1. The controller of personal data is the Freedom Institute Foundation with its registered office at Hoża 27/14 Street, 00-521 Warsaw, VAT ID: 7010340617, REGON: 146099436, registered in the association register kept by the District Court for the capital city of Warsaw, XII Economic Division of the National Court Register under the number KRS 0000417714 (hereinafter referred to as the “Controller”).
2. The Controller operates the www.szkolaprzywodztwa.pl website (hereinafter referred to as the “Website”).
4. All statements, inquiries, and information concerning personal data may be submitted to the Controller by: a. email to the address firstname.lastname@example.org; b. via the contact form available on the Website; c. in writing to the Controller’s registered office address.
5. The User’s personal data are processed on the basis of Article 6 and other provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as “GDPR”).
6. The User’s personal data are processed for: a. managing the User’s account on the Website; b. responding to inquiries and other messages sent by the User via the contact form or email and for further communication with the User; c. providing the User with information about news, projects, and other marketing or educational information by the Controller; d. conducting recruitment for projects and other activities carried out by the Controller, in which the User expresses interest.
7. The User’s data are also processed for the purpose of executing agreements in which the User is a party, or to take other actions at the User’s request before concluding an agreement.
8. The User’s data are also processed when necessary for the purposes of legitimate interests pursued by the Controller or by a third party (except in situations where the fundamental interests or rights and freedoms of the data subject requiring the protection of personal data prevail over those interests).
9. Recipients of the User’s personal data may include: a. Employees, contractors, subcontractors, and other persons employed or cooperating with the Controller; b. Accounting offices cooperating with the Controller; c. Legal firms cooperating with the Controller; d. Entities providing IT services to the Controller, including web hosting services and email services; e. Entities providing marketing services to the Controller; f. Entities involved in settlement, including providers of invoicing systems, online payment systems, and banks; g. Postal and courier service providers.
10. The User’s personal data may be transferred to third countries, but only in accordance with the conditions described in Article 46 of the GDPR, i.e., provided that appropriate safeguards are ensured by the recipient. In any case, the User is entitled to receive a copy of their data.
11. The User’s personal data will be stored for the period necessary to achieve the purposes of data processing, i.e., for: a. the period of managing the User’s account on the Website; b. the period of maintaining communication with the User, especially the period necessary to provide the User with all requested information; c. the period of project implementation in which the User participates; d. the period of conducting educational and marketing activities by the Controller; e. the period necessary for the proper performance of agreements concluded with the User; f. the period required by law to retain accounting documentation. The User’s personal data will be permanently deleted when all the above-mentioned periods expire.
13. The User has the right to request the immediate rectification of inaccurate personal data concerning them. Considering the purposes of processing, the User has the right to request the completion of incomplete personal data, including by providing an additional statement.
14. The User has the right to request the immediate erasure of personal data concerning them, and the Controller has the obligation to delete the personal data without undue delay (subject to exceptions provided by law) if one of the following circumstances occurs: a. the personal data are no longer necessary for the purposes for which they were collected or otherwise processed; b. the User withdraws consent on which the processing is based, and there is no other legal basis for processing; c. the User objects to the processing as specified in points 18 or 19; d. the personal data have been unlawfully processed; e. the personal data must be erased for compliance with a legal obligation in Union or Member State law to which the Controller is subject; f. the personal data have been collected concerning the offer of information society services directly to a child based on the child’s or their parent’s consent (guardian).
15. The User has the right to request from the Controller the restriction of processing in the following cases: a. when the User questions the accuracy of the personal data – for a period allowing the Controller to verify the accuracy of the data; b. when the processing is unlawful, and the User opposes the erasure of the personal data, requesting instead the restriction of their use; c. when the Controller no longer needs the personal data for the purposes of processing, but they are needed by the User for establishing, pursuing, or defending legal claims; d. when the User has objected to processing as specified in points 18 – until it is determined whether the legitimate grounds on the part of the Controller override the grounds of objection by the data subject.
16. The User has the right to receive the personal data concerning them, which they have provided to the Controller, in a structured, commonly used, and machine-readable format and has the right to transmit those data to another controller without hindrance from the Controller to whom the personal data have been provided. When exercising the right to data portability, the User has the right to have the personal data transmitted directly from the Controller to another controller, where technically feasible.
17. The User has the right to object at any time, on grounds relating to their particular situation, to the processing of personal data concerning them based on the legitimate interests pursued by the Controller or by a third party. The Controller may no longer process such personal data unless they demonstrate compelling legitimate grounds for the processing that override the interests, rights, and freedoms of the data subject, or for the establishment, exercise, or defense of legal claims.
18. The User has the right to object at any time to the processing of personal data for direct marketing purposes, and the Controller is obliged to consider such objection.
19. The User may withdraw their consent to the processing of data at any time. However, it should be noted that: a. the withdrawal of consent does not affect the lawfulness of the processing carried out before the withdrawal of consent; b. despite the withdrawal of consent, the Controller is still entitled to process data within the scope indicated in points 7-8; c. the withdrawal of consent prevents the Controller from maintaining the User’s account on the Website and is equivalent to a request for its closure.
20. Providing personal data is a condition for entering into an agreement to manage an account on the Website.
21. The User has the right to lodge a complaint with the supervisory authority, in particular in the Member State of their habitual residence, place of work, or place of the alleged infringement if they believe that the processing of personal data concerning them violates the provisions of the GDPR.
Cookies Policy of the www.szkolaprzywodztwa.pl website
Cookies should be understood as IT data stored in end-user devices intended for using websites. In particular, these are text files containing the name of the website they come from, the time of storing them on the end device, and a unique number.
The Website does not automatically collect any information, except for information contained in cookie files.
Cookies are intended for using the pages of the website. The operator uses these files to: a. enable logging in and maintaining the user’s session on each subsequent page of the website; b. adjust the content of the website to the user’s individual preferences, mainly by recognizing their device to display the page according to their preferences; c. create anonymous statistics excluding the identification of the user.
In order to ensure the security of the entrusted data, we have developed internal procedures and recommendations to prevent unauthorized access to data. We control their implementation and constantly check their compliance with relevant legal acts – the Personal Data Protection Act, the Act on the provision of electronic services, as well as all kinds of implementing acts and Community law acts.
By default, the software used to browse websites allows the placement of cookies on the end device of the user. These settings can be changed by the user to block the automatic handling of “cookies” in the web browser settings or to inform about each transfer of cookies to the user’s device.
Users of the Website may at any time change their cookie settings. Detailed information on the possibility and methods of handling cookies is available in the software settings (web browser).
Sample options for editing in popular browsers: Mozilla Firefox: Support.Mozilla.Org/Pl/Kb/Ciasteczka Internet Explorer: Support.Microsoft.Com/Kb/278835/Pl Google Chrome: Support.Google.Com/Chrome/Bin/Answer.Py?Hl=Pl&Answer=95647 Safari: Safari.Helpmax.Net/Pl/Oszczedzanie-Czasu/Blokowanie-Zawartosci/
The Website Operator informs that changes to the user’s internet browser settings may prevent the correct operation of the websites.