Privacy Policy

Please read the following information. Remember that you can always withdraw your consent.

Dear User, on May 25, 2018, Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and the repeal of Directive 95/46 came into force / EC (referred to as “GDPR”, “GDPR”, “GDPR” or “General Data Protection Regulation”).
Therefore, we would like to inform you about the processing of your data and the rules on which it takes place.

WHAT DATA ARE WE TALKING ABOUT?

We are talking here about personal data entered by you in forms and collected while using our website, including those saved in cookies.

 

WHO WILL BE THE ADMINISTRATOR OF YOUR PERSONAL DATA?

The administrator of your personal data is the TLA OmniFin sp. z o.o., Pl. Ks. Kard. St. Wyszyńskiego 54/8, 58-500 Jelenia Góra, email: omnifin@omnifin.pl, phone:+48 75 645 10 80 , hereinafter referred to as: the Administrator.

 

WHY DO WE WANT TO PROCESS YOUR PERSONAL DATA?

We process your personal data for the purpose of:

1. enabling you to contact us via forms
2. to provide you with greater security of services, to detect robotic activities, fraud and abuse, and to measure, allowing us to create better, more tailored services for you.

 

WHO DO WE TRANSFER YOUR PERSONAL DATA TO?

The data is made available to external entities only within the limits permitted by law. The data will not be transferred to external entities.
The User’s data may be transferred outside the European Union – to third countries.
Due to the fact that the Administrator uses external providers of various services, e.g. Facebook and subsidiaries, Google, Microsoft, Apple, etc., the User’s data may be transferred to the United States of America (USA) in connection with their storage on American servers (in full or partially).
Google and Facebook use the compliance mechanisms provided for by the GDPR (e.g. certificates) or standard contractual clauses for their services. They will be transferred only to recipients who guarantee the highest protection and data security, including by:
a) cooperation with entities processing personal data in countries for which a relevant decision of the European Commission has been issued,
b) the use of standard contractual clauses issued by the European Commission (as is the case, for example, in the case of Google),
c) application of binding corporate rules approved by the competent supervisory authority,
d) or to the transfer of personal data which the User has consented to.
Detailed information is available in the content of the privacy policy of each service provider available on their websites. For example:
Apple (PL): https://www.apple.com/legal/privacy/en-ww/
Google LLC: https://policies.google.com/privacy?hl=EN
Facebook Ireland Ltd .: https://www.facebook.com/privacy/explanation
Currently, the services offered by Google and Facebook are provided mainly by entities located in the European Union. You should, however, always read the privacy policy of these providers in order to receive up-to-date information on the protection of personal data.

 

HOW DO WE PROTECT YOUR DATA?

In order to protect your personal data, the Personal Data Protection Policy has been implemented, in accordance with the GDPR Regulation, in force in our company according to the following rules and standards:

ADEQUACY RULE
We process only the data that is necessary to achieve the given processing purpose.
TRANSPARENCY RULE
You should have full knowledge of what is happening with your data. This document, in which we try to provide you with full information about the rules for the processing of your personal data by us, is its manifestation.
REGULARITY RULE
We strive to keep your personal data in our systems up-to-date and truthful. If you find that in some area your personal data has not been updated by us or is incorrect, please contact us directly by email: omnifin@omnifin.pl , phone:+48 75 645 10 80
INTEGRITY AND CONFIDENTIALITY RULE
We apply the necessary measures to protect the confidentiality and integrity of your personal data. We constantly improve them along with the changing environment and technological progress. Security features include physical and technological measures restricting access to your data, as well as appropriate measures to prevent loss of your data.
ACCOUNTABILITY RULE
We want to be able to account for each of our actions on personal data so that, if you have a question, we can provide you with full and reliable information about what actions we have performed on your data.

 

WHAT ARE YOUR RIGHTS?

The data protection law gives you a number of rights that you can use at any time. As long as you do not abuse these rights (e.g. by unjustified daily requests for information), using them will be free of charge for you and should be easy to implement. Your rights include:

RIGHT OF ACCESS BY THE DATA SUBJECT
This right means that you can ask us to export from our databases the information we have about you and send it to you in one of the commonly used formats.
RIGHT TO RECTIFICATION
If you learn that the data we process is incorrect, you have the right to ask us to correct it, and we will be obliged to do so. In this case, we have the right to ask you to provide some document or other proof of the change of data.
RIGHT TO RESTRICTION OF DATA PROCESSING
If, despite our compliance with the adequacy rule, which we write about in the section “How we process personal data”, you decide that we process too wide a catalog of your personal data for a specific process, you have the right to request that we limit this scope of processing. As long as your request will not contradict the requirements imposed on us by applicable law or will not prevent the performance of the contract, we will accept your request.
RIGHT TO ERASURE (‘RIGHT TO BE FORGOTTEN’)
This right, also known as the right to be forgotten, means your right to request that we remove any information containing your personal data from our database systems and from our records. Remember that we will not be able to do this if we are required to process your data by law.
RIGHT TO DATA PORTABILITY
In accordance with the general regulation on the protection of personal data, you can ask us to export the data that you provided to us in the course of all our contacts and all cooperation to a separate file for further transfer to another data controller. You can exercise the rights referred to above by contacting us by omnifin@omnifin.pl , phone:+48 75 645 10 80
You can also contact us for the above data when some of our actions raise your concern as to whether it violates your rights or freedoms.
If you believe that we have breached the rules for the processing of your personal data in any way, you have the right to lodge a complaint directly with the supervisory authority of the President of the Office for Personal Data Protection.
As part of exercising this right, you should provide a full description of the situation and indicate what action you consider to be violating your rights or freedoms. The complaint should be submitted directly to the supervisory authority at the following address: ul. Stawki 2, 00-193 Warsaw.
RIGHT TO OBJECT
We want to inform you separately that you also have the right to the so-called object to the processing of your personal data. You submit the right to object when you do not want us to process your personal data for a specific purpose. In this case, we will continue to process your data for the purposes of other processes (for other purposes), but not for the purpose for which you objected, unless your request is against the obligations imposed on us by law. You can submit your right to object by omnifin@omnifin.pl , phone:+48 75 645 10 80

 

HOW EXACTLY DATA COLLECTION LOOKS LIKE?

The website obtains information about users and their behavior in the following way:

1. INFORMATION IN THE FORMS
Service collects information provided voluntarily by the user.
The website may also save information about connection parameters (time stamp, IP address)
The data in the form is not made available to third parties other than with the consent of the user.
The data provided in the form is processed for the purpose resulting from the function of a specific form, e.g. to contact us.
The data provided in the forms may be transferred to entities technically implementing some of our services.

2. INFORMATION ON COOKIES
Please be advised that we use cookie technology on our websites, i.e. computer files to record information which pages the user has visited and what he has done on them.
Cookies are simply information saved by your internet browser. Cookies allow websites to remember your preferences and settings, such as setting the city in the weather forecast. Cookies do not identify personal data. A cookie doesn’t even have the slightest effect on your software and hardware. These files are used by the following purposes:
Authentication – first of all, identification of the logged in user, for example to display relevant information corresponding to his interests;
Ensuring security – the necessary support for security mechanisms on the website, e.g. protecting against data leakage;
Research and analytical – We may use cookies to test and analyze the performance of the website and mobile applications. It also serves to improve their performance.
We can use the popular Google Analytics software, then the website places a special code on the user’s computer that enables data collection. However, at any time, the user may disable data collection by the Google Analytics software by appropriate changes to the web browser settings.
Please be advised that web browsers usually allow users to control cookies in the settings. Restricting cookies in these settings may degrade the performance of the website.

3. SERVER LOGS
Information about some of the users’ behavior is logged in the server layer. These data are used only to administer the website and to ensure the most efficient service of the hosting services provided.
The browsed resources are identified by URL addresses. In addition, the following may be saved:
-time of arrival of the inquiry,
-time of sending the answer,
-name of the client’s station – identification carried out by the HTTP protocol,
-information about errors that occurred during the implementation of the HTTP transaction,
-URL address of the page previously visited by the user (referrer link)-if the Website was accessed via a link,
-information about the user’s browser,
-Information about the IP address.
The above data is not associated with specific people browsing the website.
The above data is used only for the purposes of server administration.

COOKIES MANAGEMENT – HOW TO EXPRESS AND WITHDRAW CONSENT IN PRACTICE?
The collection of cookies on the user’s computer can be disabled or limited by selecting the appropriate settings in individual browsers. We reserve that disabling cookies necessary for authentication processes, security, maintaining user preferences may make it difficult, and in extreme cases may prevent the use of websites
In order to manage cookie settings, select the web browser/system from the list below and follow the instructions:
Internet Explorer
Chrome
Safari
Firefox
Opera