Principles of personal data processing
Security and confidentiality of your data is our priority. We assure you that we have always made and will continue to make every effort to ensure the protection of your data by implementing appropriate technical and organizational security measures, including ensuring appropriate protection when designing new services and solutions.
This regulation serves to inform customers and interested parties about the purpose, scope, and categories of processing their personal data, the duration of data processing, and their rights under the applicable Regulation of the European Parliament and of the Council (EU) 2016/679 of April 27, 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (referred to as GDPR).
The Data Controller of Your Data is Yetiz Interactive Sp. z o.o., with its registered office in Gdańsk, 80-244 Gdańsk, ul. Grunwaldzka 103, registered in the National Court Register under the number KRS 0000221792, kept by the District Court Gdańsk-Północ in Gdańsk, VII Commercial Division, NIP: 8512892922, REGON: 812725217, with the Management Board consisting of Piotr Rocławski and Anna Owczarczak. As the Data Controller, we are responsible for ensuring the security of Your personal data and their use in accordance with applicable law. For any additional information, you can contact us at biuro@yetiz.pl or by mail at the address provided as the company’s registered office.
In order to ensure the security of Your data, we have conducted a Data Protection Impact Assessment, taking into account the risks associated with their processing, as well as a risk analysis for the security measures we employ. Currently, we implement high-quality, proven preventive security measures and monitoring mechanisms to track the processing methods, flows, and access to the information we possess, in order to guarantee that data processing is not only compliant with the law but also with the best practices in data security and IT systems. Your data stored in our resources are not transferred outside the European Economic Area (EEA).
80-244 Gdańsk, ul. Grunwaldzka 103, registered in the National Court Register under the number KRS 0000221792, kept by the District Court Gdańsk-Północ in Gdańsk, VII Commercial Division, NIP: 8512892922, REGON: 812725217, with the Management Board consisting of Piotr Rocławski and Anna Owczarczak. As the Data Controller, we are responsible for ensuring the security of Your personal data and their use in accordance with applicable law. For any additional information, you can contact us at biuro@yetiz.pl or by mail at the address provided as the company’s registered office.
The categories of personal data processed by us include personal data obtained directly from data subjects (or provided to us on their behalf) or personal data collected from publicly available sources, in particular: name, email address, contact phone number, postal address. Currently, in connection with our business activities, we inform that we process (or may process) personal data in the following processes:
• Personal data of our customers and persons designated for contact: Processing of data is required to provide all our services at the highest level, based on and within the scope of contracts or orders concluded with our customers. Refusal to provide this data makes it impossible to conclude contracts or accept orders. All information concerning specific individuals or clients will be processed for the duration of the contract and for five years after its expiration (Article 6(1)(b) of the GDPR).
• Personal data of persons interested in cooperation with us: Data processing is voluntary but necessary to establish cooperation with new customers, at the request of persons interested in our offer, exclusively for the duration of negotiations and commercial discussions. All data in this regard are processed only with your consent and to the extent provided by you (Article 6(1)(a) of the GDPR).
• Personal data of our subcontractors and persons designated for cooperation: Processing of data is necessary to provide services in accordance with applicable law and for proper cooperation with subcontractors. Refusal to provide data prevents the achievement of these objectives. All information concerning specific individuals or clients will be processed for the duration of the contract and for ten years after its expiration, but not shorter than required by applicable law (if applicable) (Article 6(1)(b) of the GDPR).
• Data used for newsletters and marketing: Data processing is voluntary. You receive newsletter information from us only if you have consented to receive it by subscribing to the list. We will process personal data for marketing and informational purposes until you withdraw your consent (Article 6(1)(a) of the GDPR).
• Information about contractors: Data processing is necessary to fulfill legal obligations, such as accounting regulations, and these provisions are the basis for processing data by us for a period of six years (in accordance with the current legal framework, five full years). Refusal to provide data prevents the conclusion of a contract (Article 6(1)(c) of the GDPR).
• Information about our employees and job applicants. Data processing is necessary to fulfill legal obligations, such as labor code regulations, and these provisions are the basis for processing data by us for the period required by law. Refusal to provide data prevents the conclusion of a contract (Article 6(1)(c) of the GDPR). Data regarding job applicants are obtained through consents given to us and are processed for the duration of the recruitment process. However, in the event that you consent to future recruitment needs, we may retain them for a period of one year (Article 6(1)(a) of the GDPR).
• Monitoring: Data from video monitoring is processed to protect individuals and property, considering it as our legitimate purpose. All data collected in this way are stored for a period of one month (Article 6(1)(f) of the GDPR).
• Email or form contact: Data processing is required to enable the provision of services, in the event of responding to our customers and contractors’ questions asked via email, SMS, and telephone. Providing personal data is voluntary (Article 6(1)(a) of the GDPR).
The Administrator’s website uses so-called cookies (special files originating from a given website and recorded and stored by a specific internet browser), which are then saved, for example, on the user’s hard drive or device memory. This type of file is used, among other things, to facilitate navigation on the website managed by the Administrator, and may also serve to better remember certain user preferences within our service. We inform you that it is possible to delete these files from the hard drive or block their storage. The method of making such changes depends on the internet browser used, and changes can be implemented by appropriately configuring the browser settings or the device used. Failure to change the settings mentioned above is interpreted as the user’s consent to accept cookies. However, it should be remembered that blocking the storage of cookies may make it difficult or completely impossible to use selected functions of the service. In its service, the Administrator uses cookie technology to record information about user behavior. The collected data is subject to profiling and is used for purposes such as creating personalized advertising by the Administrator or preparing demographic reports. The Administrator uses, among other tools, Google Analytics to track traffic on the Yetiz website for this purpose.
• The Administrator informs that they may use profiling for marketing purposes, but decisions made based on it by the Administrator do not concern the conclusion or refusal to conclude a contract or the execution of an order.
• The result of using profiling on the Website may include, for example, granting a discount or sending purchase proposals that may correspond to the preferences of a particular person. In each case, it is up to the individual to decide whether they want to take advantage of the proposals received.
Personal data may be transferred to the following categories of recipients:
• authorized employees and associates of the administrator, as well as entities processing personal data on behalf of the administrator, including IT service providers, accounting and legal firms, advisory firms – only based on an appropriate agreement;
• couriers, carriers, shipping companies participating in the shipping process – to the extent necessary to fulfill the order for the Customer;
• entities providing technical or organizational support and entities authorized under the law.
In each of the cases mentioned, we strive to ensure that the data we hold is up-to-date and correct, and considering your privacy, we minimize all personal data to the extent necessary for their proper processing.
At each stage of processing your data, you have the right to:
• access your data, including obtaining information about the scope of the data processed by us and obtaining a copy of this data;
• modify and correct your data, including if there are no other legal contraindications to limit their processing scope;
• completely delete your data („right to be forgotten”), provided there are no other legal contraindications;
• not be subject to automated decisions based on profiling;
• object to the improper processing of personal data (including withdrawing consent at any time without affecting the lawfulness of processing carried out based on consent before its withdrawal);
• data portability to another Data Controller if the data is processed based on consent or a contract;
• file a complaint. A complaint regarding the processing of personal data can be submitted to the supervisory authority responsible for personal data protection. In the Republic of Poland, the supervisory authority is the President of the Office for Personal Data Protection.
To ensure proper handling of your inquiries and maintain due diligence during their handling, you can submit a request to exercise your rights by sending correspondence to biuro@yetiz.pl. Each request submitted by you is considered individually and in relation to the applicable legal provisions. Please note that the possibility of exercising a specific right may depend on the legal basis used for the specific purpose of processing your data, for example, whether data processing is not dependent on the performance of a contract or service. Your requests will be processed without undue delay, within a maximum period of one month from their receipt; however, it is possible that due to the nature of the request, we will not be able to meet this deadline. In such a situation, you will be notified of the delay and its reasons. Similarly, if such circumstances arise, we will inform you of the reasons for refusing to accept and process the request. Please note that the first request is processed free of charge; however, in situations where your requests are unfounded or excessive, we reserve the right to charge a fee for providing information again. You will be promptly informed of the amount of the fee or any other reasons why we are unable to process your request. Additionally, to ensure the security of the transmitted information, if we are unable to properly identify you as an authorized person to receive the data, we reserve the right to change the method of delivering the information, of which you will be informed. In the case of exercising the right to data portability, the Data Controller will directly transfer this data to another Data Controller if there is a technical possibility. The person requesting the exercise of this right will be informed of the decision regarding the possibility of transfer.
These Regulations are effective from May 25, 2018, until further notice, and fulfill the legal obligation resulting from Articles 13-14 of the GDPR. We reserve the right to make changes to the existing rules, always with the aim of improving the quality of services provided by us and in respect for your rights and privacy.
© 2024 YETIZ INTERACTIVE Created with ♡ by Yetiz
Privacy Policy
