Handling Of Personal Data (GDPR)

PERSONAL DATA PROTECTION
At FINOW POLSKA Sp. z o.o.

1. What is RODO really?

RODO stands for Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.

RODO is effective as of May 25, 2018.

2. What is meant by the term Administrator?

The administrator of personal data, i.e. the entity that decides for what purpose, and how personal data will be processed, is:

FINOW POLSKA Sp. z o.o.
Eugeniusza Kwiatkowskiego 14 Street

27-400 Ostrowiec Świętokrzyski
phone.: 41 265 65 10
e-mail: info@finow.pl

3. What is the legal basis for processing personal data?

The acquired personal data are or may be processed on the basis of:

voluntary consent (Article 6(1)(a) RODO),
a concluded contract, as well as for the purpose of taking action prior to its conclusion or after its execution (Article 6(1)(b) RODO),
to carry out a legal obligation incumbent on the Administrator (Article 6(1)(c) RODO),
legitimate interests of the Administrator (Article 6(1)(f) RODO).

4. What is an information clause?

In the information clause, the Administrator shall provide the data subject with information regarding the processing of his/her personal data in accordance with Article 13 of the RODO.

Information clauses for specific groups of individuals whose personal data are processed by the Administrator are provided in this tab.

5. What data are processed by the Administrator?

All personal data collected is related to the conclusion and performance of contracts or the fulfillment of the Administrator's legitimate obligations. The data collected is limited to the data necessary for the conduct of business and performance of the obligations performed.

The personal data provided are not subject to automated decision-making, including profiling.

6. To whom may the Administrator share the acquired personal data?

Personal data may be shared with:

entities with which the Administrator has entered into an entrustment agreement on the basis of Article 28 RODO,
banks with regard to payment processing,
a selected insurance company,
authorities authorized to receive data under the law.

In some cases it may be necessary to transfer personal data outside the European Economic Area (to a third country). Detailed information on the transfer of data to the EEA is available in the information clauses for each group of individuals.

7. What is the duration of the processing of personal data?

The Administrator will process the submitted personal data:

for the duration and implementation of the concluded agreements,
for the time required by law, including accounting regulations,
for the period of limitation of claims,
until the withdrawal of consent (in the case of personal data processed on the basis of consent).

The detailed period of processing of personal data by the Administrator is described in the information clauses for each group of individuals.

8. What rights regarding the processing of personal data arise from the RODO?

The data subject has the right to:

access to and rectification of the content of his/her personal data,
erasure or restriction of the processing of personal data,
object to the processing of personal data,
data portability,
withdraw consent at any time,
lodge a complaint to the supervisory authority, i.e.: President of the Office for Personal Data Protection.

Information clauses:

Information clause - Monitoring

Information clause - Recruitment

Information clause - Employee

Information clause - Civil-law contract

Information clause - Internships_apprenticeships

Information clause - Suppliers

Information clause - Members of the Supervisory Board

Information clause - Persons entering FP premises