Privacy policy
This document sets out rules of the Privacy and Cookie Policy for the website made available at wawconcierge.com, which is owned by Norbert Szmit Concierge,
1.1 Your personal data administrator is Norbert Szmit Concierge, ul. Fort Wola 12c/275, 01-258 Warsaw, NIP 6090020020 (hereinafter referred to as the ‘Administrator’).
1.2 The Administrator’s contact details:
Postal address: ul. Fort Wola 12c/275, 01-258 Warszawa
Email address: info@wawconcierge.com
Phone number: 690611820
1.3 On the basis of Article 37 of the GDPR the Personal Data Administrator has not appointed a Personal Data Protection Officer and is performing duties related to the protection of personal data himself.
Administrator – Personal Data Administrator, an entity who decides on the purposes and means of processing personal data
Personal data – information about individuals relating to a directly or indirectly, identified or identifiable individual; personal data especially includes an identification number, factors that determine physical, physiological, mental, economic, cultural or social characteristics
GDPR – Regulation of the European Parliament and of the Council (EU) 2016/679 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC
Privacy and Cookie Policy – this document hereinafter referred to as the ‘Policy’
Website – the website run by the Administrator available at https://wawconcierge.com
User of the website – any individual visiting the Website or using at least one service provided by the Administrator or a feature of the Website
Cookies – small amounts of information in the form of a text string placed or read by the website in the internet browser being used by the user
3.1 The Administrator gathers the data of the Users of the Website available at https://wawconcierge.com
3.2. The type of data gathered by the Administrator depends on the service offered by the Administrator which the User is using
3.3 Personal data will be processed by the Administrator in accordance with the provisions of the Regulation of the European Parliament and of the Council (EU) 2016/679 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC, referred to as the General Data Protection Regulation (hereinafter referred to as ‘GDPR’).
3.4 Providing of any kind of personal data is voluntary and depends on the User’s decision. However, in some cases, providing certain personal data is necessary to fulfill the User’s expectations, with regard to using the services offered by the Administrator.
3.5 The services offered by the Administrator via the Website are offered to people who are over 18 years old. Therefore, the Administrator does not knowingly process any personal data of children.
4.1 REGISTRATION OF THE CLIENT’S ACCOUNT
4.1.1 Whose data is subject to processing?
Data of people who have registered an account on the Website https://wawconcierge.com is subject to processing
4.1.2 Which data is subject to processing?
4.1.3 What is the purpose of processing the data?
The data will be processed for the purpose of providing services related to the running and maintenance of the account on the Website.
4.1.4 What is the legal basis for processing the data?
The preparation and execution of the agreement – Article 6(1b) of the GDPR.
The Administator’s justified interest in order to optimise the services provided – Article 6(1f) of the GDPR.
4.1.5 What is the duration of storage of the data?
The data is processed for the duration of the agreement (for example, until the account is deleted from the Website) and then throughout the period needed to establish, investigate or defend against claims.
4.1.6 Is providing data necessary?
Providing data is voluntary, however, without providing data it will not be possible to create an account.
4.2 ORDER HANDLING
4.2.1 Whose data is subject to processing?
The data of people who have made an order on the site https://wawconcierge.com
4.2.2 Which data is subject to processing?
4.2.3 What is the purpose of processing the data?
The data will be processed in order to complete the order, for complaint proceedings, to pursue claims or defend against claims as well as in relation to performing obligations relating to tax and accounting regulations.
4.2.4 What is the legal basis for processing the data?
The preparation and execution of the agreement – Article 6(1b) of the GDPR.
Justified interest based on establishing, investigating and defending against possible claims – Article 6(1f) of the GDPR.
Fulfilment of the legal obligation imposed on the Administrator – Article 6(1c) of the GDPR.
4.2.5 What is the duration of storage of the data?
The data is processed for the duration of the agreement, however, data obtained for the purpose of carrying out legal obligations is processed until they are fulfiled.
Data processed on the basis of a legally justified interest is processed until its execution or until the User files an effective objection. The above processing durations can be extended by a maximum of the time needed to establish, investigate or defend against claims. After this period, the personal data will be anonymised or deleted.
4.2.6 Is providing data necessary?
Providing data is voluntary, however, without providing data it will not be possible to handle the order.
4.3 CONTACT FORM
4.3.1 Whose data is subject to processing?
The data of people who have contacted using the contact form.
4.3.2 Which data is subject to processing?
4.3.3 What is the purpose of processing the data?
To identify the User contacting as well as to provide an answer to the given question.
4.3.4 What is the legal basis for processing the data?
Justified interest – Article 6(1f) of the GDPR.
4.3.5 What is the duration of storage of the data?
Until the expiry of the period of limitation for any claims.
4.3.6 Is providing data necessary?
Providing data is voluntary, but necessary to verify the User.
5.1 In connection with its activity, the Administrator may disclose the personal data to the following entities, if it is necessary to fulfil the purposes of processing:
5.1.1 Companies providing IT services or solutions
5.1.2 Banks
5.1.3 Public authorities receiving data in relation to the fulfilment of the Administator’s legal obligations
5.1.4 Employees and associates
5.1.5 Companies providing bookkeeping and accounting services.
6.1 In relation to the processing of personal data, the Users have rights associated with this:
6.1.1 the right to access the content of their data
6.1.2 the right to amend their data
6.1.3 the right to erasure
6.1.4 the right to revoke their consent to processing their personal data for marketing purposes at any time
6.1.5 the right to limit the processing of their data
6.1.6 the right to object to the processing of their data; the objection being due to special circumstances
6.1.7 the right to data portability
6.1.8 the right to file a complaint with a supervisory authority, i.e. the President of the Personal Data Protection Office
6.2 In the case of the will to exercise the rights policy listed in point 6.1, please contact us using the Administrator’s contact details.
7.1 The User’s personal data will not be transferred outside of the European Economic Area.
8.1 THE PURPOSE OF USING COOKIES
8.1.1 The Administrator does not automatically collect any information, apart from the information contained in cookie files.
8.1.2 Cookie files are used in various ways.
8.1.3 Cookie files are used for functional, content personalisation, statistical, analytical and marketing purposes.
8.2 TYPES OF COOKIE FILES
8.2.1 We use the following types of cookie files:
8.2.2 As part of the Website, we use the following kinds of cookie files:
8.2.3 Google Analytics
The Website uses Google Analytics, a service for analysing web services. Its provider is the company Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Google Analytics uses so-called ‘Cookies’, these are text files that are stored on your computer and that enable the analysis of your use of the website.
The storage of Google Analytics cookie files is based on Article 6(1f) of the General Data Protection Regulation (GDPR). The Administrator has a justified interest to analyse user behavior both in order to optimise their web offer as well as their advertising.
The User of the Website can find Google’s privacy policy at:
https://policies.google.com/privacy
If the User of the Website does not want information about them to be collected in this way, they may, for example, change the settings of their browser.
The Administrator informs that, in this case, the data of the User of the Website is subject to transfer outside of the European Economic Area.
8.3 COOKIE FILE MANAGEMENT
8.3.1 Most commonly, browser settings allow cookies and other information to be placed on the end device by default. If the User does not agree to the storage of these files, it is necessary to change the settings of their internet browser accordingly. It is possible to disable their saving for all connections from a particular browser or for a particular site, as well as to delete them. How files are managed depends on the software used. The current file management policy can be found in the settings of the internet browser used.
8.3.2 Information on managing cookies on a mobile phone can be found in the user manual of the given phone.
8.3.3 Consent to the processing of cookies is voluntary. Keep in mind, however, that restrictions in their use may make it difficult or impossible to use some of the functionality of the website operated at: https://wawconcierge.com
9.1 The User’s personal data is stored and protected with due care, in accordance with the implemented internal procedures of the Administrator. The Administrator processes information about the User using appropriate technical and organisational measures that meet the requirements of the provisions of generally applicable law, in particular, the regulations on the protection of personal data. These measures are intended, primarily, to protect the personal data of Users from unauthorised access.
9.2 In particular, only authorised persons who are obliged to keep this data confidential or entities who have been entrusted with the processing of personal data on the basis of a separate data entrustment agreement have access to the personal data of Users.
10.1 The Administrator reserves the right to change this Privacy and Cookie Policy. In that case, an updated version will be published on this page.
10.2 To the extent not covered by this Privacy Policy, the provisions on the protection of personal data apply.
10.3 This Privacy Policy is effective from 01.04.2022