The document sets forth conditions related to data processing (hereinafter referred to as the “data”) and cookie files within the webpage aircom.ag, run though the website, made available under the following URL: aircom.ag, hereinafter referred to as the „Webpage”.
TABLE OF CONTENTS
- 1. HOW TO CONTACT THE DATA ADMINISTRATOR. 1
- 2. WHAT IS THE BASIS FOR YOUR DATA PROCESSING.. 1
- 3. INFORMATION ON DATA PROCESSING FOR THE PURPOSE OF DIRECT MARKETING AND PROFILING.. 1
- 4. DATA PROCESSING FOR SECURITY REASONS. 1
- 5. INFORMATION ON DATA RECIPIENTS. 2
- 6. INFORMATION ON DATA TRANSFER TO THIRD COUNTRIES. 2
- 7. ABSOLUTE POWERS OF THE PERSONS WHOSE DATA IS PROCESSED.. 2
- 8. RELATIVE POWERS OF THE PERSONS WHOSE DATA IS PROCESSED.. 3
- 9. COOKIE FILES – INTRODUCTION.. 4
- 10. DATA ADMINISTRATOR COOKIE FILES. 4
- 11. THIRD PARTIES’ COOKIE FILES. 4
- 12. CONSENT TO USE COOKIE FILES AND TO MANAGE THEM.. 4
- 13. CACHE. 5
- 14. REFERENCE TO OTHER WEBSITES OR SOFTWARE. 5
- 15. CHANGES TO PRIVACY AND COOKIE FILES POLICY. 5
§1. HOW TO CONTACT THE DATA ADMINISTRATOR
Administrator of the personal data processed within the Webpage is AIRCOM AUTOMOTIVE sp. z o.o. with its registered office in Pietrzykowice, Poland (55-080) at the following address 20B Fabryczna Street, entered into the Register of Entrepreneurs of the National Court Register under KRS number: 0000469603, NIP: 0000715872. The Data Administrator can be contacted under the following phone number: +48 605 501 127 and the e-mail address: firstname.lastname@example.org
§2. WHAT IS THE BASIS FOR YOUR DATA PROCESSING
The legal basis for data processing are always given while the data collection. It results from the Regulation (UE) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repeal of the Directive 95/46/WE (General Data Protection Regulation). The following are explanation of the legal terms used:
- Art 6 point 1 letter a) of the Regulation – personal data is processed on the basis of the expressed consent,
- Art 6 point 1 letter b) of the Regulation – the data is processed for the need to perform a contract or to take action before such a contract is concluded, resulting from a request for data processing.
- Art 6 point 1 letter c) of the Regulation – personal data is processed in order to fulfil legal requirements,
- Art 6 point 1 letter f) of the Regulation – personal data is processed for legitimate interests.
§3. INFORMATION ON DATA PROCESSING FOR THE PURPOSE OF DIRECT MARKETING AND PROFILING
- We may process your data for the purpose of direct marketing. It takes place, for example when we answer your e-mail, providing details of our offer.
- For the purpose of direct marketing, we may use profiling. It is an automated decision on advertisements display. The decision is made on the basis of activities performed by you in the Webpage, in particular on the basis of contracts and pages viewed. In practice, profiling supports usability of our Webpage, allowing to present you content that can potentially be of your interest.
- The data is processed under Art 6 point 1 letter f) of the Regulation.
- Your data will be stored until the time for reaching our target is met.
- You have the right to access your data, rectify it, remove it, restrict its processing, the right to transfer it, the right to file an objection against the data processing and the right to file a complaint to the supervisory body.
- You have the right not to be profiled, unless you have already given your consent to do so. In that case however, the grounds for your data processing would be the previously given consent (Art 6 point 1 letter a) of the Regulation), which can be withdrawn at any time. Also in that case, your data will be processes unless you withdraw the given consent.
- It is voluntary to give this data, however failing to do so may hinder contract implementation of the direct marketing operations.
- The following are your data recipients: hosting provider, e-mail provider, IT provider.
§4. DATA PROCESSING FOR SECURITY REASONS
- From the very moment you enter our website, the following data is processed in order to provide service security:
- public IP of the device that was used for the enquiry,
- web browser type and its language,
- enquiry data and time,
- number of byte sent by the server,
- the URL address of the most recently visited website, in case the visit was made with the same hyperlink,
- information on possible errors that appeared while the enquiry.
- Our legitimate interests for such processing is to run server logs and to secure the Webpage against possible hacker attacks or other kinds of abuse. This include the possibility to establish the IP address of the person performing unauthorised activity within the webpage, such as an attempt to hack security, person publishing prohibited content or making an attempt to perform unauthorised activities using our servers.
- The data is processed under Art 6 point 1 letter f) of the Regulation.
- We are to store such data for the period of time necessary to implement the objectives, not longer than prescription of a claim resulting from separate provisions.
- You have the right to access your data, rectify it, remove it, restrict its processing, the right to file a complaint against its processing, and the right to complain to the supervisory body.
- The Webpage can be used only when such data is provided. Failure to provide the data will make it impossible to use the Webpage.
- The following are the data recipients: hosting provider, IT provider, telecommunication services provider.
§5. INFORMATION ON DATA RECIPIENTS
While processing personal data we use external services. Therefore, recipients of your personal data may also be third parties:
- Hosting provider: H88 S.A. Franklina Roosevelta 22 60-829 Poznań, Poland.
- E-mail hosting provider: Microsoft Ireland Operations Limited, Attn: Data Protection Officer, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland.
§6. INFORMATION ON DATA TRANSFER TO THIRD COUNTRIES
- As we use services of other providers, your personal data may be transferred outside the European Economic Area, i.e. to: the United States of America (USA).
- The European Commission established that some of the states which does not constitute a part of the European Economic Area (EEA) secure personal data in a sufficient way.
- As the country the personal data is transferred to is not acknowledged as safe, transfer of the data is performed under a contract which includes standard data protection clauses, adopted by the European Commission.
§7. ABSOLUTE POWERS OF THE PERSONS WHOSE DATA IS PROCESSED
When writing about powers related to processing your personal data, the powers described below are applied. Possibility to exercise the powers and rights set hereinbelow does not depend on the legal basis for the personal data processing.
Right to access data
You hold the right to obtain confirmation, whether or not we process your personal data. If yes, you have the right to access the data and to receive additional information on:
- processing purposes,
- data category,
- recipients or categories of recipients that the data is or will be disclosed to, in particular recipients from third countries or international organisations,
- when possible, on the planned period of data processing, and when impossible on criteria for establishing this period,
- the right to demand to rectify your data, remove it or restrict processing of your data, the right to file an objection against your data being processed and on the right to file an objection to the supervisory body,
- the source of data, if not gathered from you,
- automated decision making on profiling and on rules thereof, as well as on the importance and anticipated consequences related to your data processing.
Upon receipt of such a request, we are obliged to provide the person with a copy of the personal data under process. In case the request is sent in an electronic way, and no other restriction is received, information is also provided in an electronic way.
Right to rectify data
You hold the right to demand the incorrect personal data to be immediately rectified. Reflecting the processing purpose, you hold the right to demand the incomplete information to be completed, also by presenting additional declarations.
Right for data removal (to be forgotten)
You hold the right to demand the incorrect personal data that apply to you be immediately removed. Should one of the below mentioned circumstances arise, we are obliged to remove the personal data without unnecessary delay:
- consent for the personal data process was withdrawn and no other basis for its processing exist,
- an effective objection against your data processing was filed,
- your personal data was processed with infringement of a law,
- your personal data must be removed in order to comply with the legal obligations,
- your data was gathered in relation with the Information Society offer.
Right to restrict processing
In the following situations, you hold the right to demand restriction of the data processing:
- when you challenge correctness of the data – for the period allowing us to check the correctness;
- when the data processing is inconsistent with the law and you object to have the data removed, demanding in return restrictions of its usage;
- when the personal data is no longer necessary for the processing activities, however you need it to determine, vindicate or secure your claims;
- when you objected to have your personal data processed – for the period necessary to establish whether our legitimate interests are superior over the basis of your objection.
Automated decisions, including profiling
You hold the right not to be the subject of a decision which is solely based on automated processing, including profiling, and produces legal effects towards you or in a similar manner substantially influences you.
The law does not affect should the decision:
- be necessary to conclude or exercise a contract between you and the data administrator;
- be in line with the law of the European Union or a member state and with the law which provides appropriate legal protection measures of your rights, freedom and your legitimate interests; or
- be based on your express consent.
Right to file a compliant
You hold the right to file a complaint to the supervisory body, regarding your data processing.
§8. RELATIVE POWERS OF THE PERSONS WHOSE DATA IS PROCESSED
When writing about powers related to processing your personal data, the powers described below are applied. Possibility to exercise the powers and rights set hereinbelow depends on the legal basis for the personal data processing.
Right to withdraw consent on your data processing
In the case when your personal data is processed on the basis of a consent given by you, you hold the right to withdraw this consent at any time. Withdrawing your consent does not however influence the previous right to process your data.
Right to transfer data
You hold the right to receive the personal data you delivered to us. The data will be transferred to you in a structured and commonly used format that is machine readable. You also hold the right to transfer the data to a different administrator without objections from our side, if the processing activities take place:
- on the basis of a consent or a contract, and
- in an automated manner.
Exercising the right to transfer the data, you hold the right to request the data to be sent immediately to another administrator, if technically possible. The right cannot adversely affect rights and freedom of others.
Right to object
In case we process your personal data under Art 6 point 1 letter f) of the Regulation, you have the right to file an objection against the data processing for the purpose connected with your particular situation.
In such a situation, we cannot process your data unless existence of the following is demonstrated:
- there are important, legitimate interests for the process, whereby the basis must be superior to your interests, rights and freedom, or
- there are basis to establish, vindicate or secure claims
Also, should you file an objection against your personal data being processed for direct marketing purposes, we cannot process your data for such a purposes.
§9. COOKIE FILES – INTRODUCTION
The Webpage website uses cookie files. Those are commonly used small files containing a string of characters. The files are sent by and saved on a terminal device (e.g. computer, laptop, tablet, smartphone) used by the User to visit the website. Such information is send to a memory of the used browser, which sends it back at the next visit at the website. Cookie files can be divided into three categories.
With respect to the purpose for collecting the cookie files three categories can be distinguished, i.a.:
- essential cookies,
- analytic cookies,
- advertise cookies.
With respect to validity, two categories of cookie files can be distinguished:
- Session Cookies – exist until the session is over.
- Permanent Cookies – exist after the session expires.
With respect to the Cookie files’ Administrator, the following can be distinguished:
- our Cookie Files,
- Third parties’ Cookie files.
§10. DATA ADMINISTRATOR COOKIE FILES
The cookie files we manage allow us to:
- secure the Webpage against hacker attacks,
- allow a web browser to “remember” content of fields in the filled in forms (optional).
Thanks to that using functionality of the Webpage is easier and smoother.
§11. THIRD PARTIES’ COOKIE FILES.
The cookie files used by Google Inc. 1600 Amphitheatre Pkwy, Mountain View, CA 94043, the United States, within the following services:
- Google Ads – allow to run advertising campaigns and to assess them,
- Google Analytics – allow to assess the quality of an advertising campaign, run with the usage of the Google Ads service, and to analyse behaviour and movement of users as well as to prepare the movement statistics.
The information gathered by Google Inc is anonymous and collective. In particular, the information does not contain identification features (understood as personal data) of the Webpage’s users. Using the services mentioned, we collect such data as source of users’ acquisition and the way they behave on the Webpage’s website, information on devices and web browsers they use, thir IP address, domain, demographic data (age, sex), interests and geographic data.
We use Cookie files employed by Facebook Inc. 1 Hacker Way, Menlo Park, CA 94025, USA. The files can be used to connect your account with Facebook’s external social network account with the one in the Webpage (if such function is enabled and you use this account). Such files can also be used to process activities you perform in the Facebook app using the “Share” and “Like it” buttons. Processing of such data can be public.
Using the cookie files by the third parties depends on provisions of the privacy and the cookie files policy, used by the entities..
§12. CONSENT TO USE COOKIE FILES AND TO MANAGE THEM
The consent to process cookie files is voluntarily and may be withdrawn at any time. Failure to give the consent for the cookie files to be used can limit possibilities to use the Webpage and its functions, or even prevent you from using the Webpage.
You can give consent to process the cookie files in the following ways:
- using settings of the software which is installed on the terminal device you use,
- by clicking the button which consists declaration of consent for the cookie files to be processed or confirmation that you have read and understood the conditions.
Usually browsers’ settings by default allow storage of cookie files and other information on the terminal device. Should you disagree to save the files, it is necessary to change adequate settings in the web browser. It is possible to enable saving cookie files for all connections. It can be done for a particular web browser or for a particular website. Removal of cookie files is also possible. The way the files are managed depends on the software.
When using the Webpage’s website you can automatically use the cache installed on your device. It is possible to store the inter-session data within the local memory, i.e. between subsequent visits at the Webpage’s website. The cache is used to improve the speed of using the Webpage. It is performed by eliminating situation when the same data was downloaded repeatedly from the Webpage, overloading at the same time the user’s Internet connection. The cache may also store such data as the login password.
§14. REFERENCE TO OTHER WEBSITES OR SOFTWARE
The Webpage can include links to other websites or software. We do not bear any responsibility towards provisions concerning the privacy and cookie files policy applicable on the websites or in software. It is strongly advised to get acquainted with the provisions of privacy and the cookie files policy after entering a website or before installing software.
§15. CHANGES TO PRIVACY AND COOKIE FILES POLICY