Information about the Controller:
The Controller of your personal data is MJM Risk Management. z o.o., with its registered office at 1 Klimczaka Street, 02-797 Warsaw, entered in the Register of Entrepreneurs kept by the District Court for the Capital City of Warsaw in Warsaw, 13th Commercial Division of the National Court Register under the number 0000271568 ("Controller").
The Controller can be contacted via email: ado@smartt.pl or in writing – at the following mailing address:
Smartt Re sp. zo.o.
Klimczaka St. 1, 02-797 Warsaw
Information about the Data Protection Officer (“DPO”):
The Controller has appointed a Data Protection Officer with whom you can contact on all matters related to the processing of your personal data.
Contact to the DPO:
Lukasz Onysyk - ado@smartt.pl
Information about the purposes of processing of personal data and the legal basis for their processing:
The purposes for which we may process personal data and the legal basis for processing it will vary depending on the situation and your needs:
1. Contact purposes
If you choose to contact us using the contact information provided, the legal basis for our processing of your personal data will be Article 6(1)(f) of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016. on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC (General Data Protection Regulation) - "GDPR, i.e. the Controller's legitimate interest in ensuring that your requests and questions are properly handled and answered.
2. Recruitment purposes
If you decide to participate in the recruitment process by completing the recruitment form available on our Site, the legal basis for our processing of your personal data will be Article 6(1)(b) GDPR (performance of a contract), Article 6(1)(c) GDPR (legal obligation under Art. 6(1)(c) GDPR (legal obligation resulting from Article 22 of the Act of June 26, 1974 Labor Code) and Article 6 (1)(f) GDPR legitimate interest consisting in protecting the Controller from possible charges resulting from claims related to the recruitment process.
3. Objectives related to the functioning of cookies
For the purposes of the operation of cookies to the extent necessary for the operation of the Website ("necessary cookies"), the legal basis for our processing of your personal data is Article 6(1)(f) GDPR (legitimate interest, i.e. evaluation and improvement of our Website and services provided and development of new features, offers and services), while for the operation of cookies ("performance cookies" and "functional cookies") for statistical and analytical purposes – Article 6(1)(a) GDPR (your consent).
Information on the period of data storage
We will retain personal information until you withdraw your consent or the purpose for which the data was collected ceases, unless it is necessary to retain it for a longer period or such eventuality is permitted by law or defined in a contract. We may retain personal information for a longer period of time if required by our regulatory or professional compensation obligations, or if we believe it is necessary to establish, assert or defend our legal rights and interests or the rights and interests of others.
Information about data recipients and automated decision-making and profiling
The Controller declares that it does not sell, share or transfer the personal data collected for processing to other persons or institutions, with the exception of entities providing support services to us (e.g. accounting, human resources and IT services), whereby such entities process data on the basis of contracts concluded with us and only in accordance with the Controller's instructions. In addition to the aforementioned entities, your data may be made available only at the request of entities authorized to do so by law.
Rights of the data subject
You are entitled to:
- Object to the processing of your personal data due to your particular situation – where the legal basis for our processing of your personal data is Article 6(1)(f) GDPR i.e. the legitimate interest of the Controller;
- Access and to receive copies of your personal data;
- Rectification of incorrect personal data and completion of incomplete data;
- Erasure of your personal data (right to be forgotten);
- Restrictions on the processing of your personal data.
Other information
To the extent not covered by this Privacy Policy, the data protection regulations shall apply.
