Technology for Business, Solutions for People
Our mission is to improve quality of life by delivering solutions for people and technology for business.
Asseco is present wherever technology and business intersect with everyday life. The breadth of experience gained across all sectors of the market allows us to create reliable, advanced products. We operate globally, yet we never lose sight of the human and social dimension of our work. The solutions we design contribute to safety, comfort, and financial security. We take full responsibility for the projects we deliver. This is how, for years, we have been building trust and the reputation of our brand.
One of the cornerstones of our business is compliance with laws on privacy and the protection of personal data. We attach particular importance to respecting the privacy of our clients, business partners, and visitors to our websites.
Privacy Policy
The provisions of this Privacy Policy apply whenever you use Asseco websites and the functionalities provided through them (such as contact forms, social media plug-ins, and other communication tools available via the website). Asseco Data Systems S.A. declares that its websites and other tools, including applications delivered and used in our operations, are developed and selected with the highest level of care and in compliance with applicable legal requirements, in particular:
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC. OJ EU L. of 2016, No. 119, p. 1 as amended (GDPR).
- The Act of 12 July 2024 – Electronic Communications Law, Journal of Laws [Dz.U.], item 1221, as amended.
Personal Data and the Rules for Processing
Use of Asseco websites may involve the processing of users’ personal data.
Personal data means any information relating to an identified or identifiable natural person (the data subject). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
Asseco processes personal data based on the following principles:
Principle of transparency, fairness, and lawfulness
We process personal data fairly and in accordance with properly identified legal grounds under GDPR, appropriate for each processing activity. The Personal Data Controller identifies and determines the appropriate legal basis for each processing activity. Only when a legal basis exists. Data subjects are informed in a transparent, accessible, and understandable manner about who will process their data, on what basis, for what purpose, to what extent, and for how long. Data subjects are further informed about: the recipients of the data, their rights and how to exercise them, and whether the data will be transferred to countries outside the EEA and whether the data will be subject to automated decision-making and, if so, what impact this will have on the data subject. The Personal Data Controller ensures that the information obligation will be fulfilled:
- when collecting data from the data subject – no later than at the time of collection, in line with the process in which the data is collected;
- when collecting data from a source other than the data subject – at the latest within 30 days of collection.
Principle of purpose limitation
We process personal data for specific, explicit, and legitimate purposes, and we do not process them further in ways incompatible with those purposes.
Principle of data minimization
We ensure that processed personal data are accurate and, where necessary, kept up to date, taking all reasonable steps to ensure that inaccurate data, in relation to the purposes for which they are processed, are promptly erased or corrected.
Principle of data accuracy
We ensure that processed personal data are accurate and, where necessary, kept up to date, taking all reasonable steps to ensure that inaccurate data, in relation to the purposes for which they are processed, are promptly erased or rectified.
Principle of storage limitation
We store personal data in a form that allows identification of the data subject for no longer than is necessary for the purposes for which the data are processed.
Principle of integrity and confidentiality
We process personal data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing, and against accidental loss, destruction, or damage. For this purpose, we apply appropriate technical and organizational measures, taking into account the risks to which the processed data are exposed (risk-based approach).
Principle of accountability
We process personal data in a way that ensures compliance with GDPR provisions in connection with processing operations. We are required to demonstrate that we have implemented appropriate organizational and technical measures ensuring compliance with applicable law. This demonstration is carried out in particular by adopting appropriate rules, procedures, and policies describing how personal data are to be processed.
CONTACT
Controller
The Controller of personal data collected in connection with the use of the websites is: Asseco Data Systems S.A., ul. Jana z Kolna 11, 80-864 Gdańsk (hereinafter: Controller or Asseco). You may contact the Controller by sending an e-mail to: [email protected].
The Controller has appointed a Data Protection Officer (DPO). You may contact the DPO in all matters relating to the protection of personal data.
