§10 Personal data
Pursuant to Article 13(1) and (2) of the RODO (i.e. Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free flow of such data and repealing Directive 95/46/EC) and the Act of May 10, 2018 on the protection of personal data, I inform you that:
1. The Administrator of the User’s personal data is the Service Provider. The Administrator independently performs the tasks of the Data Protection Officer. You can contact the Administrator using the following data: e-mail: rodo@misweb.pl, Phone number: (+48) 530 470 310 or in writing to the Administrator’s address.
2. The User’s personal data provided in the Newsletter Service order form will be processed on the basis of the agreement concluded between the User and the Administrator, the conclusion of which is reached as a result of acceptance of these Regulations, on the basis of Article 6(1)(b) of the RODO (necessity to conclude and/or perform the service) in the case of free service provision.
3.. User’s personal data may also be processed for the following purposes and on the following legal grounds:
a) handling complaints or claims – on the basis of Article 6(1)(b) RODO (necessity to conclude and/or perform the contract);
b) establishing, investigating or defending against claims – on the basis of Art. 6(1)(f) RODO (legitimate interest of the administrator);
c) to create records and registers related to RODO – on the basis of Art. 6(1)(c) RODO (legal obligation) and Art. 6(1)(f) RODO (legitimate interest of the administrator). f RODO (legitimate interest of the administrator);
d) archival and evidential purposes, for the purpose of securing information that can be used to prove facts – on the basis of Article 6(1)(f) RODO (legitimate interest of the administrator);
e) for the purpose of direct marketing to you – on the basis of Article 6(1)(f) RODO (legitimate interest of the administrator). f RODO (legitimate interest of the administrator);
f) for the purpose of sending electronic messages in the form of Newsletter or other free digital Content having the nature of marketing and commercial content – on the basis of Article 6(1)(a) RODO (consent) and on the basis of Article 6(1)(f) RODO (legitimate interest of the administrator). (4) Provision of personal data is voluntary, but necessary for purposes related to the implementation of the Newsletter Service and the implementation of the Administrator’s legitimate interests. Failure to provide them will result in the conclusion and execution of the Newsletter Service being impossible.
5. The User’s personal data will be processed for the period of execution of the service, as well as for the period of securing possible claims in accordance with generally applicable legal regulations.
Thereafter, they will be deleted, unless he decides to use the Administrator’s services and leave them on a different basis and for the purpose indicated to him.
6. The User’s personal data will be shared with other data recipients, such as, for example, services that provide IT system maintenance and hosting, email service provider, mailing service provider (Newsletter), subcontractors and contractors, involved in sending the Newsletter. (7) Due to the fact that the Administrator uses external providers of various services, e.g. Meta Platforms Ireland Limited (Facebook and subsidiaries), Google, Microsoft, etc., User data may be transferred to the United States of America (USA) in connection with their storage on American servers (in whole or in part). Google and Meta Platforms Ireland Limited (Facebook and subsidiaries), based on the European Commission’s implementing decision of July 10, 2023, issued under Regulation (EU) 2016/679 of the European Parliament and of the Council, stating the adequate level of protection of personal data under the EU-U.S. data protection framework, have undergone a certification system and have been certified to ensure the protection of Personal Data at the European Union level. Personal Data will be transferred only to recipients who guarantee the highest data protection and security, including but not limited to: a) cooperation with processors of Personal Data in countries for which the relevant decision of the European Commission has been issued,
b) application of standard contractual clauses issued by the European Commission,
c) application of binding corporate rules approved by the relevant supervisory authority,
or to those whose Personal Data, the User has agreed to transfer. (8) The User has the right to access the content of his/her data, to correct, erase or restrict its processing, the right to object to processing, the right to data portability, the right to request access to data, as well as the right to lodge a complaint to the supervisory authority – the President of the Office for Personal Data Protection, if he/she considers that the processing of his/her data is incompatible with current data protection laws. He also has the right to be forgotten if further processing is not provided for by currently applicable laws.
9. You also have the right to withdraw your consent at any time if you have provided your personal data on the basis of consent. Withdrawal of consent shall not affect the processing of data performed on the basis of consent before its withdrawal. (10) The User’s data will not be processed in an automated manner, including profiling within the meaning of the RODO, which means that the Administrator will not make automated decisions that affect the User’s rights and freedoms. (11) In order to ensure the security of the User and the transfer of data in connection with the use of the Website, the Service Provider shall take technical and organizational measures appropriate to the degree of security threat to the services provided, in particular measures to prevent the acquisition and modification of personal data by unauthorized persons. (12) Detailed rules for the collection, processing and storage of personal data used to process orders through the Site, and the cookie policy are described in the Privacy and Cookies Policy, which can be found at: https://misweb.pl/polityka-prywatnosci/.