We respect the privacy rights of those whose personal data we hold, in particular by using appropriate technological and legislative solutions to prevent intrusion into their privacy by unauthorised parties.
This Policy contains information about what you can expect when we contact you or you contact us or use one of our services or those of our Partners.
By reading below you will learn about, among other things:
- why we process your personal data
- For what purpose we process your personal data
- whether the provision of data is obligatory
- How long we keep the data
- Are there any other recipients of your personal data?
- what rights you have
Our activities related to the collection and processing of any data are aimed at guaranteeing you a sense of complete security and the legality of the processing at a level appropriate to the European Union data protection law in force, including Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC - the so-called RODO.
Personal Data Administrator
Acti-Med Polska Sp. z o.o. is the entity deciding about purposes and ways of using your data (that is their administrator according to RODO regulations).
There are many ways to contact Us, including through:
telephone: (22) 378-01-70
mail: Kozerki, ul. Orlicz- Dreszera 31 A, 05-825 Grodzisk Mazowiecki
contact form available at www. acti-med.pl
We are conscientious about the protection of your data and we constantly develop our security systems and processes. The security measures we use include
- restricted physical access to our buildings and user access to our systems - only for those who are authorized
- control mechanisms such as firewalls, user verification, strong data encryption and separation of roles, systems and data
- proactive monitoring
We also use the highest standards in the industry to support the maintenance of a robust information security management system.
What data do we process?
We process data only to the extent necessary to fulfill the purposes for which it was collected. The extent of the data will vary depending on the purpose of the processing. Most of the personal data we process is provided to us directly because of one of the following reasons:
- you are our customer or your data has been provided to us by your employer or Partner
- we have received it directly from you or from a third party authorised to disclose your data to us
- you have submitted a complaint or an inquiry to us
- you have submitted a request for information to us
- you have participated in an event or recruitment event organised by us
- You are representing your organisation
Grounds for processing
Whenever we process your personal data, we must have a so-called "legal basis". The legal bases stem directly from the law (Article 6, Article 9 of the RODO), below are the ones we rely on most often:
- Consent: you have indicated to us that you consent to the processing of your data for a specific purpose, e.g. to participate in an ongoing recruitment process
- Legitimate interests: only where processing is necessary for us to conduct our business and does not interfere with your right to respect for your privacy e.g. for direct marketing of our products or services, to respond to an inquiry
- Performance of a contract: we need to process your personal data to be able to provide you with one of our products or services, you are party to a contract with us
- Legal claims: where processing is necessary for the establishment, exercise or defence of legal claims
- Legal obligation: where we are obliged by law to process your personal data e.g. if you are our employee we are obliged to process your data in accordance with employment law.
How do we use the personal data we hold?
We only use data for the purposes for which it can be processed in accordance with the law. There are many ways and means of using personal information about you depending on how you interact with us. For example, if you do not provide us with your data, we will not be able to contact you in this way, if you do not provide us with your contact details, the address of the company you work for or represent when negotiating or purchasing one of our products or services, we will not be able to sell you that product or service.
Who may have access to your information?
In addition to Us, a number of entities may have access to Your data. These may be service providers that we work with who help us provide the products and services you request from us or support us in our business. These entities process personal information on our behalf and must meet high standards of security. We only share information that enables us to provide services to you or to facilitate the provision of services to you.
In some circumstances, we may also be legally obliged to share information about you - for example, by court order, by law or by the decision of a public authority. In all cases, we make sure that we have a lawful basis for sharing your information and we document our decisions.
Transfer of data to a so-called third country
We may transfer your personal data to our suppliers, partners or service providers based outside of the European Economic Area (EEA) for the purposes of carrying out the processing described in this policy. We will inform you whenever your data is likely to be outside the EEA.
How long do we keep your data?
We never keep personal data longer than necessary. In most cases, the retention period ends 6 years after the termination of the relationship due to the limitation periods for certain claims.
Is there an obligation to provide data?
As a rule, providing personal data is completely voluntary; however, it may be necessary in order to provide specific services or to fulfill your requests, e.g. regarding contact, concluding a contract, realization of your rights connected with processing etc.
Providing personal data may also be necessary due to binding legal regulations, e.g. in connection with recruitment processes conducted in accordance with the provisions of the labour law.
Your rights in relation to processing
Under data protection law, you have specific rights depending on the basis for the processing of your data.
Right of access
You have the right to find out if and how we use or store your personal data - the so-called right of access. By exercising this right you can also ask us for a copy of your data.
Right of rectification
You can question the accuracy of the data we process and ask us to correct it. This is known as the "right of rectification". If your data is incomplete, you can also ask us to complete it, e.g. by adding new information.
Right to erasure
You can ask us to delete your data and in some circumstances we must do this. This right is also known as the so-called "right to be forgotten". This right is not absolute and applies in the following circumstances, among others, when:
- we no longer need your data
- you initially gave your consent to the processing but have now withdrawn it
- you have objected to the use of your data
- we have processed your data unlawfully
We may refuse your right to "be forgotten" in the following circumstances:
- when we are legally obliged to store your data
- retention is necessary for the establishment, exercise or defence of legal claims
Right to restrict processing
You have the right to restrict the way in which we use your data, particularly
where you are concerned about the accuracy of the data or how it is used. If necessary, you can also request that we delete certain information about you. This right is closely linked to your rights to challenge the accuracy of your data and your ability to object to its use.
Right to object to processing
In certain circumstances you have the right to object to the processing (use) of your data. If your objection is justified, we must stop using your data for the purpose for which they were originally processed, unless we can provide reasons that justify the continued use of your data despite your objection.
You have an absolute right to object to the use of your data for direct marketing purposes. In this case, if you object, we will absolutely stop using your data for this purpose.
Right to data portability
You have the right to obtain your personal data in an accessible and machine-readable manner, e.g. as a csv file. You also have the right to ask us to transfer your data to another entity - we will do this if the transfer is, as the RODO says, "technically feasible". This right only applies to information that you have provided to us and the processing is done electronically.
Right to withdraw consent
If your data is processed on the basis of the consent you have given, you can additionally exercise the right to withdraw it at any time - this withdrawal, however, does not affect the compatibility of the processing before it took place.
Right to lodge a complaint with a supervisory authority
We work to high standards when it comes to processing your personal data.
If you have questions or concerns, please contact us and we will respond.
If you remain dissatisfied with the content of the answer or exercise of your right, you can file a complaint to the supervisory authority (in Poland to the President of the Office for Personal Data Protection).
Exercise of your rights
You can request the exercise of your rights either verbally or in writing. If you give us your request orally, we recommend that you also send it in writing or by email to ensure a clear trail of correspondence. This will also provide us with clear evidence of your actions and allow us to respond in accordance with the content of your request as soon as possible.
We do not charge for exercising your rights and aim to provide information within a maximum of one month - if we find we need more time we will let you know.
If you would like to enquire about data processing please contact Us:
- phone: (22) 378-01-70
- e-mail: email@example.com
- mail: Kozerki, ul. Orlicz- Dreszera 31 A, 05-825 Grodzisk Mazowiecki
- contact form available at www. acti-med.pl
Cookies can be used in order to:
- providing services of the website
- facilitating the use of the website while browsing through it
- later identification in the case of service reconnection with the device on which they were stored
- creating statistics which help understand how users use the website, which enables improving its structure and content
- adjusting website content to specific preferences and optimizing use of the website, adapted to individual needs
- exchange information with Partners in order to mediate in providing their services using the service
Types of Cookies
Within the services we may use the following types of cookies:
- "session" - which are stored in the end user's device until leaving the website or switching off the web browser
- Persistent" - stored in the terminal equipment of the user for the time specified
in the parameters of cookies or until they are deleted by the user
- efficiency" - make it possible to collect information on the manner of using the website
- Functional" - making it possible to remember settings selected by the user
and personalization of User interface
- "own" - placed by the service
- external" - coming from a website other than the website
Managing browser settings
Web browsing software, i.e. a web browser, usually allows the storage of cookies on your terminal device by default. You can change your settings in this regard.
Your web browser allows you to delete cookies. It is also possible to block cookies automatically. For details, please refer to the help or documentation of the Internet browser you are using.