PRIVACY POLICY
General information
We believe in the power of scieRespecting the right to privacy and data protection of persons who make their personal data available to us, including Clients, contractors, researchers, we inform you that the data obtained by us is processed in accordance with the provisions of EU and national (polish) law and under conditions guaranteeing its security. The administrator of the personal data (hereinafter referred to as “ADO”) collected via the website is GENUIN limited liability company with its registered office in Warsaw, Modlińska Street 175A/7, 03-186 Warsaw.nce and genius of people. We solve real health challenges,
Legal basis for data processing
- Personal data collected by ADO are processed in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereinafter referred to as “GDPR”), the Act of 10 May 2018 on the protection of personal data (Journal of Laws 2019, item 1781, as amended) and the Act of 18 July 2002 on the provision of electronic services (Journal of Laws 2020, item 344, as amended).
- The ADO only processes personal data that the user has provided in connection with the use of the website. The data processing takes place within the scope of:
- to conclude and perform the contract, including for the invoicing or billing and performance of the service (data scope: name, surname, address, delivery address, e-mail) – Article 6(1)(b) GDPR;
- to assert claims (scope of data: name, address, delivery address, e-mail, other data necessary to prove the existence of a claim or to defend rights) – Article 6(1)(f) GDPR;
- fulfilment of ADO’s legal obligations in connection with the conduct of its business activities (scope of data: any data obtained from the user) – Article 6(1)(c) GDPR;
- to carry out its own marketing and promotional activities (data scope: name, surname, address, e-mail, telephone number) Art. 6(1)(f) GDPR;
- to carry out marketing and promotional activities on the basis of a separately granted consent – Article 6(1)(a) GDPR;
- to send commercial information by electronic means pursuant to Article 10(2) of the Act of 18 July 2002 on the provision of electronic services , including the sending of newsletters (data scope: name, surname, address, delivery address, e-mail) after receiving an explicit consent – Article 6(1)(a) GDPR;
- use of telecommunications terminal equipment and automatic calling systems for direct marketing purposes after receiving an explicit consent, in accordance with Article 172 of the Act of 16 July 2004 Telecommunications Law (Journal of Laws of 2021, item576, as amended).
What data does ADO collect?
-
- ADO collects or may collect the following personal data through the contact form available on the site or direct contact from the user (email, telephone):
- identification data (including name, surname, date and place of birth);
- contact details (telephone number, address, e-mail address);
- employment data;
- technical information (IP address, browser type and version, time zone settings, browser plug-in – in types and versions, operating system used, device type, hardware model, MAC address, unique identifiers and mobile network information;
- other data provided by you in the course of your contact with ADO.
- In connection with filling in the contact form or subscribing to the newsletter subscriber list, the user is given access to this Privacy Policy and data about ADO. The provision of personal data is voluntary, but necessary in order to contact ADO or to provide the newsletter service.
- Viewing the content of the website does not require the provision of personal data other than automatically acquired information about connection parameters.
- ADO collects or may collect the following personal data through the contact form available on the site or direct contact from the user (email, telephone):
Profiling of collected data
-
-
- ADO uses Google Analytics for its own purposes, in order to integrate the site for a specific user in the best possible way. Google Analytics does not use personally identifiable information and does not share IP addresses.
-
User rights
-
-
- ADO shall ensure that the rights referred to in paragraph 2 below are exercised by users. In order to exercise the rights, an appropriate request should be sent by e-mail to: […] or directly to the address of GENUIN limited liability company i.e. to Modlińska Street 32A175A/167, 03-114 186 Warsaw.
- The user has the right to:
- access to the content of the data;
- rectification/updating of data;
- deletion of data;
- restriction of data processing;
- data portability;
- to object to the processing of data;
- withdraw the consent given at any time, whereby the withdrawal of consent shall not affect the lawfulness of the processing carried out on the basis of consent before its withdrawal;
- to lodge a complaint with the supervisory authority, i.e. the President of the Office for Personal Data Protection.
- ADO shall process the submitted requests immediately, but no later than within one month of receipt. However, if – due to the complexity of the request or the number of requests – ADO is not able to consider the user’s request within the indicated timeframe, it shall inform the user of the intended extension of the timeframe and indicate a timeframe for the consideration of the request, but not longer than 2 months.
- The ADO shall notify the rectification or erasure of the personal data or the restriction of the processing it has carried out in accordance with the user’s request to any recipient to whom the personal data have been disclosed, unless this proves impossible or involves a disproportionate effort.
-
Release of information
-
-
- In order to perform the programme, ADO may share the data collected with entities including: employees, associates, courier companies, , entities providing IT services. In such cases, the amount of data transferred is limited to the required minimum. Personal data may be made available to the competent public authorities if required by applicable law.
- To recipients not mentioned above, the personal data processed are not made available externally in a form that would allow any identification of users.
-
Technical measures
-
-
- The ADO shall use its best endeavours to secure personal data and protect them from third parties, and shall perform data security supervision throughout the data processing period in such a way as to ensure protection against unauthorised third party access, damage, distortion, destruction or loss.
-
Transfers of personal data outside the European Economic Area
-
-
- Personal data may be transferred to third countries, but this is done with due care and in accordance with Art. 49(1) GDPR.
-