- who is the administrator of personal data,
- to what extent and for what purpose personal data is processed by us,
- who they are shared with and how they are protected.
We want each person to be able to consciously and freely decide whether they want to provide us with their data or whether and to what extent they will use our services. We make every effort to protect the personal data we collect in accordance with national regulations and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC (General Data Protection Regulation) (Official Journal EU L No. 119/1) – hereinafter referred to as “GDPR”. We encourage you to familiarize yourself with the information provided.
Details of this policy may be information provided at the time of collecting personal data on the occasion of individual services, subscriptions (newsletter), contact forms (request for contact, inquiry, room booking, registration of a course participant, training, negotiation school, contest, promotional campaign, event ).
Administrator. Contact point
We process your personal data as their administrator. The company’s registered office is located in Warsaw at ul. Parallel 4A, 02-235 Warsaw.
To supervise matters related to data protection, we have appointed a special contact point operated by our employee (hereinafter: Data Protection Designated Person). You can contact the Designated Person for Personal Data Protection at firstname.lastname@example.org email@example.com.
What personal data do we collect?
According to the GDPR, personal data is information about an identified or identifiable natural person. When you enter into a relationship with us, depending on the nature of the relationship, we may collect and process all or part of the following categories of personal data:
- Your name, the company you are associated with and your job title;
- Your contact information, such as the name and address of your company or the company you represent, telephone numbers and email addresses you provide to us;
- Your participation in our events such as training and courses, symposiums, congresses, seminars, etc.;
- our communication with you;
- Your interests in our products or services.
Providing your personal data is not a condition provided for in the Act. Remember, however, that refusal to provide them may prevent you from using our services. In a situation where you want to be informed about our offer, news and discounts, providing data is completely voluntary.
We process your data to the minimum extent necessary to achieve one or more purposes. We do not go beyond the scope of data that is specified in a given form (newsletter, contact form, application form, etc.).
For what purpose do we collect and process your personal data?
We process your personal data only on the grounds indicated in the GDPR. They may be processed for the following purposes and depending on the nature of our relationship or the services you will use, use or have already used:
- implementation and management of contacts with the company you are associated with;
- managing our relationships;
- communication with you;
- sending newsletters about our products and services (commercial information), if you expressed such a will and gave us your consent;
- performance of the contract or actions taken before the conclusion of the contract, if, for example, you use or intend to use our training services, courses, e-learning, negotiation school, etc.;
- ensuring compliance with all legal obligations, e.g. to meet the requirements of the Accounting Act or tax laws;
- statistical analysis. We use automated tools to conduct statistical research on general trends in our services and products and interest in our services and products. To conduct our research, we may combine and analyze different types of the above. data. In this situation, we only use aggregated data and do not use names, email addresses or other personally identifiable information.
If you want to establish cooperation with us, use our services or products or ask us a question, you can provide us with your personal data through the contact forms available on our websites. Then we do not require consent to the processing of your data, because we process it based on our legitimate interests, which are answering the question, marketing our products and services (for example, if you want to receive an offer from us) or activities aimed at concluding a contract (in when you intend to sign up for our course, training, e-learning, negotiation school, etc.).
On what legal basis do we process your data?
We process your personal data based on the following legal bases to comply with the legal obligations imposed on us by the GDPR and national regulations:
- based on your consent
If we process your personal data based on your consent, you have the right to withdraw this consent at any time by following detailed processing instructions or instruments allowing for its withdrawal (e.g. via a link in the message you received) or by telephone contact.
- based on our legitimate interests or the interests of third parties
When processing your personal data based on our legitimate interests or those of third parties, we will take appropriate measures to protect you from possible harm. Our legitimate interests may include, for example, marketing purposes (promotion of our products and services). To learn more about the indicated interests, please pay attention to the purposes for which we process personal data listed in point 4.
- on the basis of a concluded contract for the purpose necessary for its performance or on the basis of activities aimed at its conclusion
This basis applies when you sign up for a course, training, e-learning, negotiation school, etc.
How do we collect your data?
Most of the data we process is information that you have provided to us voluntarily. However, in some occasional cases, especially if you use our specific services, we may process personal data that we are able to infer about you based on other information you provide to us and that we obtain in the course of our relationship with you. These data will not be processed longer than necessary or will be deleted immediately.
Where is your data processed?
As a rule, we do not transfer your personal data to anyone outside Konsorcjum doradowo-training S.A. However, we may transfer your personal data to trusted third parties who perform business functions for us or provide us with other services (drivers, couriers, post office, etc.). Such third parties will be required to adequately protect your personal data, based on contracts that meet the requirements of applicable law in this respect or on the basis of relevant laws. Your personal data may also be transferred to the relevant public authorities when required by law (for example, to avoid crime or fraud or to comply with a court order or other legal obligation of a Polish or EU authority or court).
How do we secure your data?
Consulting and training consortium S.A. undertakes to properly protect your personal data in accordance with the adopted internal policies, procedures and standards so that personal data is protected against unauthorized use or access, unlawful modification, loss or destruction. Your personal data will not be stored for longer than it is necessary for the purpose for which they were collected, including the need to comply with legal and tax obligations (e.g. the Accounting Act) and to resolve disputes, pursue claims or defend against them.
How long do we process your data?
The processing time of your personal data varies depending on the purpose for which the data is collected and used by us:
- when we process your data on the basis of your consent, we store it until it is withdrawn;
- if we do it in order to conclude a contract with you, and then to perform it – until its expiration or performance, however, in accordance with the GDPR, these data may be processed after the contract expires, if it is justified, for example for the purpose of pursuing claims or billing purposes . The data provided for the performance of the contract will never be stored for a longer period than necessary;
- data processed for the implementation of our legitimate interest will be processed until you submit a justified objection.
International transfer of personal data
Your personal data will not be transferred to countries outside the European Economic Area where the law may not provide the same level of protection for your data.
What rights do you have?
- Right of access to personal data
At your request, we will provide you with information on whether we process your personal data. We are also obliged, on a separate request, to provide more detailed information on: the purposes of processing, categories of personal data, recipients of data or their categories, the period of personal data storage or the criteria for its determination, the source of data acquisition, about the automated processing of personal data and the consequences of such processing data for your person. In the case of transferring personal data to a third country, we will also inform you about the security measures applied.
- The right to request a copy of the processed personal data
At your request, we will make a copy of your personal data. It will be made available to you in a popular IT file format. The first copy will be provided free of charge. However, for each subsequent one, we may charge a fee in the appropriate amount, which we will determine based on the provisions of the GDPR.
- The right to rectify and delete personal data
If it turns out that your personal data is incorrect, we will remove the irregularities. We will do it on our own initiative – or, if you bring it to our attention – at your request. If you do not wish your personal data to be processed, we will remove it from our databases. Remember, however, that deleting some data may prevent us from providing services to you – this applies to those services in connection with which it is necessary to process personal data that has been made available. For example, we will not be able to provide services related to your user account if you request the deletion of your e-mail and login. Despite your request to delete, however, we will be able to process some personal data on the terms set out in the GDPR.
- The right to limit the processing of personal data
In the cases provided for by the GDPR, we will limit the processing of your personal data at your request. Simply put, limiting the processing of personal data makes it impossible to use them outside of storage. In this case, any other actions on data subject to processing restrictions may be performed only with your consent.
- The right to request the transfer of processed personal data
On the terms provided for in the GDPR, you can request the transfer of personal data saved in a standard machine-readable file format. If your goal is to transfer them to another administrator, we will send a file containing your personal data directly to him.
- Right to object
In some cases, even if we process personal data lawfully, without your consent, you can request us to stop processing your personal data by raising an objection. It will be justified if you prove that our lawful activities nevertheless violate your interests, rights or freedoms.
- The right to withdraw consent to the processing of personal data
Once granted, consent to the processing of information is not granted forever. If for any reason you change your mind, you can withdraw it. In such a situation, if we do not have a separate basis for processing your personal data, we will stop using them for the purpose for which consent was given. Remember, however, that withdrawing your consent may sometimes result in not providing you with interesting content or information. You can withdraw your consent at any time by clicking on the link in the message sent to you or by contacting us at the following address: firstname.lastname@example.org. Withdrawal of consent does not affect the lawfulness of the processing we carried out before its withdrawal.
- Right to complain to the supervisory authority
Due to the entry into force of the GDPR and the adaptation of Polish law to the new reality, the supervisory authority in Poland for respecting your rights in the field of personal data processing is the President of the Office for Personal Data Protection. If you believe that our activities related to the processing of personal data have infringed your rights, you can lodge a complaint with the President of the Office for Personal Data Protection (ul. Stawki 2, 00-193 Warsaw).
Why do we need Cookies? Thanks to the information contained therein, we can compile our statistics, thanks to which we have information about the number of users visiting us and what content was the most popular. Also thanks to them we know what consents you have given and what options you have marked on our website.
The last update took place on April 13, 2023.