I. Name and contact details of the administrator
Pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, the so-called general regulation on the protection of personal data (“GDPR”), the administrator of personal data collected via the website www.stacon.pl is:
Stacon TiS Duszak sp.j. based in Kadzidło
Address: ul. Mazurska Route 26a, 07-420 Kadzidło,
Tel. +48 29 761 80 72
e-mail: biuro@stacon.pl
hereinafter referred to as the “Company” or “Administrator”.
II. General information
1. The privacy policy presents how the Company collects and processes personal data of users through the website www.stacon.pl (hereinafter referred to as the “Website”).
2. The privacy policy may be changed in the future. Whenever such changes are made, a new version of the privacy policy will be published on this page.
3. Contact with the Company in matters related to the processing of users’ personal data via the Website is possible:
– in writing to the following address: Stacon TIS Duszak Sp.j., ul. Ogrodowa 5, 07-420 Kadzidło;
or
– by e-mail to the address iod@stacon.pl
4. The scope of personal data processing:
– we process the personal data of our users only if it is necessary to provide a functioning website as well as our content and services,
– the processing of personal data of our users via the Website takes place only with the consent of the user,
– the exception are cases where the processing of users’ personal data by the Company is based on a ground other than the user’s consent.
5. Legal basis for the processing of personal data:
– personal data is processed in accordance with applicable law, in particular with the GDPR;
– if we obtain consent from the data subject to the processing of personal data, the legal basis is Art. 6 sec. 1 lit. a) “GDPR”;
– in the case of processing personal data required for the conclusion or performance of a contract to which the data subject is a party, Art. 6 sec. 1 lit. b) GDPR, this also applies to processing operations that are necessary to take steps prior to entering into a contract;
– if the processing of personal data is necessary to fulfill the legal obligation incumbent on the Company, the legal basis is art. 6 sec. 1 lit. c) GDPR;
– if the vital interests of the data subject or another natural person require the processing of personal data, Art. 6 sec. 1 lit. d) GDPR;
– if data processing is necessary to secure the legitimate interest of the Administrator or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former, the legal basis for data processing is Art. 6 sec. 1 lit. f) GDPR;
6. Data erasure and storage period
– the personal data of the data subject will be deleted immediately after the purpose of their storage ceases to apply;
– in addition, even after the purpose for which the data was originally obtained, they may be further stored if, in accordance with the generally applicable law to which the Administrator is subject, the Administrator is required to continue to store these data for the period specified by these provisions;
– the data will also be deleted after the storage period specified in the above-mentioned standards has expired;
III. Privacy protection
1. The Company fully respects the right to privacy and protection of personal data of users.
2. The Company enables the use of its websites in an anonymous manner, however, in the event of contact, eg via the provided form, it is required to provide personal data.
3. In some cases, users’ personal data may be transferred to third parties (data recipients), if it proves necessary to achieve the purpose of processing for which the data was obtained. Nevertheless, in such situations, the Administrator is obliged to ensure that the transfer of data is proportionate and justified for the purpose of processing.
4. If, due to the purpose of processing, it will be necessary to transfer the user’s data to a third country, the Administrator will make every effort to ensure that this transfer meets the requirements of the GDPR in terms of ensuring an adequate level of protection of data of natural persons.
5. The administrator, if applicable, may also transfer personal data of users to public entities, if, on the basis of generally applicable provisions of law, he will be obliged to disclose them at the request of these entities. Regardless of this, the Administrator will exercise due diligence to verify the legitimacy of the request and the scope of data that the Administrator will be obliged to disclose.
IV. Provision of the website and creation of log files
1. Description and scope of data processing
Each time you visit our website, our system automatically collects data and information from your computer system. The following data is collected:
formations about the type and version of the browser used
(2) the user’s operating system
(3) the user’s internet service provider
(4) the user’s IP address
(5) date and time of the visit
(6) websites that redirect the user’s system to our website
(7) websites that are accessed by the user’s system via our website
The data will also be stored in the log files of our system. This data will not be stored together with other personal data of the user.
2. Legal basis for data processing
The legal basis for the temporary storage of data and log files is Art. 6 sec. 1 lit. f) GDPR.
3. Purpose of data processing
The temporary storage of the IP address by the system is necessary in order to deliver the website to the user’s computer. Consequently, the user’s IP address must be stored for the duration of the session.
The data is stored in log files to ensure the smooth functioning of the website. In addition, the data helps us to optimize the website and to guarantee the security of our information technology systems. In this context, data analysis for marketing purposes does not take place.
The collection of the data required for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website.
The above processing purposes are therefore our legitimate interest in legalizing data processing, in accordance with Art. 6 sec. 1 lit. f) GDPR.
4. Period of storage
The data will be deleted as soon as they are no longer needed to achieve the purpose for which they were collected. In the case of collecting data for the provision of the website, this will be the case after the end of the respective session.
If the data is stored in log files, this will be the case after 180 days at the latest.
V. Use of cookies
1. Description and scope of data processing
Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. When a user visits a website, a cookie may be stored on the user’s operating system. The cookie contains a characteristic string of characters that allows the browser to be uniquely identified when the website is reopened.
We use cookies to make our website more user-friendly. Some parts of our website require information that enables the recognition of the user’s browser even after a change of the website. The following data is stored and transmitted in the cookies: (1) search behavior We also use cookies on our website that enable an analysis of the surfing behavior of our users. The following data can be transmitted in this way: (2) search terms (3) frequency of visits to the website (4) use of website functions The user data collected in this way is pseudonymised by appropriate technical measures. It is therefore not possible to associate the data with the website visitor. This data will not be stored together with other personal data of the user. When visiting our website, an information banner will inform the user about the use of cookies for analysis purposes, and a link to this privacy policy will also be displayed. There will also be information on how you can prevent cookies from being saved in your browser settings. When visiting our website, the user will be informed about the use of cookies for analysis purposes. Accordingly, you will also see a link to this privacy policy.
2. Legal basis for data processing.
The legal basis for the processing of data using cookies required for technical reasons is Art. 6 sec. 1 lit. f) GDPR. If the user expresses his consent to save cookies on his telecommunications end device in the form of the settings of the software installed in the device used by him, the legal basis for the processing of personal data using cookies, for the purposes of analysis, is Art. 6 sec. 1 lit. a) GDPR.
3. Purpose of data processing.
The use of technically necessary cookies is intended to make it easier for the user to use the website. However, without cookies, it will not be possible to provide some of the services available through our website. For this purpose, it is necessary to re-identify the browser even after a page change.
Cookies are necessary for the following applications: (1) remembering searched terms User data collected by technically necessary cookies are not used to create user profiles. Analysis cookies are used to improve the functioning of our website and improve its content. Stack cookies
For analysis purposes, they provide information on the way in which the user uses the website, ensuring the constant optimization of our offer.
4. The period of storing cookies, the possibility of withdrawing consent to saving cookies.
Cookies are stored on the user’s computer. Therefore, the user has full control over the use of cookies. The user’s consent to saving cookies on a telecommunications end device can be withdrawn at any time by changing the settings of the web browser. Cookies that have already been saved can be deleted at any time. It can also happen automatically, after an appropriate period of time, defined as the “lifetime” of a given cookie. If you disable cookies on our website, the functionality of the website may be limited. To disable the transmission of flash cookies, do not change your browser settings, but the settings of the Flash Player.
VI. Contact form and electronic contact
1. Description and scope of data processing
The contact form is available on our website and can be used for electronic contacts.
In addition to the data provided in the content of the contact form, the following data is also stored at the time of sending the message:
(1) the user’s IP address,
(2) date and time of registration.
Before entering data into the form, the user has the right to obtain information regarding the processing of his personal data by the Administrator. For this purpose, the user can read the content of this Privacy Policy by clicking on the link in the “Contact” tab.
Alternatively, you can contact us via the e-mail address provided in section I. In this case, the user’s personal data sent by e-mail will be processed.
3. Information on data recipients
The recipients of user data obtained via the contact form will be entities providing IT services to the Administrator, in particular related to the security, administration and maintenance of the Administrator’s IT system, as well as entities providing services related to the maintenance of the server used by the Website and the Administrator’s e-mail. Recipients of user data may also be public entities to which the Administrator, on the basis of generally applicable law, will be obliged to provide the obtained data at the request of these entities.
4. Legal basis for data processing
The legal basis for the processing of data transmitted in the course of sending e-mails is Art. 6 sec. 1 lit. f) GDPR. If the purpose of electronic contact is to conclude a contract, then an additional legal basis for data processing is Art. 6 sec. 1 lit. b) GDPR.
5. Purpose of data processing
Personal data collected via the contact form are processed solely for the purpose of correspondence with the data subject.
6. Period of storage
The data will be deleted as soon as they are no longer needed to achieve the purpose for which they were collected. In the case of personal data in the data entry window on the contact form and data sent by e-mail, this will be the case when the corresponding correspondence with the user is terminated. The correspondence is terminated when it can be inferred from the circumstances that the facts in question have been finally clarified.
The personal data additionally collected during the sending process will be deleted after seven days at the latest.
VII. Google Analytics web analysis service
Privacy policy when using the Google Analytics tool
This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses the so-called cookies (cookies), which are text files placed on the user’s computer to enable the website to analyze how users use it. The information generated by the cookie about your use of the website (including your IP address) will be transferred to Google and stored by it on servers in the United States. However, if IP anonymization is activated on this website, the IP address is shortened by Google beforehand for computers located in the territory of the European Union member states and in other member states of the European Economic Area (EEA). Only in exceptional cases will the full IP address be transferred to a Google server in the United States and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity for website operators and to provide other services related to website activity and internet usage. Googgle
le will not link the user’s IP address with any other data in its possession. The user may refuse the use of cookies by selecting the appropriate settings in the browser, however, it should be remembered that in this case it may not be possible to use all the functions of the website. You can also block the collection of data saved by cookies on the use of this website by users directly by Google. To do this, download and install a browser plug-in available at the following address. Google Optout link.
In addition, you can prevent registration by clicking on the link below. This sets an opt-out cookie and prevents future collection of your data when visiting this website: Deactivate Google Analytics
Deactivate Google Analytics
For more information on terms of use and privacy, please visit www.google.com/analytics/terms/en.html. We also point out that on this website Google Analytics has been extended by the code “anonymizeIp” to ensure anonymous detection of IP addresses (so-called IP masking).
The administrator ensures an appropriate, GDPR-compliant level of protection of the user’s personal data transferred to Google based in the United States. In this regard, the transfer of data is based on the EU-US Privacy Shield agreement, which protects personal data transferred to entities certified by the US Department of Commerce and included in the list available at the link: https: //www.privacyshield. gov / list
VIII. Use of the Company’s address data, available in the “Contact” tab
1. Purpose of data processing
Personal data of persons using the Company’s address data, collected by the Administrator in connection with receiving correspondence from the data subject, will be processed for the purpose of correspondence with the data subject.
2. Legal basis for data processing
The legal basis for the processing of correspondents’ personal data will be Art. 6 sec. 1 lit. f) GDPR, i.e. implementation of the Administrator’s legitimate interests.
3. Information on data recipients
The recipients of the correspondent’s personal data will be entities cooperating economically with the Administrator, to whom the disclosure of the correspondent’s personal data will be necessary to achieve the purpose of processing. In particular, these will be entities providing postal services to the administrator. Correspondents’ personal data may also be disclosed to other entities, including public entities, if, on the basis of a generally applicable law, the Administrator will be obliged to disclose the obtained personal data to these entities.
4. Data storage period
Correspondents’ personal data will be kept for the period necessary to achieve the purpose for which they were obtained. The implementation of the purpose of processing should be understood as the end of correspondence with the data subject. The correspondence is considered completed if, on the basis of the facts, it can be concluded that the circumstances for which the correspondence was conducted have been finally clarified.
IX. Rights of data subjects
1. Anyone who has provided the Company with their personal data has the right to request:
a.access to your personal data, pursuant to art. 15 GDPR, i.e. to obtain confirmation from the Company whether it processes personal data and the right to access this data (including a copy thereof), and in particular to the following information:
– about the purposes of data processing,
– about the categories of data processed,
– about the recipients or categories of recipients to whom the Company has disclosed or intends to disclose the data,
– about the possibility of exercising the rights in the field of personal data protection and the manner of their implementation,
– about the right to lodge a complaint with a supervisory authority,
– about automated decision making, including profiling, as well as its consequences;
b. rectify the data, pursuant to art. 16 GDPR, i.e. to request the Company to immediately rectify incorrect personal data and to request supplementing incomplete personal data;
c. deletion of data, pursuant to art. 17 of the GDPR, i.e. to request the Company to immediately delete personal data (also known as the “right to be forgotten”). The company is obliged to delete personal data, provided that one of the following conditions is met:
– personal data are no longer necessary for the purposes for which they were collected,
– the consent on which the processing is based has been withdrawn and there is no other legal basis for the processing,
– personal data has been unlawfully processed,
– personal data must be deleted in order to comply with the legal obligation. It is not possible to exercise the right to delete personal data, e.g. in the event that the Company is obliged under the provisions of law to further process personal data to the extent specified by the relevant provisions of law or for the purposes necessary for the arrangements
ia, pursuing or defending claims;
d. restriction of data processing, pursuant to art. 18 GDPR, i.e. to request the Company to limit the processing of personal data in the following cases, when:
– the user questions the correctness of personal data processed by the Company,
– the processing of personal data is unlawful and the deletion of the data has been opposed,
– The company no longer needs personal data, but they are needed by the user to establish, exercise or defend claims. In the case of exercising the right to limit the processing of personal data, the Company may process personal data, with the exception of their storage, only with consent or to establish, assert or defend claims or to protect the rights of another natural or legal person or for important reasons of interest public;
e. raise an objection:
– against processing, pursuant to art. 21 sec. 1 GDPR, i.e. the right to object at any time to data processing based on the legitimate interest of the Company (i.e. pursuant to Article 6 (1) (f) of the GDPR). In such a situation, the Company will not be able to further process the data for these purposes, unless there are valid legally justified grounds or the data is needed by the Company to pursue claims. The right to object to data processing does not apply if:
• the processing of personal data takes place on the basis of consent – in such a situation, however, consent may be withdrawn,
• data processing is necessary to perform the contract,
• processing is necessary for the Company to fulfill a legal obligation;
– to the processing of data, regardless of the legal basis for the purposes of direct marketing, pursuant to art. 21 sec. 2 GDPR. In such a situation, the Company will not be able to further process data for this purpose;
f. data transfer, pursuant to art. 20 GDPR, i.e. to receive personal data provided to the Company in a structured, commonly used format and to request that this data be sent to another data administrator, if technically possible. This right is due if:
– processing is carried out in an automated manner,
– data is processed on the basis of consent or in connection with a contract.
2. The rights referred to in point. 1 above, may be performed by sending an appropriate request:
– in writing to the following address: Stacon TIS Duszak Sp.j., ul. Ogrodowa 5, 07-420 Kadzidło;
or
– by e-mail to the following address: iod@stacon.pl
3. When exercising your rights, remember that the implementation of your request may require verification of your identity so that your data does not reach an unauthorized person.
4. Within one month of receiving your request, the Company will provide you with information on the actions taken in connection with the request. If necessary, the deadline for processing your request may be extended by another two months due to the complex nature of the request or the number of requests made.
5. If your request turns out to be unjustified or excessive, in particular due to its frequent nature, the Company may request a reasonable fee for the execution of the request or refuse to act on the request.
6. If it is found that the processing of personal data by the Company violates the law, it has the right to lodge a complaint with the authority.
General contracting and servicing of construction investments are the domains in which we specialize
