Privacy Policy
Table of contents
Chapter 1: General Provisions
- This website privacy policy, hereinafter referred to as the "Privacy Policy",
- is for informational purposes, which means that it is not a source of obligations for those who provide their personal data.
- The administrator of the personal data collected via the www.iig.com.pl website is IIG sp. z o.o., with its registered office in Lublin, BOHDANA DOBRZAŃSKIEGO 3 (20-262) Street, registered in the National Court Register kept by the District Court of Lublin Wschód in Lublin with its registered office in Świdnik, VI Economic Department of the National Court Register under the KRS number 0000674796; e-mail address: b2b@iig.com.pl, hereinafter referred to as the "Data Administrator".
- Personal data are processed in accordance with the Regulation of the European Parliament
- and Council (EU) 2016/679 of April 27, 2016 on the protection of natural persons
- in connection with the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC (referred to as "Rodo") and national laws of general application concerning the protection of personal data.
- The Data Controller shall exercise special care to protect the interests of data subjects and, in particular, shall ensure that the data are:a. processed lawfully, fairly and transparently for the data subject ("lawfulness, fairness and transparency"),b. collected for specific, explicit and legitimate purposes and not further processed in a manner incompatible with t
Chapter 2: How personal data is collected on the website
- Users' personal data is collected on the website using the following methods:a. provision of personal data by the user when formulating an inquiry about the services provided by the Data Controller or when submitting a job/co-op application along with a resume via direct email contact,b. collection of data via cookies placed on the user's device, subject to the user's consent to the use of cookies.
- Provision of personal data via email is voluntary, although failure to provide personal data necessary to process an inquiry will result in the inability to process the inquiry or order.
Chapter 3: Information on the scope of personal data processing
IInformation about the type of data collected, the purposes of processing and the legal basis for processing user data is provided in the table below:
Type of data Purpose of processing Legal basis Name,
Company Name
e-mail address,
telephone no,
delivery address (optional),
Resume (personal information included in the resume)Carry out activities related to inquiry, application for work/cooperation Art. 6(1)(b) RODO (Performance of contract) Performance of legal obligations incumbent on the Data Controller Art. 6(1)(c) RODO (Legal obligation) Determination, defense or enforcement of claims. Article 6(1)(f) RODO (Legitimate legitimate interest of the Data Controller). Adress to correspondence Providing answers to the questions in the message
e-mailArt. 6(1)(f) RODO (Legitimate legitimate interest of the Data Controller) Direct marketing - Personal data may be shared, solely for the purpose of carrying out inquiries and recruitment processes, in particular with the following categories of entities:a. Providers of IT or programming services, website maintenance services, as well as services, tools and scripts used on the www.iig.com.pl website, including the contact form.
- Personal data will be processed for the period necessary for the purpose pursued, including:a. Until the expiration of the statute of limitations for claims arising from concluded contracts - in the case of processing for the purpose of performing a contract, investigating or defending claims,b. Until the exercise by the personal data subject of rights excluding the processing of personal data for direct marketing purposes, including the moment of filing an objection - in the case of processing for marketing purposes,c. Until the expiration of the period of mandatory storage of documentation related to transactions, resulting from tax and accounting obligations.
- The personal data subject has the ability to influence the purpose, scope and recipients of the data processed by the Data Controller including by choosing the type of services ordered, expressing or withdrawing consents, exercising other rights of the personal data subject. In particular, the appropriate setting of the browser's privacy levels makes it possible to block the collection of data from cookies placed on the device used by the user.
Chapter 4: Cookies and usage data
- Cookies are small text information in the form of text files, sent by a server and stored on the side of the website visitor (e.g. on the hard drive of a computer, laptop, or smartphone memory card - depending on the device used by the visitor to our website).
- The data controller may process the data contained in cookies when visitors use the website for the following purposes:a. Adapting the content of the website to the individual preferences of the user (e.g. concerning colors, font size, page layout) and optimizing the use of the website,b. Keeping anonymous statistics showing how the website is used.
- By default, most web browsers available on the market accept the storage of cookies. Everyone has the ability to determine the conditions for the use of cookies through the settings of their own web browser. This means that you can, for example, partially restrict (e.g. temporarily) or completely disable the ability to save Cookies - in the latter case, however, this may affect some of the functionality of the website.
- Your browser's settings regarding Cookies are relevant to your consent to the use of Cookies by our website - in accordance with the regulations, such consent can also be expressed through the settings of the
Chapter 5: Rights of persons to whom personal data is collected
Each person whose personal data is processed by the Data Controller shall have the rights described in the following table, and further provisions of this Privacy Policy:
Right of access to data Article 15 RODO.
The essence of the right: the data subject is entitled to obtain confirmation from the Data Controller as to whether personal data concerning him or her is being processed, and if this is the case, he or she is entitled to access it and the information provided in this provision.The right to rectification and completion Article 16 RODO
The essence of the right: The data subject has the right to demand from the Data Controller the immediate rectification of personal data concerning him that are inaccurate. Taking into account the purposes of the processing, the data subject has the right to request the completion of incomplete personal data, including by providing an additional statement.Right to erasure Article 17 RODO
The essence of the right: The data subject has the right to demand from the Data Controller the immediate erasure of personal data concerning him, and the Data Controller is obliged to erase the personal data without undue delay if one of the circumstances indicated in this provision occurs.Right to restrict processing Article 18 RODO
The essence of the law: limitation of processing means marking the stored personal data to limit its future processing. Once the data has been marked in this way, its processing, other than storage, is possible only on the basis of consent or for the purposes specified in this provision. Restriction can be requested in the cases specified in this provision.Right to data portability Article 20 RODO
The essence of the right: The data subject has the right to receive in a structured, commonly used, machine-readable format the personal data concerning him or her that he or she has provided to the Data Controller, and has the right to send such personal data to another controller without hindrance from the Data Controller.- If the Data Controller processes personal data on the basis of consent, consent may be withdrawn at any time, without affecting the lawfulness of the processing carried out before the withdrawal of consent.
Chapter 6: Objection to the processing of personal data for marketing purposes
- If the Controller intends to process or processes personal data for direct marketing purposes, the data subject is entitled to at any time to object to the processing of personal data concerning him/her.
- In order to exercise the rights referred to above, the Data Controller may be contacted by sending a relevant message in writing or by e-mail, using the contact details to the Data Controller's address indicated at the beginning of this Privacy Policy.
Chapter 7: Final Provisions
- The website may contain links to other websites. The data controller suggests that when you go to other sites, you should read the privacy policy established there. This Privacy Policy applies only to the website www.iig.com.pl.
- The data controller shall apply technical and organizational measures to ensure the protection of the processed personal data appropriate to the risks and categories of protected data, and in particular shall protect the data from being made available to unauthorized persons, from being taken by an unauthorized person, from being processed in violation of applicable regulations, and from being altered, lost, damaged or destroyed.
- The data controller shall adequately provide technical measures to prevent unauthorized persons from obtaining and modifying personal data sent electronically, including securing the data set against unauthorized access.
- If it is determined that personal data is processed in violation of the law, the data subject has the right to file a complaint with the President of the Office for Personal Data Protection.