Privacy policy

Applicable from 25/05/2018

Who is the controller of personal data?

The controller of personal data is ITTI Sp. z o.o. based in Poznań (61-612) at ul. Rubież 46 , Tax ID No: 781-10-19-801, Regon No: 630400909, hereinafter referred to as ITTI.

How can you be contacted about your personal data?

Should you have any questions concerning personal data processing or the exercise of Your rights, feel free to contact the data Controller by sending an e-mail to the following address: rodo@itti.com.pl

Has ITTI appointed a Data Protection Officer?

ITTI has a Personal Data Protection Officer,who can be contacted by e-mail sent to: rodo@itti.com.pl

What for and on what basis do we process users’ personal data?

ITTI processes personal data for various purposes, which are listed below:

  • Pursuant to Article 6(1)(a) of the GDPR, that is, on the basis of the consent of the data subject, AMUF processes personal data in order to: send commercial information; market products and its own services; carry out registration for training courses, workshops, conferences or other events organised by ITTI or in cooperation with ITTI; recruit employees; run websites available after user registration.
  • Giving consent to the processing of personal data for each of the above purposes is voluntary, but necessary for the above-mentioned activities to be undertaken by AMUF.
  • Pursuant to Article 6(1)(b) of the GDPR, that is, when it is necessary for the performance of an agreement to which the data subject is a party or to undertake actions at the request of the person whose data are processed, before the conclusion of the agreement, in order to: perform, conclude, prepare the content, amend or terminate agreements between ITTI and the data subject; undertake actions at the request of a person whose data are processed before the conclusion of the agreement.
  • This point refers, in particular, to agreements concluded by e-mail or through the Internet, as well as actions undertaken before the conclusion of the agreement initiated by a party through the Internet or e-mail.
  • Pursuant to Article 6(1)(c) of the GDPR, i.e. for the purposes of the fulfilment of ITTI’s legal obligation, in order to:perform agreements with third parties; prepare invoices and fulfil other obligations stipulated by the provisions of tax law.
  • Pursuant to Article 6(1)(f) of the GDPR, that is, for the purposes resulting from legitimate interests of ITTI, in order to:statistical, information, archival, analytical ones as well as taking action before concluding the contract

The requirement to provide personal data.

Providing any kind of personal data is voluntary and depends on You. However, in some cases, the provision of certain personal data is necessary for ITTI to undertake certain activities at Your request or perform certain services.

What are your rights related to the processing of your personal data?

ITTI provides the right of access to your personal data, you can rectify them, request their deletion or restrict their processing. You can also use your right to object to the processing of your personal data and the right to transfer your data to another data controller. In the case of consent, it may be withdrawd at any time without affecting the lawfulness of processing based on consent prior to its withdrawal.

ITTI also informs you that you have the right to submit a complaint with the authority supervising the compliance with personal data protection regulations.

When can I object to the processing of personal data?

From May 25, 2018, you have the right to object to the processing of Your personal data when:

  • the processing of personal data takes place on the basis of a legitimate interest or for statistical purposes, and the objection is justified by the particular situation in which you find themselves
  • personal data are processed for direct marketing purposes, including being profiled for this purpose.

To whom do we share personal data ?

Your personal data are shared with:

  • entities to which we are legally obliged to transfer this data (if authorized state authorities ask ITTI, in particular organizational units of the public prosecutor’s office, the Police, the President of the Office for Personal Data Protection), the President of the Office for Competition and Consumer Protection or the President of the Office for Electronic Communications. However, we ensure that we analyse every request to provide personal data very carefully and thoroughly, so that the information is not transferred to an unauthorised person.
  • entities who process Your personal data exclusively at our request. If required, we transfer Your personal data to entities who provide financial and HR, legal, insurance and hosting services to us, provide on-line marketing systems to us, handle mailing, carry out website traffic analyses and marketing campaign effectiveness analyses.

Is the data transferred outside Poland ?

Personal data may be transferred to entities (where there are grounds for doing so) from the European Economic Area (EEA). Personal data may be transferred to a third country (outside the EEA) if it guarantees at least the same data protection as is in force in Poland. In practice, such a guarantee is that a given country has been recognised by the European Commission as a country that provides adequate protection. ITTI uses various popular services and technologies offered by entities such as Facebook, Microsoft, Google. These entities have joined the Privacy Shield programme based on the executive decision of the European Commission of 12 July 2016. Entities that joined the Privacy Shield programme guarantee that they will meet high data protection standards applicable in the European Union, therefore the use of their services and offered technologies in the personal data processing process is lawful.

Do we carry out automated processing of personal data?

No, we do not perform automated processing of personal data for profiling or selective addressing.

For how long is your personal data processed by ITTI?

Personal data will be processed within the time necessary to achieve the purpose, as well as after its termination in connection with the fulfilment of the requirements arising from separate regulations, m.in. from tax law, from the Accounting Act, from the Social Security Act, from the Labour Code and in time ensuring that possible claims can be processed.

Data is deleted when:

  • The data subject effectively object to further processing (if the processing was based on our legitimate interest),
  • there will be a limitation of possible claims (if we have processed the data in order to perform the contract),
  • the deadlines that result from other provisions (e.g. the Accounting Act) expire

How does ITTI use cookies?

ITTI uses cookies on websites in order to adapt provided services and contents published on websites to individual needs of their users. The user has a right to disable the functions of accepting cookies on their computer. However, they may, in such a case, be no longer able to use certain functionalities available on our website.

How do we care about the security of personal data?

ITTI places great emphasis on the security of the personal data processing. Appropriate technical and organisational measures are applied to protect personal data against unauthorised disclosure and access, against accidental or unlawful destruction and loss. No way of transmitting data over ICT networks and no electronic or physical storage can guarantee completed security.

Will there be any changes to the way personal data are processed?

When using ITTI websites, the Privacy Policy is valid at the time of using them. Changes in the legislative sphere in the field of personal data protection, as well as other factors, may affect changes in the privacy protection policy. ITTI reserves the right to make changes to the Privacy Policy.