Privacy Policy

Union of Entrepreneurs and Employers ul. Nowy Świat 33, 00-029 Warszawa, NIP [Tax Identification Number]: k522-295-88-64, KRS No.: 0000361844), acting as Data Controller for the purpose of performing the agreement, shall:

  1. make available the personal data of its representatives, the representatives indicated herein, and of other persons, in particular employees responsible for performance of the agreement;
  2. provide information on the processing of personal data below:
    1. Scope of data
      1. The personal data processed includes: full name, contact details, other data indicated in the agreement, power of attorney or KRS [National Court Register] entry, as well as other personal data provided in the course of cooperation.
    2. Purpose, basis of processing and data retention period
      1. Personal data will be processed on the basis of the Controller’s legitimate interest (Article 6(1)(f) of the GDPR) for:
        • performing the agreement or the Service and running the cooperation for the term of the agreement or the Service;
        • possible establishment, investigation or defense against claims arising from performance of the agreement or Service for the period of limitation of claims under the agreement.
        • Provision of data is voluntary but necessary for the execution and performance of the Agreement or Services.
    3. Data recipients
      1. Personal data can be transferred to service providers – entities that process personal data on the basis of an agreement with the Controller: providers of hosting, IT services and IT support and security services, providers of customer service, marketing agencies, accounting and bookkeeping offices, entities engaged in debt collection, providers of archiving and document shredding services, organisers of training, events, workshops or webinars.
      2. Personal data will be made available when such an obligation arises from the provisions of the applicable law, in particular at the request of the prosecutor’s office, the Police and other state authorities. Personal data will also be made available as necessary to meet the needs of the Controller, in particular to law firms, consultants, auditors, banks, postal and courier operators, telecommunications operators and contractors.
    4. Data transfer
      1. Entities to which personal data will be transferred are based in a country in the European Economic Area (EEA) or a country which is considered to ensure an adequate level of personal data protection. If, however, the data is transferred to entities based in countries outside the EEA which are not considered to ensure an adequate level of personal data protection, the Controller shall make reasonable efforts to ensure that the transfer is lawful and that appropriate safeguards are put in place. This includes in particular the use of standard contractual clauses approved by the European Commission. In order to obtain additional information about the transfer of data or a copy of the standard contractual clauses, please contact the Controller concerned.
    5. Rights of data subjects
      1. Rights in relation to the processing of personal data: the right to request access to, rectification, erasure or restriction of processing of personal data, as well as the right to object on grounds relating to the particular situation with regard to the processing of personal data on the basis of the legitimate interests of the Controller. In order to exercise your rights to data, to the extent that it is processed by the Controller, please contact biuro@zpp.net.pl. The data subject also has the right to lodge a complaint with the supervisory authority, i.e. the President of the Office for Personal Data Protection. The contact details of the authority can be found at: www.uodo.gov.pl.
    6. Cookies policy and technical requirements
      1. In connection with the use of the Site, “cookies” are collected, comprising textual content which may contain personal data in the form of your computer’s IP address and a unique device identifier stored in the file.
      2. The legal basis for collecting data read from cookies is Article 6(1)(f) of the GDPR, which allows for the processing of personal data in order to achieve the legitimate purpose of the Controller. Such purpose is to customize the Site to individual User settings and to remember the data entered by the User related to the use of the Site, as well as to conduct statistical analysis of Users and visitors to the Site for the needs of the Controller.
      3. The User may opt out of collecting cookies by choosing the appropriate settings for the User’s browser, but it should be remembered that in such a case it may be difficult or impossible to use all the features of the Site.
      4. The User can access their data contained in cookies by finding them on their computer disk or delete them at any time.
    7. Server logs
      1. Using the Site involves sending queries to the server. Each query sent to the server is saved and stored in server logs, which include, but are not limited to, the User’s IP address, the date and time of the server, information about the web browser and the operating system.
      2. Server logs constitute an ancillary material for managing the Site and their content is not disclosed to anyone other than those authorised to administer the server.