fbpx

Privacy Policy & Cookies

1. General information

  1. This Privacy & Cookies Policy (hereinafter: “Policy”) applies to the website operating at www.abakus.net.pl, hereinafter referred to as “Website”.
  2. The website operator and personal data Controller is: Abakus Systemy Teleinformatyczne Sp. z o.o. (8a Działowa St., Bielsko-Biała, 43-300), entered into the Register of Entrepreneurs of the National Court Register kept by the District Court in Biesko-Biała, 8th Commercial Division of the National Court Register, under KRS number: 0000205103, NIP: 5472001222, REGON: 072903418, hereinafter referred to as “Operator” or “Controller”.
  3. We have appointed a Data Protection Officer, who can be contacted by post, sending correspondence to the following address: Data Protection Inspector, 8a Działowa St., Bielsko-Biała, 43-300, or to the e-mail address: iod@abakus.net.pl.
  4. Personal data collected via the Website are processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/ 46 / EC (general regulation on data protection), hereinafter referred to as “GDPR” and the Act of May 10, 2018 on the protection of personal data (i.e. Journal of Laws of 2019, item 1781).
 

2. Types of processed data and their source

  1. The Controller processes the following personal data of the User:
    1. If you visit the Website:
      • IP address,
      • web browser data,
      • information about the start, end and scope of each use of the Service.
    2. If you use the contact form:
      • first name and last name,
      • city,
      • e-mail address,
      • voivodeship,
      • county,
      • municipality,
      • organization (name of the volunteer fire department, county, municipality).
    3. If you use the order form:
      • first name and last name,
      • city,
      • e-mail address,
      • phone number,
      • buyer details,
      • buyer’s address,
      • data of the e-remiza system supervisor (name, surname, e-mail address, phone number),
    4. in case of using the GDPR form:
      • first name and last name,
      • e-mail address,
      • phone number.
  2. Personal data is collected from the data subjects.
 

3. Contact form

  1. The personal data provided in the contact form will be processed by the Controller on the basis of the Controller’s legitimate interest in being able to answer the inquiry (legal basis for processing: Article 6(1)(f) of the GDPR).
  2. Personal data will be processed during the period of maintaining current relations related to the submitted inquiry. The Controller will stop processing your personal data processed on the basis of the legitimate interest of the Controller earlier if you object to the processing.
  3. Providing data is voluntary, but necessary in order to answer the query.
 

4. The order form

  1. The personal data provided in the order form will be processed by the Controller in order to:
  • acceptance and execution of the order (Article 6(1)(b) of the GDPR),
  • handling the complaint process (Article 6(1)(b) of the GDPR),
  • performance of obligations arising from legal provisions regarding the issuance and storage of accounting documents (bills, invoices) (Article 6(1)(c) of the GDPR),
  • in order to pursue or defend against claims as a legitimate interest (Article 6(1)(f) of the GDPR).
  1. Personal data will be processed for the period necessary to complete the order (legal basis: Article 6(1)(b) of the GDPR). To the extent that the processing of your personal data is carried out on the basis of a legitimate interest until the objection to data processing is raised. After the period indicated above, personal data will be archived for the time in which the relevant provisions of law require data storage or for the period of limitation of any claims.
  2. Providing data is voluntary, but necessary in order to conclude and fulfill the order.
 

5. GDPR form

  1. The personal data provided in the application form will be processed by the Controller in order to perform the obligations arising from the provisions of law regarding the exercise of the rights of data subjects (Article 6(1)(c) of the GDPR).
  2. Personal data will be processed for the period necessary to fulfill the request of the data subject, but no longer than until the limitation period for any claims.
  3. Providing data is voluntary, but necessary in order to fulfill the request of the data subject.
 

6. Helpline

  1. The personal data provided during telephone call will be processed in order to present you with a commercial offer and provide an answer to your inquiry on the basis of a legitimate interest consisting in the possibility of presenting a commercial offer and answering a question about business activity (legal basis: Article 6 (1)(f) of the GDPR).
  2. Personal data will be processed during the period of maintaining current relations related to the submitted inquiry. The Controller will stop processing your personal data processed on the basis of the legitimate interest of the Controller earlier if you object to the processing.
  3. Providing data is voluntary, but necessary in order to answer the query.
 

7. Purposes and legal basics for data processing

The website processes personal data for the following purposes:
  • performance of the contract for the provision of electronic services via the Website (legal basis: Article 6(1)(b) of the GDPR),
  • analytical and statistical – on the basis of the Controller’s legitimate interest (legal basis: Article 6(1)(f) of the GDPR) consisting in keeping statistics and analysts of the use of the services provided or based on your consent (legal basis: Article 6(1)(f) of the GDPR) 1 letter a GDPR),
  • in order to respond to the inquiry sent by the User and present the offer, as well as archiving the form, resulting from the legitimate interests pursued by the Controller (legal basis: Article 6(1)(f) of the GDPR),
  • determination, investigation or defense against any claims based on legitimate interests pursued by the Controller (legal basis: Article 6(1)(f) of the GDPR),
  • fulfillment of legal obligations incumbent on the Controller, in particular those resulting from legal provisions regarding the exercise of the rights of data subjects, as well as tax law and accounting regulations or warranty (legal basis: Article 6(1)(c) of the GDPR).
 

8. Data sources

The website performs the functions of obtaining information about users and their behavior in the following way:
  • through data entered voluntarily in the forms, which are entered into the Operator’s systems,
  • by saving cookies in end devices (so-called “cookies”).
 

9. Data retention period

  1. As a rule, the period of personal data processing by the Controller depends on the purpose and legal basis of the processing.
  2. Data is stored:
  • for the period necessary to perform or terminate the concluded contract of services by electronic means [legal basis: art. 6 (1)(b) GDPR].
  • for the duration of the legitimate interest pursued by the Controller or until the User submits an effective objection, but no longer than for the period of limitation of the Controller’s claims against the data subject in respect of the Controller’s business activity. The limitation period is determined by the law, in particular the Civil Code (the basic limitation period for claims related to running a business is three years) [legal basis: art. 6 (1)(f) GDPR].
 

10. Information about your rights

You have the following rights:
  1. The right of access, rectification, restriction, erasure or portability – the data subject has the right to request from the Controller access to his personal data, rectification, erasure (“the right to be forgotten”) or restriction of processing and has the right to object to processing, and has the right to portability his data. The detailed conditions for the exercise of the above-mentioned rights are indicated in art. 15-21 of the GDPR Regulation.
  2. The right to withdraw consent at any time – a person whose data is processed by the Controller on the basis of consent (pursuant to Article 6(1)(a) of the GDPR) has the right to withdraw consent at any time without affecting compliance with the right to processing, which was made on the basis of consent before its withdrawal.
  3. The right to lodge a complaint to the supervisory body – the person whose data is processed by the Controller has the right to lodge a complaint to the supervisory body in the manner and mode specified in the provisions of the GDPR Regulation and Polish law, in particular the Act on the Protection of Personal Data. The supervisory authority in Poland is the President of the Office for Personal Data Protection.
  4. Right to object – the data subject has the right to object at any time – for reasons related to his particular situation – to the processing of personal data concerning him based on art. 6(1)(f) (legitimate interest of the Controller), including profiling based on these provisions. In this case, the Controller is no longer allowed to process this personal data, unless he demonstrates the existence of valid legally justified grounds for processing, overriding the interests, rights and freedoms of the data subject, or grounds for establishing, investigating or defending claims.
 

11. Data recipients

  1. Personal data is provided to service providers whose assistance is used by the Controller in running the Website, in particular in the field of technical, IT and hosting services. These entities process your data on the basis of concluded entrustment agreements.
  2. Personal data may also be made available to authorities and institutions authorized to receive data on the basis of legal provisions.
 

12. Voluntary provision of data

Providing data is voluntary, but failure to do so will result in the inability to use some of the Website’s functionalities.

 

13. Automated decision-making, including profiling

Your data will not be subject to automated decision-making, including profiling.

 

14. Transfer of data to third countries

Your personal data is transferred to third countries. This means that we send them outside the European Union or the European Economic Area. Detailed information on the transfer of data to third countries can be found in sections 11-12 of this Policy.

 

15. Information about cookie files

  1. The website uses cookies.
  2. Cookie files (so-called “cookies”) are IT data, in particular text files, which are stored in the Website user’s end device and are intended for using the Website’s websites. Cookies usually contain the name of the website they come from, their storage time on the end device and a unique number.
  3. Software for browsing websites (web browser) usually allows cookies to be stored on the User’s end device by default. Website users can change the settings in this regard. The web browser allows you to delete cookies. It is also possible to automatically block cookies. Detailed information on this subject can be found in the help or documentation of the web browser.
  4. Restrictions on the use of cookies may affect some of the functionalities available on the Website.
  5. Cookies placed on the Website User’s end device may also be used by entities cooperating with the Website operator, in particular Google (Google Inc. based in the USA).
  6. The following types of cookies are used on the Website:
Cookie Duration Category Provider
CONSENT
2 years
Necessary (used to detect if the visitor has accepted the marketing category in the cookie banner. This cookie is necessary for GDPR-compliance of the website.)
youtube.com
elementor
persistent
Necessary (used in context with the website’s WordPress theme. The cookie allows the website owner to implement or change the website’s con tent in real-time)
Controller
rc::a
persistent
Necessary (this cookie is used to distinguish between humans and bots)
gstatic.com
rc::c
session
Necessary (this cookie is used to distinguish between humans and bots)
gstatic.com
pill_language
1 year
Preferences (this cookie is used to determine the preferred language of the visitor and sets the language accordingly on the website, if possible)
Controller
_ga
2 years
Statistics (registers a unique ID that is used to generate statistical data on how the visitor uses the website)
Administrator / net.pl
_gat
1 day
Statistics (used by Google Analytics to throttle request rate)
Administrator
_gid
1 day
Statistics (registers a unique ID that is used to generate statistical data on how the visitor uses the website)
Administrator
td
session
Statistics (registers statistical data on users’ behaviour on the website. Used for internal analytics by the website operator)
googletagmanager.com
_fbp
3 months
Marketing (used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers)
Administrator / net.pl
LAST_RESULT_ENTRY_KEY
session
Marketing (used to track user’s interaction with embedded content)
youtube.com
LogsDatabaseV2:V#||LogsRequestsStore
persistent
Marketing (used to store logs requests)
youtube.com
remote_sid
session
Marketing (necessary for the implementation and functionality of YouTube video-content on the website)
youtube.com
TESTCOOKIESENABLED
1 day
Marketing (used to track user’s interaction with embedded content)
youtube.com
VISITOR_INFO1_LIVE
180 days
Mmarketing (tries to estimate the users’ bandwidth on pages with integrated YouTube video)
youtube.com
YSC
session
Marketing (registers a unique ID to keep statistics of what videos from YouTube the user has seen)
youtube.com
ytidb::LAST_RESULT_ENTRY_KEY
persistent
Marketing (used to track user’s interaction with embedded content)
youtube.com
YtIdbMeta#databases
persistent
Marketing (used to track user’s interaction with embedded content)
youtube.com
yt-remote-cast-available
session
Marketing (stores the user’s video player preferences using embedded YouTube video)
youtube.com
yt-remote-cast-installed
session
Marketing (stores the user’s video player preferences using embedded YouTube video)
youtube.com
yt-remote-connected-devices
persistent
Marketing (stores the user’s video player preferences using embedded YouTube video)
youtube.com
yt-remote-device-id
persistent
Marketing (stores the user’s video player preferences using embedded YouTube video)
youtube.com
yt-remote-fast-check-period
session
Marketing (stores the user’s video player preferences using embedded YouTube video)
youtube.com
yt-remote-session-app
session
Marketing (stores the user’s video player preferences using embedded YouTube video)
youtube.com
yt-remote-session-name
session
Marketing (stores the user’s video player preferences using embedded YouTube video)
youtube.com

16. Google Analytics – details

  1. We use the Google Analytics tool provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. These services help the Controller keep statistics and analyze traffic on the Website. We carry out activities in this area based on your consent, which you can express when entering the Website by accepting cookies.
  2. In order to use Google Analytics, we have implemented a special Google Analytics tracking code in the code of our website. The tracking code uses Google LLC cookies for the Google Analytics service. You can block the Google Analytics tracking code at any time by installing the browser add-on provided by Google: https://tools.google.com/dlpage/gaoptout.
  3. Google Analytics automatically collects information about your use of our website. The information collected in this way is most often transferred to Google servers, which may be located around the world, and is stored there.
  4. We emphasize that as part of Google Analytics we do not collect any data that would allow you to be identified. Therefore, the data collected as part of Google Analytics are not personal data for us. The information we have access to as part of Google Analytics includes, in particular:
    • information about the operating system and web browser you use,
    • the subpages you view on our Website,
    • time spent on our Website and on its subpages,
    • transitions between individual subpages,
    • the source from which you come to our Website,
    • location.
  5. Google Analytics and Google Analytics 360 services have been certified by the independent security standard ISO 27001. ISO 27001 is one of the most widely recognized standards in the world and certifies that the systems supporting Google Analytics and Google Analytics 360 meet the relevant requirements.
  6. If you are interested in details related to Google’s use of data from websites and applications that use Google services, we encourage you to read this information: https://policies.google.com/technologies/partner-sites.
 

17. Managing cookies – how to express and withdraw consent in practice?

  1. If you do not want to receive cookies, you can change your browser settings. We reserve that disabling cookies necessary for authentication processes, security, maintaining user preferences may make it difficult, and in extreme cases may prevent the use of websites.
  2. 2. The user may at any time disable or restore the option of collecting cookies by changing the settings in the web browser. Instructions for managing cookies are available at: http://www.allaboutcookies.org/manage-cookies.
 

18. Final provisions

If the way we handle personal data changes, the Policy will be updated.