SECURITY
CONFIENTIALITY
DATA
DISCRETION

PRIVACY POLICY

Privacy Policy – Poligrafia Janusz Nowak Sp. z o.o.

I. Personal Data Controller

POLIGRAFIA JANUSZ NOWAK sp. z o.o. (ul. Zbożowa 7, 62-081 Wysogotowo, KRS: 0000334763), in the light of the binding laws, including, in particular, regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC (General Data Protection Regulation), generally referred to as the GDPR, is the controller of your personal data (hereinafter: The Controller of Personal Data).

The Personal Data Controller has not appointed a representative.
Contact with the Administrator of Personal Data is possible as follows:
by e-mail: rodo@poligrafia-jn.pl
by phone: +48 61 626 22 20,

The Controller has not appointed a Data Protection Inspector.
The Controller of Personal Data is responsible for the use of personal data in a safe manner and in accordance with binding laws.

II. Purpose and basis for the processing of personal data

Your personal data is processed for the purpose of:

  • conducting day-to-day business activities by the Personal Data Controller primarily in the provision of printing services,
  • conclusion and performance of a contract for the provision of printing services,
  • compliance with the legal obligations incummtent on the Administrator,
  • determination, defence and pursue claims,
  • proper provision of services by the Administrator to the contractor.

The legal basis for the personal data processed is Art. Article 6 (1) 1(f) GDPR, i.e. processing is necessary for purposes arising from the legitimate interests of the Personal Data Controller or third parties. The legitimate interest of the Personal Data Controller or third parties arises from the necessity of processing personal data for the implementation of the Administrator’s economic activities, including in particular the search for contractors using the services provided by the Administrator. The legitimate interest of the Personal Data Controller or third parties may also arise from the need to properly handle the order and the need for the Administrator to properly fulfill its contractual obligations.

In the event that the representative of the contractor – a natural person has been designated as a contact person for the performance of the contract with the Administrator, then the basis for the processing of personal data is Art. Article 6 (1) 1(b) GDPR, i.e. the processing of personal data for the fulfilling of the contract.

The controller does not intend to transfer personal data to the recipient in a third country or international organization.

III. Categories of personal data processing

The Personal Data Controller processes the following categories of data:
name, surname, job title, company name, mailing business address, work email address and work phone number.

In the event that the Administrator requests the provision of personal data, their provision is not mandatory, however, necessary for the establishment and conduct of economic cooperation between the Administrator and the contractor.

Your personal data is not processed for automated decision-making, including profiling.

Personal data come directly from the data subject. If the personal data do not come from the data subject, then it is obtained from sources widely available on the Internet (e.g. CEIDG, KRS, company website, etc.)

IV. Entities entrusted with personal data

Personal data is transferred:

  1. IT providers,
  2. Providers of technical support for the operation of the accounting programme.

V. Time of processing of personal data

The personal data of the representatives of contractors will be stored for the period of conducting economic cooperation between the Administrator and the contractor, as well as after its termination, when there are reasonable grounds that such cooperation will continue or resume.

VI. Rights in connection with the processing of personal data by the Administrator

You have the right to request from the Controller personal data:

  • access to the data processed,
  • rectification of personal data processed,
  • deletion of personal data processed
  • restrictions on the processing of personal data,
  • the right to object to the processing of personal data.

The above rights may be exercised by submitting an appropriate request to the Administrator for the data indicated in point I.

In addition, you are entitled to request that personal data be transferred to another controller, but only on condition that the processing is carried out by
automated means and is technically possible. The processing of your personal data will not be based on your consent to the processing.

VII. Right to lodge a complaint with a supervisory authority

If the processing of personal data violates the law, you have the right to lodge a complaint with the supervisory authority for the processing of personal data by the Personal Data Controller.
The complaint can be submitted to the President of the Office for Personal Data Protection (Office of the President of the Office for Personal Data Protection
ul. Stawki 2, 00-193 Warszawa).