§1

General provisions

  1. This Privacy Policy defines the method of collecting, processing and storing personal data of Users of the creditroyal.pl website (hereinafter: the Website).
  2. The administrator of personal data is the Website Operator is Credit® Royal sp. z o.o. with its registered office at Łopuszańska 32, 02-220 Warsaw, with NIP: 5272681212 and REGON 146228081 (hereinafter: Operator).
  3. Personal data is processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC ( General Data Protection Regulation).

§2

Scope of collected data

  1. The Administrator processes personal data necessary to provide and develop the services available on the Website.
  2. The scope of the collected data is adequate to the purposes for which they are collected (indicated in §3 point 1 of the Policy). In particular, it is: name and surname, e-mail address, telephone number, data saved in cookie files.

§3

Purposes and legal grounds for data processing

  1. Personal data of Users and Partners may be processed for the following purposes:
  2. sending commercial information, based on the User’s voluntary consent (Article 6(1)(a) of the GDPR),
  3. communication with the User via the contact form available on the website and via e-mail addresses indicated for communication, based on the legally justified interest of the administrator (Article 6(1)(f) of the GDPR) consisting in building and developing positive relationships with the Customer/Partner based on reliability and loyalty,
  4. pursuing or defending against claims, which is the legitimate interest of the administrator (Article 6(1)(f) of the GDPR).
  5. In each of the above-mentioned cases (§3 section 1), providing data is voluntary, but necessary to use selected website functionalities.

§4

The period of personal data processing

  1. Personal data will be processed for the period necessary to achieve the purposes for which they were collected or until the objection to processing is raised, and after that time for the period necessary to comply with the law, investigate or defend against any claims, but not longer than 6 months calculated from the date of the last contact with the User/Client.
  2. The data processed for the purposes of sending commercial information will be processed until the consent is withdrawn, with the proviso that the withdrawal of this consent does not affect the compliance of the data processing that was carried out before the withdrawal.

§5

Data recipients

  1. Personal data may be disclosed:
  2. Administrator’s partners cooperating with him on a permanent basis under relevant agreements,
  3. law firms,
  4. subcontractors, in particular entities providing and servicing selected IT systems and solutions.
  5. As a rule, personal data will not be transferred outside the European Economic Area and to international organizations.

§6

Rights of data subjects

  1. The website user has the right, in particular, to:
  2. gain access to the content of your personal data processed by the Administrator,
  3. rectification of data,
  4. deletion of data,
  5. data processing restrictions,
  6. data transfer,
  7. object to processing based on the legitimate interest of the administrator,
  8. withdraw consent at any time without affecting the lawfulness of the processing that was made on the basis of this consent before its withdrawal.
  9. The data subject has the right to lodge a complaint with the President of the Office for Personal Data Protection in a situation where he considers that the processing violates his rights or freedoms, in particular those resulting from the GDPR.
  10. The data subject, in the event of doubts as to the manner of exercising his rights or willingness to submit an application with a request referred to in §6 para. 1 may contact the Administrator at any time at the following address: biuro@creditroyal.pl.

§7

Cookies

  1. Based on the User’s voluntary consent, the Operator collects Cookies, i.e. IT data, in particular small text files, saved and stored on devices through which the User uses the Website pages.
  2. Cookies used by the Operator are safe for the User’s Device. In particular, it is not possible to get viruses or other unwanted software or malware to the User’s Devices this way. These files allow to identify the software used by the User and customize the Website individually for each User. Cookies usually contain the name of the domain they come from, their storage time on the Device and the assigned value.
  3. The User has the option of limiting or disabling the access of cookies to his Device. If you use this option
  4. the use of the Website will be possible, except for functions that by their nature require cookies. Restricting the use of cookies may affect some of the functionalities available on the Website.
  5. The operator uses cookies to:
  6. matching the content of the Website pages to the User’s preferences,
  7. optimizing the use of websites, in particular Cookies allow to recognize the Website User’s device and display a website that will meet his individual needs,
  8. developing anonymous statistics that allow to determine how the User uses the Website, which will allow improving the structure of the Website and its content.

§8

Final Provisions

  1. In the process of processing personal data, there is no automated decision-making, including profiling.
  2. The Administrator reserves the right to make changes to this Privacy Policy, while ensuring that the rights of persons under this document will not be limited without their consent.
  3. The administrator has appointed a data protection officer – Mrs. Natalia Dzieciuchowicz, who can be contacted in all matters related to the processing of personal data at iod@creditroyal.pl