Information regarding processing of personal data
In accordance with Article 13 paragraphs 1 and 2 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27.04.2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ L 119) (“GDPR”), we provide the following information:
The Controller of your personal data is:
Miilux Poland Spółka z ograniczoną odpowiedzialnością
ul. Hutnicza 5-9
42-600 Tarnowskie Góry
In matters related to your personal data, you may:
- write to: biuro [@] miilux.pl
- call at: 696 381 596
- write to: ul. Hutnicza 5-9, 42-600 Tarnowskie Góry,
- appear at the Controller’s office
II. Purpose and legal basis for data processing
Your personal data will be processed in order to:
- carry out contracts concluded with customers using the Controller’s services, in the scope of such contracts as confidentiality contracts, contracts for the performance of elements, consignment warehouse contracts, as part of the economic activity conducted by the Controller in connection with the conclusion and carrying out of these contracts (Article 6(1)b) GDPR);
- conduct negotiations and other activities before concluding the above contracts as part of the economic activity conducted by the Controller based on your request (Article 6(1)b) GDPR);
- carry out marketing activities by means of electronic and telephone communication by sending commercial information - based on your voluntarily consent (Article 6(1)a) GDPR);
- perform archiving tasks after completing the above contracts, in connection with the performance of a legal obligation imposed on the Controller due to the conclusion of contracts, i.e. an obligation arising from tax law, in particular from Article 32 of the Tax Ordinance Act (Article 6(1)c) GDPR);
- in connection with the legitimate interests pursued by, i.e. processing may take place to the extent necessary to establish, pursue and protect claims, up to the date of limitation of claims, if any (Article 6(1)f) GDPR).
III. Data Requirement
- Providing your personal data within the scope of contracts concluded as part of the Controller’s economic activity is voluntary, however, failure to do so will result in the inability to carry out the contract (conclude the contract).
- Providing your personal data in the scope of the consent referred to in point 2 above (in the field of marketing by means of electronic and telephone communication is voluntary, and failure to give this consent does not cause any consequences for you, in particular it does not affect the conclusion and carrying out of any contracts, however, the activities covered by the consent may not be performed by the Controller.
IV. Data recipients
Your personal data may be transferred to:
- Entities providing accounting and book-keeping services for the Controller
- Entities providing legal services to the Controller
- Entities providing IT services to the Controller
- Entities providing courier services
- Entities providing security and monitoring services to the Controller
V. Data storage period
Your data will be stored for the period of limitation of claims, no longer than up to 10 years from the date of claim maturity and the period necessary for archiving documents for tax purposes.
You have the right to:
- access your personal data;
- rectify your personal data;
- delete your personal data, whereby the Controller may further process personal data despite the request for their removal in the scope of determination, investigation or protection of claims, and for archival purposes;
- restrict the processing of your personal data;
- object to the further processing of your personal data;
- withdraw consent to the processing of personal data (if such consent is given) – exercising the right to withdraw consent does not affect the processing that took place before the consent was withdrawn;
- transfer data.
You also have the right to lodge a complaint to the supervisory body, i.e. to the President of the Office for Personal Data Protection.