I. GENERAL INFORMATION
II. PERSONAL DATA ADMINISTRATOR
The administrator of personal data is KANRI Soft sp.z o.o. with its registered office in Wrocław (50 – 102) Rynek 36/37, KRS: 0000871300, REGON: 387626099, NIP: 8971886329 (“Administrator” or “Company”).
The Administrator attaches great importance to the protection of the privacy and confidentiality of the Website Users’ personal data (“Users”), with due diligence, selects and applies appropriate technical and organizational measures to protect the personal data being processed. The Administrator protects personal data against disclosure to unauthorized persons, as well as against their processing in violation of applicable law.
The Administrator processes information about the User in accordance with the law, including in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereinafter: GDPR).
The Administrator is entitled to process personal data belonging to the collections of third parties that have been made available to the Administrator only on the basis of an entrustment agreement.
III. SCOPE, LEGAL BASIS AND PURPOSES OF PROCESSING PERSONAL DATA
Data provided voluntarily by the Website User
As part of the Website’s functionality, we enable Users to:
⎯ order a demo version of the KANRI SOFT software, which entitles the Administrator to process the data provided by the User pursuant to Article 6 (1) (b) GDPR (Information clause),
⎯ send an inquiry as part of the contact form, which entitles the Administrator to process the data provided by the User pursuant to Article 6 (1) (f) GDPR (Information clause),
⎯ subscription to the newsletter, which entitles the Administrator to process the data provided by the User pursuant to Article 6 (1) (a) and GDPR (Information clause).
As part of the Website, we also process data about your activity on the Website, such as the number of interactions with individual functions, the amount of time spent on the Website, date and time of using the Website, technical information about the device through which you use the Website, ID of this device. These data are processed for statistical and marketing purposes and to improve the quality of services and functionalities available on the Website, which is the legally justified interest of the Administrator (Article 6 (1) (f) of the GDPR).
When you use the Website, we may store some data on your device in the form of so-called cookies. “Cookies” will help us in various ways, e.g. to maintain the functionality of the Website.
Cookies are not harmful to the device and are only intended to facilitate the work of both you and us. In order to enable the use of “cookies”, Users are entitled to consent before using the Website. You are not obliged to accept “cookies”; however, accepting “cookies” will allow for fully functional use of the Website.
The data contained in “cookies” will be stored for the life cycle of these files on the User’s device.
IV. PERIOD OF STORAGE OF PERSONAL DATA
Personal data processed in order to respond to the complaint will be processed for the period necessary to complete the inquiry. If certain messages may constitute or constitute evidence in proceedings before a court or other authority, they will be kept until the end of the limitation period for any claims or until the final termination of the proceedings, if initiated, whichever is later.
The data processed in order to implement the legitimate interest of the Administrator, in particular statistical and analytical data, will be processed until the User expresses an effective objection to their processing.
The data will also be deleted when it is no longer necessary for the purposes for which it was collected. However, the information necessary to demonstrate that the User has consented to the processing of data for a specific purpose will be processed for a period of 3 years from the date of termination of data processing.
V. SHARING DATA WITH OTHER ENTITIES. DATA RECIPIENTS.
In order to protect your personal data against accidental or unlawful disclosure to unauthorized persons, unauthorized removal, destruction, loss, damage or alteration, as well as processing inconsistent with the law, the Administrator uses technical and organizational measures to protect data processing.
All personal data processed by the Administrator may be accessed only by authorized employees or associates of the Administrator and external entities providing individual services to the Administrator related to the operation of the Website, to whom these data have been entrusted and which are obliged to keep confidential all Users’ personal data to which they have access.
Your data may be entrusted for processing to trusted partners of the Website, including as part of the use of Microsoft Azure.
Personal data of Website users may be made available to entities authorized to receive them under applicable law, including competent state authorities.
VI. USER RIGHTS
The User who provided personal data has the following rights:
- access to the content of your data,
- rectification of data,
- data modification,
- restriction of data processing,
- deletion of data,
- transfer of data processed in an automated manner on the basis of the User’s voluntary consent or processed in an automated manner if their processing is necessary for the performance of the contract to which the data subject is a party or to take action at the request of the data subject, before entering into a contract.
The User also has the right to object, at any time, to the processing of personal data by the Administrator when such processing takes place in order to implement the Administrator’s legitimate interest – if the User exercises this right, we will immediately stop processing his personal data, unless we will able to demonstrate that there are valid, legally valid grounds for further data processing, overriding the interests, rights or freedoms indicated by the User.
If the User exercises one of the above rights, the Administrator will immediately take steps to remove non-compliance with the processing of personal data.
In order to exercise the rights referred to above, you may contact the Administrator via e-mail at the e-mail address firstname.lastname@example.org or by correspondence to the following address:
KANRI Soft sp. z o.o.
50 – 102 Wrocław.
The User also has the right to lodge a complaint with the supervisory authority (the President of the Personal Data Protection Office) if he considers that the processing of data by the Administrator violates the provisions of applicable law, in particular the provisions of the GDPR.
VII. SECURITY OF USER DATA AND CHILDREN
he Administrator undertakes to apply adequate technical measures to achieve the highest possible level of security in the field of User’s personal data, trying to prevent unauthorized access to the data.
The Administrator undertakes to protect data against accidental or unlawful disclosure to unauthorized persons, destruction, loss, damage, alteration and processing inconsistent with the provisions of applicable law.
The Administrator declares that he will not knowingly collect and process personal data from persons under 16 years of age without first obtaining consent from their parents or other legal representatives.
If the Administrator receives information that he has unknowingly obtained personal data of a person under the age of 16, the Administrator undertakes to immediately take action to stop processing the data and delete it.
VIII. FINAL REMARKS
In the event of any doubts as to the content of this Policy, explanations can be obtained by contacting us by e-mail at the following address: email@example.com or by correspondence to the following address:
KANRI Soft sp. z o.o.
50 – 102 Wrocław.