Personal data policy


SITECH Poland , which head office is located at Wielicka 28, 30-552 Kraków

VAT number : XXXXXXXXXXXX

Director of the publication : Maciej BATOR

Host

Claranet.

Contact
For any information related to the operation or use of this site, you can write to the SITECH Poland communication department at info@sitech-poland.pl

SITECH Poland (hereinafter referred to as “Company” or “We”), acting in its capacity as data controller, requests that you take note of the methods of processing (i.e. collection, use and sharing) of your personal data, through the present website www.sitech-poland.pl and the use of associated services, for example: blog, forum, etc, in accordance with the applicable laws and regulations regarding the protection of personal data, in particular: (i) Law No. 78-17 of January 6, 1978 relating to data processing, files and freedoms and Law No. 2018-493 of June 20, 2018 relating to the protection of personal data; (ii) Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 (General Data Protection Regulation, hereinafter the “GDPR”), which entered into force on May 25, 2018 ; and (iii) any other normative act, decree, regulation or provision that would be issued by a competent national or European personal data protection authority – hereinafter collectively referred to as the “Applicable Regulations”.

The Company is a company of the MONNOYEUR GROUP, a French Group whose holding company is located at 117, rue Charles Michels – 93200 Saint-Denis France.

What is the scope of this Policy?

The Company is the controller of personal data (i.e., any information relating to an identified or identifiable individual, referred to as a “Data Subject”) about you that is processed through the Site and for the use of the Services, under the conditions set forth in this Privacy Policy (“Personal Data Policy”).

This Privacy Policy, as well as the Cookie Policy available here, applies to all users, including those who use the Site and the Services without being registered or subscribed to a specific service (hereinafter collectively the “Users”).

What types of personal data do we collect?

The Company collects (1) data that you have voluntarily shared with the Company and (2) navigational data related to your access and use of the Site and Services.

In particular, the Company collects the following information:

Data you voluntarily share with the Company: the Company may collect your personal data (e.g., first name, last name, email, address, telephone number, etc.) when you submit a request via an online form on the Site or when you use our Services.

Navigational Data: When you access and use the Site or Services, the Company may collect information about those visits. For example, in order to establish your connection to the Site or Services, our servers receive and record information about your computer, device, and browser, which may include, but is not limited to, IP address, browser type, and other computer software or hardware information. If you access the Site or Services from a cell phone or other device, the Company may collect the device’s unique identifier, geolocation data, and other identifying information about that device. Information may also be collected via cookies and other tracking technologies (such as browser cookies, retargeting, audience measurement, web beacons, and Adobe Flash technologies etc.). These technologies may also be used to collect and store information about your use of the Site or Services, such as the pages you have visited, the online content you have viewed, the internet searches you have performed and the advertisements you have seen. For more information, please see our Cookie Policy here.

Third Party Services: The Services may be associated with websites operated by third party companies not affiliated with the Company, and may include advertisements, online content, and features, games, newsletters, contests or sweepstakes, or applications developed by third party companies. The Company is not responsible for the privacy practices of such third party companies. Once you leave the Services and/or the Site or click on an advertisement, it is your responsibility to check the applicable privacy policy for that other service.

For what purposes do we collect your personal data?

We process data to:

a) Allow you to use the Site and the Services ;

b) Evaluate and improve our Services and related functionality;

c) Improve your experience of using the Site and the Services;

d) To provide you with customer support and respond to your inquiries;

(e) To meet the Company’s interests; in some instances, the Company may disclose your personal data, including when the Company believes in good faith that such data processing is necessary to: (i) protect, exercise, or defend the rights, privacy, safety, or property of the Company or those of its employees, agents, and contractors (including the performance of our contracts and terms and conditions of use); (ii) protect the safety, privacy, and security of users of the Site, the Services, or the public; (iii) protect against fraud or for risk management purposes ;

(f) To comply with legal obligations (including obligations related to the provision of the Services and consumer information), or to respond to requests from public and governmental authorities;

g) To perform a contract for the supply of goods and/or services;

h) Subject to your consent, to carry out marketing operations and to share your personal data with our trusted business partners, including other entities of the MONNOYEUR Group, to enable them to send you marketing messages.

On what legal basis do we process your data?

  • The processing purposes presented in section 3(a) to section 3(e) and section 3(g) of this Personal Data Policy are in principle based on the legitimate interest of the Controller for the purposes of operating the Site, responding to Users’ requests and providing the Services.

As an exception: if you log in to a personal account/customer area of the Site, as part of a service contract with the Company, the processing of the data of this personal account is based on the contract between you and the Company.

  • The purpose of processing set forth in Section 3(f) of this Privacy Policy is based on compliance with applicable legal and regulatory obligations
  • The processing purposes presented in section 3(h) of this Personal Data Policy are carried out on the basis of your consent when required.

How long do you keep your data?

The Company keeps your personal data for as long as it is necessary to fulfill the purposes described in section 3 above.

Your data is kept :

  • For the duration strictly necessary for the use of the Site, the Services, or for the needs of the Company, and for a maximum of 3 years from the date of collection if no contract is concluded with the Company;
  • In the event of the conclusion of a contract or an order, within the framework of the Services or otherwise, for the entire period of the contractual relationship, and then kept in an intermediate archive for a period corresponding to the possible warranty period, to which is added the applicable legal prescription period (5 years in most cases);
  • In the event that the Company is required to fulfil a legal obligation, your data will be processed for the time necessary to fulfil this obligation and as provided for by law;
  • In the context of commercial prospecting operations, 3 years from your last contact with the Company;
  • Until the withdrawal of your consent, in the event that the processing is based on your prior consent;
  • For a period of 25 months from the date of their installation/creation in the case of cookies.

How do we process your data?

Data is processed both manually and electronically, and is protected by appropriate security measures. In this respect, although the Company uses appropriate administrative, technical and organizational measures to protect personal data against theft, loss, unauthorized use, disclosure or modification, it cannot guarantee that it is able to protect itself against all existing computer risks.

Who has access to your data?

In the context of the processing purposes presented in section 3 of this Privacy Policy, your data is communicated internally within the Company, if necessary within the MONNOYEUR Group, to the customer service, marketing/commerce and communication departments. The Company may also communicate your personal data to the following recipients

  • Other entities of the MONNOYEUR Group;
  • Third party service providers, subcontractors (i.e. IT service providers, service providers related to the Services – by way of illustration, and without this list being limitative, experts, consultants and lawyers, companies involved in potential mergers, demergers or other transformations);
  • Competent national authorities: in order to comply with applicable law and also to any administrative or judicial authority that may request or need access to it in the context of a possible control or litigation.
  • Trusted business partners: subject to your consent.

Is your personal data transmitted abroad?

Your personal data may be transferred to other entities of the MONNOYEUR Group and to service providers acting on their behalf who are located in France and/or within the European Union.

We will not transfer any personal data to non-EEA countries.

Minors under the age of 15

The Website is not directed at and does not offer Services to individuals under the age of 15, and the Company does not knowingly collect personal data from individuals under the age of 15 or from minors generally.

Security Measures

The Company implements all appropriate technical and organizational security measures to ensure a level of security of personal data appropriate to the risk, and in particular, to protect data against accidental or unlawful destruction, loss, damage, disclosure or unauthorized access.

The same level of protection is contractually imposed by the Company on all of its contractors. Any employee of the Company who, in the course of his or her duties, may have access to your personal data undertakes to hold it in strict confidence.

What are your rights regarding personal data?

The data concerning you are kept :

  • For the duration strictly necessary for the use of the Site, the Services, or for the needs of the Company, and for a maximum of 3 years from the date of their collection in the absence of a contract with the Company;
  • In the event of the conclusion of a contract or an order, within the framework of the Services or otherwise, for the entire period of the contractual relationship, and then kept in an intermediate archive for a period corresponding to the possible warranty period, to which is added the applicable legal prescription period (5 years in most cases);
  • In the event that the Company is required to fulfil a legal obligation, your data will be processed for the time necessary to fulfil this obligation and as provided for by law;
  • In the context of commercial prospecting operations, 3 years from your last contact with the Company;
  • Until the withdrawal of your consent, in the event that the processing is based on your prior consent;
  • For a period of 25 months from their implantation/creation in the case of cookies.

In accordance with the Applicable Regulations, you have, depending on the situation, the right to access, rectify, delete, limit, portability and oppose the processing of your data as well as the right to withdraw your consent at any time. You also have the possibility to send us your directives in order to organize the fate of your data (conservation, deletion, communication to a third party, etc.) in case of death. You can exercise these rights by writing to the following e-mail address: info@sitech-poland.pl

However, your objection may, in practice and depending on the case, have an impact or make it impossible to take into account your request for information, registration or use of the Services offered on the Site.

You also have the right to appeal to a supervisory authority such as the Commission Nationale de l’Informatique et des Libertés (CNIL) in the event of a breach of the applicable regulations on the protection of personal data and in particular of the European General Data Protection Regulation No. 2016-679 (RGPD) in force since May 25, 2018.

Changes and updates

We regularly update our Personal Data Policy and will post any updates on the Site.

This Personal Data Policy was last updated on September 6, 2022.

Data Protection Officer

The Company has appointed a Data Protection Officer (DPO) whom you may contact for any questions regarding the processing of your personal data and to exercise your rights.

DPO contact details: DPO Monnoyeur – 117, rue Charles Michels BP 169 – 93208 Saint-Denis Cedex 01