Skip to main content

PRIVACY POLICY

  1. GENERAL PROVISIONS

This Privacy Policy is for informational purposes and primarily contains rules regarding the processing of personal data by the Administrator, including the grounds, purposes and scope of personal data processing and the rights of data subjects, as well as information regarding the use of cookies and analytical tools.

  1. ADMINISTRATOR

The Administrator of the Personal Data obtained in the course of its business activities, including through the website, is ConnectPoint Sp. z o.o. based in Warsaw, 21 Zagadki St., 02-227 Warsaw, registered in the Register of Entrepreneurs of the National Court Register by the District Court for the Capital City of Warsaw in Warsaw, XIII Economic Division of the National Court Register under the KRS number 0000347615.

  • INFORMATION ABOUT THE DATA PROTECTION OFFICER.

Pursuant to Article 37 of the RODO Ordinance, the Administrator has not appointed a Data Protection Officer, but has appointed an employee of the Company who performs the operational tasks specified in Article 39 of the RODO Ordinance for the Data Protection Officer. You may contact in matters of protection of your personal data using the contact: e-mail .[email protected]

  1. LEGAL BASIS

Personal data obtained in the course of its activities, including through the website https://connectpoint.pl/, are processed by the Administrator in accordance with the applicable legal regulations, in particular in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) – hereinafter referred to as “RODO” or “RODO Regulation”.

  1. PURPOSE OF PROCESSING PERSONAL DATA

Personal data obtained in the course of business, including through the website https://connectpoint.pl/ and social media, are processed by the Administrator in accordance with the information clauses (indicating the purpose, basis and period of processing of personal data and transfer of data to third parties).

  • LinkedIn information clause
  • information clause correspondence
  • information clause monitoring
  • information clause employees
  • information clause complaints
  • information clause recruitment
  • information clause whistleblowers
  1. INFORMATION ON DATA PROCESSING IN THE FRAMEWORK OF COOPERATION WITH CONTRACTORS

Information on recipients of personal data

Your personal data may be disclosed to the following categories of recipients:

  1. authorized employees and associates of ConnectPoint Sp. z o.o.,
  2. Entities providing services to ConnectPoint Sp. z o.o. including: legal, marketing, placement, postal and courier, IT services.
  3. Companies in our capital group and public authorities or other entities that process personal data on behalf of the controller with security of personal data processing in accordance with Article 28 of the RODO Regulation.

Information about the purposes and legal grounds for processing personal data

Personal data of the Contractor, persons representing the Contractor will be processed by the Administrator on the basis of Article 6(1)(b) RODO for the purpose and to the extent necessary to conclude and fulfill the Agreement, to perform tasks or rights related to the execution of the Agreement, as well as on the basis of the premise indicated in Article 6(1)(c) RODO for the fulfillment of a legal obligation.

The data of contact persons, coordinators, persons responsible for the execution of the Contract were obtained from the Contractor and will be processed in the category of identification and contact data.

Information on the period of processing of personal data

Personal data, will be processed for the duration of the Contract and for a period of 3 years after its execution, unless the data subject raises an objection to the processing of his/her data for reasons related to his/her particular situation, and the Administrator fails to demonstrate the existence of valid legitimate grounds for processing, overriding the interests, rights and freedoms of the person, or grounds for establishing, asserting or defending claims. In the event that claims are brought in connection with the execution of the Agreement, personal data will be processed until the Parties’ legal remedies on this account have been exhausted.

Information on the obligation to provide data

Provision of personal data within the framework of cooperation is obligatory, and the consequence of failure to provide data may be the inability to cooperate.

Information about the rights of data subjects

The data subject may exercise the following rights against the controller:

  1. to request access to and rectification of their personal data (Articles 15 and 16 of the RODO),
  2. to lodge a complaint to the supervisory authority – the President of the Data Protection Authority (Stawki 2 Street, Warsaw).
  3. withdraw at any time the consent you have given, where the basis for data processing is Article 6(1)(a) RODO (consent), with the proviso that withdrawal of consent will not affect the legality of processing carried out on the basis of your consent before its withdrawal.

For the rest, due to the lack of fulfillment of the prerequisites specified in the provisions of RODO, your rights will not be exercised.

Information about automated data processing, including profiling

Your personal data will not be used for automated decision-making, including profiling.

Information about transfer outside the European Economic Area

Your personal data will not be transferred to third countries, i.e. outside the European Economic Area.

  • INFORMATION ABOUT DATA PROCESSING IN THE FRAMEWORK OF ONGOING RECRUITMENT

Information on recipients of personal data

Your personal data may be disclosed to the following categories of recipients:

  1. authorized employees and associates of ConnectPoint Sp. z o.o.,
  2. Entities providing services to ConnectPoint Sp. z o.o. including: legal, marketing, job placement, postal and courier, IT services.
  3. Companies in our capital group and public authorities or other entities that process personal data on behalf of the controller with security of personal data processing in accordance with Article 28 of the RODO Regulation.

Information about the purposes and legal grounds for processing personal data

Your personal data will be processed based on the premise indicated in Article 6(1)(c) of the RODO, i.e. on the basis of the provision of Article 22 [1] of the Labor Code. In the event that an applicant for employment provides, on his/her own initiative, a broader range of personal data than required, it will be processed based on the premise indicated in Article 6(1)(a) of the RODO, i.e. on the basis of expressed consent in the form of a statement or a clear affirmative action, which is the fact of its submission. Based on Article 6(1)(a) of the RODO, data will be processed for future recruitment purposes.

Information on the period of processing of personal data

Your personal data will be processed for the period of execution of the recruitment process for a given position not longer than 3 months from the selection of a candidate for that position, and in the case of future recruitment for a period of 1 year. Data processed on the basis of consent regardless of the indicated period will be processed until it is revoked.

Information on the obligation to provide data

Provision of the data referred to in the advertisements and job offers is required by certain legal regulations and is necessary for the effective conduct of the recruitment process. Failure to provide data will result in the inability to participate in the recruitment process for a given position. Where a candidate provides data in a broader scope than required or for the purposes of future recruitment, he or she provides it voluntarily.

Information on the rights of data subjects

The data subject may exercise the following rights against the controller:

  1. to request access to and rectification of their personal data (Articles 15 and 16 of the RODO),
  2. to request restriction of the processing of his or her data in the situations and under the terms of Article 18 of the RODO, or to have his or her data deleted in accordance with Article 17 of the RODO (“right to be forgotten”),
  3. to withdraw consent at any time without stating reasons and without affecting the legality of the processing performed on the basis of consent before its withdrawal
  4. lodge a complaint to the supervisory authority – the President of the Data Protection Authority (Stawki 2 Street, Warsaw).

Otherwise, due to the lack of fulfillment of the prerequisites specified in the provisions of RODO, the rights will not be exercised.

Information on automated data processing, including profiling

Your personal data will not be used for automated decision-making, including profiling.

Information about transfer outside the European Economic Area

Your personal data will not be transferred to third countries, i.e. outside the European Economic Area.

  • INFORMATION ABOUT DATA PROCESSING IN THE FRAMEWORK OF CORRESPONDENCE

Information about recipients of personal data

Your personal data may be disclosed to the following categories of recipients:

  1. authorized employees and associates of ConnectPoint Sp. z o.o.,
  2. Entities providing services to ConnectPoint Sp. z o.o. including: legal, marketing, placement, postal and courier, IT services.
  3. Companies in our capital group and public authorities or other entities that process personal data on behalf of the controller with security of personal data processing in accordance with Article 28 of the RODO Regulation.

Information about the purposes and legal grounds for processing personal data

The personal data of the persons referred to in paragraph 1 will be processed by the Administrator on the basis of Article 6(1)(f) of the RODO Regulation for the purpose of conducting and recording correspondence between the sender and ConnectPoint Sp. z o.o. to the extent necessary for the execution of processes.

Information on the period of personal data processing

Your personal data will be stored until the current electronic contact is carried out, but no longer than until you withdraw your consent, or until you object to such processing.

Information about the obligation to provide data

Provision of personal data is voluntary, however, necessary for effective contact with the Administrator.

Information about the rights of the data subjects whose data are processed

The data subject may exercise the following rights against the Administrator:

  1. to request access to and rectification of their personal data (Articles 15 and 16 of the RODO),
  2. to lodge a complaint with the supervisory authority – the President of the Data Protection Authority (Stawki 2 Street, Warsaw).
  3. withdraw at any time the consent you have given, where the basis for data processing is Article 6(1)(a) RODO (consent), with the proviso that withdrawal of consent will not affect the legality of the processing performed on the basis of your consent before its withdrawal.

For the rest, due to the lack of fulfillment of the prerequisites specified in the provisions of RODO, your rights will not be exercised.

Information on automated data processing, including profiling

Your personal data will not be used for automated decision-making, including profiling.

Information on transfer outside the European Economic Area

Your personal data will not be transferred to third countries, i.e. outside the European Economic Area.

  1. INFORMATION ON DATA PROCESSING FOR SOCIAL MEDIA USERS (LinkedIn).

Information about recipients of personal data

Your personal data may be disclosed to the following categories of recipients:

  1. authorized employees and associates of ConnectPoint Ltd,
  2. Entities providing services to ConnectPoint Sp. z o.o. including: legal, marketing, placement, postal and courier, IT services.
  3. Companies in our capital group and public authorities or other entities that process personal data on behalf of the controller with the security of personal data processing in accordance with Article 28 of the RODO Regulation.
  4. LinkedIn Ireland and entities authorized to obtain them by law.

Information about the purposes and legal grounds for processing personal data

Personal data will be processed for purposes related to conducting communication within the Administrator’s fanpage available at:

LinkedIn – https://www.linkedin.com/company/connectpoint/ in particular responses to reactions, comments and private messages, as well as for statistical and advertising purposes carried out through tools provided by Social Media. The processing of personal data is based on the legitimate interest of the controller, which is to conduct communication with users of Social Media , Article 6 (1) (f) of the RODO Regulation.

In addition, ConnectPoint Ltd. informs that:

LinkedIn Ireland Unlimited Company is a joint controller of personal data pursuant to Article 26 of the RODO Regulation, with respect to the processing of statistical and advertising data.

Co-administration includes aggregate data analysis for the purpose of displaying Fanpage user activity statistics.

Responsibilities LinkedIn Ireland for the processing of your data for the purposes indicated:

  1. to have a legal basis for the processing of data for the purposes of the site statistics,
  2. ensuring the exercise of the rights of data subjects,
  3. reporting violations to the supervisory authority and notifying, affected persons of the event,
  4. ensuring appropriate technical and organizational measures to ensure the security of your data.

The scope of responsibility of ConnectPoint Sp. z o.o. for the processing of your data:

  1. having a legal basis for the processing of data for statistical purposes,
  2. fulfillment of information obligations with regard to the purposes of processing carried out by the Administrator.

For detailed information on data processing by the Administrator of the LinkedIn portal, please visit the link:

  1. https://www.linkedin.com/legal/privacy-policy?_l=pl_PL.

Information on the obligation to provide data

Provision of personal data is voluntary, but dependent on having a LinkedIn profile account.

Information about the rights of data subjects whose data are processed

The data subject may exercise the following rights against the controller:

  1. to request access to and rectification of their personal data (Articles 15 and 16 of the RODO),
  2. to lodge a complaint with the supervisory authority – the President of the Data Protection Authority (Stawki 2 Street, Warsaw).
  3. withdraw at any time the consent you have given, where the basis for data processing is Article 6(1)(a) RODO (consent), with the proviso that withdrawal of consent will not affect the legality of processing carried out on the basis of your consent before its withdrawal.

For the rest, due to the lack of fulfillment of the prerequisites specified in the provisions of RODO, your rights will not be exercised.

Information on automated data processing, including profiling

Your personal data will not be used for automated decision-making, including profiling.

Information about transfer outside the European Economic Area

ConnectPoint Sp. z o.o. does not intend to transfer data to third countries (i.e. outside the European Economic Area, EEA) or to international organizations. However, the specifics of LinkedIn’s operation and its international nature make it potentially possible to transfer data outside the EEA (this is not dependent on us). Such transfer is based on LinkedIn Ireland Unlimited Company’s standard contractual clauses approved by the European Commission, and in the case of transfer to the US, the European Commission’s Executive Decision of July 12, 2016 introducing the Privacy Shield.

  1. INFORMATION ON DATA PROCESSING WITHIN THE FRAMEWORK OF VIDEO SURVEILLANCE AND GPS SYSTEM

Information about recipients of personal data

Your personal data may be disclosed to the following categories of recipients:

  1. authorized employees and associates of ConnectPoint Sp. z o.o.,
  2. Entities providing services to ConnectPoint Sp. z o.o. including: legal, marketing, placement, postal and courier, IT services.
  3. Companies in our capital group and public authorities or other entities that process personal data on behalf of the controller with security of personal data processing in accordance with Article 28 of the RODO Regulation.

Information about the purposes and legal grounds for processing personal data

  1. video surveillance – personal data in the form of image will be processed in accordance with Article 6(1)(f) of the RODO, i.e. in the legitimate interest of the Administrator manifested in the need to ensure the safety and security of persons and property in the monitored area.
  2. GPS system – personal data will be processed within the framework of location (GPS system) in order to ensure protection of property, optimal use of the fleet of cars belonging to ConnectPoint Sp. z o.o., optimization of costs (Article 223 § 4 of the Labor Code).

Information on the period of processing of personal data

Your personal data will be processed by authorized persons, for the period necessary for the realization of the purposes indicated above, but no longer than 3 months from the registration in the computer system (location data and records of the video surveillance system).

Information about the obligation to provide data

The processing of data in the form of image and location data is necessary to ensure the safety of employees, the protection of property, the control of processes carried out and the confidentiality of information.

Video surveillance does not include sanitary facilities and social rooms.

If the vehicle user has received permission from the Administrator to use the vehicle for private purposes, when the GPS system is switched to private mode, the system does not record location data.

Information on the rights of data subjects

The data subject may exercise the following rights against the Administrator:

  1. request access to and rectification of their personal data (Articles 15 and 16 of the RODO),
  2. to lodge a complaint with the supervisory authority – the President of the Data Protection Authority (Stawki 2 Street, Warsaw).

For the rest, due to the lack of fulfillment of the prerequisites specified in the provisions of RODO, the rights will not be exercised.

Information on automated data processing, including profiling

Your personal data will not be used for automated decision-making, including profiling.

Information about transfer outside the European Economic Area

Your personal data will not be transferred to third countries, i.e. outside the European Economic Area.

  1. DATA PROCESSING INFORMATION FOR EMPLOYEES OF CONNECTPOINT SP. Z O.O.

Information on recipients of personal data

Your personal data may be disclosed to the following categories of recipients:

  1. authorized employees and associates of ConnectPoint Sp. z o.o.,
  2. Entities providing services to ConnectPoint Sp. z o.o. including: legal, marketing, placement, postal and courier, IT services.
  3. Companies in our capital group and public authorities or other entities that process personal data on behalf of the controller with security of personal data processing in accordance with Article 28 of the RODO Regulation.

Information about the purposes and legal grounds for processing personal data

Your data is processed based on the relevant grounds indicated in Article 6(1)(a), (b), (c) and (f) or Article 9(2)(b) and (h) of the RODO) for the following purposes:

  1. performance of the contract within the framework of the employment relationship – Article 6(1)(b) RODO,
  2. organization and execution of the employment process within the framework of the employment relationship – Article 6(1)(f) RODO,
  3. Employee’s exercise of rights provided by labor law in connection with employment – Article 6(1)(c) RODO,
  4. settlement of remuneration and benefits due to the employee in connection with employment – Article 6(1)(b) in connection with Article 6(1)(c) RODO,
  5. fulfillment of public law obligations incumbent on the employer in connection with employment (e.g. US, Social Security, PPK) – art. 6(1)(c) RODO,
  6. in case the data is processed in connection with the implementation of a project financed with EU funds, for the purpose of reporting or accounting for the project – art. 6(1)(b) in connection with art. 6(1)(c) RODO,
  7. to carry out the employer’s obligations in connection with ensuring a safe working environment (OHS) – Article 6(1)(c) and Article 9(2)(b) RODO,
  8. fulfilling the employer’s obligations in connection with occupational medicine – Article 6(1)(c) and Article 9(2)(h) RODO,
  9. contacting an employee by phone or email (private phone and/or email address provided at the recruitment stage) in connection with employment, but not for business purposes- Article 6(1)(c) RODO,
  10. after obtaining additional consent, for purposes related to integration, information, promotional, cultural activities conducted by the Administrator as an employer – Article 6(1)(a) of the DPA,
  11. to establish, defend or assert claims arising from employment – Article 6(1)(f) RODO,
  12. use of video surveillance for employee safety, property protection, information surveillance – Article 6(1)(c) of the DPA,
  13. archiving – Article 6(1)(c) RODO.

Information on the period of processing of personal data

Your personal data will be processed for the period resulting from the applicable legislation, i.e. 10 years. Due to the fact that part of the data may be processed on the basis of consent, the indicated processing period may be shortened, respectively, until you raise an objection, withdraw your consent or the purpose of the processing ceases.

Information on the obligation to provide data

Provision of data for the purposes based on the employee’s consent is voluntary but necessary for the fulfillment of these purposes. In the case of data processed in connection with the employment relationship or on the basis of legal regulations, providing data is mandatory and results from employment regulations, in particular the Labor Code Act, tax regulations, social security regulations. Failure to provide data will result in the Administrator’s inability to employ the person.

Information on the rights of data subjects

The data subject may exercise the following rights against the Controller:

  1. The right to request access to his/her personal data (Article 15 RODO),
  2. The right to request the rectification of his/her personal data (Article 16 RODO),
  3. The right to restrict the processing of its data in the situations and under the conditions indicated in Article 18 RODO, or to have it deleted in accordance with Article 17 RODO (“the right to be forgotten”),
  4. The right to object at any time to the processing of his/her personal data for reasons related to his/her particular situation, as referred to in Article 21(1) RODO.
  5. The right to lodge a complaint against the processing of her personal data by the Administrator to the President of the Office for Personal Data Protection (address: 2 Stawki Street, 00-193 Warsaw),
  6. withdraw consent at any time without stating reasons and without affecting the legality of the processing performed on the basis of consent before its withdrawal.

Otherwise, due to the lack of fulfillment of the prerequisites specified in the provisions of RODO, the rights will not be exercised.

Information on automated data processing, including profiling

Your personal data will not be used for automated decision-making, including profiling.

Information about transfer outside the European Economic Area

Your personal data will not be transferred to third countries, i.e. outside the European Economic Area.

 

 

  • COOKIE POLICY – INTRODUCTION

Our website, https://connectpoint.pl/ (hereinafter: “website”) uses cookies and other related technologies (for convenience, all technologies are referred to as “cookies”). Cookies are also placed by third parties. In the following document, we inform you about the use of cookies on our website.

WHAT ARE COOKIES?

A cookie is a small simple file sent along with the pages of this website and stored by your browser on the hard drive of your computer or other device. The information stored in them can be returned to our servers or to the servers of relevant third parties during your next visit.

WHAT ARE SCRIPTS?

A script is a piece of program code that is used to make our website work properly and interactively. This code is executed on our server or on your device.

WHAT IS A PIXEL TAG?

A web beacon (or pixel tag) is a small, invisible piece of text or image on a web page that is used to monitor web traffic. To do this, various data about you is stored using web beacons.

COOKIES

  1. Technical or functional cookies

Some cookies ensure that certain parts of the site work properly and learn about your preferences. By placing functional cookies, we make it easier for you to visit our website. This way you don’t have to repeatedly enter the same information when visiting our website and, for example, items remain in your shopping cart until you pay. We may place these cookies without your consent.

  1. Analytical cookies

We use analytical cookies to optimize the use of the website for our users. Through these analytical cookies, we gain insight into the use of our website. We ask for your consent to place analytical cookies.

  1. LinkedIn social media platform buttons

We have placed LinkedIn buttons on our site to promote websites or share (e.g. “Tweet”) on social networks such as LinkedIn. This button works using code snippets derived from https://www.linkedin.com/company/connectpoint/ itself This code places cookies. This social media button can also store and process certain information so that personalized ads can be displayed.

Read the privacy statement of these social networks (which may change regularly) to learn how data is processed through these cookies. Retrieved data is anonymized to the extent possible.

PLACED COOKIES

Among the placed files are those related to the operation of analytical tools (Google Analytics), video presentations (YouTube), maps (Google Maps), as well as scripts necessary for the operation of the site. You will find a full list of files by clicking the “customize” button when visiting our site for the first time.

CONSENT

When you visit our site for the first time, we will show you a pop-up window with an explanation of cookies. When you click the “Accept” button, you agree to our use of the categories of cookies and plug-ins selected in the pop-up, as described in this cookie statement. You can disable the use of cookies through your browser, or adjust the extent of their activity through the “Customize” button, but be aware that our site may no longer function properly.

YOUR RIGHTS WITH RESPECT TO YOUR PERSONAL DATA

You have the following rights with respect to your personal information:

  • You have the right to know why your personal data is needed, what will happen to it and how long it will be kept.
  • Right of access: you have the right to access personal data known to us.
  • Right of rectification: you have the right to complete, correct, delete or block your personal data at any time.
  • If you consent to the processing of your data, you have the right to revoke that consent and delete your personal data.
  • The right to transfer data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
  • Right to object: you can object to the processing of your data. We respect this unless there are legitimate grounds for processing.

To exercise these rights, contact us. Please refer to the contact information at the bottom of this cookie statement. If you make a complaint about how we handle your data, we would like to hear from you, but you also have the right to complain to the supervisory authority, i.e. the Data Protection Authority.

ENABLING/DISABLING AND DELETING COOKIES

You can use your web browser to automatically or manually delete cookies. You can also specify that certain cookies may not be placed. Another option is to change your browser settings so that you receive a message each time a cookie is placed. For more information on these options, see the instructions in your browser’s help section.

Please note that our site may not function properly if all cookies are disabled. If you delete cookies in your browser, they will be placed again after you give your consent when you visit our websites again.

CONTACT INFORMATION

If you have any questions about our policy, cookies and statement, please contact us.