PRIVACY POLICY

1 Data Administrator

The Administrator, i.e. the entity that decides on the purposes and means of the processing of personal data, is Leon Witas sp. zo.o. with its registered office in Będzin at 205 Dąbrowska Street, 42-504 Będzin, hereinafter referred to as "Leon".

2 Obtaining information on the processing of personal data

In matters related to data protection, you can contact us at the following address

e-mail: ochronadanych@leon.eu

or

Leon Witas sp. z o.o. with its registered office in Będzin at 205 Dąbrowska Street, 42-504 Będzin

PROCESSING OF PERSONAL DATA BY LEON FOR BASIC BUSINESS PURPOSES

3 Data acquisition

We process personal data only to the extent necessary to fulfil our contractual and legal obligations in connection with business relationships with our customers, suppliers and partners. "Processing" means that we collect, store, delete or transfer personal data, The following is a list of examples of the processing of personal data:

Personal data processed by us includes:

  • basic and contact data of customers and suppliers, such as name, address, telephone number, email address, function, etc.
  • data needed for invoicing and payment processing, such as bank details, tax numbers, credit management information, etc., insofar as they relate to an individual's data;
  • information relating to the management of relationships with suppliers and customers, such as order history, etc., insofar as they relate to an individual's data;

Data is obtained as part of our business relationships with our customers, contractors
In some cases, we also receive personal data from cooperating companies e.g. contact details from suppliers.

In some cases, we also process personal data that we have received, in accordance with applicable data protection legislation, in other ways. This applies in particular to:

  • data from publicly available sources such as commercial and administrative registers, trade fairs, exhibitions, online sources, newspapers, trade catalogues, etc.
  • data from third parties that are not affiliated with LEON such as trade/business associations, credit agencies, insurance companies, etc.

4 Purposes of personal data processing and legal basis

  • Conclusion and performance of a contract, including contacting the customer in connection with the performance of the contract (legal basis Article 6(1)(b) RODO) In such cases, the purpose of the processing is determined by the contract we have concluded with our customers or suppliers and the services provided under this contract. This includes, for example, the processing of personal data in the context of sending catalogues, information about our services or preparing specific offers.
  • Handling complaints and claims (legal basis Article 6(1)(c) RODO)
  • Pursuing contractual claims (legal basis: Article 6(1)(f) RODO) In this situation, the legitimate purpose is the collection of debts and the conduct of court proceedings and subsequent enforcement proceedings.
  • Archiving documentation, i.e. contracts and billing documents (legal basis: Article 6(1)(c) RODO0.
  • Keeping statistics (legal basis: Article 6(1)(f) RODO) The legitimate purpose in this situation is that having information about the statistics of our activities allows us to improve our business.
  • To carry out marketing of our own products and services without the use of electronic communications (legal basis: Article 6(1)(f) RODO) The purpose is to carry out marketing activities to promote our business.
  • To carry out marketing activities of its own products and services with the use of electronic communication means (legal basis: art. 6(1)(f) RODO, while these activities, due to other applicable regulations, in particular the Telecommunications Law and the Act on the provision of services by electronic means, are carried out only on the basis of the consents held. The purpose is to carry out marketing activities to promote the activities carried out using email addresses and telephone numbers
  • Handling requests made via email and other requests, including ensuring accountability (legal basis: Article 6(1)(f) of the DPA).It is a legitimate interest to respond to requests and enquiries made by email or otherwise, including storing sensitive requests and responses provided in order to maintain accountability.

5 Recipients of data

We may disclose your personal data to other entities that will process them, in particular:

  • to postal or courier companies,
  • to banks, in case it is necessary to carry out settlements,
  • to state authorities or other entities authorised by law, in order to fulfil the obligations incumbent on us (Tax Office, PIP, ZUS),
  • Entities enabling us to make remote payment operations,
  • entities supporting us in our operations on our behalf, in particular providers of external systems to support our operations.

6 Obligation to provide data

In order to be able to provide services to our customers, we need to process certain personal data as and when we are legally obliged to do so. We collect the relevant data from you when you enter into a contract (e.g. Address, company contact details and position). Without this data, we cannot conclude contracts with our customers.

7 Automated decision-making and profiling

Personal data will not be processed by automated means (including profiling) in such a way that any decisions could be made as a result of such automated processing, that other legal effects would be produced or that our customers would otherwise be materially affected.

In the course of our activities, we use cookies in such a way that we observe and analyse the traffic on our websites, as well as undertake remarketing activities, however, we do not process personal data within the meaning of the RODO in the course of these activities.

8 Transfer to third countries or international organisations

We take care not to transfer data to recipients in countries where there is not an adequate level of data protection (third countries). However, in some cases this cannot be completely avoided. In this case, LEON has taken and will take appropriate measures to ensure an adequate level of data protection at the recipient at all times.

9 Storage and retention periods

We only process personal data for as long as is necessary to fulfil our contractual obligations. As soon as the data is no longer needed, it is generally deleted.

  • We store data contained on contracts and powers of attorney until the statute of limitations for contractual claims.
  • We retain accounting documents, i.e. ledgers and related documents, until the expiry of the statute of limitations on tax liability, unless otherwise stipulated by tax laws.
  • documents relating to warranties and complaints will be processed for 1 year after the warranty expires or the complaint is settled
  • data for marketing purposes in case of data processing on the basis of consent - shall be processed until the consent is withdrawn; in case of data processing on the basis of a legitimate purpose - shall be processed until an objection is lodged.

10. data processing rights and voluntariness of data provision

In connection with the processing of personal data by LEON, all data subjects have the following rights under Articles 15 to 21 of the DPA - and in accordance with the law of the EU Member States

Right to information;

The right to rectification;

The right to erasure;

The right to restrict processing;

The right to data portability;

The right to object.

Furthermore, you have the right to revoke your consent to the processing of your personal data at any time with effect for the future. Such revocation has no effect on the past, i.e. it does not affect the effectiveness of the processing carried out until revocation.

11. TEXT ATTACHED

If you believe that LEON's processing of your personal data does not comply with data protection regulations or you are not satisfied with the information we have provided, you have the right to lodge a complaint with the competent supervisory authority (see Art. 77 RODO), which is the President of the Data Protection Authority (DPA).