COOKIES POLICY – VISADB.IO
Personal data means any information relating to an identified or identifiable natural person (“You”). All the terms and expressions used herein, in particular regarding the following terms: “personal data”, “data subject”, “processing”, “controller”, “processor” and “supervisory authority” have the meanings given in the GDPR (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“GDPR”), unless otherwise defined herein.
This Cookies Policy applies to anyone using the Visadb’s Platform. This Policy applies solely to personal data processed by Us. This Policy does not apply to any linked sites or third-party services and we are not responsible for the content or privacy and security practices and policies of any sites or third-party services that are linked to from the Visadb’s Platform.
CATEGORIES OF PERSONAL DATA
We may process in particular the following categories of data: the type of device used, the unique device number, IP address, operating system, type of browser, information on how you use the site and diagnostic information, search history, session summary, location information and other data provided automatically via a web browser. We may also combine this information with other information obtained directly from You or from different sources.
THE PURPOSES AND LEGAL BASIS FOR PROCESSING
Some cookies are necessary to ensure safe and efficient communication / data transmission in the network or the proper functioning of the website and to provide key services based on the mechanisms implemented on the website, including ensuring transaction security, securing transmitted data, etc. In such cases we may process personal data in connection with our legitimate interests pursuant to Section 6.1 (f) GDPR.
We process personal data based on and as part of our obligations under applicable law (e.g. when requested to share personal data with the competent authorities in compliance with our legal obligation) pursuant to Section 6.1 (c) GDPR.
DO WE PROCESS YOUR DATA AUTOMATICALLY (INCLUDING THROUGH PROFILING)?
Personal data can also be processed automatically, in particular for the purpose of sending reminders and personalized offers, tracking and profiling for purposes of direct marketing, behavioural advertisement, data-brokering, location-based advertising or tracking-based digital market research. Processing data in this way will not affect your rights or have any legal effects.
SHARING YOUR PERSONAL DATA
Data processors. We use service providers in order to make it possible to use and provide some or all parts of the Visadb’s Platform. We remain responsible for your personal data and take all necessary measures to protect your personal data as provided in this Policy.
We use the following categories of data processors: hosting service providers (_____________), database providers (Google Cloud), user relationship management and client service orientated live chat software providers (_____________), payment service providers (Stripe.com and MangoPay.com), analytics software providers (Google Tag manager and Google Analytics), email service providers (GetGist.com) as well as other service providers necessary or supportive of business to ensure high quality customer service, satisfaction and security. We may also share personal data with entities providing for us: accounting, HR and payroll services, marketing services, IT services, financial services, legal services, consulting services and other services related to running our business. Entities processing personal data as part of our services are required to ensure their protection and respect your rights in accordance with applicable law.
The full list of such service providers together with their contact details is available upon request.
Other third parties. We only disclose your personal data to third parties without your prior consent if provided in this Policy or the law. We may disclose your personal data to the following third parties:
- an acquirer, or successor or assignee as part of any merger, acquisition, debt financing, sale of assets, or similar transaction, as well as in the event of an insolvency, bankruptcy, or receivership in which information is transferred to one or more third parties as one of our business assets. The legal basis for such disclosure and transfer are our legitimate interests, provided your interests or fundamental rights and freedoms do not override them;
- competent administrative, supervisory and law enforcement authorities, institutions and other authorized entities in the country and abroad if required by applicable law, as well as at their request under procedures provided for by law. We may also transfer personal data to authorities, institutions and third parties to ensure the safety of users, combat fraud and abuse or if it is necessary to establish, exercise or defend legal claims;
- our lawyers, auditors, and other professional service providers. The legal basis for such disclosure are our legitimate interests to protect our rights or complying with our legal obligation, as applicable.
WHERE DO WE STORE YOUR PERSONAL DATA?
Your personal data will be stored in the countries of the European Economic Area ("EEA"). However, some of the services we use may require data transfer and processing outside the EEA. Any such transfer of personal data will comply with applicable regulations and will be based on appropriate legal safeguards, i.e. (i) the recipient is in a country which provides an adequate level of protection for personal data (including in the U.S. if the recipient is certified under the Privacy Shield programme), or (ii) under an instrument which covers the GDPR requirements for the transfer of personal data to recipients outside the EEA.
HOW LONG WE STORE YOUR PERSONAL DATA
We only store your personal data as long as necessary for the purposes of the personal data collected for, as long as necessary to safeguard our rights, or as required by law (e.g. for tax purposes). In general, we store your personal data as follows:
- cookies remain in the memory of your device: (i) only until you close your browser (session cookies) or (ii) permanently until they are deleted or the expiry period (permanent cookies). You can delete cookies from your computer or mobile device at any time via the web browser settings. You can also turn-off the ability to save either all cookies or only cookies from third parties in your browser settings. If you disable the option of saving cookies, our website may not work properly or you will not be able to use some of its functionalities.
- in accordance with the maximum limitation period for claims arising from transactions under law we may retain your personal data related to such claims for a maximum of 6 years from the date when the claim falls due;
- in accordance with the tax and accounting regulations, we may retain billing information for 5 years as of the end of the financial year in which the information was provided to us;
- all other data is retained for up to 5 years.
HOW WE PROTECT YOUR PERSONAL DATA
We implement appropriate organisational, technical and physical safeguards to protect your personal data, taking into account (i) the state of art, (ii) cost of implementation, (iii) nature, scope, context and purposes of the processing, and (iv) risks posed to you. However, no data transmission or storage system can be guaranteed to be 100% secure. Your information is maintained in what we believe to be a well-protected environment. Among other things, we use the following safeguards: server access with public-private keys, database access from whitelisted IP addresses, all communication over secure protocols.
To the extent required by applicable data protection regulations, you have all the rights of a data subject as regards your personal data. Such rights include the following:
- equest access to your personal data;
- obtain a copy of your personal data;
- rectify inaccurate or incomplete personal data;
- rase personal data;
- estrict the processing of personal data;
- portability of personal data;
- object to processing of personal data which is based on legitimate interest and personal data which is processed for direct marketing purposes.
In order to exercise your rights or should you believe that your rights have been violated please contact us on the contact details below. You also have the right to lodge a complaint with your local data protection authority (if you are located in an EU member state), the Polish data protection authority (President of the Personal Data Protection Office of the Republic of Poland), or the court.
AMENDING THIS COOKIES POLICY
Should our personal data processing practices change or should there be a need to amend the Cookies Policy under the applicable law, case-law, or guidelines issued by competent authorities, we are entitled to unilaterally amend this Cookies Policy at any time. The amended Cookies Policy will be made available through the Visadb’s Platform.
As We are a company registered in the Republic of Poland, the processing of your personal data shall be governed by the laws on the Republic of Poland.
The Visadb.io services and products available at or through Visadb’s Platform are owned and operated by Visadb.io sp. z o.o. (private limited liability company of the Polish law) with registered office in Gdańsk, Poland, Lęborska Street 3B, 80-386 Gdańsk, NIP (TIN): 5842780656, REGON: 382363873, registered in the registry of entrepreneurs of the National Court Register kept by the District Court for Northern Gdańsk in Gdańsk, VII Commercial Division of the National Court Register under the registration number KRS 0000767405 (“Visadb.io”, “Visadb”, “We”, the “Company”).
If you have any questions, comments, complaints or requests related to this Policy or the processing of your personal data, you can contact us on the following contact details:
sp. z o.o.
Lęborska Street 3B,
Date of entry into force: ____________