airports
🌎 EN
/rodo

GDPR Information Obligation

The following information is a concise, understandable and transparent summary of the information contained in thePrivacy Policyregarding the Data Administrator, the purpose and method of processing personal data, and your rights in connection with this processing, in the form required to fulfill the GDPR information obligation. Details regarding the processing method and entities participating in this process are available in the indicated policy.

What is the scope of personal data processed by us?

The service processes regular personal data, provided voluntarily by the people concerned
(E.g. first and last name, login, email address, phone, IP address, etc.)

The detailed scope of processed data is available in thePrivacy Policy.

Who is the data administrator?

The Personal Data Administrator (hereinafter the Administrator) is the company "PAPICODE Piotr Papiernik", providing services electronically through the Service

How can you contact the data administrator?

The Administrator can be contacted in one of the following ways

  • Contact form - available at: /contact

Has the Administrator appointed a Data Protection Officer?

Based on Art. 37 GDPR, the Administrator has not appointed a Data Protection Officer.

For matters related to data processing, including personal data, please contact the Administrator directly.

Where do we obtain personal data from and what are their sources?

Data is obtained from the following sources:

  • in the case of registration using social media portals, with the expressed conscious consent of these persons, from these social media portals

What are our purposes for processing data?

Personal data voluntarily provided by Users is processed for one of the following purposes:

  • Implementation of electronic services:
    • Communication of the Administrator with Users on matters related to the Service and data protection
    • Ensuring the legitimate interest of the Administrator

    What are the legal bases for data processing?

    The Service collects and processes User data based on:

    • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
      • art. 6(1)(a)
        the data subject has given consent to the processing of his or her personal data for one or more specific purposes
      • art. 6(1)(b)
        processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract
      • art. 6(1)(f)
        processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party
    • Act of May 10, 2018 on the protection of personal data (Journal of Laws 2018, item 1000)
    • Act of July 16, 2004 Telecommunications Law (Journal of Laws 2004 No. 171, item 1800)
    • Act of February 4, 1994 on copyright and related rights (Journal of Laws 1994 No. 24, item 83)

    What is the legitimate interest pursued by the Administrator?

    • For the possible establishment, investigation or defense against claims - the legal basis for processing is our legitimate interest (Article 6(1)(f) GDPR) consisting in protecting our rights, including among others;
    • For the purpose of assessing potential customer risk
    • For the purpose of evaluating planned marketing campaigns
    • For the purpose of direct marketing

    For how long do we process personal data?

    As a rule, the indicated personal data is stored only for the period of providing the service within the service operated by the Administrator. It is deleted or anonymized within30 days from the time of termination of services (e.g., deletion of a registered user account, unsubscribing from the Newsletter list, etc.)

    In exceptional situations, in order to secure the legitimate interest pursued by the Administrator, this period may be extended. In such a situation, the Administrator will store the indicated data, from the time of requesting their deletion by the User, for no longer than 3 years in the event of a violation or suspected violation of the service regulations by the person whose data concerns.

    Who is the recipient of the data, including personal data?

    As a rule, the Administrator is the only recipient of the data.

    However, data processing may be entrusted to other entities providing services to the Administrator in order to maintain the Service's operations.

    Such entities include, among others:

      Will your personal data be transferred outside the European Union?

      Personal datawill not be transferred outside the European Union, unless they have been published as a result of individual User action (e.g. entering a comment or post), which will make the data available to anyone visiting the site.

      Will personal data be the basis for automated decision-making?

      Personal data will not be used for automated decision-making (profiling).

      What rights do you have regarding the processing of personal data?

      • Right of access to personal data
        Users have the right to obtain access to their personal data, exercised upon request submitted to the Administrator

      • Right to rectify personal data
        Users have the right to request the Administrator to immediately rectify personal data that is incorrect and/or complete incomplete personal data, exercised upon request submitted to the Administrator

      • Right to erasure of personal data
        Users have the right to request the Administrator to immediately delete personal data, exercised upon request submitted to the Administrator.

        In the case of user accounts, data deletion consists of anonymizing data enabling User identification.

        In the case of the Newsletter service, the User has the possibility to independently delete their personal data using the link included in each sent e-mail message.

      • Right to restriction of processing of personal data
        Users have the right to restrict the processing of personal data in cases indicated in Article 18 GDPR, including questioning the accuracy of personal data, exercised upon request submitted to the Administrator

      • Right to data portability
        Users have the right to obtain from the Administrator personal data concerning the User in a structured, commonly used and machine-readable format, exercised upon request submitted to the Administrator

      • Right to object to the processing of personal data
        Users have the right to object to the processing of their personal data in cases specified in Article 21 GDPR, exercised upon request submitted to the Administrator

      • Right to lodge a complaint
        Users have the right to lodge a complaint with the supervisory authority dealing with personal data protection.