Політика конфіденційності

Sztama.com.plПолітика конфіденційності

1. General provisions

1. The Controller of personal data collected via the sztama.com.pl website is Sztama P.H.U. Piotr Miśtak, registered office address: Niwka 123, 33-130 Niwka, NIP: 873-165-69-95, entered into the Central Register and Information on Economic Activity, hereinafter referred to as the “Controller”, who is also the Service Provider. Place of business: Niwka 123, 33-130 Niwka, address for service: Niwka 123, 33-130 Niwka, electronic mail address (e-mail): kontakt@sztama.com.pl.

2. Personal data collected by the Controller through the website are
processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General
Data Protection Regulation), hereinafter referred to as the GDPR and the Personal Data Protection Act of 10 May 2018.

2. The nature, purpose and scope of the collection and processing of personal data and the legal basis

1. The Controller processes personal data through the sztama.com.pl website, in case the user uses the contact form on our website. Personal data shall be processed pursuant to Art. 6 sec. 1 letter f) of the GDPR as the Controller’s legitimate interest.

2. The Controller processes the following categories of personal data:

Full name,

E-mail address,

Telephone number.

3. Personal data storage period

1. Users’ personal data are stored by the Controller:

if the basis for data processing is the performance of the contract, as long as it is necessary to perform the contract, and after that time for a period corresponding to the period of
limitation of claims. Unless otherwise provided by a specific provision, the limitation period shall be six years, and for claims for periodic benefits and claims related to running a business – three years.

where the basis for data processing is consent, for as long as the consent is not
revoked, and after the revocation of consent, for a period of time corresponding to the period of limitation of claims which the Controller may raise and which may be raised against him. Unless
otherwise provided by a specific provision, the limitation period shall be six years, and for claims for periodic benefits and claims related to running a business – three years.

2. When using the website, additional information may be collected, in particular: the IP address assigned to your computer or the external IP address of your Internet provider, domain name, browser type, access time, operating system type.

3. Navigation data may also be collected from users, including information about links and references they choose to click on or other activities undertaken on the website. The legal basis for such activities is the legitimate interest of the Controller (Art. 6 sec. 1 letter f) of the GDPR), consisting in facilitating the use of services provided electronically and improving the functionality of these services. The provision of personal data by the user is voluntary.

4. Personal data shall also be processed by automated means in the form of profiling, provided that the user consents to it pursuant to Art. 6 sec. 1 letter (a) of the GDPR. As a consequence of profiling,
a profile shall be assigned to an individual for the purpose of making decisions regarding that individual or of analysing or predicting their preferences, behaviour and attitudes.

5. The Controller shall take every effort to protect the interests of the data subjects, and in particular shall ensure that the data collected are:
lawfully processed;

collected for specified, legitimate purposes and not further processed in a way incompatible with those purposes;

correct and adequate for the purposes for which they are processed;
stored in a form permitting the identification of data subjects, not longer than necessary to achieve the purpose of processing.

4. Sharing of personal data

1. Users’ personal data are transferred to service providers used by the Controller when running the website. Service providers to whom personal data are transferred, depending on contractual arrangements and circumstances, or are subject to the Controller’s instructions as to the purposes and methods of data processing (processors) or independently define the purposes and methods of their processing (controllers).

2. Users’ personal data are stored only within the European Economic Area (EEA).

5. The right to control, access and correct own data

1. The data subject shall have the right to access their personal data and the right to rectify, delete, limit processing, the right to transfer data,
the right to object, the right to withdraw consent at any time without affecting the lawfulness of the processing that has been carried out on the basis of consent before its withdrawal.

2. The legal basis of the user’s request:

Access to personal data – Art. 15 of the GDPR

Data rectification – Art. 16 of the GDPR

Erasure of data (so called the right to be forgotten) – Art. 17 of the GDPR

Limitation of processing – Art. 18 of the GDPR

Data transfer – Art. 20 of the GDPR

The right to object – Art. 21 of the GDPR

The withdrawal of the consent – Art. 7 sec. 3 of the GDPR

3. In order to exercise the rights referred to in point 2, you can send an appropriate message to the e-mail address: kontakt@sztama.com.pl. In the event that a user makes a claim
under the above rights, the Controller shall either comply with the claim or refuse to comply with it
immediately, but no later than within one month of receiving it. However, if, due to the complexity of the request or the number of requests, the Controller is unable to comply with the request within one month, the Controller will meet them within the next two months, informing the user in advance
within one month of receiving the request – about the intended extension of the deadline and its reasons.

4. If it is found that the processing of personal data violates the provisions of the GDPR, the data subject has the right to lodge a complaint with the President of the Personal Data Protection Office.

6. “Cookies”
1. The Controller’s website uses “cookies”.

2. The installation of “cookies” is necessary for the proper provision of services on the website. Cookies contain information necessary for the proper
functioning of the website, and they also provide the opportunity to compile general statistics on website visits.

3. This website uses the following types of cookies:

Session “cookies” are temporary files that are stored on the user’s end device until logging out (leaving the page).

“Persistent” cookies are stored on the user’s end device for a period set in the cookie parameters or until the cookies are deleted by the user.

4. The Controller uses his own cookies in order to better understand how the user interacts with the content of the website. The files collect information on how the user uses the website,
the type of page from which the user was redirected, and the number of visits and the duration of the user’s visit to the website. This information does not collect specific personal data of the user, but serves to compile statistics concerning the website usage.

5. The user has the right to control and manage cookies on their computer by prior selection in the browser window. Detailed information on the options and ways of handling cookies is available in the software (browser) settings.

7. Final provisions

1. The Controller shall apply technical and organisational measures to ensure the protection of the processed personal data, appropriate to the risks and categories of data protected, and in particular
shall protect the data against their disclosure to unauthorised persons, against their collection
by an unauthorised person, against their processing in violation of the applicable legislation, and against their alteration, loss, damage or destruction.

2. The Controller shall make available appropriate technical measures to prevent unauthorised persons from acquiring and modifying personal data sent electronically.
3. All presented real estate offers for sale and rent are informative and do not constitute a commercial offer in

within the meaning of Art. 66 § 1 of the Civil Code and other relevant legal provisions.

4. In matters not covered by this Privacy Policy, the provisions of the GDPR and other relevant provisions of Polish law shall apply accordingly.

Loading posts...
Sort Gallery