GDPR information obligation
Who is the data administrator?
The data administrator is the company "Autooomate sp. z o.o." with its registered office at Aleja Jana Pawła II 22, 00-133 Warsaw, NIP: 5253057180 KRS: 0001188805.
How can one contact the data administrator?
Contact with the data administrator is possible by traditional mail at "Autooomate sp. z o.o." with its registered office at Aleja Jana Pawła II 22, 00-133 Warsaw or by email at hello@autooomate.com
Has the administrator appointed a Data Protection Officer?
Based on Article 37 GDPR, the administrator has not appointed a Data Protection Officer.
Where do we acquire personal data and what are its sources?
Personal data is provided voluntarily by users of the service when creating an account in the registration form, comments form, or subscription form.
What is the scope of personal data processed by us?
We process the following ordinary personal data:
First name and last name
Username
Email
IP address
Avatar
What are the purposes of processing data by us?
The purpose of processing user data is:
to enable the provision of services through the service that require a user account (Article 6(1)(b) GDPR) or an email address.
to send to the provided and voluntarily confirmed email messages that have been subscribed to (including marketing messages) in case of the user signing up for it, thus expressing consent for the transmission of the indicated messages (Article 6(1)(a) GDPR)
What are the legal bases for processing data?
The NETY.pl service collects and processes user data based on: the Regulation of the European Parliament and of the Council (EU) 2016/679 of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (Article 6(1)(a) GDPR, (Article 6(1)(b), GDPR, (Article 6(1)(f) GDPR)
What is the legally justified interest pursued by the administrator?
In order to possibly establish, pursue, or defend against claims – the legal basis for processing is our legitimate interest (Article 6(1)(f) GDPR) in protecting our rights;
For how long do we process data including personal data?
User data in the service will be stored for the duration of the provided services. The user can withdraw from the services at any time, and in the case of an established account, can delete (anonymize) the following personal data on their own:
First name and last name
Username
Email address
Avatar
The IP address will be retained for the purpose of securing the legally justified interest pursued by the administrator.
Who is the recipient of the data including personal data?
In the case of data entered in the service, the recipient of the data is the data administrator and its employees as well as IT companies providing services to the Administrator to enable and maintain the provision of services of the Service.
In the case of publishing a comment or rating an entry, the following data will be publicly accessible on the service:
Username
First name and last name (if provided)
Avatar (if provided)
Will your personal data be transferred outside the European Union?
Personal data will not be transferred outside the European Union unless published as a result of an individual action by the user, making the data available to anyone visiting the service.
Will personal data be the basis for automated decision-making?
Personal data will not be used for automated decision-making (profiling).
What rights do you have regarding the processing of personal data?
You have the right to:
Access your personal data – to obtain access to it, realized through the user panel available after logging in and tools enabling access to the account in case of forgotten password, and to provide you with information as indicated in Article 15 of GDPR, realized through the information provided on this subpage.
Rectification of your personal data – to request the administrator to promptly rectify the personal data that is incorrect and/or complete incomplete personal data, realized through the user panel available after logging in and tools enabling access to the account in case of forgotten password.
Deletion of your personal data – to request the administrator to promptly delete personal data, realized through the user panel available after logging in and tools enabling access to the account in case of forgotten password.
Restriction of processing your personal data in cases indicated in Article 18 GDPR, e.g., questioning the accuracy of personal data.
Transfer your personal data – to receive from the administrator your personal data in a structured, commonly used, machine-readable format, realized through the user panel available after logging in and tools enabling access to the account in case of forgotten password.
Object to the processing of personal data in cases specified in Article 21 GDPR.
File a complaint to the supervisory authority dealing with the protection of personal data.
