Pursuant to Article 13 of the Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation i.e. GDPR) we hereby fulfil the obligation set forth therein and provide you with the following data. The original language of this Information is Polish. Supplier may make available translations of the terms. In case of conflicts between the Polish version and any translation, the Polish version shall prevail.
INFORMATION ON PROCESSING OF PERSONAL DATA
Your personal data is processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as "GDPR"). Accordingly, we inform you that:
The controller:
The controller of your personal data is Techmark sp. z o.o. (hereinafter: Techmark) entered in the National Court Register under the number 0001077327, NIP 726-000-22-12, REGON 470513221, with its registered office at ul. Piotrkowska 10/12, 95-070 Aleksandrów Łódzki;
The Controller can be contacted:
- by letter to the registered office address given above,
- by phone: (+48) 42 712 17 95,
- by e-mail: techmark@techmark.com.pl.
Data processing in relation to recruitment:
1. your personal data will be processed in order to conduct recruitment proceedings for the vacant position and to select an employee and conclude a contract of employment at Techmark,
2. the personal data provided will be processed on the basis of Article 221 § 1 of the Act of June 26, 1974 of the Labor Code and your consent to the processing of personal data,
3. the provision of data within the scope of the Labor Code is mandatory, the rest of the data we process with your consent to processing,
4. the recipients of your personal data may be external entities authorized by law and entities operating our ICT systems,
5. your personal data will be stored for the duration of the recruitment process and until you revoke your consent to the processing of data for the purposes of further recruitment,
6. you have the right of access to the content of your data and the right to correct, delete, limit processing, the right to object, and the right to withdraw your consent at any time, without affecting the legality of actions performed before the withdrawal of consent,
7. you have the right to lodge a complaint to the President of the Office for Personal Data Protection in Warsaw, 2 Stawki Street, if you consider that the processing of personal data concerning you violates the provisions of the GDPR,
8. providing your personal data is voluntary; failure to provide it will result in inability to participate in the recruitment process.
Data processing in relation to employment:
1. your personal data will be processed for the purpose related to:
2. your personal data may be transferred to banks (for the purpose of payment of salaries), state authorities (e.g. ZUS, US and others authorized under the law to perform obligations incumbent on the Controller), entities providing group insurance services for employees, postal services, operating the Controller's ICT system, consulting services,
3. personal data will be retained for the period of employment, as well as for the period required by law for the archiving of the Employee's employment data, within the time limits specified by tax, labor, accounting, social security and PPK laws and other laws governing employment. In the case of a given consent, until it is withdrawn, which does not affect the period before its withdrawal,
4. you have the right of access to the content of your data and the right to rectification, erasure, restriction of processing, the right to data portability, the right to object,
5. you have the right to lodge a complaint to the President of the Office for Personal Data Protection in Warsaw, 2 Stawki Street, if you consider that the processing of personal data concerning you violates the provisions of the GDPR;
6. the provision of your personal data is a legal requirement, because if you do not provide it, it will not be possible to establish an employment relationship.
Data processing in conjunction with video surveillance:
1. Monitoring is used to protect property and ensure the safety of employees and people in the monitored area.
2. The legal basis for the processing of personal data is Article 6(1)(f) of the GDPR - (legitimate interest of the controller, which is enabled by the provision of Article 222 § 1 of the Act of June 26, 1974. - Labor Code.
3. Monitoring records will be kept for a period of 2 weeks.
4. A person recorded by the monitoring system has the right to access the recordings, to restrict processing and to object to processing.
5. A person registered by the monitoring system has the right to lodge a complaint to the supervisory authority - the President of the Data Protection Authority at 2 Stawki Street in Warsaw, tel. 22 531 03 00, e-mail: kancelaria@uodo.gov.pl
6. Recipients of the recording from the monitoring may be entities authorized under the provision of the law and persons authorized by the Controller.
Processing of data in relation to business relations and contact:
1. personal data will be processed for purposes related to:
- performance of the contract [Article 6(1)(b) GDPR],
- establishing, asserting or defending claims [art. 6(1)(b) and (f) GDPR],
- fulfillment of the employer's legal obligations under applicable law [Article 6(1)(c) GDPR],
- fulfilling obligations incumbent on the Administrator, such as keeping financial accounts, including tax accounts [Article 6(1)(c) GDPR],
- responding to any inquiries or requests made and conducting further correspondence in this regard [Article 6(1)(f) GDPR],
2. your personal data may be transferred to banks, state authorities authorized under the law to perform obligations incumbent on the controller, entities performing postal services, operating the Administrator's ICT system, security services,
3. personal data will be stored for the period of cooperation, as well as for the period required by law for archiving data relating to the performance of the contract and, among others, in the periods specified by tax and accounting laws. In the case of a given consent, until its withdrawal, which does not affect the period before its withdrawal,
4. you have the right to access the content of your data and the right to rectify, delete, limit processing, the right to data portability, the right to object,
5. you have the right to lodge a complaint to the President of the Office for Personal Data Protection in Warsaw, 2 Stawki Street, in case you consider that the processing of personal data violates the provisions of the GDPR;
6. providing personal data is voluntary, but necessary for the purposes related to the establishment and implementation of the contract;
7. providing your personal data is a statutory requirement; failure to provide them will result in the inability to execute the concluded cooperation agreement or conduct correspondence.
Processing of data in connection with the use of social networks - Facebook (Meta Inc.), Instagram (Meta Inc.), Twitter and LinkedIn:
The controller processes the data of people who in the controller's social media:
- have subscribed to the Techmark website by clicking the "Like", "Watch", "Share" or "Subscribe" icon, etc..,
- have performed a reaction on a Techmark page/channel, e.g., by clicking "like," "comment," "share," "save post," "pass on," etc...,
- have sent a private message to Techmark's social media controller via the "send message" function.
The controller, as the founder of the pages/channels on the mentioned social networks provided by the indicated entities, is the co-controllers of personal data together with:
- Facebook Ireland Limited (Meta Platforms, Inc.), with registered office at 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland (hereinafter referred to as Facebook),
- Instagram LLC. (Meta Platforms, Inc.), headquartered at 1601 Willow Road, Menlo Park, CA, 94025, USA,
- Twitter, Inc. headquartered at 1355 Market Street, Suite 900, San Francisco, CA 941 03, USA,
- LinkedIn Ireland Unlimited Company, Attn: Legal Dept. (Privacy Policy and User Agreement), Wilton Plaza, Wilton Place, Dublin 2, Ireland (for users from the European Economic Area and Switzerland).
Each of the aforementioned joint controllers decides on the purposes and means of data processing, but to a different extent. Techmark is responsible only to the extent of the personal data it processes.
1. The controller processes personal data of users who use the products and services of the controller's Facebook, Instagram, Twitter and LinkedIn mentioned:
a) in connection with the operation of the Fanpage, including for the purpose of promoting one's brand and establishing business relationships (legal basis - Article 6(1)(f) of the GDPR) - "legitimate interest",
b) for the purpose of responding to questions asked via messenger or other services offered by the mentioned social networks (legal basis - Article 6(1)(f) GDPR) - "legitimate interest",
c) to analyze users' use of the Controller's website and related content (to keep statistics) and to prepare more relevant content and improve services - in case users' use of the Fanpage and related content triggers the creation of an event for website statistics, which involves the processing of personal data (legal basis - Article 6(1)(f) GDPR) - "legitimate interest".
2. Controller has the right to process:
- publicly available personal data (such as username, profile photo, activity status on the portal), content of comments and other information made publicly available by the user using the using the products and services of the above-mentioned portals,
- Personal data provided by the user visiting the Fanpage, including the collection of information shared in the user's profile and other content, comments, messages and communications (e.g. photos, contact information, place of residence, information on interests or worldview beliefs, etc.),
- other personal data provided by users in the content of messages via instant messaging or other social networking services for the purpose of responding to the inquiry sent or for the purpose of fulfilling a contact request.
Details of the principles of joint processing of data for page statistics with Facebook Ireland Limited are available at: https://pl-pl.facebook.com/legal/terms/page_controller_addendum
The data processing rules specified by the provider of Facebook and Instagram other products and features offered by Meta Inc. will be found in Facebook's Privacy Policy available at: https://www.facebook.com/privacy/center/?entry_point=privacy_shortcuts_redirect
Instagram rules are available at: https://help.instagram.com/519522125107875?helpref=faq_content
Twitter rules are available at: https://gdpr.twitter.com/en/controller-to-controller-transfers.html
The rules for the processing of personal data specified by the Twitter provider, will be found at: https://gdpr.twitter.com/
Principles of personal data processing by the service https://pl.linkedin.com/legal/privacy-policy?
3. The controller shall have the right to process personal data for the period necessary for the purposes indicated above. Depending on the legal basis, this will be respectively:
a) the time until you object (or delete your user account on the social network),
b) the time until consent is withdrawn (or the user's account on the social network is deleted). The withdrawal of consent does not affect the lawfulness of data processing during the period when the consent was in force,
c) the period of time necessary to handle an inquiry sent by the user via messenger or other social networking services.
Personal data collected by:
- Facebook, are subject to retention under the terms and conditions of https://www.facebook.com/policies_center ,
- Twitter Inc. under the terms of the Twitter Terms of Service https://twitter.com/en/privacy
- LinkedIn according to the Policy https://pl.linkedin.com/legal/privacy-policy?
4. The catalog of recipients of personal data processed by the Controller results primarily from the range of products and services used by the user of the Fanpage, but also from the user's consent or the law. With all guarantees of data security, the Controller may provide personal data of the user visiting the Fanpage - in addition to persons authorized by the Controller - to other entities, including entities that process data on behalf of the Controller, e.g. technical service providers.
5. The controller will not transfer the personal data of a user using the social networking products and services to countries outside the European Economic Area (to countries other than countries of the European Union and Iceland, Norway and Liechtenstein).
Facebook, Twitter, Instagram, LinedIn may transfer data outside the European Economic Area:
- Facebook pledges to use standard contractual clauses approved by the European Commission and to rely on decisions by the European Commission finding an adequate level of data protection for specific countries,
- Twitter Inc. may transfer personal data outside the European Economic Area. In accordance with Twitter's Terms of Service https://twitter.com/en/tos , by using its services, you consent to the collection and use of your data, in accordance with the Privacy Policy: https://twitter.com/en/privacy, including the transfer of your data to the U.S., Ireland and/or other countries for storage, processing and use by Twitter Inc. and its affiliates,
- LinkedIn transfers data in accordance with its Privacy Policy: https://pl.linkedin.com/legal/privacy-policy? .
In cases, on the terms and in the manner specified in the applicable regulations, you have the right to request: access to the content of the data and their rectification [art. 15, art. 16 GDPR], deletion of data [art. 17 GDPR], restriction of processing [art. 18 GDPR], objection to processing [art. 21 GDPR], data portability [art. 20 GDPR], as well as the right to lodge a complaint to the supervisory authority - the President of the Office for Personal Data Protection, located at 2 Stawki Street, 00-193 Warsaw - in case of suspicion that personal data is being processed by the Controller in violation of the law.
Your rights in connection with the use of the sites will be found on the pages, respectively:
- https://www.facebook.com/privacy/explanation
- https://twitter.com/en/privacy
- https://help.instagram.com/519522125107875
- https://pl.linkedin.com/legal/privacy-policy?
Processing of data in connection with the use of the website:
1. your personal data will be processed for:
- Provision of electronic services in the provision of content collected on the website and the tools offered, among other things, in the case of personal data processed in cookies, used for technical configuration purposes,
- to perform analytical and statistical research - to analyze your activity, as well as your preferences, in order to improve the functionalities used and services provided [Article 6(1)(f) GDPR],
- Possible establishment and investigation of claims or defense against claims [Article 6(1)(f) GDPR],
2. the recipient of your personal data provided by the website is the controller's host,
3. your personal data will be stored for a period of time:
- in the provision of electronic services - for the duration of your use of the website or for the duration of the stored cookie. In the absence of withdrawal of consent - for a period of 10 years,
- where the basis for processing is our legitimate interest also until you lodge an effective objection to the processing,
4. you have the right to access the content of your data and the right to rectify, delete, limit processing,
5. you have the right to lodge a complaint to the President of the Office for Personal Data Protection in Warsaw, 2 Stawki Street, if you consider that the processing of personal data concerning you violates the provisions of the GDPR.
Processing of data in connection with newsletter sign-up:
1. personal data will be processed for the purpose of subscribing to the newsletter [Article 6(1)(a) of the GDPR],
2. your personal data may be transferred to entities with which the Controller has entered into an agreement for the provision of maintenance services for the information systems in use.
3. personal data will be kept until you unsubscribe - until your consent is withdrawn, which does not affect the period before the withdrawal,
4. you have the right to access the content of your data and the right to rectify, delete, limit processing, the right to object,
5. you have the right to lodge a complaint to the President of the Office for Personal Data Protection in Warsaw, 2 Stawki Street, in case you consider that the processing of personal data violates the provisions of the GDPR;
6. providing personal data is voluntary, but necessary to subscribe to the newsletter.
Data processing in relation to reporting a breach or incident (whistleblower platform):
1. Personal data will be processed:
- in relation to reported violations or incidents, based on Article 6(c) of the GDPR - legal obligation,
- in relation to the controller's legitimate interest in receiving, verifying and clarifying violations or incidents on the basis of Article 6(1)(f) GDPR,
- based on voluntary consent if you do not choose to remain anonymous on the basis of Article 6(1)(a) of the GDPR.
2. Your personal data may be transferred to entities with which the Controller has entered into an agreement for the provision of maintenance services for the IT systems in use, as well as to entities and authorities to which the Controller is obliged or authorized to make personal data available on the basis of generally applicable laws.
3. Personal data will be kept for the period of investigation and until the completion of follow-up. After that, I will be kept only for a period depending on the nature of the violation or incident, the findings of the investigation and the follow-up actions taken.
4. You have the right to request access to your personal data, rectification, transfer to another controller. You also have the right to request erasure or restriction of processing, as well as to object to processing, but you have the right only if further processing is not necessary for the controller to comply with a legal obligation and there are no other overriding legal grounds for processing. You have the right to lodge a complaint with the President of the Office for Personal Data Protection.
5. Provision of data is voluntary, but if you do not use the anonymous submission channel, it is necessary for the reliable fulfillment of the controller's legal obligations.
Data processing in connection with COOKIES on the site www.techmark.com.pl, www.techmark-configurator.com, www.techcoderfid.com:
In order for the Service to function properly, Techmark uses cookie technology.
The data collected in the logs is used solely for the purpose of administering the site. We do not seek to identify website users. No identifying information, for any purpose, is transferred to any third party.
In accordance with the usual practice of most Web sites, we store HTTP requests directed to our server. The resources viewed are identified by URLs. The exact list of information stored in web server log files is as follows:
- The public IP address of the computer from which the request came (this can be directly the user's computer),
- The name of the client's station - identification implemented by the HTTP protocol if possible,
- The user name provided in the authorization process,
- time of arrival of inquiry,
- The first line of the HTTP request,
- HTTP response code,
- The number of bytes sent by the server,
- URL address of the page previously visited by the user (referer link) - in case the user went to the Controller's site via a link,
- information about the user's browser,
- information about errors that occurred during the execution of HTTP transactions.
This data is not associated with specific web browsers. In order to ensure the highest possible quality of the service, we occasionally analyze the log files to determine: which pages are visited most often, which web browsers are used, whether the structure of the site contains errors, etc.
The collected logs are kept for an indefinite period of time as support material for the administration of the service. The information contained in them is not disclosed to anyone except those authorized to administer the server and the controller's network. Based on the log files, statistics may be generated as an aid to administration. Aggregate summaries in the form of such statistics do not contain any identifying characteristics of visitors to the site.
The Cookies mechanism is not used to obtain any information about service users or to track their navigation. Cookies used in the controller's services do not store any personal data or other information collected from users.
The software used to browse the Internet (web browser) by default allows the storage of cookies on the user's terminal device. Users of the site can make changes to their cookie settings at any time. These settings can be changed, in particular, in such a way as to block the automatic handling of cookies in the settings of the web browser or inform about their placement on the web site user's device each time.
Detailed information on the possibility and handling of cookies is available in the settings of your software (web browser).
Failure to change your cookie settings means that cookies will be placed on your terminal device, and thus we will store information on your terminal device and access that information.
Disabling cookies may make it difficult to use some services on our websites.
Cookies are used in particular for:
- creating statistics that, for example, support SEO, making it easier to get to the information you need,
- changes to the appearance or version of the site,
- session data storage (expires when the session ends).
You can change the conditions for storing or receiving cookies by changing the settings in your web browser.