Privacy policy of Biznes Innovation s.c.

- obligatory information regarding personal data processing

Biznes Innovation s.c. is an advisory company offering innovative IT services and solutions for companies. The basis of our activity is contact with companies in order to establish business cooperation and implement contracts. Therefore, we collect and process personal data of employees of the companies concerned, as described in this document.

According to article 13 paragraph 1-2 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (general regulation on data protection) (hereinafter: GDPR) we would like to inform you that:

Personal Data Administrator

The Administrator of Personal Data (PDA) is Biznes Innovation s.c., based in 05-270 Marki, Geodetów 13, Poland. You can contact the PDA Biznes Innovation by writing, at the registration address of our office, or via email: privacy@biznesinnovation.com

The type, purpose and basis of personal data processing

Business Innovation offer is directed only to companies, so we only collect necessary business contact information, we do not collect any private information.
We collect and process data for the following purposes:

1. Preparation, conclusion and implementation of contracts for the provision of products and services. The basis for processing is the necessity to conclude and perform contracts.

2. Research of needs as well as direct offering and marketing of Administrator's products and services. The basis for processing is the legitimate interest of the Administrator.

3. Marketing of solutions and services of the Administrator or other entities - the Administrator's partners. The basis for the processing is the consent given.

4. For archival purposes, collecting evidence and analytical facts, handling claims and protection against claims. The basis of the research is the legitimate interest of the Administrator.

5. Recruitment of Administrator's employees. The basis for processing is the consent of the candidates.

6. Employment of the Administrator's employees. The basis of processing are the requirements of the Labor Law.

Time of processing personal data

We store the data for the period during which the legal base for the processing is valid. Especially, in case of legal obligations or necessity of pursuing claims, the data is stored until the legally required periods of archiving have expired or have expired. In case of a legitimate interest of the Administrator, the data will cease to be processed after the processing objection is received. In case of granted consent, the data will be processed until the concern is withdrawn.

Profiling

PDA does not profile in connection with the processing of personal data.

Transferring data to other entities

Personal data may be transferred to our subcontractors, who process them in accordance with the Administrator's instructions and on the basis of relevant agreements with the Administrator for the purposes described above.

Personal data may be passed on to our business partners for the purposes described above, only if separate consent for such action is given.
Personal data may also be transferred to third parties, if the obligation to provide them results from legal provisions.
The administrator uses the virtual IT systems of reputable suppliers to process personal data. Their datacenters can be located in other countries. Therefore, the personal data being processed may be transferred to countries outside of the European Economic Area.

The Administrator cooperates only with system suppliers using contractual provisions in accordance with the General Data Protection Regulation of 27 April 2016 and those who participate in the Privacy Shield framework approved by the European Commission.

Security of personal data processing

The company applies security measures to protect personal data under our control from loss, misuse or modification. For this purpose, appropriate procedures and security of information systems have been introduced and documented. The access rights to the personal data processed have been limited, so that this information is not in the possession of unauthorized persons.
Data provided to us contrary to our policy, e.g. accidental data or private data of individuals, are immediately and permanently deleted.
Is providing personal data necessary?

Providing personal data is entirely voluntary, however, the lack of contact details (email, telephone, address) will make it impossible to conclude a contract, provide contracts and other direct contacts.
Existing rights

You have the right to access your data, request rectification, deletion, or processing restrictions.
You may file an objection to the processing of your personal data based on the legitimate interest of the Administrator.
You have the right to withdraw your prior consent for processing. This does not affect the lawfulness of the processing performed on the basis of consent before its withdrawal.

You also have the right to transfer personal data provided previously to the Administrator. On request, they will be made available in a commonly used machine-readable format.

You also have the right to place a complaint with the supervisory body dealing with the protection of personal data when you feel that the processing of your personal data violates the provisions of the General Data Protection Regulation of 27 April 2016.