Privacy and Cookies Policy

Hello!

You being here is a proof that you value your privacy. We fully understand it, what’s why we provide you with a document were you will find the rules for the processing of personal data and the use of cookies and other tracking technologies in connection with the operation of the eltap.pl web page – all in one place.

Let us start with formal information: the web page administrator is ELTAP Spółka z ograniczoną odpowiedzialnością Sp.k., Mroczeń nr 203, 63-604 Baranów, entered into the National Court Register by the District Court for Poznań – Nowe Miasto and Wilda in Poznań, 9th Commercial Division of the National Court Register, under KRS number: 0000819333, NIP (tax identification number): 6192050823, REGON (national business registry number): 385100074 share capital: PLN 10.000.

This Privacy Policy has been drawn up in the form of questions and answers. The choice of such a form was dictated by the care for transparency and readability of the information presented to you. Below you will find a table of contents of the document corresponding to the questions we answer one after another.

Who is the controller of your personal data?

The controller of your personal data is ELTAP Spółka z ograniczoną odpowiedzialnością Sp.k., Mroczeń nr 203, 63-604 Baranów, entered into the National Court Register by the District Court for Poznań – Nowe Miasto and Wilda in Poznań, 9th Commercial Division of the National Court Register, under KRS number: 0000819333, NIP (tax identification number): 6192050823, REGON (national business registry number): 385100074 share capital: PLN 10.000.

Who can you contact regarding the processing of your personal data?

As part of the implementation of the personal data protection system at our organisation, we have decided not to appoint a personal data protection officer due to the fact that it is not mandatory in our situation. In matters related to the protection of personal data and broadly understood privacy, you can contact us at the e-mail address office@eltap.com.

For what purposes we process your personal data?

Correspondence handling By contacting us via e-mail or contact forms, you naturally provide your personal data contained in the correspondence, in particular your e-mail address and full name. Providing the data is voluntary, but necessary to make contact. In this case, we rely in this respect on our legitimate interest in ensuring the contact ability. Art. 6 item 1(f) of the GDPR

Archive creation We may create archives, both in traditional and digital form, for the needs of our business. All personal data that we have processed in connection with you are being stored in the archives, therefore their scope may differ depending on what data we have received. In this case, we rely in this respect on our legitimate interest in ordering and organising personal data carriers. Art. 6 item 1(f) of the GDPR

Defending, establishing or pursuing claims Using our web page, as well as concluding a contract with us, may give rise to certain claims on our or your side in the future. Therefore, we are entitled to process personal data in order to defend, establish or pursue claims. As part of this purpose, we may process any personal data which is related to a given claim, therefore their scope may vary depending on what the given claim relates to. In this case, we rely in this respect on our legitimate interest to protect our interests. Art. 6 item 1(f) of the GDPR

Social media operations If you follow our profiles on social media or interact with the content we publish on social media, we naturally see your data which is publicly available on your social profile. We process this data only within a given social network and only for the purpose of operating a given social network, which is our legitimate interest. Your use of social media is subject to the regulations and privacy policies of the administrators of these media, and these administrators provide electronic services for you, fully independently and separately from us. Art. 6 item 1(f) of the GDPR

Analysis and statistics using only Anonymous Information We conduct analytical and statistical activities using tools provided by third-party suppliers. As part of the analytical tools, we only have access to Anonymous Information. We base the processing of Anonymous Information on a legitimate interest, which consists in creating, viewing and analysing the statistics related to the activity of users on the web page in order to draw conclusions allowing for the subsequent optimisation of the web page. From the tools level, we can only view a set of statistics and information not assigned to specific people. Detailed information on third-party tools can be found in the section dedicated to the tools we use. Art. 6 item 1(f) of the GDPR

Marketing activity We conduct marketing activities using own tools or tools provided by third-party suppliers. As part of the marketing tools, we have access to your personal data or to Anonymous Information, depending on the type of actions introduced. We base the processing of personal data and Anonymous Information on a legitimate interest, which consists in conducting marketing activities for the purposes of marketing our own products and services. In the case of third-party tools, we can mainly view a set of statistics and information not assigned to specific people. Detailed information on third-party tools can be found in the section dedicated to the tools we use. Art. 6 item 1(f) of the GDPR

Organisation of promotional campaigns In order to increase the sales of products/services, we may conduct various promotional campaigns, including in cooperation with third-party partners. The rules related to the organisation of promotional campaigns are set out in separate regulations. The scope of the personal data which we will process in connection with the organisation of a promotional campaign may vary depending on the type of a promotional campaign. The legal basis for the processing of your personal data is our legitimate interest, which in this case is marketing and increasing the sales of our own products. Art. 6(1)(b) of the GDPR, Art. 6(1)(f) of the GDPR

Ensuring the functioning of media players, social media plug-ins and comments using only Anonymous Information We embed video recordings from third-party sites on the page, we use social media plug-ins and a comment management system. All of these tools process Anonymous Information. We base the processing of Anonymous Information on a legitimate interest, which in this case consists in ensuring the ability of using additional functions on the page – the player, social media plug-ins, comment system. We do not have access to other information from the tools level; moreover, we do not need this information for anything – Anonymous Information is processed only so that the media players, comments and social media plug-ins work properly. Detailed information on third-party tools can be found in the section dedicated to the tools we use. Art. 6 item 1(f) of the GDPR

Implementation of the obligations related to the protection of personal data As the personal data controller, we are obliged to fulfil the obligations related to the protection of personal data. Therefore, we may process your personal data as long as it is necessary to perform these duties (e.g. in the case of processing your request regarding your personal data). The scope of the data depends on which data we need to fulfil the obligation and prove compliance with the GDPR. In addition, in this case we also rely on our legitimate interest, which consists in securing the data necessary to demonstrate accountability. Art. 6(1)(c) of the GDPR, Art. 6(1)(f) of the GDPR

What information do we have about you?

The scope of the processed data has been precisely described in relation to each processing purpose. Information in this regard can be found above, in section 3 of the Privacy Policy.

What is "Anonymous Information"?

We use tools which collect a range of information about you, related to the use of our web page. This includes in particular the following information: ● information on the operating system and web browser, ● viewed subpages, ● time spent on the page, ● transitions between individual subpages, ● clicks on individual links, ● source from which you come to the page, ● your age range, ● your gender, ● your approximate location limited to the town. ● Your interests based on your on-line activity.

This information is referred to as "Anonymous Information" in this Privacy Policy.

In our opinion, Anonymous Information itself does not constitute personal data, because it does not allow us to identify you and we do not compare it with typical personal data which we collect about you. Nevertheless, taking into account the strict jurisprudence of the Court of Justice of the European Union and the divided opinion among lawyers, as a precaution, in the event that Anonymous Information is assigned the nature of personal data, we have also included detailed explanations in the Privacy Policy regarding the processing of this information.

The processing of Anonymous Information allows you to use the functionalities available on the web page. In addition, Anonymous Information is used for analytical, statistical and marketing purposes (e.g. creating Custom Audience Groups on Facebook, setting, targeting and directing advertisements).

Anonymous Information is also processed by tool providers on the terms resulting from their regulations and privacy policies. It may be used by them to provide and improve services, manage them, develop new services, measure the effectiveness of advertising, protect against fraud and abuse, as well as personalise the content and advertising displayed on individual services, sites and applications. Detailed information on this topic can be found in the section dedicated to the tools we use.

Where did we get your personal information from?

In most cases, you provide us with it yourself. For example, this is the case when you contact us via e-mail, and when you use the functionalities available on the web page or on third-party sites (e.g. social networks). In addition, some information about you may be automatically collected by the tools we use. Detailed information on third-party tools can be found in the section dedicated to the tools we use.

In addition, in special cases we may also obtain your personal data from other sources, e.g. when the entity which employs you provides us with your data as a contact person in matters related to a concluded contract, or when you represent an entity that enters into a contract with us.

Is your data safe?

We take care about the security of your personal data. We have analysed the risks associated with individual mechanisms of processing your data, and then implemented appropriate security and personal data protection measures. We monitor the condition of the technical infrastructure on an ongoing basis, we train the staff, we look at the procedures bing used, and we introduce the necessary improvements.

How long will we store your personal data?

We process your personal data for as long as it is justified within the given purpose of personal data processing, therefore the processing periods vary depending on the purpose. Keep in mind that the end of the processing of your data for one purpose does not necessarily lead to the complete deletion or destruction of your personal data, because the same set of data may be processed for another purpose and for the period indicated for it. Complete deletion or destruction of data takes place when we complete the implementation of all purposes, as well as in other cases indicated in the GDPR.

Below you will find a description of the processing periods: ● Correspondence handling – the data related to correspondence handling will be processed for the duration of correspondence between us; ● Archive – the data related to the archive will be processed until the information contained in the archive is no longer useful; ● Establishing, pursuing and defending claims – the data related to claims will be processed until the claims expire, the limitation period for claims may vary in the light of applicable law (e.g. in the case of entrepreneurs it may be 3 years, and in the case of consumers – 6 years); ● Social media – the data related to recipient groups will be processed until you opt out of interacting with us on social media; ● Analysis and statistics – the data related to analytics and statistics will be processed until they become useless or you successfully raise an objection; ● Marketing activity – the data related to our own marketing will be processed until they become useless or you successfully raise an objection; ● Organisation of promotional campaigns – we process the data related to the organisation of promotional campaigns for the time necessary to carry out the promotional campaign;
● Additional tools – the data related to our own marketing will be processed until they become useless or you successfully raise an objection; ● Obligations related to the protection of personal data – the data related to the protection of personal data will be processed until they become useless, you successfully raise an objection, or the limitation period of our responsibility as the personal data controller expires.

If we process your personal data on the basis of your consent, you may withdraw such consent at any time – either by your actions or by contacting us using the contact details provided. Keep in mind that withdrawal of consent does not affect the lawfulness of the processing which was carried out on the basis of consent before its withdrawal.

Who are the recipients of your personal data?

We will venture to say that modern business cannot do without the services provided by third parties. We also use such services. Some of these services involve the processing of your personal data. The third-party service providers which are involved in the processing of your personal data are: ● Host which stores the data on the server; ● Provider of the cloud computing service where the files that may contain your personal data are being stored; ● Provider of the CRM system in which we store your data in order to improve the customer service process and for archiving purposes; ● Provider of the invoicing system where your details are being stored for invoicing; ● Provider of the technical support service who accesses the data if the technical works being carried out relate to the areas where personal data is located; ● Other subcontractors who gain access to the data if the scope of their activities requires such access.

If a need arises, your data may be made available to a legal adviser or advocate bound by professional secrecy. The need may result from the necessity to use legal assistance which requires access to your personal data.

Your personal data may also be transferred to tax offices to the extent necessary for fulfilling tax, settlement and accounting obligations. This applies in particular to any declarations, reports, statements and other accounting documents in which your personal data is included.

In addition, if necessary, your personal data may be made available to the entities, authorities or institutions authorised to access data under the law, such as police, security services, courts, prosecutor's offices.

Moreover, when it comes to Anonymous Information, it is available to the providers of tools or plug-ins which collect Anonymous Information. The providers of these tools are independent controllers of the data collected in them and may share this data on the terms set out by them in their own regulations and privacy policies, which we have no influence on.

Do we transfer your data to third countries or international organisations?

Yes, some operations of processing your personal data may involve their transfer to third countries.

We transfer your personal data to third countries in connection with the use of tools which store personal data on servers located in third countries, in particular in the USA. The same may apply to Anonymous Information. The providers of these tools guarantee an adequate level of protection of personal data through appropriate compliance mechanisms provided for by the GDPR, in particular through the use of standard contractual clauses.