Privacy Policy

This privacy policy contains information regarding the scope of personal data collected, the purpose and use of such data, as well as the rights of the persons to whom such personal data pertains, and implements the obligation set forth in Article 13(1) and (2) of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as „RODO“.

Who is the Administrator of your personal data?

The administrator of your personal data is „Dinopol“ sp. z o.o. (limited liability company), incorporated under the laws ofPolandwithits registered office in Ostrów Wielkopolski, 91 Odolanowska St., 63-400 Ostrów Wielkopolski, registered in the register of entrepreneurs kept by the District Court Poznań – Nowe Miasto and Wilda in Poznań, IX Commercial Department of the National Court Register under the number KRS 0000294853, NIP: 6222664212, REGON: 300746859, share capital: PLN 10,710,000.00 (the „Company“)

You may contact us:

  • by mail, to the address:
    „Dinopol“ sp. z o.o.
    91 Odolanowska St,
    63-400 Ostrów Wielkopolski
  • by e-mail, at: sekretariat@dinopol.pl.
  • by phone: +48 62 736 20 99

For what purpose and on what basis do we use your personal data?

We use your personal data, obtained when you contact us or when concluding a contract and during its term, for the following purposes:

  1. data obtained on the basis of your consent – (legal basis: Article 6(1) a of the RODO) e.g. providing information on products and services – via email and telephone,
  2. conclusion and performance of the contract between us or pre-contractual activities (legal basis: Article 6(1) b RODO),
  3. performance of an obligation necessary to fulfill a legal duty incumbent on the controller – (legal basis: Article 6(1)(c) RODO e.g. transfer of data at the request of the court, police,
  4. realization of so-called legitimate interests – (legal basis: Article 6(1) f RODO) e.g. handling requests and inquiries addressed to us in connection with contract performance, debt collection: conducting court, arbitration and mediation proceedings, storing data for archival purposes (fulfillment of legal obligations), fraud detection and prevention.

Is it necessary to provide personal data?

The provision of personal data is entirely voluntary. We require the data necessary to provide you with information about the products and services offered, as well as to conclude and perform a contract, in connection with any transaction. If you do not provide us with the necessary personal data, unfortunately, we will not be able to provide you with the requested information or conclude a contract with you, and consequently begin cooperation.

To whom can we provide your data?

The Company may share your personal data with:

  1. our employees and associates, who need to have access to the data in order to perform our obligations;
  2. to entities that process data on our behalf, participating in the performance of our activities:
    1. our agents, advertising agencies and other intermediaries selling our services or organizing marketing campaigns,
    2. those operating our ICT systems or providing us with ICT tools,
    3. subcontractors supporting us in the performance of the contract between us and you, such as in the handling of correspondence or in the customer service process,
    4. entities providing us with consulting, advisory, auditing, legal, tax, accounting assistance.
  1. other data controllers processing data on their own behalf:
    1. our agents, advertising agencies and entities cooperating in the organization of marketing campaigns or customer service – for the purpose of settling the remuneration due to them,
    2. entities conducting postal or courier services,
    3. entities acquiring debts – in case you do not pay the invoices issued by us on time,
    4. entities conducting payment activities (banks, payment institutions),
    5. entities cooperating with us in handling accounting, tax, legal matters – to the extent that they become data controllers.
  1. state authorities, e.g. courts, prosecutor’s office, tax authorities.

Will your data go outside the European Economic Area (EEA)?

We currently have no plans to transfer your data outside the EEA.

How long can we keep your data?

  1. If we use your data based on your consent, we use your personal data until you revoke your consent and abandon the purposes achieved through it.
  2. In transactions related to the performance of a contract, for the period of performance of the transaction and the time during which it is possible to assert claims in connection with the performance of the contract, concluded as a result of the transaction, 
  3. In connection with the execution of the law, your personal data will be kept for the periods specified in the law, e.g. tax laws.
  4. We will keep your personal data for the period during which we may incur legal consequences for not fulfilling an obligation, e.g. receive a financial penalty from government offices.

What rights are you entitled to?

  1. You have the following rights related to our processing of your data:
    1. the right to access your personal data, including the right to information about your personal data and to obtain a copy of your personal data,
    2. the right to rectify your personal data if it is incorrect and the right to complete incomplete data,
    3. the right to delete personal data,
    4. the right to restrict the processing of personal data,
    5. the right to transfer personal data,
    6. the right to lodge a complaint with a data protection authority, i.e. the President of the Office for Personal Data Protection (address: 2 Stawki Street, 00-193 Warsaw, Poland), in the event that the processing of your personal data is found to be unlawful,
    7. the right to withdraw at any time any consent without stating reasons and without affecting the processing performed on the basis of consent before its withdrawal,
  2. You may exercise your rights listed in Section 1 at any time by making an appropriate request to us.
  3. We are obliged to provide you with information on the actions taken in connection with the requests referred to in Section 1 without undue delay, and in any case within one month of receipt of the request. If necessary, we may extend the period referred to above for another two months due to the complexity of the request or the number of requests. However, within one month of receipt of your request, we must inform you of the extension of the deadline with the reasons for it.
  4. If we do not act on your requests referred to in Section 1, we shall immediately – no later than one month after receipt of the request – inform you of the reasons for not taking action and the possibility for you to file a complaint with the President of the Office for Personal Data Protection and take legal remedies before the Court.
  5. If we have reasonable doubts about your identity, in connection with the request we may ask you to provide additional information necessary to confirm it.
  6. We will provide you with the information referred to in Section 4 – 6 above in writing, at our option:
    1. by registered mail, to the postal address you have provided, or
    2. by electronic mail, to the e-mail address you provided, except when:
      • you provide us with your request electronically and do not request the information in any other form, in which case we will provide you with the information at the e-mail address you provided;
      • you request information orally and your identity is confirmed by us by other means – then we will provide you with information orally.
  7. All communications and actions taken by us in connection with your requests referred to in Section 1 above are free of charge. However, if your requests are manifestly unreasonable or excessive, e.g. due to their continuing nature, we may:
    1. charge a fee, taking into account the administrative costs of providing the information, communication or taking the requested action, or
    2. refuse to take action on the request.
  8. We will inform each recipient to whom your personal data has been disclosed by us of the request for rectification or supplementation or deletion or restriction of the processing of your personal data that we have made as a result of the request made to us. We will not have to provide such information only if it proves impossible to do so (e.g., the Company has been liquidated) or it will require disproportionate effort (the data was disclosed many years ago and despite attempts, we have not been able to contact the recipient).
  9. Upon your request, we will inform you of the recipients to whom we have provided information about the rectification or deletion or restriction of the processing of your personal data, as well as the recipients we have failed to notify.