Privacy policy of brandpeak.pl/en

This Privacy Policy sets out the rules for the processing and protection of personal data provided by Users in connection with their use of the brandpeak.pl website services/en

1. Definitions.
1.1. User - a natural person with full legal capacity, and in cases provided for by generally applicable provisions, also a natural person with limited legal capacity;
1.2. Administrator – Administrator of personal data collected via the brandpeak.pl/en Website, which is randpeak.pl, Brandpeak sp. z o. o., based in Łódź 91-342, ul. Zbąszyńska 4, NIP 9472008054, KRS 0000980811, Kapitał company PLN 5,000.00, e-mail address: hello@brandpeak.pl/en
1.3. Website: Administrator's website created at: brandpeak.pl/en
1.4. GDPR or GDPR Regulation - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC ( general data protection regulation). The official text of the GDPR is available at the following website:
http://eurlex.europa.eu/legalcontent/PL/TXT/?uri=CELEX%3A32016R0679.

2. General provisions.
2.1. The privacy policy describes the rules regarding the processing of personal data by the Administrator in order to provide information about services via the Website, including the basis, purposes and scope of personal data processing and the rights of data subjects, as well as information on the scope of application on the Administrator's website. cookies and analytical tools.
2.2. Personal data collected via the Website or provided to the Administrator in another way for the purpose of concluding or implementing a contract are processed by the Administrator in accordance with applicable law, in particular in accordance with the GDPR Regulation.
2.3. The use of the Website, including the use of the contact form, is voluntary. Providing personal data in this regard by the Website user is voluntary.
2.4. The Administrator takes special care to protect the interests of persons whose personal data he processes, and in particular he is responsible and ensures that the data he collects are:
a) processed in accordance with law;
b) collected for specified, lawful purposes and not subjected to further processing incompatible with these purposes;
c) substantively correct and adequate in relation to the purposes for which they are processed;
d) stored in a form enabling identification of data subjects for no longer than necessary to achieve the purpose of processing, and
e) processed in a way that ensures appropriate security of personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction or damage, using appropriate technical or organizational measures.

2.5. Taking into account the nature, scope, context and purposes of processing as well as the risk of violating the rights and freedoms of natural persons with varying probability and severity of threat, the Administrator implements appropriate technical and organizational measures to ensure that processing takes place in accordance with this Regulation and to be able to demonstrate this. These measures are reviewed and updated as necessary. The Administrator uses technical measures to prevent unauthorized persons from obtaining and modifying personal data sent electronically.

3. Basics of data processing
3.1. The Administrator is entitled to process personal data in cases where - and to the extent that - at least one of the following conditions is met:
a. the data subject has consented to the processing of his or her personal data for one or more specific purposes;
b. processing is necessary for the performance of a contract to which the data subject is a party or to take action at the request of the data subject before concluding the contract;
c. processing is necessary to fulfill the legal obligation imposed on the Administrator; or
d. processing is necessary for the purposes of the legitimate interests pursued by the Administrator or by a third party, except for situations where these interests are overridden by the interests or fundamental rights and freedoms of the data subject, requiring protection of personal data, in in particular when the data subject is a child.
3.2. The processing of personal data by the Administrator each time requires the existence of at least one of the grounds indicated in point. 3.1 privacy policy. The specific grounds for processing Users' personal data by the Administrator are indicated in the next point of the privacy policy.