PRIVACY POLICY

 

§ 1 [ GENERAL PROVISIONS ]

1. The administrator of your personal data is GETWISE Sp. z o.o. with its registered office in Warsaw, Al. Ujazdowskie 22 lok 18 (00 - 478), entered into the National Court Register - Register of Entrepreneurs by the District Court for the Capital City of Warsaw, 14th Commercial Division of the National Court Register, KRS: 0000803910, NIP: 1231449568, REGON: 384372971, with share capital of PLN 12,500.
2. Personal data shall mean all information about an identified or identifiable natural person through one or more specific factors determining physical, physiological, genetic, mental, economic, cultural or social identity, including the IP of the device, location data, internet identifier and information collected through cookies and other similar technology.
3. Personal data collected by the Administrator are not profiled.
4. Processing of personal data is each activity on personal data. These are in particular the collection, storage, recording, ordering, modifying, browsing, using, sharing, organizing, deleting or destroying.
5. All personal data is collected and processed by the Administrator with the security measures to protect it from access by persons and third parties, in accordance with applicable laws in this regard.
6. The Administrator makes special efforts to protect the rights of the Users, in particular in the area of privacy and protection of information provided to him/her and concerning the Users.
7. The Administrator shall pay particular attention to protect personal data against access by unauthorized persons and against processing in violation of the applicable regulations in this area and their change, loss, damage or destruction.
8. The Administrator shall not transfer personal data outside the territory of Poland, the European Union and the European Economic Area.
9. Providing of personal data is voluntary, but the lack of consent for the processing of personal data marked as obligatory shall prevent Administrator from providing services.

 

§ 2 [ DEFINITIONS ]

Within Privacy Policy, the following definitions shall be understood:

1. Administrator – GETWISE Sp. z o.o. with its registered office in Warsaw, Al. Ujazdowskie 22 lok 18 (00 - 478), entered into the National Court Register - Register of Entrepreneurs by the District Court for the Capital City of Warsaw, 14th Commercial Division of the National Court Register, KRS: 0000803910, NIP: 1231449568, REGON: 384372971, with share capital of PLN 12,500,
2. Website – the website maintained by the Administrator at monite.app,
3. Monite – the Administrator's application (software), within the framework of which he provides services described in more detail in the Terms of Use,
4. RODO – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC,
5. Privacy Policy - this Privacy Policy,
6. Terms of Use – the Administrator's terms and conditions governing the use of the Website and Monite, available on the Website and in Monite,
7. User – any person using the Website or Monite.

 

§ 3 [ APPLICATION OF PRIVACY POLICY ]

1. This Privacy Policy applies to the Website and Monite and applies to all cases where the Administrator administers and processes personal data. This applies both to cases where the Administrator processes personal data obtained directly from the data subject, and to cases where personal data have been obtained from other sources, including agreements on the entrustment of data processing.
2. By establishing this Privacy Policy and making it available on the Website and in Monite, the Administrator fulfils the information obligations imposed on him/her by Article 13 and Article 14 of the RODO respectively, each time in accordance with these provisions.

 

§ 4 [ LEGAL GROUNDS AND PURPOSES FOR PROCESSING PERSONAL DATA ]

1. The Administrator collects personal data concerning natural persons, including natural persons conducting sole proprietorship, in connection with the User's use of the Website and Monite to the extent necessary to provide services, as well as information about the User's activity on the Website and Monite.
2. All personal data of persons using the Website and Monite, including the IP address or other identifiers and information collected through cookies or other similar technologies, are collected or processed by the Administrator on the basis of the consent given by the User, pursuant to Article 6(1)(a) of the RODO or in order to perform an agreement pursuant to Article 6(1)(b) of the RODO.
3. In the course of providing services, the Administrator in particular processes personal data:
4. in order to provide services by electronic means in terms of making available to Users the content collected on the Website and Monite,
5. to provide services related to the maintenance and operation of the User Account, in the case of Users having a registered Account on the Website,
6. to process complaints.
7. The above data may also be processed on the basis of the legitimate purpose of the Administrator in accordance with Article 6 (1) (f) of the RODO.
8. For the Administrator's legitimate purposes referred to in § 3 point 4 of the Privacy Policy shall include:
9. sending commercial information,
10. setting up the database,
11. to pursue or secure claims,
12. marketing own products or services,
13. conducting product sales analyses and market research and other analytical and statistical activities,
14. conducting analyses of Users' activity and the manner of using the Website or Monite for the purpose of correct application of the functionalities,
15. organising, conducting and coordinating marketing and promotional activities,
16. securing the documentation in order to defend against possible claims and protect the rights of the Administrator.
17. When processing personal data on the basis of a legitimate interest of the controller, the controller shall do so only until this interest, which constitutes the basis for the processing of personal data, ceases.
18. With regard to the personal data of Users making donations within the Website with the use of data coming from payment services, in particular stripe.com, the Administrator does not receive and does not process personal data concerning payments made by Users.
19. The processing of personal data is carried out in accordance with the provisions of polish law: the Personal Data Protection Act of 10 May 2018 (i.e. Journal of Laws of 2019, item 1781) and the Act of 18 July 2002 on the provision of electronic services (i.e. Journal of Laws of 2020, item 344).
20. The User's activity on the Website and Monite, including his/her personal data, is recorded in a computer system used for storage and recording, containing information about his/her events and actions. The information collected in this way is processed in connection with the provision of services, with the Administrator also processing it for technical purposes.
21. Some personal data are processed by the Administrator in connection with the legal provisions in force in this respect pursuant to Article 6(1)(c) of the RODO, including in particular for tax and accounting purposes.

 

§ 5 [ TYPE OF PERSONAL DATA COLLECTED ]

1. When you visit the Website or use Monite, you have control over the personal information that you provide. The Administrator limits the collection and use of information about Users to the necessary minimum.
2. The personal data collected by the Administrator include, among others:
3. name and surname or other designation of an entrepreneur,
4. address details,
5. the telephone number,
6. e-mail address,
7. IP address,
8. domain name,
9. type of browser,
10. type of operating system.
11. With regard to data necessary to register an individual User Account, this Privacy Policy refers to the content of the Terms of Use, in particular § 5 of the Terms of Use.
12. The Administrator does not collect or process special categories of personal data which constitute sensitive data.

 

§ 6 [ COOKIES ]

1. In a limited scope, the Administrator may collect personal data automatically by means of cookies located on the Website and Monite. These files are created by the Internet browser and User's device each time the User uses the Website or Monite.
2. Cookies may include those that are necessary for the operation of the Website. Cookies belonging to this category are used to provide, among other things, the following information
3. maintaining the User's session,
4. saving the status of the User session,
5. The Administrator also uses the services of third parties who use cookies for the following purposes, among others:
6. monitoring traffic on the Website,
7. monitoring the number of Monite downloads,
8. determining the number of Users on the Website.
9. None of cookies are used on the Website or Monite to collect information that allows the identification of the User.
10. User also has the ability to delete cookies already stored.
11. Blocking or deletion of all cookies may make it difficult or completely impossible to use certain features of the Website or Monite.

 

§ 7 [ AUTOMATIC PROCESSING OF PERSONAL DATA ]

Personal data collected and processed by the Administrator will not be automatically processed, which means that no decisions will be made that are based solely on automated processing of the User's personal data, including profiling.

 

§ 8 [ TIME OF PROCESSING OF PERSONAL DATA ]

1. Time for which personal data will be processed by the Administrator depends on the legal basis for the processing of these personal data.
2. Data obtained in connection with the registration of an account on the Website shall be processed for the period of time for which the User is registered, and after that period they shall be processed for the purposes and for the time connected with securing the Administrator's claims.
3. Data obtained in connection with the installation of Monite shall be processed during the period in which the User uses Monite, and after that period shall be processed for the purposes and for the time connected with securing the Administrator's claims.
4. Personal data processed for the purposes of marketing own products or services on the basis of a legitimate legal interest will be processed until such person objects.
5. Personal data processed by the Administrator on the basis of the Administrator's legitimate interest, for a purpose other than marketing, shall be processed until such interest ceases or until the data subject objects to further such processing.
6. Period of data processing may be extended if the processing is necessary to establish and pursue possible claims or defences against them, and afterwards only in the case and to the extent required by law.
7. Where the processing of personal data results from a legal obligation imposed on the Administrator, the periods of data processing for this purpose shall be determined by relevant provisions.
8. Revoking of the User's consent to the processing of personal data shall not affect the lawfulness of the processing, which was performed on the basis of the consent before its withdrawal.

 

§ 9 [ DATA TRANSMISSION ]

1. Transfer of personal data to other entities shall take place only if the law allows it. In such a case, the transfer of personal data for processing to another entity shall take place on the basis of a contract of entrustment which ensures that the processor applies appropriate security measures to protect the data in accordance with the applicable law.
2. In case the User's consent is obtained, his/her data may also be made available to other entities for their own purposes, including marketing purposes.
3. Recipients of personal data, which the Administrator processes may be in particular:
4. entities processing personal data under agreements of entrustment of personal data processing,
5. entities providing hosting services to the Administrator,
6. entities carrying out marketing campaigns for the Administrator,
7. postal operators,
8. banks and payment operators,
9. providers of legal services,
10. Personal data shall be transferred only in so far as this is actually necessary for the purpose in question.

 

§ 10 [ DATA SUBJECT'S RIGHTS ]

1. In order to exercise his rights, a natural person may contact the Administrator in this matter by sending a request in the form of an e-mail to the address – [email protected], or in a physical form to the Administrator's address. The request should specify, as far as possible, precisely what power the person wishes to exercise, what processing and the purposes of the processing the request concerns.
2. The request shall be replied to within one month from its receipt. If it is necessary to extend the deadline, the Administrator shall inform the User of its reasons. The reply shall be given to the e-mail address from which the application was sent, and in the case of applications sent by ordinary mail to the address indicated by the applicant, unless the letter shows a desire to receive a reply to the e-mail address.
3. the rights of the User should be indicated in particular:
4. the right to information about the processing of personal data,
5. right to obtain a copy of the data,
6. the right to rectify or amend personal data,
7. the right to withdraw consent to the processing of personal data,
8. right to limit processing,
9. right to object to the processing of personal data. a decision of the supervisory authority will be issued authorising further processing).
10. the right to request erasure,
11. right to data portability.

 

§ 11 [ PERSONAL DATA SECURITY ]

1. Information concerning the Users, including personal data of the Users, is protected by the Administrator against unauthorised access, as well as other cases of their disclosure or loss and against destruction or unauthorised modification of the indicated data and information through the application of appropriate technical and organisational safeguards.
2. The Administrator shall take all necessary steps to ensure that the cooperating entities guarantee the application of appropriate security measures in each case when they process personal data on the Administrator's order.

 

§ 12 [ ALL OTHER QUESTIONS, CONCERNS AND COMPLAINTS ]

1. If you have any questions or concerns about the content of this Privacy Policy, how the Administrator processes your personal data, as well as if you intend to file a complaint regarding these issues, please send a message with details and circumstances, including complaints, to [email protected].
2. The persons whose personal data are processed by the Administrator are also entitled to file a complaint to the supervisory authority, which is the President of the Office for the Protection of Personal Data, to the address - Urząd Ochrony Danych Osobowych, ul. Stawki 2, 00 - 193 Warsaw.

 

§ 13 [ PRIVACY POLICY CHANGES ]

1. The Administrator shall introduce changes in the scope of this Privacy Policy when it proves necessary or desirable, inter alia, due to new laws, new guidelines of the authorities responsible for supervision of personal data protection processes and changes in the technology by which the Administrator processes personal data.
2. The amendments to the Privacy Policy cannot deprive the Users of their acquired rights and they shall be effective for the future, from the date of the amendment.
3. The amendments to this Privacy Policy shall be made by its publication on the Website and in Monite. If you do not agree to any changes to this Privacy Policy, you may stop using the Website or Monite at any time.