Effective May 25, 2018, Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (commonly known as the “GDPR”), comes into force. The GDPR will apply uniformly across all European Union countries, including Poland, introducing numerous changes in the principles governing personal data processing, which will impact many areas of life, including the use of internet services. This information presents a summary of the most important issues regarding the processing of your personal data that may occur after May 25, 2018, in connection with using our services.

Introduction

Pana/Pani prywatność jest dla nas ważna i dokładamy wszelkich starań, aby zapewnić wysoki poziom ochrony podczas przetwarzania danych osobowych. W obrębie UE / EOG ogólne rozporządzenie o ochronie danych (RODO) obowiązuje od 25 maja 2018 r.

Your privacy is important to us, and we make every effort to ensure a high level of protection when processing personal data. Within the EU/EEA, the General Data Protection Regulation (GDPR) has been in effect since May 25, 2018. In accordance with applicable data protection regulations, MOKO Małgorzata Dądela, as the data controller, is responsible for processing your personal data as described below.

If you have any questions regarding this information or wish to exercise your rights as outlined below, please contact us at the above address or via email: kontakt@moko.marketing

Collection and Processing of Personal Data

The term “personal data” refers to information that can directly or indirectly relate to you as an individual. Examples of such data include your name and surname, registered address, residential addresses, correspondence addresses, business names and locations, NIP (Tax Identification Number), REGON (Statistical Identification Number), PESEL (Personal Identification Number), phone numbers, email addresses, citizenship, or IP address. Processing of personal data refers to any actions we or a third party we have engaged undertake regarding personal data, such as collection, registration, and storage. Personal data may be processed only for specified and explicitly defined purposes and may not later be processed for any purpose beyond these.

At MOKO Małgorzata Dądela, we process personal data provided to us for the purposes of:

For employees, collaborators, and clients:

• Employment;
• Collaboration;
• Service execution.

Legal Basis for Processing and Data Retention Period

The administrator processes data solely in accordance with the law to ensure that fundamental rights of the data subject are not infringed. Data processing in our facility is lawful only in cases where—and to the extent that—at least one of the following legal bases is met:

• The data subject has given consent to the processing for one or more specified purposes;
• Processing is necessary for the performance of a contract;
• Processing is necessary to fulfill a legal obligation or international agreement;
• Processing is necessary for purposes arising from the legitimate interests of the administrator.

Data collected as above are deleted when the processing purposes have ceased or are used for archival, statistical, or historical purposes. Data must be stored for a period of:

• 20 years for accounting documents of contractors;
• 50 years for employee documentation.

Job applicant data are deleted after the recruitment process is completed unless the candidate has consented to the processing of their data in subsequent recruitments. We store such CVs for no longer than 1 year. The candidate must give explicit consent to the processing of data in the recruitment process or future recruitments.

Security Measures to Protect Personal Data

The administrator protects your personal data by employing high-level security measures and has taken appropriate technical and organizational steps to safeguard personal data against unauthorized access, alteration, dissemination, or destruction. The Cookie Policy is available on our website in a separate tab.

Restrictions on Disclosing Personal Data

We provide data of employees, family members of employees, interns, and collaborators to the Accounting Office, Social Insurance Institution (ZUS), Tax Office, and insurers if such a person is covered by additional insurance, such as group insurance. We provide data of clients—collaborating companies—to the Accounting Office, Tax Office, graphic design companies, and social media specialists. We do not send data to third countries. We do not use profiling. The administrator may disclose personal data to third parties, such as the police or other public authorities, if it pertains to criminal investigations or if we are otherwise obligated to disclose such data by law or public authority decision.

According to applicable data protection legislation, you have the right to:

• Request access to processed personal data at any time;
• Correct incorrect personal data;
• Request that the administrator cease processing and delete personal data;
• Request that the processing of personal data be restricted;
• Exercise the right to data portability;
• Withdraw consent for specific processing (if such consent was given);
• Object to the processing of personal data.

In such cases, please contact the data administrator using the contact details provided above. You are also entitled at any time to file a complaint with the competent supervisory authority if you believe that personal data have been processed in violation of applicable data protection regulations.