The administrator of the Personal Data is :
Łukasz Mackiewicz
running a sole proprietorship under the business name “Łukasz Mackiewicz Kancelaria Radcy Prawnego” in Gdańsk
NIP number: 5842619441
REGON number: 222112276
Tel. 58 500 99 84
sekretariat@kmrp.pl
In connection with the services provided by Łukasz Mackiewicz, as the Personal Data Administrator, he collects and processes personal data in accordance with the relevant provisions, in particular with the Regulation of the European Parliament and of the Council (EU) 2016/679 of 27/04/2016 on the protection of natural persons. in connection with the processing of personal data and on the free movement of such data and the repeal of Directive 95/46 / EC (Official Journal of the EU of 2016 No. 119, p. 1), hereinafter referred to as “GDPR” and the rules for data processing provided for therein .
The Administrator can be contacted via the following e-mail address: sekretariat@kmrp.pl or in writing to the following address: Kancelaria Mackiewicz Radcowie Prawni ul. Jaśkowa Dolina 75/15, 80 – 286 Gdańsk. In order to ensure the integrity and confidentiality of data, the Administrator has implemented procedures allowing access to personal data only to authorized persons and only to the extent that it is necessary due to the performance of their tasks. The administrator uses organizational and technical solutions to ensure that all operations on personal data are registered and performed only by authorized persons.
There are two basic types of cookies: (i) session cookies and (ii) persistent cookies. Session cookies are temporary files that are stored on the user’s end device until they leave the website or turn off the software (web browser). Persistent cookies are stored on the user’s end device for the time specified in the cookie parameters or until they are deleted by the user. We do not collect data for the purpose of further transfer to third parties against payment, but in certain circumstances – clearly indicated – providing personal data is a condition for concluding a contract. The consequence of not providing data is in this case not concluding a contract. The information collected relates to the IP address, type of browser used, language, type of operating system, Internet service provider, information about the time and date, location and information sent to the website via the contact form. The user may at any time disable or restore the option of collecting cookies by changing the settings in the web browser. The cookie management instructions are available at http://www.allaboutcookies.org/manage-cookies
The administrator also takes all necessary steps to ensure that its subcontractors and other cooperating entities guarantee the application of appropriate security measures whenever they process personal data. The administrator conducts risk analysis on an ongoing basis and monitors the adequacy of the data security applied to the identified threats.
If you use the contact form on the website, we process the following data: name, surname, e-mail address, telephone number. Personal data is processed in accordance with the provisions on the protection of personal data and the implemented policy, to the extent and for the purpose necessary to establish, shape the content of the contract, amend or terminate it and correctly implement the services provided electronically, and for the purpose and scope necessary to fulfill legitimate interests, and the processing does not violate the rights and freedoms of the data subject to the extent and for the purpose consistent with your consent
In the event of sending correspondence by e-mail or by traditional means to the Administrator, personal data contained in this correspondence are processed only for the purpose of communication and settling the matter to which the correspondence or related matters related. The legal basis for processing is the legitimate interest of the Administrator (Article 6 (1) (f) of the GDPR), consisting in conducting correspondence addressed to him in connection with the services provided by him. The administrator processes only personal data needed for the case related to the correspondence. All correspondence is stored in a way that ensures the security of personal data and other information contained therein and disclosed only to authorized persons.
In the event of contact by electronic means, the Administrator may request personal data and to the extent that it will be necessary to handle a given case, which the contact relates to. In this case, the legal basis for the processing of personal data is also the legitimate interest of the Administrator, i.e. art. 6 sec. 1 lit. f GDPR, consisting in the need to settle the reported matter related to the provision of the Administrator’s services.
If data is collected for purposes related to the performance of a specific contract, the Administrator provides the data subject with detailed information on the processing of his personal data, at the latest at the time of concluding the contract. In connection with the provision of services, the Administrator also collects personal data during meetings. In connection with the services provided by the Administrator requiring the processing of personal data, we would like to inform you that they may be disclosed to other external entities, including those operating IT systems and equipment, as well as entities providing legal or accounting services and marketing agencies. Other disclosure of personal data to competent authorities or third parties who submit a request for such information may only take place on the basis of an appropriate legal basis and in accordance with applicable law.
The period of data processing depends on the purpose of processing, and may also result from regulations, if they constitute the basis for processing. In the case of data processing on the basis of the Administrator’s legitimate interest, the data is processed for a period enabling its implementation or until an effective objection to data processing is raised. In the event that the processing of personal data is necessary to conclude and perform the contract, the data will be processed until its termination. The data processing period may be extended if the processing is necessary to establish, investigate or defend against possible claims, and after this period, only if and to the extent that it will be required by law. After the expiry of the indicated period, the data will be irretrievably deleted.
Data subjects have the following rights:
a. the right to inform about the processing of personal data (the Administrator, after receiving the notification, provides information on the processing of its data, including the purposes and legal grounds for processing, the scope of the data held, entities to whom they are disclosed and the planned date of their removal.)
b. the right to rectify data (the Administrator, at the request of a person, removes any inconsistencies or errors in the processed personal data, or supplements them in the event that they are incomplete);
c. the right to limit processing (the Administrator, in the event of a notification, ceases to perform operations on personal data and their storage until the reasons for limiting data processing cease to exist)
d. the right to obtain a copy of the data (the Administrator provides copies of the processed data regarding the person submitting the data, and in the case of another request for a copy of the documents, the Administrator will inform about the need to pay a fee depending on the number of copies made).
e. the right to delete data (the Administrator, at the request of a person, will delete data, the processing of which is no longer necessary to achieve the desired purpose for which it was collected).
f. the right to transfer personal data (the Administrator issues the provided personal data to the extent that they are processed in an automated manner or in connection with a concluded contract or consent, in a form that allows them to be read by a computer. In accordance with the regulation, it is possible to send these data to another entity , provided that there are technical possibilities in this regard, both on the part of the Administrator and another entity). g. the right to lodge a complaint (the data subject, in the event that the processing of his personal data violates the provisions of the GDPR or other provisions on the protection of personal data, may submit a complaint to the President of the Personal Data Protection Office).
h. the right to be forgotten (the data subject has the right to request the Administrator to immediately delete his personal data, and the Administrator is obliged to delete personal data without undue delay in a situation where one of the following conditions applies:
i. personal data are no longer necessary for the controller;
ii. the data subject objects to their processing; and iii. the personal data have been unlawfully processed.
The application may be submitted in writing to the following address: Kancelaria Mackiewicz Radcowie Prawni ul. Jaśkowa Dolina 75/15, 80-286 Gdańsk and in the form of an e-mail to the following address: sekretariat@kmrp.pl The Personal Data Administrator without undue delay, and in any case within one month of receiving the request, will provide you with information free of charge in the scope of entitled, you request. You always have the right to lodge a complaint with the supervisory body – the President of the Office for Personal Data Protection, ul. Stawki 2 00-193 Warsaw tel. 22 531 03 00 kancelaria@giodo.gov.pl
In addition, the data will be processed in accordance with the above-mentioned purposes – only by persons authorized by the Personal Data Administrator who are obliged to maintain secrecy. The data will be processed and stored in a form enabling the identification of the data subject for a period not longer than it is necessary for the purposes indicated above – in a manner ensuring sufficient guarantees that the processing of your data meets the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC (general regulation on data protection) (Official Journal of the EU L No. 119, p. 1).
In order to protect personal data, the controller conducts proper supervision over their processing in such a way that it provides appropriate anti-virus software that minimizes the risk of an unprepared leakage of the processed data. It also ensures adequate security of personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction or damage, using appropriate technical and organizational measures in the work environment.