POLITYKA PRYWATNOŚCI STRONY WWW

1. DEFINITIONS
   
   
   1. Administrator - the data administrator, i.e. the entity which decides about purposes and means of personal data processing is Ak Audyt Sp. z o.o. with its registered office in Warsaw at 21 Cybernetyki St., 02-677 Warsaw, registered in the Register of Entrepreneurs of the National Court Register kept by the District Court for the Capital City of Warsaw in Warsaw, XIII Commercial Division of the National Court Register No. KRS: 318940, NIP: 951-22-71-511, REGON: 141679011.
   
   
   2. Personal Data – information about a natural person identified or identifiable by one or more factors specific to physical, physiological, genetic, mental, economic, cultural or social identity, including device IP, location data, Internet identifier and information collected through cookies and other similar technology.
   
   
   3. Policy - this Privacy Policy.
   
   
   4. RODO – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.
   
   
   5. Service – the website operated by the Administrator at www.ak-audyt.pl.
   
   
   6. User – any natural person visiting the Service or using one or more services or functionalities described in this Policy.


2. PROCESSING OF DATA IN CONNECTION WITH THE USE OF THE SERVICE.
   
   
   1. In connection with the use of the Website by the User, the Administrator collects data to the extent necessary for the provision of the individual services offered, as well as information on the User's activity on the Website. Below are described the detailed principles and purposes of the processing of Personal Data collected during the use of the Website by the User.


3. PURPOSES AND LEGAL BASIS OF DATA PROCESSING IN THE SERVICE.

   The Administrator may process User's Personal Data for the purposes and on the legal grounds listed below:

   
   
   1. for the purpose of answering questions asked by the User, including for the purpose of sending a service offer, when requested by the User, addressed to the Administrator by e-mail or through the contact form. The legal basis for the processing of personal data will then be the free and informed consent (Art. 6(1)(a) RODO) given in the contact form or expressed by sending an enquiry via email;
   
   
   2. for analytical and statistical purposes - then the legal basis for the processing is the Administrator's legitimate interest (Art. 6(1)(f) RODO), consisting in conducting analyses of the Users' activities, as well as of their preferences in order to improve the applied functionalities and provided services;
   
   
   3. for the purpose of possible establishment and assertion of claims or defence against claims - the legal basis of the processing is the Administrator's legitimate interest (Article 6(1)(f) RODO), consisting in the protection of the Administrator's rights.
   
   
   4. for marketing purposes - sending marketing content via various channels, i.e. via e-mail, MMS/SMS or telephone. Such actions are undertaken by the Administrator only if the User gave their consent to them, which they may withdraw at any time. In some cases the Administrator may also carry out direct marketing via traditional mail. The User will be informed separately about the intention to carry out this kind of marketing. The User has the right to object to this kind of marketing.
   
   
   5. User activity in the Service, including his/her personal data, are recorded in system logs (a special computer program used for storing a chronological record containing information on events and actions that concern the IT system used for rendering services by the Administrator). The information collected in the logs is processed mainly for the purposes related to the provision of services. The Administrator also processes them for technical and administrative purposes, to ensure the security of the IT system and the management of that system, as well as for analytical and statistical purposes - in this regard the legal basis of the processing is the Administrator's legitimate interest (Article 6 par. 1 lit. f RODO).
   
   
   6. If the User uploads any Personal Data of other persons (including their name, address, phone number or email address) to the Service, he/she can do so only under the condition that he/she does not violate the provisions of law and personal rights of these persons.


4. COOKIES AND SIMILAR TECHNOLOGY.
   
   
   1. Cookies are small text files installed on the device of the User browsing the Website. Cookies collect information facilitating website use, e.g. by remembering User visits to the Website and actions performed by him.
   
   “SERVICE" COOKIES
   
   
   2. The Administrator uses so-called "service" cookies primarily to provide the User with services provided electronically and to improve the quality of those services. Therefore, the Administrator and other entities providing analytical and statistical services to the Administrator use cookies to store information or to gain access to information already stored in the User's telecommunications terminal equipment (computer, telephone, tablet, etc.). Cookies used for this purpose include:
   
   
   1. cookies with data entered by the User (session identifier) for the duration of the session (user input cookies);
   
   
   2. authentication cookies used for services that require authentication for the duration of the session;
   
   
   3. security cookies, such as those used for detecting authentication abuses (user centric security cookies);
   
   
   4. multimedia player session cookies;
   
   
   5. persistent cookies used to personalise the User interface for the duration of the session or slightly longer (user interface customisation cookies).


5. MANAGEMENT OF COOKIE SETTINGS.
   
   
   1. The use of cookies to collect data by means of them, including gaining access to data stored on the User's device, requires the User's consent. This consent may be withdrawn at any time.
   
   
   2. Consent is not required only in the case of cookies, the use of which is necessary for the provision of a telecommunications service (data transmission to display content).
   3. Withdrawal of consent for the use of cookies is possible through your browser settings. Detailed information on this can be found in the following links:
      
      
      1. Internet Explorer: https://support.microsoft.com/pl-pl/help/17442/windows-internet-explorer-delete-manage-cookies
      2. Mozilla Firefox: http://support.mozilla.org/pl/kb/ciasteczka
      
      
      3. Google Chrome: http://support.google.com/chrome/bin/answer.py?hl=pl&answer=95647
      
      
      4. Opera: http://help.opera.com/Windows/12.10/pl/cookies.html
      
      
      5. Safari: https://support.apple.com/kb/PH5042?locale=en-GB
      
      
      
      
      
   4. The User may, at any time, verify the status of their current privacy settings for the browser they are using by using the tools available at the following links:
      
      
      1. http://www.youronlinechoices.com/pl/twojewybory
      
      
      2. http://optout.aboutads.info/?c=2&lang=EN
      
      


6. PERIOD OF PERSONAL DATA PROCESSING.
   
   
   1. The period of data processing by the Administrator depends on the type of service provided and the purpose of processing. As a rule, the data are processed for the time necessary to realize the purposes for which they were obtained and for the time required by legal regulations, until the withdrawal of the expressed consent or filing an effective objection to data processing in cases where the legal basis of data processing is the legitimate interest of the Administrator.
   
   


7. USER RIGHTS.
   
   
   1. The User has the right to access the content of the data and to request rectification, erasure, restriction of processing, the right to data portability and the right to object to the processing of the data, as well as the right to lodge a complaint with the supervisory authority dealing with the protection of Personal Data.
   
   
   2. To the extent that the User's data are processed on the basis of consent, this consent may be withdrawn at any time by contacting the Administrator.
   
   
   3. The User has the right to object to the processing of data for marketing purposes if the processing is carried out in connection with the legitimate interest of the Administrator, and also - on the grounds related to the User's special situation - in other cases where the legal basis of the data processing is the legitimate interest of the Administrator (e.g. in connection with the performance of analytical and statistical purposes).


8. RECIPIENTS OF THE DATA.
   
   
   1. In connection with the provision of services, Personal Data will be disclosed to external entities, including in particular suppliers responsible for the operation of IT systems, entities such as banks and payment operators, entities providing accounting services, couriers (in connection with the execution of the order), marketing agencies (in connection with marketing services) and entities related to the Administrator.
   
   
   2. If the User agrees, his/her data can also be made available to other entities for their own purposes, including marketing purposes.
   
   
   3. The Administrator reserves the right to disclose selected information concerning the User to the competent authorities or third parties, who will request such information on the basis of the relevant legal basis and in accordance with the provisions of the law in force.


9. TRANSFER OF DATA OUTSIDE THE EOG.
   
   
   1. The level of protection of Personal Data outside the European Economic Area (EEA) differs from that provided by European law. For this reason, the Controller transfers Personal Data outside the EEA only when necessary and with an adequate level of protection, primarily by:
      
      
      1. cooperating with processors of Personal Data in countries for which a relevant decision of the European Commission has been issued regarding the finding of an adequate level of protection for Personal Data;
      
      
      2. applying the Standard Contractual Clauses issued by the European Commission;
      
      
      3. the application of binding corporate rules approved by the competent supervisory authority.
      
      
   2. The Controller shall always give notice of its intention to transfer Personal Data outside the EEA at the stage of collection.


10. SECURITY OF PERSONAL DATA.
    
    
    1. The Controller shall carry out a risk analysis on an ongoing basis to ensure that Personal Data is processed by the Controller in a secure manner - ensuring in particular that only authorised persons have access to the data and only to the extent necessary for the performance of their tasks. The Administrator shall ensure that all operations on the Personal Data are recorded and performed only by authorised employees and collaborators.
    
    
    2. The Administrator shall take all necessary measures to ensure that also its subcontractors and other cooperating entities guarantee the application of appropriate security measures whenever they process Personal Data on behalf of the Administrator.


11. CONTACT INFORMATION.
    
    
    1. Contact with the Administrator is possible via the mailing address:/li>

       Ak Audyt Sp. z o.o.
       21 Cybernetyki St., 02-677 Warsaw.
       You can contact the Administrator of your personal data via e-mail: dane.osobowe@ak-audyt.pl on any matter concerning the processing of your personal data.



12. FULL CONTENT OF THE INFORMATION CLAUSES:
    
    
    1. For newsletter recipients – here.
    
    
    2. For persons contacting us via the contact form – here.
    
    
    3. For our contractors – here.
    
    
    4. For our potential Clients – here.
    
    
    5. For the recruitment process – here.


13. CHANGES TO THE PRIVACY POLICY.
    
    
    1. The Policy shall be reviewed on an ongoing basis and updated as necessary.
    
    
    2. The current version of the Policy has been adopted and is effective from 15 November 2021.