Privacy policy
The confidentiality of data and the protection of our Clients’ privacy are our top priorities. Therefore, to ensure the security of your personal data, Analityk Genetyka Unrug Wójtowicz Sp. K., with its registered office in Warsaw (02-089), ul. Żwirki i Wigury 101, suite 5.22, has established a policy defining the rules for the processing of personal data.
We process your personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter “GDPR”).
Personal Data Controller
The controller of your personal data within the meaning of Article 4(7) of the GDPR is Analityk Genetyka Unrug Wójtowicz Sp. K., ul. Żwirki i Wigury 101, suite 5.22, 02-089 Warsaw (hereinafter referred to as “AG”).
Contact with the Controller
For all matters related to the processing of personal data, you may contact the Controller at the above-mentioned registered office address, by email at info@cotedazur-apartments.com, or by phone at +48 577 550 607.
Source of Personal Data
Personal data are obtained directly from you. We also obtain information through the completion of a contact form or through cookies.
Scope of Processed Personal Data
If you contact the Controller via the website or the contact details provided therein, the Controller processes the data you provide in order to establish contact (including, among others, making a reservation, registering a property owner), such as first name, last name, email address or telephone number, the content of your inquiry or issue raised, and any other data you may provide. In connection with the use of cookies for statistical purposes, the Controller may process the following data: IP address, session duration, frequency of website visits.
Purpose and Legal Basis for Processing Personal Data
|
Purpose of Data Processing |
Legal Basis |
|---|---|
|
Providing a response or returning contact to a person who has contacted the Controller. |
Legitimate interest of the Controller – Article 6(1)(f) GDPR. |
|
Actions aimed at concluding, as well as concluding and performing a contract – if you are a party to the contract. |
Processing of data is necessary to conclude and perform the contract – Article 6(1)(b) GDPR. |
|
Actions aimed at fulfilling a reservation service and concluding a rental agreement. |
Processing of data is necessary to conclude and perform the contract – Article 6(1)(b) GDPR. |
|
Ensuring contacts necessary for servicing and executing a contract concluded with the entity you represent, as well as maintaining business relations. |
Legitimate interest of the Controller – Article 6(1)(f) GDPR. |
|
Carrying out activities aimed at improving and coordinating the Controller’s work, including recording correspondence. |
Legitimate interest of the Controller – Article 6(1)(f) GDPR. |
|
Handling potential complaints, as well as establishing, pursuing, and defending against claims. |
Legitimate interest of the Controller – Article 6(1)(f) GDPR. |
|
Fulfilling legal obligations imposed on the Controller, including keeping accounts and accounting records, as well as fulfilling the rights of data subjects. |
Compliance with a legal obligation to which the Controller is subject – Article 6(1)(c) GDPR. |
|
Sending marketing content in the form of a newsletter (containing, in particular, information about the company, current offers, etc.) via email. |
Freely given consent – Article 6(1)(a) GDPR. |
|
Conducting direct marketing activities. |
Legitimate interest of the Controller – Article 6(1)(f) GDPR. |
|
Conducting the recruitment process and selecting the right person for employment. |
To the extent resulting from Article 22(1) of the Labour Code, the legal basis is the legal obligation of the Controller (Article 6(1)(c) GDPR). This concerns data such as: first name(s) and surname, date of birth, and contact details provided by the job applicant. If necessary for performing a given type of work or position, this also includes information about education, professional qualifications, and previous employment history. The legal obligation of the Controller also includes data necessary to exercise a right or fulfill an obligation arising from legal provisions. |
|
In the case of personal data provided by a job applicant beyond the scope defined by labour law regulations, the legal basis for processing such data is the applicant’s consent (Article 6(1)(a) GDPR). This applies to any data provided by the applicant in a CV, cover letter, or during interviews. |
|
|
Collecting information about website traffic statistics. |
Legitimate interest of the Controller – Article 6(1)(f) GDPR. |
|
Handling requests from individuals, including requests regarding personal data. |
Compliance with a legal obligation to review your request (Article 6(1)(c) GDPR). |
|
Creating and managing an account on the Controller’s website at: https://cotedazur-apartments.com |
The legal basis for processing your personal data for account use is the necessity of processing to perform a contract consisting of AG’s provision of an electronic service in the form of an account on the website (Article 6(1)(b) GDPR). |
|
Making purchases in the online store. |
Processing of data is necessary to conclude and perform the contract – Article 6(1)(b) GDPR. |
Profiling of Personal Data
Your personal data will not be used for automated decision-making, including profiling.
Recipients of Personal Data
The recipients of your personal data will be:
a) authorized personnel of the Controller,
b) entities processing personal data on behalf of the Controller to fulfill the purposes for which the data are collected (in particular, entities providing IT solutions as well as IT and technical support services). These entities must have access to the data in order to perform their duties. Such entities will only have access to personal data to the extent necessary to carry out their tasks,
c) public authorities and entities performing public tasks or acting on behalf of public authorities, within the scope and for the purposes arising from generally applicable legal provisions.
Personal Data Retention Period
The period of data processing depends on the purposes and legal bases for processing, and therefore:
a) data processed on the basis of statutory requirements will be processed for the time during which the law requires the data to be stored;
b) data processed for the purpose of concluding and performing a contract will be processed for the period necessary to perform and settle the contract, which may, where appropriate, be extended by the limitation period for civil claims;
c) data processed on the basis of the Controller’s legitimate interest will be processed until an effective objection is raised or until such interest ceases, e.g. data processed for the purpose of pursuing or defending against claims will be processed for a period equal to the limitation period of such claims;
d) data processed on the basis of consent will be processed until the consent is withdrawn;
e) personal data processed for recruitment purposes will be stored until the end of the recruitment process in which you are participating. If you additionally consent to the use of your data for future recruitment processes, your data will be stored for a period of 9 months;
f) requests to delete or modify personal data should be submitted by email to info@cotedazur-apartments.com or by phone at +48 577 550 607.
Is Providing Your Personal Data Mandatory?
Providing your personal data is voluntary, but necessary to achieve the purpose you wish to pursue, such as using the website, concluding a contract, or receiving a response to your inquiry or issue raised.
The Controller indicates that providing personal data specified in Article 22(1) of the Labour Code by a job applicant is mandatory under applicable labour law provisions. Failure to provide such data will result in the inability to participate in the recruitment process. Providing personal data beyond the scope set out in Article 22(1) of the Labour Code is voluntary. The Controller declares that failure to provide such additional data cannot be the basis for unfavorable treatment of a job applicant, nor can it cause any negative consequences for them, in particular, it cannot justify refusal of employment.
Your Rights
You have the right to:
a) request access to your personal data, rectification, deletion, or restriction of processing, as well as the right to data portability,
b) where the processing of personal data is based on the Controller’s legitimate interest – object at any time, on grounds relating to your particular situation, to the processing of personal data,
c) where the legitimate interest consists of direct marketing – object at any time to the processing of personal data for marketing purposes, without the need to justify your decision,
d) withdraw your consent at any time without affecting the lawfulness of processing carried out on the basis of consent before its withdrawal,
e) lodge a complaint with the supervisory authority, i.e. the President of the Personal Data Protection Office (Prezes Urzędu Ochrony Danych Osobowych).
A request to exercise your rights may be submitted using the contact details provided at the beginning of this policy.
Cookies
The website uses so-called cookies, which process your personal data for statistical purposes. The website uses cookies provided by Google Analytics (a service by Google). More information is available at: https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage