I. Information on processing of personal data
- We inform you below about the processing of personal data when you use our website and when you order goods. Personal data is all data that can be identified, such as name, address, e-mail address, user behavior.
- The controller of personal data under Article 4 Para. 7 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons regarding the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: „GDPR”) is:
EMA Legal Advisory Sp. z o. o.
Address: Szafarnia No. 11 office F8,
postal code: 81-198, Gdańsk, Poland
National Court Register Number: 0000899511
National Business Registry Number: 388874764
Tax Identification Number: 5833429089
- Your personal data is processed using appropriate technical and organizational measures to ensure the protection of such data. Despite the use of security measures in accordance with current knowledge and standards, it is not possible to fully exclude the risk of personal data being used by unauthorized persons as a result of data theft.
- When you contact us by e-mail, the data you provide (e-mail address, name, and telephone number where applicable) will be stored by us to answer your questions. We delete the data created in this context once storage is no longer necessary or restrict processing if there are statutory storage obligations.
- Your personal data will be processed exclusively for:
- using our website based on your interest in our offer (the basis of Article 6 Para. 1 letter b of the GDPR);
- processing your requests.
- fulfilling a legal obligation, if such an obligation is imposed on us (the basis of Article 6 Para. 1 letter c of the GDPR);
- archival (evidential) to secure information in the event of a legal need to prove facts, which is our legitimate interest (basis in Article 6 Para. 1 letter f of the GDPR);
- for the possible establishment, investigation or defense against claims, which is our legitimate interest (basis in Article 6 Para. 1 letter f of the GDPR);
- the sending of commercial information if you have consented to receive commercial information (legal basis in Article 6 Para. 1 letter a of the GDPR);
- If we have obtained your personal data based on your consent, it will be stored until you withdraw your consent, unless a different storage period results from specific provisions. In other cases, your personal data will be stored until the agreed service is fully performed, and respectively until the expiration of the statute of limitations for claims arising from each contract. Regarding data resulting from the performance of mutual settlements and accounting data, until the expiration of the storage period under specific provisions (such as the Accounting Act).
- Without your express consent, EMA Legal Advisory Sp. z o. o. does not provide your personal data to companies or third parties, which could use them for their own purposes. An exception is the authorized state authorities, acting under applicable law, to which we are obliged to provide your data.
- If you place an order for services, we may pass your details to other service providers whom we have engaged to provide services on our behalf (e.g., your future provider of virtual office services, bookkeeping and such). However, these service providers are required by their respective contracts to use the data entrusted to them only in accordance with our instructions and for the specific purpose specified by us. We also oblige them to adequately secure your data and to keep it confidential.
- Your personal data will not be transferred to third countries.
II. Your rights
- You have the following rights with respect to your personal data:
- The right to information about the processing of your personal data as set out in Article 12 of the GDPR
As a Controller, we are obliged to provide you, as data subjects, with the information set out in the GDPR (e.g. about your data, the purposes and legal basis for the processing of your personal data, the recipients or categories of recipients of your personal data, if any, or the period for which the data will be processed or the criteria for determining this period); this obligation must be fulfilled already at the time of data acquisition (i.e. If the data are not obtained from the data subject, but from another source – within a reasonable period of time, depending on the circumstances; the controller may refrain from providing this information if the data subject already has it.
- The right to access and request a copy of your personal data as referred to in Article 15 of the GDPR
When you provide us with personal data, you have the right to inspect and access it; however, this does not mean that you have the right to access all the documents on which your data appears, as these may contain confidential information; Nevertheless, you have the right to be informed which of your data and for what purpose we process it and the right to obtain a copy of your personal data, the first copy of which we will provide free of charge, and for every subsequent copy we will be entitled under the provisions of the GDPR to charge an appropriate administrative fee corresponding to the costs of making such a copy and providing it to you upon request.
- The right to rectification or updating of data referred to in Article 16 of the GDPR
If your personal data has changed, we kindly ask you to inform us about such change. as the Administrator we should update the data in our possession in accordance with the actual status; also, if there has been no change in your personal data, but for whatever reason your data is incorrect or has been recorded incorrectly (e.g. as a result of a typing error), we kindly ask you to inform us in order to correct or rectify such data.
- The right to erasure of personal data (right to be forgotten) as referred to in Article 17 of the GDPR
You are entitled to request the so-called „erasure” of your data held by us as Controller and the right to request us as Controller to inform any entities processing your data on our behalf to which we have transferred your data of the need to erase them. You may request the erasure of your personal data primarily where:
- the purposes for which the personal data was transferred have been fulfilled, e.g. we have performed the contract concluded with you in full,
- the basis for the processing of your personal data was solely your consent, which was subsequently withdrawn and we, as the Administrator, have no other legal basis for further processing of your personal data,
- you have lodged an objection based on Article 21 of the GDPR and you consider that we do not have any overriding legal grounds allowing us to continue processing your personal data,
- your personal data has been processed unlawfully i.e. for unlawful purposes or without any basis for processing your personal data – please note that in this case you must have a basis for your request,
- the necessity of deletion of your personal data results from legal regulations.
- The right to restrict processing referred to in Article 18 of the GDPR
You have the right to request that we, as the Controller, restrict the processing of your personal data (which would consist of our company primarily just storing it until the dispute is resolved), in particular if:
- You question the accuracy of the personal data provided, or
- you are of the opinion that we are processing your data without a legal basis, but at the same time you do not want us to delete the personal data (i.e. you do not exercise the right referred to in para. 1 d above), or
- you have objected to the processing of your data as referred to in para. 1 g below, or
- your personal data is necessary for us to establish, assert or defend our claims e.g. in legal or other proceedings;
- The right to data portability as referred to in Article 20 of the GDPR
You are entitled to obtain your data in a computer-readable format and the right to have that data sent in such a format to another controller; you only have this right if the basis for the processing of your data was consent or the data was processed by automated means.
- The right to object referred to in Article 21 of the GDPR and the right not to be subject to automated decision-making (profiling) referred to in Article 22 in conjunction with Article 4 Para. 4 of the GDPR
You have the right to object to us if you do not consent to our processing of your personal data that we have previously processed for legitimate lawful purposes; in particular, the right to object applies to the processing of your personal data for direct marketing purposes.
Furthermore, by using contact form on our website you will not be subject to automated decision-making or profiling within the meaning of the GDPR unless you consent to it; in addition, we will always inform you about profiling, should it take place.
- Right to withdraw granted consent to processing of personal data
Furthermore, you have the right to withdraw your consent to the processing of your personal data at any time if your data are processed on the basis of your consent. We would also like to point out that the withdrawal of your consent shall not affect the lawfulness of the processing of your data which was performed based on the consent given before its withdrawal.
- Right to lodge a complaint to the President of the Office for Personal Data Protection referred to in Article 77 of the GDPR
In addition, you also have the right to lodge a complaint with the supervisory authority for data protection in relation to our processing of your personal data, i.e.
Prezes Urzędu Ochrony Danych Osobowych
Adress: Stawki 2, 00-193 Warszawa
Phone: 0048 22 531 03 00
- Objection to or withdrawal of data processing
If you have given your consent to the processing of your data, you may withdraw it at any time. Such withdrawal of consent will affect the processing of your personal data after you have provided us with your statement of withdrawal of consent.
If the processing of personal data is based on a consideration of interests, you may object to the processing. This is the case if the processing is not necessary for the performance of a contract with you in particular, as described by us in the description of functions below. When raising such an objection, we ask you to explain the reasons why we should not process your personal data in the way that we have done. In the event of your justified objection, we will examine the situation and stop or adjust the processing or indicate to you compelling reasons deserving protection on the basis of which we will continue the processing.
You may, of course, withdraw your consent to the processing of your personal data at any time or object to the processing of your personal data for advertising and data analysis purposes. You can inform us of your objection by using the contact form which you can fin on our website [polishyourcompany.com]
III. Collection of personal data when visiting our website
- when you use the website for information purposes only, i.e. if you do not provide us with personal data in any way or for any other purpose, we only collect personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary to display our website and to guarantee stability and security (legal basis is Article 6 Para 1 sentence 1 letter f GDPR):
- IP address
- Date and time of the request
- Time zone difference with respect to Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Access/HTTP status code
- Each amount of data transferred
- Website from which the request originated
- Operating system and its interface
- The language and version of the browser software.
- in addition to the data mentioned above, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on the hard drive of the browser you are using and through which certain information flows to the place that sets them (here: us). Cookies cannot run programs or transmit viruses to your computer. They serve to make the online offer generally more user-friendly and efficient.
This website uses the following types of cookies, the scope and function of which are explained below:
Short-term session cookies (see a)
Long-term persistent cookies (see b)
- Temporary cookies are automatically deleted when you close your browser. This applies in particular to session cookies. They store a so-called session identifier with which different browser requests can be assigned to a common session. This makes it possible to recognise your computer when you return to our website. Session cookies are deleted when you log out or close your browser.
- Persistent cookies are automatically deleted after a specified period of time, which may vary depending on the cookie. You can delete cookies manually at any time in your browser security settings.
You as a user can configure your browser settings according to your wishes and, for example, refuse to accept third-party cookies or all cookies. Please note that you may not be able to use certain functions of the website.
Cookies are never used to personally identify you and never provide confidential or personal information.
All cookies already on your computer can be deleted. Most browsers also offer a blocking option At any time, you can change your cookie settings yourself and determine the conditions under which cookies are stored on your device and accessed. You can change your cookie settings through your browser settings or through the configuration of the service. For detailed information about the storage of cookies in your browser, you can change the settings on the page of the website browser you are using.
The most common browsers are:
- Internet Explorer
For detailed information, please visit AboutCookies.org.
IV. Google Maps
We use Google Maps on our website https://polishyourcompany.com to display interactive maps and create driving directions. Google Maps is a map service of Google Inc, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA („Google”).
If you visit our website containing Google maps, your browser connects directly to Google’s servers. The content of the map is sent by Google directly to your browser and integrated by it into the website. In doing so, Google possibly processes the following user data in particular:
- the date and time of your visit to the website,
- the Internet address or URL of the called website,
- IP address,
- the address (start address) you entered in the course of route planning
- device information such as e.g. the model of the equipment used, the version of the operating system, unique device identifiers and mobile network information including the telephone number
- details about how you use Google services, such as search,
- location-related information, such as your actual location, if any.
If you have a Google account as a user, this information can be linked to your Google account. For more information about how you can view, manage or delete information associated with your Google Account, please see Google’s data protection statement at https://policies.google.com/privacy.
As the Administrator of our website, we have no influence on the processing and use of data by Google and can therefore not assume any responsibility for this.
You can also set your browser in such a way that it blocks all cookies, including cookies associated with Google services, or that it displays a message when a cookie is placed by Google. In this case, however, there is a risk/possibility that the display of Google Maps may no longer function properly.
The Google data protection statement:
apply to the processing and use of data by Google and your related rights as a user and setting options to protect your privacy
The legal basis for the use of Google Maps is Article 6 Para. 1 sentence 1 letter f of the GDPR.
V. Social media plugins
We currently use the following social media plugins: LinkedIn. We use a so-called „two-click” solution. This means that no personal data is transmitted to the plugin provider when you visit our website. You can identify the plugin provider by marking the field with its initial letter or logo. We open the possibility for you to communicate directly with the plug-in provider via a button. Only when you click on the marked field and thus activate it, the plug-in provider is informed that you have called up the corresponding page of our online offer. In addition, the data referred to in section III, point 1 above is transmitted. By activating the plug-in, personal data is transmitted by you to the respective plug-in provider and stored there (in the case of US providers, in the USA). Since the plug-in provider collects data in particular by means of cookies, we recommend that you delete all cookies via your browser’s security settings before clicking on the grey highlighted box.
We have no control over the collected data and processing procedures, nor do we know the full extent of data collection, processing purposes, retention periods. We also have no information on the deletion of collected data by the provider of the respective plugins.
The plug-in provider stores the data collected from you as usage profiles and uses them for advertising, market research and/or the design of its websites according to demand. Such evaluation is carried out in particular (also for non-logged-in users) in order to display tailored advertising and to inform other social network users about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact the relevant plug-in provider to exercise this right. By means of plugins, we offer you the opportunity to interact with social networks and other users so that we can improve our offerings and make them more interesting for you as a user. The legal basis for the use of plugins is Article 6 Para. 1 sentence 1 letter f GDPR.
The data transfer takes place regardless of whether you as a user have an account with the plug-in provider and are logged in there. If you are logged in with the plug-in provider, your data collected by us will be directly assigned to your account with the plug-in provider. If you click on an activated button and, for example, place a link to a page, the plug-in provider will also save this information in your user account and make it publicly available to your contacts. We recommend that you regularly log out after using the social network, but especially before activating the button, as this will help you avoid being assigned to your profile with the plug-in provider.
Further information on the purpose and scope of data collection and processing by the plug-in provider can be found in the data protection declarations of these providers, listed below. There you will also receive further information about your rights in this regard and the setting options to protect your privacy.
1000 W. Maude Avenue, Sunnyvale, CA 94085, USA
Further information regarding the processing of data by LinkedIn:
LinkedIn is no more participant in the Privacy Shield Framework: https://www.privacyshield.gov/EU-US-Framework
EMA Legal Advisory Sp. z o. o. version of the data protection information is always available on the website at privacy-policy.
Status: September 2021
Your EMA Legal Advisory Team