1.1. Administrator (owner of the Website) – Radaway Sp. z o.o. with its registered office in Jasin, ul. Rabowicka 59, registered in the District Court for Poznań – Nowe Miasto and Wilda in Poznań, under the number KRS (National Court Register) 0000108778 NIP (Tax Identification Number) 9721038109 Regon (Polish Business Registry Number) 634341983 further referred to as the Company.
1.2. Personal Data – all information about a natural person identified or identifiable by one or several specific factors specifying a physical, physiological, genetic, psychological, economic, cultural or social identity, including – if they allow identification of the User – IP devices, location data, Internet identifier and information collected through cookies and other similar technologies.
1.4. GDPR – Regulation of the European Parliament and of the Council (EU) 2016/679 of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repealing of Directive 95/46/EC (general data protection regulation).
1.5. Website – the website run by the Administrator at: www.radaway.pl [and other language versions].
1.6. User – any natural person visiting the Website or using one or several services or functionalities of the Website.
2. DATA PROCESSING RELATED TO THE USE OF THE WEBSITE
2.2. In relations to the use of the Website by the User, the Administrator collects his/her data in the scope necessary to provide particular services as well as information about the User’s activity on the Website, including the IP of the device, location data, Internet identifier and information collected using cookies and other similar technologies. Cookies and similar technologies are not used to identify the User and on their basis the User is not identified. Cookies and similar technologies in a situation when they do not allow a natural person to be identified, only in connection with other unique identifiers or other information allowing identification of a natural person may constitute personal data.
2.3. The use of the Website is possible without the need to set up an account by the User.
2.4. If within the Website additional functionalities are available (such as the possibility to take advantage of the offer FREE MEASUREMENT, filing a complaint using the COMPLAINT FORM or using the CONTACT FORM), relevant information concerning the principles of processing personal data and the scope of processing of personal data will be available upon its collection for the needs of such functionalities.
3. COOKIES AND SIMILAR TECHNOLOGIES
3.1. In relation to the use of the Website, cookies and similar technologies are used to ensure the User with access to the Website, to enhance its operation, profiling and displaying content adjusted to the User’s needs.
3.2. Cookies constitute IT data, in particular text files, which are stored in the end device of the User of the Website and are intended for the use of the Website. Cookies usually contain the name of the website from which they originate, time of their storage in the end device and a unique number.
3.3. The entity uploading cookies in the end device of the User of the Website and obtaining access to them is the Owner of the Website
3.4. Cookies are used for the following purposes:
creating statistics which help understand how Users of the Website use websites which allows the structure and content of websites to be improved;
maintaining the session of the User of the Website (after logging in), thanks to which the User does not have to enter their login and password on each subpage of the Website;
determining the User’s profile to display materials in advertising networks adjusted to the User, in particular in Google.
3.5. Within the Website two basic types of cookies are used: session cookies and persistent cookies. Session cookies are temporary files which are stored in the end device of the User until the User logs out, leaves the website or turns off the software (Internet browser). Persistent cookies are stored in the end device of the User for a period specified in cookie parameters or until they are removed by the User.
3.6. The User may change settings related to cookies or similar technologies at any time by changing the privacy settings in their browser or application or by changing settings of their account on the Website, however such a change may limit access to some functions of the Website.
3.7. Changing privacy settings is possible by changing the relevant option in settings of a browser or application. In the case of the most popular Internet browsers, the User may manage privacy settings on their own, including cookies, in particular by accepting cookies, changing cookies settings and blocking or deleting cookies. The manner and scope of changes in privacy settings depend on the type or versions of browser or application used by the User. Detailed information concerning changes in privacy settings is available on websites of the suppliers.
4. GOALS AND LEGAL BASIS FOR DATA PROCESSING ON THE WEBSITE
The Administrator processes personal data of Users to:
4.1. ensure access to the Website – based on art. 6 sec. 1 letter b of the GDPR;
4.2. implement obligations arising from the provisions of the law – based on art. 6 sec. 1 letter c of the GDPR;
4.3. implement the following legally justified interests of the Administrator or a third party – based on art. 6 sec. 1 letter f of the GDPR:
4.3.1. self-marketing including profiling, in particular displaying marketing content on the Website to the User or sending notifications about interesting offers or content to designated Users via electronic communication, in particular via e-mail, provided that the User gave consent to it, and carrying out other activities related to marketing, e.g. satisfaction survey.
4.3.2. detection and elimination of fraud;
4.3.3. internal goals related to the provision of services and business operations, including evidence, analytical and statistical purposes.
4.4. Implementation of the abovementioned goals causes that the Administrator uses profiling in some cases. This means that thanks to automatic processing of data the Administrator evaluates selected factors concerning natural persons to analyse their behaviour or create forecasts for the future. As a result of such analyses, significant decisions concerning the User are not made in an automated manner.
5. PERIOD OF PROCESSING OF PERSONAL DATA
5.1. Personal data will be processed for a period: a) provided for the implementation of obligations arising from the provisions of the law concerning defence, state security and public safety and order, as well as tax and accounting regulations, b) for the period of limitation of claims and until the completion of civil, enforcement, administrative and criminal proceedings requiring data processing, and if consent has been given, until the purpose of the consent was implemented or until its withdrawal, depending which is earlier.
5.2. The User may delete cookies on his/her own from his/her device. To get rid of cookies from the end device of the User (computer, telephone, tablet, etc.), delete the browser cache and cookies. Cleaning the cache and deleting cookies must be performed through the browser settings. Settings may vary depending on the browser or its version. Deleting cookies will result in deleting settings of the Website.
6. RIGHTS OF THE USER
6.1. In relation to processing of personal data the User has the following rights:
6.1.1. to rectify personal data – if an error occurred during the collection of data or if data changes, the User has the right to provide correct and current data, and the Administrator will correct or update it;
6.1.2. to access personal data – the User may exercise this right if he/she wishes to know what data we process;
6.1.3. to delete personal data, also referred to as the right to be forgotten – if the User believes that his/her personal data is no longer needed for the purposes it was collected, the User has the right to request that the Administrator deletes the data;
6.1.4. to limit processing of personal data – if the User has doubts whether the Administrator processes his/her data correctly, the User has the right to request processing of his/her personal data to be limited;
6.1.5. to transfer personal data – the User may receive and transfer his/her personal data provided to the Administrator to another entity from the Administrator;
6.1.6. to object to processing of his/her personal data based on the justified interest of the Administrator or a third party, including profiling, due to reasons related to a special situation and to object to processing of his/her personal data for direct marketing purposes;
6.1.7. to withdraw his/her consent at any time – the User has the right to withdraw his/her consent concerning processing of his/her personal data at any time and without providing a reason; withdrawal of the User’s consent does not apply retrospectively, i.e. processing before the withdrawal of the consent remains fully valid and legal; the User may withdraw his/her consent by changing settings.
6.2. The User may file a complaint concerning processing of his/her personal data to a supervisory authority involved with personal data protection. In the Republic of Poland a supervisory authority is the President of the Office for Personal Data Protection.
7. RECIPIENTS OF DATA AND ENTRUSTED PARTNERS
7.1. Personal data of Users can be transferred to the following categories of recipients: entities providing services to the Administrator necessary to implement the purposes of processing, including IT suppliers, entities providing technical support, organizational support and advisory support, companies offering tools to manage advertising campaigns and owners of websites, in particular: Google, Facebook and other subcontractors in terms of customer service, e.g. Radaway’s Certified Installers (CIR).
8. TRANSFERRING DATA OUTSIDE THE EEA
Transferring personal data of Users outside the EEA is not provided for.
9. SAFETY OF PERSONAL DATA
9.1. The Administrator performs a risk analysis on an ongoing basis to ensure that personal data is processed in a safe manner – most of all ensuring access to data only to authorized persons and in the scope it is necessary for them to implement their tasks. The Administrator takes care that operations performed on personal data are registered and performed only by authorized employees and associates.
9.2. The Administrator undertakes necessary actions so that their subcontractors and other entities cooperating with them guarantee the application of relevant safety measures in each case when they process personal data by order of the Administrator.
10. CONTACT DETAILS
10.1. Requests, statements and all correspondence concerning personal data shall be sent in writing to the following address: Radaway sp. z o.o., ul. Rabowicka 59, 62-020 Jasin; or via e-mail: firstname.lastname@example.org.