I. PROTECTION OF PERSONAL DATA
1. What personal data are we talking about?
I.1. If you wish to contact us via the website www.ecobean.pl (hereinafter: “Service”), you will be asked to provide us with your personal data. Your data will be processed by us for the purposes indicated below.
2. Who processes your personal data?
2.1. The administrator of your personal data is ECOBEAN Sp. z o.o. with its registered office in Warsaw, at ul. Koszykowa 75, 00-662 Warsaw, entered in the register of entrepreneurs of the National Court Register under KRS number 0000761626, with REGON number: 381994554, NIP: 7010895999, e-mail address: rodo@ecobean.pl
2.2. Your personal data shall be processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (Official Journal of the EU.L No. 119, p. 1) (hereinafter “RODO”) and other applicable data protection legislation.
2.3. If you have any concerns about the privacy policy, you may contact the data controller electronically at the email address: rodo@ecobean.pl, or by correspondence by sending a letter to: Chmielna 73, 00-801, Warsaw.
3. What are the purposes and legal bases for processing your personal data?
3.1. Your personal data may be processed in order to get in touch with you (at your request).
3.2. When you contact us via the contact form, you provide us with your data: first name, e-mail address, as data of the sender of the message. You may also include other personal data in the body of the message. The provision of data is voluntary, but necessary in order to make contact. Your data is processed in this case for the purpose of contacting you, and the basis for the processing is Article 6(1)(a) RODO, i.e. your consent resulting from the initiation of contact. The legal basis for the processing after the end of the contact is the legitimate purpose of archiving the correspondence for the purpose of proving it in the future (Article 6(1)(f) RODO).
4. To whom can we pass your data?
4.1. Your personal data may be processed by our employees, as well as subcontractors, i.e. external entities whose services we use, i.e.:
a) the supplier of the software needed to run the Service,
b) provider of the software needed to run the Service’s e-mail boxes,
c) persons who, in providing website support services to us, could potentially gain access to your personal data,
d) provider of business facilitation software,
e) providers of parcel delivery services,
f) the relevant public authorities insofar as the controller is obliged to make the data available to them,
g) entities that may be involved in providing legal or other advisory services to us,
– all entities entrusted by us with the processing of personal data guarantee the application of appropriate measures for the protection and security of personal data as required by law.
4.2. Your personal data may be transferred to international countries/organisations outside the European Economic Area, where these countries/organisations have been recognised by a decision of the European Commission as providing an adequate level of protection for personal data in relation to the level of protection in force in the European Economic Area, or subject to adequate safeguards, which may consist of the use of binding corporate rules, standard data protection clauses adopted by the European Commission, standard data protection clauses adopted by the President of the Data Protection Authority or contractual clauses authorised by the President of the Data Protection Authority.
4.3. Your personal data may be made available to entities and authorities authorised to process such data by law.
5. For how long will we process your personal data?
5.1. Your personal data will be processed by us for as long as we have a legal basis for doing so, whichever of the following grounds applies, i.e:
a) revoke your consent to data processing, if it was the basis for the processing,
b) your objection to the processing of your personal data is accepted – where the processing of your data was based on a legitimate interest of the controller.
5.2. The content of your correspondence may be subject to archiving and we are not in a position to say with certainty when it will be deleted. You have the right to request the history of any correspondence you have had with us (if it is archived), as well as to request its deletion, unless its archiving is justified on the grounds of our overriding interest, e.g. defence against potential claims on your part.
6. What rights do you have in relation to your personal data?
6.1. You have the following rights under the RODO in relation to the processing of your personal data:
a) The right of access to personal data,
b) The right to rectification of personal data,
c) the right to erasure of personal data,
d) The right to restrict the processing of personal data,
e) the right to object to the processing of your personal data where we process your personal data on the basis of Article 6(1)(f) of the RODO, i.e. on the grounds of legitimate interests pursued by the controller, including profiling on the basis of these provisions,
f) the right to data portability,
g) the right to withdraw your consent to the processing of personal data if you have given such consent, whereby the processing of data remains lawful until you withdraw your consent,
h) The right to lodge a complaint with the supervisory authority – the President of the Office for Personal Data Protection.
6.2. The provision of personal data is voluntary, but is necessary in order to get in touch with you.
6.3. The consequence of not providing personal data will be that you cannot be contacted.
6.4. We guarantee you the confidentiality of any personal data you provide to us. We ensure that all security and data protection measures required by data protection legislation are taken. Personal data is collected with due care and is adequately protected against access by unauthorised persons.
6.5. If you wish to exercise your rights, please contact us using the contact details indicated in section 2.3 of the Privacy Policy.
6.6. You can also always request that we provide you with information about what data we hold about you and for what purposes we process it.
II. COOKIES
1. The Website of the Service, like most websites, uses so-called cookies. This means that these files are stored by the servers on the user’s terminal device, e.g. your computer, tablet, smartphone, and can be read each time you connect from that terminal device. Cookies do not change the settings of your device, while allowing you to use all the functions of the Website.
2. Using the appropriate option of your browser, you have the option to manage cookies, which means that you can always change the cookie settings or delete cookies altogether.
Please note that disabling or restricting cookies may cause difficulties in using the Website, as well as many other websites that use cookies.
If you would like to find out more about cookie management, you can consult your browser’s help file.
3. Cookies on the Website are used for:
a) adapting the content of the Website to the user’s preferences and optimising its use; in particular, these files allow the Service user’s device to be recognised and the Website to be displayed appropriately, tailored to the user’s individual needs,
b) to create statistics that help us understand how users of the Website use the website, so that we can improve its structure and content
III. ADDITIONAL INFORMATION
1. The Administrator is entitled to change the Privacy Policy. The changes will be announced by posting the new content of the Privacy Policy on the website of the Service together with an indication of the date from which the new Privacy Policy is effective.
2. This Privacy Policy is effective as of 27.11.2023