We respect your right to privacy. On this website, you will find our position regarding the collection, processing, and use of information about users within the website www.komanord.pl by the data controller, which is:

KOMA NORD Ltd. with its registered office in Gdynia (81-537) at ul. Łużycka 2, registered in the National Court Register maintained by the District Court Gdańsk-Północ in Gdańsk, VIII Economic Department of the National Court Register, under KRS number 0000086300, with the entire share capital paid up in the amount of PLN 130,000, NIP 586-10-29-611; REGON 190471769, hereinafter referred to as the Administrator.

 

§ 1

Definitions

1. Service - this website.
2. Administrator - KOMA NORD.
3. Reader - a natural person using the Service.
4. Potential Client - a person interested in the Administrator's offer.
5. Client - a person using the Administrator's offer.
6. User - Reader, Potential Client, Client.
7. Newsletter - a service that allows the Reader to receive free information from the Administrator at the provided email address.
    

§ 2

General Provisions

 

1. Personal data collected by the Administrator is processed in accordance with the provisions of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (EU Official Journal L 119, p. 1), hereinafter referred to as GDPR.
2. The Administrator makes special efforts to protect the privacy and information of its Clients, Potential Clients, and Readers.
3. The Administrator selects and implements appropriate technical measures, including programming and organizational measures, to ensure the protection of processed data, in particular protecting data from unauthorized disclosure, dissemination, loss, and destruction, unauthorized modification, as well as from processing in violation of applicable laws.
4. In order to ensure the security of data entrusted via the Service, the Administrator has developed internal procedures and recommendations to prevent unauthorized access to data. The Administrator constantly monitors their implementation and checks their compliance with applicable legal regulations, including the Act on the Protection of Personal Data, the Act on the Provision of Electronic Services, as well as executive acts and community law.
5. In the event of changes in regulations concerning the protection of personal data, the Administrator undertakes to comply with their new shape in this Policy. This applies, among others, to the GDPR regulation.
6. The Administrator undertakes to ensure that personnel authorized to process personal data are obliged to do so in accordance with this Policy, as well as internal procedures of the Administrator and the standards of legal advisors.

 

We respect your right to privacy. On this page, you will find our position on the collection, processing, and use of user information within the website www.komanord.pl by the data controller:

 

KOMA NORD Ltd. with its registered office in Gdynia (81-537) at ul. Łużycka 2, registered in the National Court Register by the District Court Gdańsk-Północ in Gdańsk, VIII Commercial Department of the National Court Register, under the registration number KRS 0000086300, with fully paid-up share capital of PLN 130,000, Tax Identification Number (NIP) 586-10-29-611; National Business Registry Number (REGON) 190471769, hereinafter referred to as the Administrator.

 

§ 1

Definitions

1. Service - this website.
2. Administrator - KOMA NORD.
3. Reader - a natural person using the Service.
4. Potential Client - a person interested in the Administrator's offer.
5. Client - a person using the Administrator's offer.
6. User - Reader, Potential Client, Client.
7. Newsletter - a service allowing the Reader to receive free information sent by the Administrator to the provided email address.
    

§ 2

General Provisions

 

1. Personal data collected by the Administrator are processed in accordance with the provisions of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ EU L 119, p.1), hereinafter referred to as GDPR.
2. The Administrator takes special care to protect the privacy and information provided by its Clients, Potential Clients, and Readers.
3. The Administrator carefully selects and applies appropriate technical measures, including programmatic and organizational measures, to ensure the protection of processed data. This includes securing data against unauthorized access, disclosure, loss, destruction, unauthorized modification, as well as processing in violation of applicable law.
4. In order to ensure the security of data entrusted through the Service, the Administrator has developed internal procedures and recommendations aimed at preventing unauthorized access to data. The Administrator constantly monitors their implementation and verifies their compliance with applicable legal regulations, including the Personal Data Protection Act, the Act on the Provision of Electronic Services, as well as executive and community acts of law.
5. In the event of changes to regulations regarding personal data protection, the Administrator undertakes to comply with the new shape of this Policy. This includes, among others, the provisions of the GDPR.
6. The Administrator undertakes to ensure that personnel authorized to process personal data are obliged to do so in accordance with this Policy and the internal procedures of the Administrator, as well as the standards prescribed by legal advisors.

 

§ 3

Purposes and Legal Basis
of Personal Data Processing

 

1. We process your personal data for the following purposes, based on the legal basis provided by Article 6 of the GDPR:
   
   1. Users of our service remain anonymous until they decide otherwise. Information contained in system logs (e.g., IP address) resulting from the general rules of Internet connections is used by the Administrator for technical purposes related to the administration of our servers. Additionally, IP addresses are used to collect general statistical demographic information (e.g., about the region from which the connection is made).
   2. Contacting the Administrator through the website requires filling out a form providing information that enables us to contact the user (e.g., email address). The information provided in the form is used by us for necessary contacts with our users and to better adapt the content presented by us to their needs and interests.
2. Your data will be processed for as long as there is a legal basis for their processing, i.e.:
   
   1. in case of consent - until its withdrawal, limitation, or other actions on your part limiting this consent,
   2. in case the data is necessary for the performance of a contract - during its performance and until the limitation period for claims from this contract has expired (3 or 6 years),
   3. if the processing is based on a legitimate interest of the Administrator - until you file an effective objection,
   4. for tax and accounting purposes to the extent and for the period required by applicable law.

 

§ 4

Reader's Obligations and Rights

 

1. Any use by anyone without the explicit consent of the Administrator of any of the elements constituting the content and substance of the Service constitutes a violation of copyright law.
2. The Administrator ensures that the Reader's rights listed below are exercised by contacting the Administrator's email address no later than 30 days after receiving the request (if, due to the complex nature of the request or the number of requests, it is unable to fulfill the request within 30 days, it will fulfill it within the next month, notifying in advance of the intended extension of the deadline):
   1. Right to withdraw consent - withdrawing consent may, however, prevent further use of services that the Administrator can provide only with consent. Furthermore, the withdrawal of consent does not affect the lawfulness of data processing based on consent before its withdrawal.
   2. Right to object to data processing - if the Administrator processes data based on a legitimate interest, the Reader may object to their use. If the objection is justified and the Administrator has no other legal basis for data processing, the data subject's objection will lead to the deletion of the data subject to objection.
   3. Right to erasure of data ("right to be forgotten") - the Administrator will delete data at the request of the Reader in the case of withdrawing consent, raising justified objections to their use for marketing or statistical purposes, processing unlawfully, or when they are no longer necessary for the purposes for which they were collected or processed. The Administrator reserves the right to retain certain personal data to the extent necessary for backup copies or for the purposes of determining, investigating, or defending claims, as well as for relations with public authorities.
   4. Right to restriction of processing - in case of questioning the accuracy, legality, or necessity of data processing and filing an objection.
   5. Right of access to data - The Administrator undertakes to confirm whether personal data processing is taking place. In such a case, the Reader has the possibility to obtain copies of data and access to them, as well as to obtain information contained in this Policy and other requested information.
   6. Right to rectification of data - at the request of the Reader or Client, the Administrator undertakes to rectify the data (for incorrect data) and complete them (for incomplete data).
   7. Right to data portability - at the request of the Reader or Client, the Administrator will send personal data in the form of a PDF or other agreed format to the applicant or directly to another entity specified by them.
   8. In addition, the Reader has the right to lodge a complaint with the President of the Personal Data Protection Office.
       

The Administrator points out that it respects the rights related to the protection of personal data and strives to fulfill them to the highest possible extent. However, these rights are not absolute, so a lawful refusal to fulfill them is possible - the Administrator ensures that any refusal is preceded by the necessary analysis of the issue and will only be made when necessary due to superior reasons over the interests of the Reader.

 

§ 5

Scope of Collected Data

 

1. Personal data collected by the Administrator are used to contact the user and for marketing and distribution of the Newsletter.
2. The Administrator processes the following personal data of the Reader: first name and last name or company name, email address, phone number, and position.
3. Providing the data specified in point 2 is necessary to perform the activities indicated in point 1 by the Administrator.
4. The Administrator allows the use of free information provided through the Service in the form of the Newsletter. The Reader can unsubscribe from receiving the Newsletter at any time.
5. In the case of visits to the website during which the Reader does not fill out forms, statistical data such as visited pages and subpages, and the time spent on each of them, the date and time of the visit, the operating system and web browser, and the location are collected. The legal basis is the legitimate interest of the Administrator, consisting of improving the structure of the website and services.
6. In this case, if an alternative to default settings for handling cookies on the website has not occurred, data may be processed for marketing purposes. These are activity-related data - search history, clicks on the website, etc. The Administrator profiles the data, and the legal basis for processing this data is the legitimate interest of the Administrator in marketing the website and services.
7. In the case of filling out the Newsletter signup form, the Reader's email address is processed, and the legal basis is the consent of the data subject.
8. In the case of filling out the contact form or choosing another way to contact the Administrator indicating the willingness to become a Client or Potential Client, only the data provided by the Reader will be processed - by default, the email address and the first name and last name, phone number, position, and company name, if applicable.
9. In the case of becoming a Client, "invoice" data will be processed - first name and last name, company, address, and tax identification number. The legal basis for processing is the need for the Administrator to fulfill legal and tax obligations. The Administrator also reserves the right to process this data to pursue its claims.
10. In the case of Potential Clients, their data will be stored for a period enabling the conclusion of a contract in accordance with the terms proposed by the Administrator. The legal basis for processing is the legitimate interest of the Administrator.
11. The Administrator reserves the right to process personal data of individuals for the purpose of creating registers and records of persons arising from the provisions on the protection of personal data, as well as archival and in order to establish facts of evidential and legal significance.

 

§ 6

Recipients of Personal Data

 

1. Your data may be transferred to entities processing personal data on behalf of the Administrator, including IT service providers, marketing agencies, event organizers, training companies, conferences, etc. - such entities process data on the basis of an agreement with the administrator and only in accordance with our instructions. In such cases, we require third parties to maintain the confidentiality and security of information and verify that they provide adequate measures to protect personal data.
2. Your data may also be disclosed to entities authorized to obtain them on the basis of applicable law, e.g., law enforcement authorities. To the extent permitted by applicable law, we may also provide your data to institutions dealing with debt collection and debt trading.
3. Additionally, we may disclose your data as anonymized data (data that cannot identify you) to external entities.
   
   1. Transfer of data outside the EEA
      Our partners are mainly located in the European Economic Area (EEA) or in Switzerland, recognized as a country providing an adequate level of personal data protection. Some of our Trusted Partners, e.g., Google or Facebook, are based outside the EEA territory. In connection with the transfer of your data outside the EEA territory, we verify that the Partners provide guarantees of a high level of personal data protection. These guarantees result in particular from the obligation to apply standard contractual clauses adopted by the Commission (EU) or participate in the Privacy Shield program established under the Commission implementing decision (EU) 2016/1250 of 12 July 2016 on the adequacy of the protection provided by the EU-US Privacy Shield. You have the right to request us to provide copies of standard contractual clauses by sending a request to us, which can be found on the website under this link: https://eur-lex.europa.eu/legal-content/PL/TXT/PDF/?uri=CELEX:32001D0497&from=en
4. Our goal is to ensure the highest possible protection. Technological development and the development of the Administrator's offer mean that our privacy policy may change, which we will inform about on our website each time.

 

§ 7

Contact Information for the Administrator

 

In matters related to the GDPR or to fulfill the rights regarding personal data, please send information to the email address: rodo@komanord.pl or by mail to the company's registered office.