Privacy policy

Global-Biznes Spółka z ograniczoną odpowiedzialnością
Headquarters: Warsaw, Poland

 

1. General Provisions

1.1. The administrator of personal data is Global-Biznes Spółka z ograniczoną odpowiedzialnością, located in Warsaw at ul. Górczewska 222/69, 01-460 Warsaw, registered in the entrepreneurs' register maintained by the District Court for the Capital City of Warsaw in Warsaw, 12th Commercial Division of the KRS under number 0000531100, NIP 5272721408, REGON 14743684100000, contact email: info@global-biznes.pl, contact phone: +48 603 955 733 (hereinafter referred to as: "Administrator").

1.2. This Privacy Policy defines the principles of processing and protecting personal data of the Administrator's clients and contractors obtained in connection with any cooperation between the Administrator and these individuals (hereinafter referred to as: "Clients"). This Privacy Policy also serves as an informational document regarding the processing of Clients' personal data by the Administrator. For the purposes of this Policy, Clients also include employees and representatives of the Administrator's clients and contractors, whose data the Administrator possesses in connection with cooperation with clients and contractors.

1.3. The Clients of the Administrator, as defined in this Privacy Policy, particularly include:

1.3.1. Clients and contractors of the Administrator who are natural persons;

1.3.2. Employees and other natural persons acting on behalf of the Administrator's clients and contractors.

1.4. The processing of personal data by the Administrator is conducted in accordance with the applicable laws of Poland and Europe, particularly in compliance with the Regulation of the European Parliament and Council (EU) 2016/679 of April 27, 2016, on the protection of natural persons in relation to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (Journal of Laws UE L No. 119, p. 1, hereinafter referred to as: "GDPR").


2. Types of Processed Personal Data

2.1. In the course of cooperation with Clients, the Administrator processes the following personal data of Clients:

2.1.1. First and last name / company;

2.1.2. Date of birth;

2.1.3. Contact phone number;

2.1.4. Email address;

2.1.5. Address: street, house/apartment number, postal code, city, country;

2.1.6. Tax Identification Number (NIP);

2.1.7. IP number of the computer or other device with internet access.

2.2. Providing the personal data indicated in points 2.1.1-2.1.6 above is entirely voluntary. Each Client has rights regarding their personal data as specified in this Privacy Policy, in accordance with applicable laws.

2.3. The personal data indicated in point 2.1.7 above is automatically collected when visiting the Administrator's website http://www.global-biznes.pl/ (hereinafter referred to as: "Website"). This data is stored in a log file on the server and is collected for technical reasons. This data may be processed in connection with other personal data only if the Client has given consent to the processing of their personal data.


3. Purposes of Processing Personal Data

3.1. The personal data of Clients is processed by the Administrator for the purpose of establishing and maintaining business relationships with the Client, including, but not limited to:

3.1.1. Concluding, executing, or terminating a contract with the Client, including specifically taking actions before concluding the contract or providing services or delivering goods;

3.1.2. Establishing and maintaining ongoing business contacts with the Client, particularly to ensure effective customer service;

3.1.3. Addressing complaints or claims submitted by the Client;

3.1.4. Fulfilling legal obligations imposed on the Administrator, including those related to, for example, tax settlements.

3.2.Additionally, the personal data of Clients may be processed for marketing purposes related to the Administrator's own products and services or for other purposes for which the Client has given consent during their cooperation with the Administrator.

3.3. Based on the personal data of Clients, the Administrator does not make decisions that are based solely on automated processing, including profiling.


4. Legal Grounds for Processing Personal Data

4.1. Providing personal data by Clients is voluntary; however, in certain situations, it may be necessary to use the services provided by the Administrator.

4.2. The processing of personal data by the Administrator takes place based on legal regulations, specifically when:

4.2.1. It is necessary for the performance of a contract or to take actions before concluding a contract;

4.2.2. It is necessary to fulfill a legal obligation imposed on the Administrator (e.g., tax obligations);

4.2.3. It is necessary for purposes arising from the legitimate interests of the Administrator (e.g., marketing of the Administrator’s own products or services, pursuing claims in court proceedings).

4.3. Every Client has the right to withdraw consent to the processing of personal data at any
time. The withdrawal of consent does not affect the legality of processing based on consent
given before its withdrawal, nor does it affect the processing of personal data based on other
grounds than the Client's consent.

4.4. Consent on behalf of Clients can only be expressed by those aged 16 or older. For
individuals under 16, parental or guardian consent is required.


5. Retention Period for Personal Data

5.1. Personal data of Clients will be retained for the period necessary to achieve the purposes for which it is processed, including in particular for the duration of:

5.1.1. Actions taken prior to the conclusion of a contract, aimed at its establishment;

5.1.2. The performance of the contract concluded with the Administrator and the period during which the Client or the Administrator has any rights or claims related to its execution (including the period of limitation of claims and one year after the limitation period has expired);

5.1.3. The fulfillment of legal requirements imposed on the Administrator.

5.2. After the expiration of the retention period for personal data, it will be promptly deleted by the Administrator, except for personal data provided to the Administrator for marketing purposes – its processing will continue until the Client withdraws the relevant consent or objects to the processing of that data.


6. Recipients of Personal Data

6.1. The personal data of Clients may be shared with the following categories of recipients:

6.1.1. Persons authorized by the Administrator who are employed by or collaborate with the Administrator under civil law agreements;

6.1.2. Entities processing personal data on behalf of and in the name of the Administrator, as well as authorized individuals employed by those entities (e.g., services from external companies, subcontractors, legal advisors, financial or accounting advisors, IT service providers, etc.);

6.1.3. State authorities or other public entities to meet legal requirements.

6.2. The sharing or disclosing of Clients' personal data is carried out with respect for Clients' rights and in accordance with applicable legal provisions.

6.3. Personal data may be transferred to third countries under the conditions set forth in the GDPR. Such transfer may only occur in connection with the Administrator’s use of external servers or in relation to the use of IT solutions, systems, or other IT services.


7. Measures for the Protection of Personal Data

7.1. The Administrator protects Clients' personal data from unauthorized access by third parties and provides organizational and legal measures in accordance with applicable laws to ensure the confidentiality of Clients' personal data and to prevent access to this data by unauthorized persons.

7.2. The Administrator implements and applies appropriate technical solutions aimed at protecting Clients' personal data. In particular, the Administrator uses high-quality technical and IT security measures, as well as physical security measures.


8. Rights of Clients Regarding Personal Data

8.1. Each Client may submit a complaint regarding the processing of their personal data.

8.2. Each Client also has the right to:

8.2.1. Obtain from the Administrator confirmation as to whether their personal data is being processed, and if so, they are entitled to access it and receive the following information:

8.2.1.1. The purposes of processing;

8.2.1.2. The categories of personal data;

8.2.1.3. The recipients or categories of recipients to whom the personal data ,has been or will be disclosed, particularly recipients in third countries or international organizations;

8.2.1.4. Where possible, information on the planned duration of storage of personal data, or if not possible, the criteria for determining that duration;

8.2.1.5. The right to request from the Administrator the rectification, deletion, or restriction of processing of personal data concerning them, and to object to such processing;

8.2.1.6. The right to lodge a complaint with a supervisory authority;

8.2.1.7. If the personal data has not been collected from the person to whom it pertains, any available information about its source;

8.2.1.8. Information about automated decision-making, including profiling, and significant information about the rules of such decisions, as well as the significance and anticipated consequences of such processing for the
individual to whom the data pertains.

8.2.2. Request the Administrator to promptly rectify personal data concerning them that is inaccurate; considering the purposes of processing, the Client also has the right to request the completion of incomplete personal data, including by providing an additional statement.

8.2.3. Not to be subject to automated decision-making, including profiling.

8.2.4. Object—on grounds relating to their particular situation—to the processing of personal data concerning them in cases specified in the regulations.

8.2.5. Request the Administrator to promptly delete personal data concerning them ("right to be forgotten") if one of the following circumstances applies:

8.2.5.1. The personal data is no longer necessary for the purposes for which it was collected or otherwise processed;

8.2.5.2. The Client has withdrawn consent on which the processing is based and there is no other legal basis for the processing;

8.2.5.3. The Client objects to the processing and that objection is based on applicable regulations;

8.2.5.4. The personal data has been processed unlawfully;

8.2.5.5. The personal data must be deleted to comply with a legal obligation under Union law or the law of the Member State to which the Administrator is subject;

8.2.5.6. The personal data was collected in relation to the offering of information society services to a child in accordance with applicable regulations.

8.2.6. Request the Administrator to restrict the processing of personal data when:

8.2.6.1. The Client contests the accuracy of the personal data—for a period enabling the Administrator to verify the accuracy of that data;

8.2.6.2. The processing is unlawful and the Client opposes the deletion of personal data, requesting instead the restriction of its use;

8.2.6.3. The Administrator no longer needs the personal data for the purposes of processing, but they are needed by the Client for the establishment, exercise, or defense of legal claims;

8.2.6.4. The Client has lodged an objection under applicable regulations to the processing—pending the determination of whether the legitimate grounds of the Administrator override those of the Client.

8.2.7. Request the Administrator to provide personal data concerning them in a structured, commonly used, and machine-readable format, which they have provided to the Administrator, and to transmit those data to another administrator without hindrance from the Administrator, if:

8.2.7.1. The processing is based on consent or a contract; and

8.2.7.2. The processing is carried out in an automated manner.


9. Complaint Procedure

9.1. A complaint may be submitted:

9.1.1. In writing—at the address of the Administrator's headquarters, i.e., Global-Biznes Spółka z ograniczoną odpowiedzialnością located at Górczewska 222/69, 01-460 Warsaw;

9.1.2. Electronically—at the email address info@global-biznes.pl.

9.2. The complaint should contain at least:

9.2.1. An indication of how the breach of personal data protection occurred and what that breach consists of;

9.2.2. Information allowing the Administrator to inform about the manner of handling the complaint.

9.3. In the case of submitting one of the requests specified in point 8.2 above, the complaint should contain:

9.3.1. The content of the request;

9.3.2. If necessary—a justification for the request;

9.3.3. Information allowing the Administrator to inform about the manner of handling the complaint

9.4. The Administrator may ask the person submitting the complaint for additional information if it is necessary to process the submission or request.

9.5. If one of the requests specified in point 8.2 above is submitted, it will be processed according to the provisions concerning the complaint procedure. In this case, the Administrator may ask the person making the request to prove their identity to verify whether they are entitled to submit the request.

9.6. The complaint will be processed promptly, but no later than 14 days from the date of submission.

9.7. If the complaint requires additional proceedings, the deadline for processing the complaint may be extended.

9.8. The person submitting the complaint may obtain information from the Administrator about the status of their complaint at any stage.

9.9. Immediately after processing the complaint, the Administrator informs the submitter of how it was handled and what actions were taken regarding the complaint.

9.10. The Administrator communicates with the person submitting the complaint electronically—at the email address provided by the complainant. If the complainant does not provide an email address, the Administrator communicates with them in writing.

9.11. Lack of response to the complaint within 30 days from the date of receipt means that the complaint is considered accepted.

9.12. If the Administrator does not take action regarding the Client's complaint, they will promptly—no later than one month from the date of receiving the request—inform the person concerned about the reasons for not taking action and about the possibility of lodging a complaint with the supervisory authority and utilizing legal remedies before the court.

9.13. If, as a result of examining the complaint, it is determined that there has been a breach of personal data protection, the Administrator will take actions provided for in applicable regulations.


10. Cookie Policy

10.1. On the Administrator's Website, a mechanism known as "cookies" is used, i.e., data files, in particular text files, saved by servers on the Client's end device, which the servers can read each time they connect from that end device.

10.2. Software used for browsing websites (web browser) by default allows the storage of cookies on the Client's end device. Clients can change their cookie settings at any time, in particular to block automatic handling of cookies in their web browser settings or to be informed about each placement of cookies on the Client's device by the website. Such changes may result in difficulties in operating the Website.

10.3. Detailed information on the possibilities and methods of handling cookies is available in the settings of the web browser.

10.4. Most cookies are so-called session cookies, which are automatically deleted from the hard disk after the session ends, that is, after logging out or closing the browser window. Some cookies allow for the identification of the Client during a subsequent visit to the site, as they are not automatically deleted.

10.5. The Administrator uses the cookie mechanism only for informational purposes, to facilitate and improve the operation of the Website for Clients, to better customize the appearance of the Website, and to collect anonymous, aggregated statistics on how Clients use the Website, which helps improve the functionality and content of the Website.


11. Changes to the Privacy Policy

11.1. This Privacy Policy has been in effect since May 25, 2018.

11.2. The Administrator reserves the right to change this Privacy Policy for important reasons, in particular in the case of:

11.2.1. The need to adapt the Privacy Policy to legal regulations or decisions and
judgments of courts or public authorities;

11.2.2. Changes in data, including names, addresses, identification numbers, included in the Privacy Policy; 

11.2.3. Improvements in customer service.

11.3. Clients will be informed of changes to the Privacy Policy through a notice posted on the Website or by sending a notification of the change to the Client's email address.

11.4. Changes to the Privacy Policy do not affect the processing of personal data carried out before the change.


12. Final Provisions

12.1. Any inquiries or issues related to the processing and protection of personal data should be directed to the Administrator in writing, by email, or by phone, to the following contact information: Global-Biznes Spółka z ograniczoną odpowiedzialnością located at Górczewska 222/69, 01-460 Warsaw, contact email: info@global-biznes.pl, contact phone: +48 603 955 733.

12.2. The Administrator may place links on the Website that allow Clients to directly access other websites. This Privacy Policy does not cover websites operated by other entities independent of the Administrator, and the Administrator is not responsible for the processing of personal data by these other entities operating other websites.

12.3. In the event of a conflict between this Privacy Policy and generally applicable laws regarding the protection of personal data, the Administrator will take steps to adapt the Privacy Policy to the requirements of applicable law—however, even during the period preceding such a change in the law, the Administrator will apply the principles of personal data protection resulting from those regulations.