Privacy policy
Privacy policy of SEVENET S.A.
General information
SEVENET S.A. respects the right to privacy of persons whose personal data it has in its collections, in particular by using appropriate technological solutions
and legislation preventing any interference with the privacy of these persons by unauthorized entities.
This Policy contains information about what to expect when we contact you or you contact us or use one of our services or the services of our Partners.
By reading the following content, you'll learn, among others about that:
We would also like to inform that as part of our services, external links may also be placed enabling direct access to other websites or, while using our services, cookies may be placed on the User's end device in order to enable you to use integrated functionalities (e.g. Facebook, LinkedIn, YouTube). Each of the providers defines the rules for the use of cookies in their privacy policy, therefore we have no influence on the privacy policy of the providers and the use of cookies by them.
Personal Data Administrator
SEVENET S.A. is the entity deciding on the purposes and methods of using your data (i.e. their administrator in accordance with the provisions of the GDPR), with its registered office in Gdansk, entered into the Register of Entrepreneurs kept by the District Court Gdansk-North in Gdansk, VII Commercial Department of the National Court Register, under number 308826.
There are many ways to contact us, including:
telephone +48 583 400 400,
email sevenet@sevenet.pl,
post office Galaktyczna 30A street, 80-299 Gdansk
or contact form.
You can find more details here.
Data Protection Officer
Having in mind the security and transparency of personal data processing processes in SEVENET and the need for their constant control, we have appointed a data protection officer (DPO).
You can contact the appointed DPO using iod@sevenet.pl or via our postal address (please add "Data Protection Officer")
Security
We conscientiously approach the issues of data protection and constantly develop our security systems and processes. The security measures we use include:
limited physical access to our buildings and users' access to our systems - only for those who are authorized
control mechanisms such as firewall, user verification, strong data encryption and separation of roles, systems and data
proactive monitoring
We also use the highest standards in the industry to support the maintenance of a robust information security management system.
What data do we process?
Most of the personal data processed by the SEVENET is transferred directly to us for one of the following reasons:
you are our customer or your data has been provided to us by your employer or partner,
we serve as the customer's processing entity, which is the administrator of your data and this data has been made available to us in the scope of cooperation binding us with the customer,
we have obtained them directly from you or from a third party authorized to provide us with your data,
you filed a complaint or inquiry with us,
you asked us for information,
you took part in an event organized by us,
you represent your organization.
Basics of processing
Whenever we process your personal data, we must have so-called "Legal basis". The legal bases result directly from the provisions of the law (GDPR), below are the ones on which we most often base:
Consent: you have indicated to us that you consent to the processing of your data for a specific purpose
Legitimate interests: only if the processing is necessary for our business and it does not interfere with the right to respect for your privacy
Performance of the contract: we must process your personal data in order to be able to provide you with one of our products or services
Legal claims: when data processing is necessary to establish, exercise or defend legal claims we are entitled to
Legal obligation: when we are required by law to process your personal data
How do we use your personal data?
There are many ways and possibilities to use personal information about you, depending on how you interact with us. For example, if you do not provide us with your data, we will not be able to contact you in this way, if you do not provide us with your contact details, the address of the company where you work or which you represent during negotiations or purchase of one of our products or services, we will not be able to sell you this product or service.
We may also want to tell you about our offers, ideas, products and services that we think may interest you. If we have your consent or it is in our legitimate interest, we can do it by post, e-mail, SMS or other electronic means of communication. We do not send you marketing messages if you do not want to, but if you purchase a service from us, we may direct you messages related to the service.
Who can have access to your data?
In addition to us, a number of entities may have access to your data. They can be service providers with whom we cooperate and who help us to provide products and services that you expect from us or support us in our business. These entities process personal data on our behalf and must meet high security standards. We only share information that allows them to provide us services or facilitate their provision to you.
In some circumstances, we may also be legally required to provide information about you - for example, by court order, law, or public authority. In each case, we make sure that we have legal grounds to share information about you and document our decisions.
Transfer of data to the so-called third country
In order to achieve the processing purposes described in this policy, we may transfer your personal data to our suppliers, partners or service providers based outside the European Economic Area (EEA). Whenever your data can be outside the EEA, we will inform you.
At the same time, taking care of the security of your data, we strictly adhere to the rules of their transfer arising directly from the GDPR and transfer data only where the degree of security is guaranteed in accordance with the decisions of the European Commission (e.g. to the USA only to entities on the so-called Privacy Shield list).
How long do we keep your data?
We store your data for the purposes strictly set out in this privacy policy and in accordance with the law and relevant provisions. We never store personal data longer than necessary. In most cases, the storage period ends after 5 years from the end of cooperation with us. However, in some cases, we are required to store personal data for up to 10 years from the end of the relationship due to the limitation periods for certain claims.
Is there an obligation to provide data?
As a rule, providing personal data is completely voluntary, however, it may be necessary to perform specific services or your requests, e.g. in terms of contact, conclusion of the contract, exercise of your processing rights, etc. Providing data may also be necessary due to applicable law.
Your processing rights
Pursuant to the provisions of the personal data protection law, you have specific rights depending on the basis for processing your data.
ACCESS RIGHT
You have the right to find out if and how we use or store your personal data - so-called right of access. By exercising this right, you can also ask us for a copy of your data.
RIGHT OF CORRECTION
You can question the accuracy of the data we process and ask for it to be corrected. This is called the "right to rectification". If your data is incomplete, you can also ask us to complete it, e.g. by adding new information.
RIGHT TO DELETE DATA
You can ask us to delete your data and in some circumstances we must do it. This entitlement is also known as "The right to be forgotten". This right is not absolute and applies, among others in the following circumstances, when:
we no longer need your data
you initially agreed to the processing, but now you have withdrawn it
you objected to the use of your data
we processed your data unlawfully
We may refuse you the right to "be forgotten" in the following circumstances:
when we are legally required to store your data
storage of data is necessary to establish, exercise or defend legal claims
RIGHT OF WITHDRAWAL OF CONSENT
If your data is processed on the basis of your consent, you can additionally exercise the right to withdraw it at any time - however, the withdrawal does not affect the compliance of the processing before it is made.
THE RIGHT TO COMPLAIN WITH A SUPERVISORY AUTHORITY
We work in accordance with high standards when it comes to processing your personal data.
If you have questions or concerns, please contact us and we will answer.
If you remain dissatisfied with the content of the response or the exercise of your right, you can submit a complaint to the President of the Office for Personal Data Protection in the way we process your personal data.
IMPLEMENTATION OF YOUR AUTHORIZATIONS
You can ask for the exercise of your rights in oral or written form. If you give us your request orally, we recommend that you also send it in writing or by email to ensure a clear trace of correspondence. It will also provide us with clear evidence of your actions and allow you to respond in accordance with your expectations as soon as possible.
We do not charge for the implementation of your rights and we try to provide information within a period of no more than a month - if it turns out that we will need more time we will inform you about it.
Cookies
Our websites may use Cookies as IT data, in particular text files, which are stored in the terminal device. Cookies usually contain the name of the website from which they originate, their storage time on the end device and a unique number.
The entities placing information in the form of cookies on the device with which you use the website and accessing them is the SEVENET and its Partners, among others providing analytical services, advertisers or application developers.
Cookies can be used to:
providing website services
facilitate the use of the website while browsing
later identification in the event of reconnection of the website to the device on which they were saved
creating statistics that help to understand how users use the website, which allows improving its structure and content
adapt the website content to specific preferences and optimize the use of websites tailored to individual needs
exchange information with Partners in order to mediate in the provision of their services using the website
Types of Cookies
As part of the services, we can use the following types of Cookies:
"Session" - which are stored on the user's end device until they leave the website or turn off the web browser
"Permanent" - stored on the User's end device for a specified period
in the parameters of cookies or until they are deleted by the user
"Performance" - enabling the collection of information on the use of website pages
"Functional" - enabling the user to remember the settings selected by the user
and personalization of the User interface
"Own" - posted by the service
"External" - derived from a website external to the website
Manage browser settings
Web browsing software, i.e. a web browser, usually allows cookies to be stored on the end device by default. You can change the settings in this regard.
The web browser allows you to delete cookies. It is also possible to automatically block cookies. Detailed information on this subject is provided in the help or documentation of your web browser.