About us
Offer
News
Case Study
Career
PL
Kontakt
Privacy PolicyRegulations
Contact

Personal data processing

Personal data processing

Purposes of Collecting Personal Data Through the Website

Use of Cookie Mechanisms and Other Marketing Tools

Contact Forms, Recruitment Forms, and Order Forms

Principles of Sharing and Entrusting Personal Data (Data Recipients)

Rights of Data Subjects

Transfer of Data Outside the EEA

Retention Period of Personal Data

Automated Decision-Making and Profiling

External Websites

Privacy Policy Updates

Purposes of Collecting Personal Data Through the Website

Contact Forms, Recruitment Forms, and Order Forms

We provide tools that enable users to contact us, obtain necessary information, and provide data to make use of our offer. To ensure maximum transparency, the forms on our websites are accompanied by information on the data controller, the purpose of processing, the legal basis, recipients, storage period, and other information required by applicable law. This allows users, before providing personal data through a form, to review all the necessary information about how their data will be processed.‍

Principles of Sharing and Entrusting Personal Data (Data Recipients)

The Personal Data Controller shares (and entrusts) personal data with other entities (data recipients) on the basis of:

  • legislation in force
  • business decisions on outsourcing selected parts of the business.

When data is shared with entities to which the Personal Data Controller subcontracts services in their name and on their behalf, a written data processing agreement is required. The decision to entrust is preceded by an analysis of the entity's credibility and reliability.

Each decision regarding outsourcing of services requires the Personal Data Controller to analyze whether it is necessary to conclude a data processing agreement.

Rights of Data Subject

All requests regarding the exercise of data subject rights should be submitted:

  • W formie pisemnej na adres: Asseco Data Systems S.A. ul. Narutowicza 136, 90-146 Łódź, Polska z dopiskiem „Inspektor Ochrony Danych”.In writing to the following address: Asseco Data Systems S.A. ul. Narutowicza 136, 90-146 Łódź, Poland with the note "Inspektor Ochrony Danych” [meaning: Data Protection Officer].

If we are unable to identify a person based on the data provided with the request, we will ask the applicant for additional information. Providing such data is not mandatory, but failure to do so will result in our refusal to fulfill the request.

If a request is submitted electronically, we will respond in the same form unless a different form of response is requested. In other cases, we provide responses in writing.

PBELOW IS A DETAILED DESCRIPTION OF DATA SUBJECT RIGHTS:

Funkcja

Right:

How we fulfill it

When we fulfill it

Access to your personal data

  • We provide information on data processing.
  • We provide access to the data being processed
  • We provide information in accordance with Article 15 GDPR.
  • Upon request of the data subject

Rectification of data

  • We correct inaccurate data.

  • Upon request of the data subject

Data portability

  • We provide data in a structured, commonly used, machine-readable format.
  • We transfer data to another controller in cases specified in Article 20 GDPR.

  • Upon request of the data subject, only if processing is based on consent or contractual necessity and carried out by automated means

Erasure of data (the “right to be forgotten”)

  • We promptly erase personal data if there is no legal basis requiring further processing.

  • Upon request of the data subject
  • Only if circumstances under Article 17 GDPR apply (e.g., fulfillment of the purpose for which the data was collected, consent withdrawn, valid objection raised, or other circumstances listed in Article 17 GDPR)

Objection

  • We promptly stop processing.

  • Upon request of the data subject
  • If the person is in a particular situation and the Controller cannot demonstrate overriding legitimate grounds;
  • Only if processing is based on Article 6(1)(e) or (f) GDPR

Restriction of processing

  • We promptly restrict processing of personal data.

  • Upon request of the data subject
  • Only if conditions in Article 18 GDPR apply (e.g., contesting accuracy of data, suspicion of unlawful processing, or other cases specified in Article 18 GDPR)

Not to be subject to automated decision-making, including profiling

  • We do not process data in an automated manner
  • We do not profile personal data in a way that produces legal effects or similarly significant impacts on the data subject.

  • Always, unless the exemptions specified in Article 22(2) GDPR apply.

Withdrawal of consent

  • We stop processing personal data; withdrawal of consent does not affect processing prior to withdrawal.

  • Upon request of the data subject, if consent was the legal basis and has been withdrawn

Information about a personal data breach

  • We inform you about the incident, potential negative consequences, and recommended actions to minimize harm.
  • Without a request, in cases where the breach involves a high risk of negative consequences for the data subject(s)

Transfer of Data Outside the EEA

We take all reasonable measures to store personal data on servers located within the European Economic Area (EEA). For this reason, in the vast majority of cases, we use tools that ensure data is located in the EEA.

However, the use of certain tools on our websites may involve cooperation with providers outside the EEA, requiring the transfer of data outside this area. In such cases, we transfer personal data outside the EEA only when necessary and with adequate safeguards, primarily through:

1
cooperation with entities located in countries for which the European Commission has issued an adequacy decision;
2
use of standard contractual clauses issued by the European Commission, provided that an adequate level of protection is ensured.

Most often, we transfer data to third countries in connection with solutions provided by entities supporting our business, including communication tools via contact forms.

Retention Period of Personal Data

The period for which we process personal data collected through the website is determined by the lifespan of the cookies used. More information on this is provided in the Cookies section. The retention period for personal data provided through contact forms on the website is specified separately in the applicable privacy notices associated with each form.

Automated Decision-Making and Profiling

Asseco does not make decisions in a fully automated manner—that is, based solely on automated processing (without human involvement) that produces legal effects or similarly significant impacts on the data subject. We also do not use profiling based on automated decision-making, that is, decisions made solely by technical means without human involvement that produce legal effects or otherwise significantly affect the profiled person.

Data may be profiled in specific cases, in line with the terms of use established by social media platform operators.

External Websites

Asseco websites may contain links to third-party websites. Asseco Data Systems S.A. has no influence over the privacy practices of those websites and bears no responsibility for them.

Privacy Policy Updates

The Privacy Policy is updated by publishing a new version on the website.

Privacy Notices

Contact forms

Correspondence

Marketing and Public Relations

Newsletter

Privacy Notices

We conduct our activities with respect for the right to privacy and control over personal data. For this reason, we provide transparent information on the purposes and methods of processing personal data. Below we present privacy notices containing detailed explanations of the rules governing personal data processing. Each notice specifies to whom it is directed and in what situation it applies.

CONTACT

Controller

The Controller of personal data collected in connection with the use of the websites is: Asseco Data Systems S.A., ul. Jana z Kolna 11, 80-864 Gdańsk (hereinafter: Controller or Asseco). You may contact the Controller by sending an e-mail to: [email protected].

The Controller has appointed a Data Protection Officer (DPO). You may contact the DPO in all matters relating to the protection of personal data.

Contact

Data Protection Officer

Anna Łompieś

Asseco Poland S.A.

ul. Olchowa 14

35-322 Rzeszów, Poland

Call us
+48 691 992 077
Email
[email protected]
+48 58 740 40 00
[email protected]
Via e-Delivery to the address
AE:PL-14089-47730-WEIDI-24
Asseco Data Systems S.A.
ul. Jana z Kolna 11, Gdańsk, 80–864
Menu
About usOfferNewsCase studyCareerContact
News
Santander Bank Polska develops the Paperless ecosystem - a new stage in digitization of business processes
Asseco Data Systems implements eBOK and mBOK for Szczecińska Energetyka Cieplna
Asseco Supports Daimler Truck Financial Services’ Digital Transformation through the Implementation of the LEO 4 System
Asseco honored for e-Delivery service in "Best Products for Corporations" poll
Easier recruitment to schools and kindergartens in Wrocław - City Hall implements AI Assistant
Asseco and Aruba succeeded in cross-border European Qualified e-Delivery integration
Privacy PolicyRegulations
Copyright © Asseco. All rights reserved