§1. General Provisions
The Data Controller is NaviRisk Sp. z o.o. seated in Warsaw at ul. Huculska 5/6, 00-730. The data protection is carried out following the requirements of generally applicable law, and they are processed on secured IT resources.
We respect the right to privacy, and we care about data security.
Personal data provided in all forms available on the Website are treated as confidential and are not visible to unauthorised persons.
The Data Controller reserves the right to make changes to this Policy, and each website User shall be obliged to know and accept its current content.
Data Controller – NaviRisk Sp. z o.o. seated in Warsaw at ul. Huculska 5/6, 00-730.
User – every person or entity visiting the Website and/or using its content.
Newsletter – a free service electronically provided for the User by the Data Controller, consisting in sending information, marketing and other materials ordered by the User, to which the User agrees when subscribing to the Newsletter service.
Processing Entity – an entity to which, following applicable law, the Data Controller has entrusted the processing of data for which they are the Data Controller.
Website -the Website with embedded IT services located at https://wearenavirisk.com.
GDPR – means the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
§3. Data Controller, purpose and extent of data processing.
NaviRisk Sp. z o.o. is the Data Controller of the data provided in the contact forms and saved as part of the Newsletter service, such as name, surname, e-mail address, telephone number, job position, place of work and IP address.
The personal data are processed:
- pursuant to the provisions of the law on the protection of personal data,
- based on your (alleged) consent, if you have left the data in the contact forms on our Website.
and in the scope and for the purposes:
- necessary to establish business relationships and contacts operate the Newsletter, and the correct implementation of other services provided electronically,
- necessary to fulfil Data Controller’s and User’s justified and legitimate interests and purposes, and the processing does not violate the rights and freedoms of the data subject,
- pursue or defence against claims,
- managing and administering the Website, adjusting the content and improving the services,
- creating and maintaining Users’ databases,
- using cookies, as referred to in 6. Cookies and logs
The Data Controller will process the User’s data for the period necessary to achieve the aforementioned purposes and the period required by law.
§4. Rights and Obligations
Each data subject has the right to access their data, rectify, correct, transfer, delete or limit their processing or be forgotten if there are no grounds for their processing, the right to object, and the right to lodge a complaint with the supervisory body.
Contact with the Data Controller is available by e-mail at the following address: firstname.lastname@example.org.
The Service Provider has the right to share the User’s personal data with entities authorised under the applicable law (e.g. law enforcement authorities).
The service provider shall not transfer personal data to any entities other than those authorised under the applicable law.
Personal data are processed only by persons authorised by the Data Controller or by external entities we closely cooperate with.
User’s data may be transferred to third countries, outside the EU and EEA, but only to entities that guarantee adequate protection and security of data and information, approved and/or authorised by the supervisory authority. The transfer of data to a third country may occur due to the Data Controller’s use of external service providers, e.g. Facebook, LinkedIn, Google, Microsoft and their subsidiaries. The User’s data are processed with due diligence and appropriate organisational, legislative and technological security mechanisms.
§5. Cookies and logs
The Website does not collect, and the Data Controller does not process data and information in an automated manner, apart from the information included in cookies and server logs.
Each entry on the Website generates connections and queries to the server where the Website and its services operate. Each such operation above leaves a trace in the form of logs in the system on the server. Logs include User’s IP address, date and time of the inquiry, information about the internet browser, and the device’s operating system from which the User has connected. Logs are saved on the service provider’s server where the Website is maintained. Logs are used to administer the Website and to support its security and are not used for other purposes.
The user may, at any time, disable or reactivate the option of accepting cookies by changing the settings in the web browser.