Privacy Policy
This document sets out the basic rules for the protection of User Personal Data applied by the administrator of such data, i.e. the owner of the service CoByloGrance.com and RecentTracks.com
In particular, the Privacy Policy contains all the necessary information required by the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation).
I. DEFINITIONS
Any capitalized terms used in the Privacy Policy have the meanings given below:
II. PERSONAL DATA PROTECTION
In this section of the Privacy Policy, you will find all the information required by the provisions of the GDPR, in particular the provision of Article 13 of the GDPR.
1. PERSONAL DATA CONTROLLER
The Administrator of Users' Personal Data is a private person..
CONTACT DETAILS OF THE DATA CONTROLLER:
Email address: [click to reveal address]
2. WHAT DATA IS PROCESSED BY THE DATA CONTROLLER
- User data received from the User during account registration
- information made available by the User's Device, which the User uses in the course of using the services provided by the Data Controller, IT systems, websites or mobile applications, automatically generated and recorded (e.g. data of the Device the User uses - type of Device, type and version of the browser; other exploitation data resulting from logins and activities),
- information collected and compiled by the Data Administrator during User activity on the Website (e.g. IP addresses, pages of the Website viewed or searched for, clicks, time of use of certain services, how the User uses the Website, Internet browser and device information).
3. PURPOSES, LEGAL BASIS AND DURATION OF PERSONAL DATA PROCESSING:
- Purpose: to provide services electronically; to take action before concluding a contract with the User - at the User's request; to perform the concluded contract; to handle complaints. Legal basis for processing: Article 6(1)(b) and (c) of the GDPR. Period of processing: until the expiration of the contract and claims arising therefrom, or longer - if permitted or required by generally applicable law.
- Analytical and statistical purposes. Legal basis for processing: Article 6(1)(f) of the GDPR - legitimate interest of the Data Controller in conducting analysis of Users' activity on the Website and use of the Website, as well as their preferences in order to improve the functionalities used. Period of processing: for the period of holding an account on the Service or until the User objects to such processing, whichever comes first.
- Purpose: to establish, assert or defend against claims. Legal basis for processing: Article 6(1)(f) GDPR - legitimate interest of the Data Controller in being able to establish, assert or defend against claims. Period of processing: until the statute of limitations for claims - in accordance with the provisions of generally applicable laws..
- Purpose: handling of requests and proceedings conducted by authorized authorities; performance of other obligations under the provisions of generally applicable law. Legal basis for processing: legal obligation - Article 6(1)(c) of the GDPR in conjunction with the relevant provisions of generally applicable Polish law (including, but not limited to, the Anti-Money Laundering and Countering the Financing of Terrorism Act; the Act on Out-of-Court Settlement of Consumer Disputes or the Telecommunications Law). Period of processing: respectively - until the request is fulfilled or in accordance with the provisions of generally applicable law..
4. VOLUNTARINESS OF PROVIDING PERSONAL DATA
Provision of Data by the User is voluntary, however, failure to provide Data (including refusal to access information and its storage on the User's Device, including with the use of Cookies) marked as necessary for the provision of services will prevent their implementation. The processing of User Data is necessary for the conclusion and proper execution of the concluded agreement and maintenance of the account on the Website. Provision of the Data conditions, in particular, the possibility of solving technical problems related to the provided services, contacting the User for purposes related to the provided service..
5. RECIPIENTS OF PERSONAL DATA
The Administrator makes Data available to third parties in the following cases:
- Necessity of fulfillment of obligations or rights under the law - e.g. entities providing services to the Administrator in the field of legal services, accounting services, etc..
- at the request of entities or bodies authorized to do so under generally applicable laws, e.g.: authorized state authorities or law enforcement agencies;
In the case of using the assistance of external entities in the performance of certain tasks or services, the Administrator entrusts the processing of User Data for a strictly defined purpose to entities that are its subcontractors, still remaining the Administrator of the User's Personal Data and being responsible for its security.
6. DATA PROTECTION AND SECURITY
- The Administrator shall ensure the security of Users' Personal Data through the use of appropriate organizational and technical security measures that ensure, in particular, confidentiality, protection against unauthorized or unlawful processing and accidental loss, destruction or damage of Personal Data.
- In order to protect Personal Data, the Administrator uses appropriately secured IT systems, up-to-date and proven technologies, and appropriate security procedures in accordance with applicable legal standards, security requirements and confidentiality rules.
- The primary means of protecting Personal Data is the use of secure connections (e.g. SSL protocols), data encryption and the use of other technical, software or organizational solutions.
- The Administrator shall ensure that the User's Personal Data is processed only by authorized persons and entities.
7. YOUR RIGHTS IN RELATION TO THE PROCESSING OF YOUR PERSONAL DATA
Users to whom the Data relates have the following rights:
- The right to withdraw consent to the processing of Personal Data - at any time (withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent before its withdrawal);
- The right to access your Personal Data - the right to obtain information on whether the Administrator processes your Personal Data, for what purpose, what categories of Data it has at its disposal, what are the recipients / categories of recipients of the Personal Data and what is the planned period of storage (when this is not possible to determine - the criteria for determining this period);
- The right to obtain a copy of your Data;
- Right to rectify Personal Data - the right to request the Administrator to correct Personal Data that is incorrect or to complete incomplete Data;
-
The right to erasure of Personal Data - the right to demand erasure of Personal Data processed by the Administrator, unless the further processing of the Data is obligated by law, the law does not imply an obligation to be fulfilled by the Administrator, or the Personal Data is not necessary for the Administrator to establish, assert or defend claims.
Dane osobowe Użytkownika usuwane są na jego żądanie wówczas, gdy:
- The data is no longer necessary for the purposes for which it was collected or otherwise processed;
- You have withdrawn your consent to the processing of Personal Data if the processing was carried out solely on the basis of your consent and there is no other legal basis entitling the Administrator to further processing;
- You have objected to the processing of your Personal Data in pursuit of the Administrator's legitimate interest and there is no other legal basis entitling the Administrator to continue processing your Personal Data;
- Personal data were processed by the Administrator unlawfully;
- Personal data must be deleted due to legal obligation.
- The right to restrict the processing of Personal Data;
- The right to portability of Personal Data - applies to Personal Data processed by automated means, which the Administrator processes on the basis of the User's consent, or on the basis of a contract concluded with the User;
- The right to object to the Administrator's processing of Personal Data in pursuit of the Administrator's legitimate interests;
- The right not to be subject to automated decision-making;
- The right to file a complaint with the supervisory authority - the President of the Office for Personal Data Protection.
If you exercise certain rights, including but not limited to: the right to withdraw consent, the right to erasure of Personal Data, the right to limit processing, the right to object, or the right not to be subject to automated decision-making, it is possible that the Administrator may not be able to provide you with certain services (in whole or in part) for the provision of which the processing of certain Personal Data of the User is necessary.