall not be a basis of any legal consequences concerning the users of argdiap.pl web service.
The Controller shall apply technical and organizational measures ensuring the protection of your personal data adequate to threats and the categories of processed personal data, in particular, the Controller shall secure the data against its sharing with unauthorized persons, unauthorized disclosure and alteration, loss or destruction.
The Controller, as the service Provider within the meaning of Polish providing services electronically act of 18 July 2002 (consolidated text Journal of Laws of year 2020, entry 344 as amended), shall apply appropriate technical measures preventing the personal data transferred electronically from being obtained and altered by unauthorized persons.
In matters not covered by this Privacy Notice, the provisions of Polish law and of GDPR shall be applied RODO.
The Privacy Notice as described above shall apply since 24 March 2020. Any changes of the Privacy Notice shall be published on this website.