The controller of the personal data of the Users of the Website is Kanlux Spółka Akcyjna, with its registered office at ul. Objazdowa 1-3, 41-922 Radzionków, a company entered in the register of entrepreneurs of the National Court Register kept by the District Court in Gliwice, the X Commercial Division of the National Court Register, under KRS No. 0000286139, NIP (Tax-Identification Number): 645-243-27-93, REGON (National Business-Registry Number): 240672104, with a share capital of PLN 35,500,000, fully paid up – hereinafter referred to as “the Controller” or “PDC”.
The content of the Website is subject to the Controller’s rights and is protected by the law.
In order to use the Website, you need to have a computer or a device with software which enables you to browse websites and access the Internet. The Website can be accessed using the most-popular web browsers.
The pages of the Website are free from any content which could violate the rights of third parties or the applicable provisions of Polish law and, in particular, from any content which involves information which could pose a risk or constitute a threat to the privacy or safety of any persons, contains information promoting illegal activities or conduct, any content regarded as offensive, threatening, obscene, defamatory or libellous, evoking racism, persecution for ethnic, cultural or religious reasons, promoting or favouring criminal activities, infringing the rights of third parties, including intellectual property rights, or constituting any other form of violation of legally protected interests.
The personal data of the Users of the Website are protected and processed in accordance with the applicable provisions of the law pertaining to personal data, including the provisions and requirements of Regulation (EU) 2016/679 of the European Parliament, and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data, and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).
The Controller implements technical and organisational measures to ensure the protection of the processed data, appropriate and adequate to the risks and categories of data under protection, and in particular protects the personal data of the Users against unauthorised access, loss, or damage.
You can contact the Controller in relation to your personal data by sending an enquiry to the following e-mail address: firstname.lastname@example.org.
Kanlux S.A. collects and uses the data concerning the Users of the Website obtained from data subjects as a result of the registration of the Account on the Website or the use of certain facilities of the Website. The source of this data is information provided by the Users, including data submitted through the forms available on the Website. The data is provided on a voluntary basis and in compliance with the principle of the autonomous decision-making.
While collecting and processing your data, we adhere to the following principles: reliability, transparency, acting in compliance with the law, processing limited to a specific purpose, the principle of minimisation of data (we collect the data necessary to achieve the specific purpose of the processing within the required time frame), its correctness, storage of data in a form which allows us to identify you for a period not longer than is necessary for the purpose of processing (the principle of limited storage), security of processing, in conditions which ensure the integrity and confidentiality of such data.
Your personal data, which – depending on the purpose of the processing – might include first name and surname, e-mail address, telephone number, company name, job position, and postal address, are processed for the following purposes:
The IT data we collect (such as your IP address, browser type, and the operating system of your computer) allows us to tailor the web pages of our Website to the particular device you use, as well as to ensure transaction security.
The provision of personal data aimed at pursuing the legitimate interest of the Controller, consisting of the direct marketing of its own products or services, is voluntary, but necessary in order to create the Account on the Website.
Direct marketing is carried out in accordance with the relevant provisions of Polish law, including Article 172(1) et seq. of the Act of 16 July 2004 – the Telecommunications The law – and in accordance with Article 10 of the Act of 18 July 2002 on providing services by electronic means.
You can consent to receiving direct-marketing content by checking the box next to the consent clause concerning data processing for marketing purposes.
The messages sent to the e-mail address you have provided for this purpose may contain commercial information within the meaning of the Act of 18 July 2002 on providing services by electronic means (Dz. U. (Polish Journal of The laws) of 2016, Item 1030, as amended).
The marketing information is provided free of charge.
The provision of data in order to create and maintain the Account on the Website is voluntary, but necessary for the fulfilment of this purpose. If the data is not provided, the Account cannot be created. The provision of data in order to use other facilities of the Website is voluntary; however, if the data is not provided, certain permissions or facilities cannot be used.
The recipients of your personal data include the affiliates of Kanlux S.A., as well as the employees, associates, and persons providing services to the Controller and its affiliates, whom the Controller entrusts with the processing of the data, or who will be authorised by them to process such data, in particular the persons who support the Controller in operating the Website and performing the agreement, including in the field of IT services. Personal data is processed by Home.pl S.A., with its registered office in Szczecin, with whom the Controller has signed an appropriate agreement on the processing of personal data for the aforementioned purposes, and which has been commissioned by the Controller and act under its supervision and control.
The Controller does not intend to transfer your personal data to a third country or an international organisation.
No automated decisions, including through profiling, are taken based on your personal data.
Editing and deleting personal data
You have the right to access your data and rectify it if it is inaccurate. In the cases provided for in the provisions of the law, you have the right to demand that your data be deleted and the processing be restricted, and the right to transfer the data and to object to its processing.
For reasons related to your particular situation, you have the right to object to the processing of your data, even when such processing is based on a legitimate interest of the PDC (Article 6(1)(f) of the GDPR). You may also object to the processing of your data for direct-marketing purposes, including for the purposes of profiling.
Your data will be stored for the period specified in the provisions of the law, in particular until any possible claims arising from the concluded agreement, or from the carrying out of business activities, become time-barred. The data made available for marketing purposes or for the purposes of maintaining the Account on the Website will be stored until the relevant consent is withdrawn.
You may withdraw the consent to the processing of your data for marketing purposes by sending a consent-withdrawal notice to the following e-mail address: email@example.com, or to the address of the Controller’s registered office: ul. Objazdowa 1-3, 41-922 Radzionków.
Users may, at any time, consent once more to the processing of their data for marketing purposes.
The withdrawal of consent to the processing of data does not affect the legality of the processing carried out on the basis of the consent prior to its withdrawal, or the appropriateness of the activities which constitute the fulfilment of the purpose of processing.
Once the processing of your personal data for the original purpose has been completed, the data will not be processed for any other purpose.
You can see the personal data collected by us after logging in to your Account. You can edit and delete such data through the Website support. In order to edit or delete your personal data, please send an appropriate message via electronic mail to the following address: firstname.lastname@example.org. or by post to the address of Kanlux S.A.: ul. Objazdowa 1-3, 41-922 Radzionków.
The protection of privacy
Kanlux S.A. implements security measures aimed at protecting the Users’ data against loss, modification, or misuse. We undertake to protect any information provided to us by the Users of the Website, in accordance with the standards of security and confidentiality.
We do not monitor or verify information about the age of the Users of the Website. Subject to the applicable provisions of the law, minors should not send any information or subscribe to the services provided on our Website without the knowledge and consent of his or her parents or legal guardians, including without their consent to the processing of the personal data of the persons under their care.
Should we breach the personal-data-protection regulations while processing your personal data, you have the right to file a complaint with the supervisory authority, i.e. with the President of the Personal Data Protection Office.
The Website uses text files referred to as cookies.
The cookies are saved by the server on the Customer’s computer.
In order to use the Website of the Service Provider, the Customer must consent to the storing of cookies on his or her computer. Failure to give this consent can prevent the Customer from using the Website of the Service Provider or render such use more difficult.
The cookies are not used to collect personal data.
The cookies do not change the configuration of the Customer’s computer, they are not used to install or uninstall any computer applications, and they do not interfere with the integrity of the Customer’s system or data.
The Service Provider reserves the right to use the services of third parties in the field of compiling statistics on the use of the web pages of the Website. The Service Provider declares that in such cases no data allowing the identification of the Customers are disclosed to such entities.
Three types of cookies are used on the Website of the Service Provider: “session cookies”, “persistent cookies”, and “performance cookies.”
Session cookies are temporary files stored on the Customer’s end device until they log out (leave the website).
Persistent cookies are stored on the Customer’s end device for the period specified in the parameters of the given cookie or until they are deleted by the Customer.
Performance cookies facilitate a better understanding of the manner in which the Customer interacts with the content of the website of the Service Provider. They collect information about the way the Website is used and the type of website the Customer was redirected from, as well as the number of visits and the time the Customer has spent on the Website of the Service Provider. Such data do not record any specific personal data of the Users, but are used to compile statistics on the use of the Website.
In accordance with the applicable provisions of the Act of 16 July 2004 – the Telecommunications The law (Dz. U. No. 171, Item 1800, as amended), you have the right to decide to what extent the cookie files should have access to your computer, by selecting them beforehand in your browser window.
The instructions provided by the manufacturers of web browsers regarding the management of cookie files are available under the following links.
Mozilla Firefox: http://support.mozilla.org/pl/kb/ciasteczka
Internet Explorer: http://support.microsoft.com/kb/278835/pl
Google Chrome: http://support.google.com/chrome/bin/answer.py?hl=pl&answer=95647
The Controller reserves the right to introduce changes to, withdraw, or modify, the functions or facilities of the web pages of the Website, or to discontinue its operations, transfer to others the rights to the Website, and perform any legal acts permitted by the applicable the law. Any action taken by the Controller must not violate the rights of Users.
Date: 24 May 2018