INTER BALT Sp. z o.o. with headquarters in Gdańsk, ul. Stągiewna 18, 80-750 Gdańsk, entered into the Register of Entrepreneurs kept by the District Court Gdańsk - Północ in Gdańsk, VII Commercial Division of the National Court Register, under KRS number 0000182526, NIP: 583-284-08-94, REGON: 192984390, hereinafter referred to as the "Company”.
2. The Website should be understood as the Company's website, available at the URL http://www.interbalt.pl.
5. Contact with the Company is possible:
- in writing to the following address: INTER BALT Sp. z o.o., ul. Stągiewna 18, 80-750 Gdańsk
- in electronic form via e-mail address firstname.lastname@example.org
1. The Company guarantees users of the Website the right to choose information that will be made available by the user.
2. The Company fully respects the right to privacy and the protection of users' personal data.
3. The Company allows the use of the Website in an anonymous manner.
4. Any transfer of information to third parties takes place if required by applicable law, and in the following cases:
- after obtaining the consent of users, in order to provide a particular service,
- in a combined form characterizing the population of Website users to current and potential trading partners.
Personal data protection
1. The administrator of personal data is the Company.
2. Personal data are processed in accordance with applicable law, in particular the Law on the Protection of Personal Data and Regulation of the European Parliament and Council (EU) 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46 / EC, hereinafter referred to as "GDPR".
4. In addition, in connection with the operation of the Website, the Company processes the so-called internet data.
5. The Company stores personal data no longer than it is necessary to achieve the purposes for which it was collected, unless applicable law requires extension of this period (e.g. tax settlements, pursuing claims, complaint proceedings).
6. Depending on the purpose and manner of sharing personal data, they are processed by the Company on one of the following legal bases:
- consent of the data subject (Article 6 (1) (a) and GDPR) - this basis applies, inter alia, if the person contacts the Company using the online form or after selecting in the selection window the consent for the processing of their personal data,
- processing is necessary to perform the contract or take action before the conclusion of the contract at the request of the person concerned (Article 6 (1) (b)) of the GDPR) - this basis is applicable when the person uses the services provided under contracts concluded in express or implied manner (e.g. by immediate execution of the agreement),
- processing is necessary to fulfill the legal obligation imposed on the administrator (Article 6 (1) (c) of the GDPR),
- processing is necessary for purposes arising from legitimate interests pursued by the administrator or a third party (Article 6 (1) (f) of the GDPR) - this basis includes, inter alia, Company's own marketing activity, unless it has obtained separate user consent for this purpose. In addition, Internet data is processed to detect and prevent abuse in the telecommunications network, as well as for analytical purposes.
User rights related to the protection of personal data
1. Anyone who has provided his personal data to the Company has the right to request:
- access to your personal data, pursuant to art. 15 of the GDPR, i.e. to obtain confirmation from the Company whether it processes personal data and the right to obtain access to such data, and in particular to the following information: (a) about the purposes of data processing, (b) about the categories of data to be processed, (c) about recipients or categories of recipients to whom the Company disclosed or to whom it intends to disclose data, (d) about the possibility to exercise personal data protection rights and how to implement them, (e) about the right to file a complaint to the supervisory body, (f) about automated decision-making, including profiling, as well as its consequences,
- correcting data, pursuant to art. 16 of the GDPR, i.e. to require the Company to immediately correct personal data that is incorrect and to request supplementing incomplete personal data,
- deletion of data, pursuant to art. 17 of the GDPR, i.e. to request the Company to delete personal data immediately (also known as the "right to be forgotten"). The company is required to delete personal data, provided that one of the following conditions is met: (a) personal data is no longer necessary for the purposes for which it was collected, (b) the consent which the processing is based on has been withdrawn and there is no other legal basis for processing, (c) personal data have been processed illegally, (d) personal data must be removed in order to comply with the legal obligation. It is not possible to implement the right to delete personal data if the Company is obliged under the law to further process personal data within the scope determined by the relevant legal provisions for further processing of personal data to the extent specified by relevant law or for purposes necessary to establish, assert or defend claims,
- limitations of data processing, based on art. 18 GDPR, i.e. to request the Company to restrict the processing of personal data in the following cases: (1) the user questions the correctness of personal data processed by the Company, (2) the processing of personal data is unlawful and the removal of data was opposed, (3) the Company no longer needs personal data, but it is needed by the user to establish, investigate or defend claims. If the right to limit the processing of personal data is exercised, the Company may process personal data, except for storage, only with consent or to determine, assert or defend claims or to protect the rights of another natural or legal person or for important public interest reasons.
- raising objections:
- in the face of processing, pursuant to art. 21 par. 1 GDPR, i.e. the right to object at any time to data processing based on the legitimate interest of the Company. In such a situation, the Company will not be able to process the data for these purposes further unless there are valid grounds or data are required by the Company to pursue claims. The right to object to the processing of data is not applicable when: (a) personal data are processed on the basis of consent - in such a situation consent may be withdrawn, (b) data processing is necessary for the performance of the contract, (c) processing is necessary to fulfill the legal obligation by the Company,
- in the face of data processing, regardless of the legal basis for direct marketing based on Art. 21 par. 2 of GDPR. In this situation, the Company will not be able to process the data for this purpose.
- data transfer, based on art. 20 of GDPR, i.e. to receive personal data in a structured, commonly used format provided to the Company and requesting the transfer of such data to another data controller, if technically possible. This right is applicable if: (a) the processing takes place in an automated manner, (b) the data is processed on the basis of consent or in connection with the contract.
2. The rights referred to in paragraph 1 above, can be executed by sending an appropriate application:
- in writing to the following address: Inter Balt Sp. z o.o., ul. Stągiewna 18, 80-750 Gdańsk,
- in electronic form via the e-mail address: email@example.com
3. When using the above rights, it must be remembered that the execution of a submitted request may require the verification of the identity of the person whom the data relate to in order to avoid transfer to unauthorized persons.
4. Within one month of receiving the submitted request, the Company will provide the interested party with information on the actions taken with regard to his/her application. If necessary, the deadline for implementing the submitted request may be extended by another two months due to the complexity of the request or the number of requests submitted.
5. If the submitted request turns out to be unreasonable or excessive, in particular due to its habitual nature, the Company may demand a reasonable fee to implement the application or refuse to take action in connection with the request.
6. If the processing of personal data by the Company is deemed to violate the provisions of law, the user is entitled to file a complaint to the supervisory body established under the Act on the Protection of Personal Data.
To report an incident regarding personal data breach, please send an e-mail to: firstname.lastname@example.org