This Privacy Policy sets out the rules for the processing and protection of personal data. The document also explains why we collect and process personal data in the course of our business activities.
Personal data is any information that allows, without undue effort, one person to be distinguished from others. It may concern that person directly (such as first and last name, identification number, and sometimes even an email address or online account) or information that does not describe them directly. For example, it may relate to their characteristics, health status, views, place of residence, habits, race, or religion.
These are the data provided to us by our Clients, Contractors, Associates, and Employees in connection with the use of our services, cooperation with us, or employment with us. We process this data.
Data processing means any operation we can perform on personal data—both active use, such as collecting, retrieving, recording, combining, modifying, or disclosing, and passive actions, such as storing, restricting, deleting, or destroying.
The controller of your data is RIVERDI Sp. z o.o., ul. Nowy Świat 36, 80-299 Gdańsk, represented by the President of the Management Board.
The Controller has appointed a Data Protection Coordinator – Mr. Edward DYBOWSKI – who can be contacted at: [email protected] and/or [email protected].
Matters related to personal data protection can also be addressed by traditional mail to: RIVERDI Sp. z o.o., ul. Nowy Świat 36, 80-299 Gdańsk.
Any processing of your data must be based on a proper legal basis consistent with applicable regulations. Such a basis may be your consent to data processing or other legal provisions allowing it, contained in the Act of 10 May 2018 on the protection of personal data and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (the “GDPR”).
Your data may be processed by us for several different purposes, for example:
In accordance with applicable law, we may share your data with entities processing it on our behalf, e.g., hosting companies where we maintain this website or subcontractors of our services. We are also obliged to disclose it at the request of entities authorised under other legal provisions, e.g., the Social Insurance Institution (ZUS), the Tax Office (US), and courts or law enforcement authorities. In some cases, disclosure will occur only if they submit a request indicating the legal basis permitting such a demand.
As a rule, the Controller does not intend to transfer data to third countries outside the European Economic Area. However, due to the use on our websites and social media of services provided by Google and Facebook, User Data may be transferred outside the European Union to third countries. If this occurs, data will be transferred solely on the basis of standard contractual clauses issued by the European Commission in accordance with Article 46(2)(c) GDPR.
Detailed information is available in each provider’s privacy policy on their websites.
For example:
Google LLC: https://policies.google.com/privacy?hl=pl
Facebook Ireland Ltd.: https://www.facebook.com/privacy/explanation
Currently, services offered by Google and Facebook are mainly provided by entities located within the European Union. However, you should always review these providers’ privacy policies to obtain up-to-date information on personal data protection.
Within the European Union, in all Member States, thanks to the GDPR, whose text is available at:
http://eur-lex.europa.eu/legal-content/PL/TXT/?uri=OJ:L:2016:119:TOC
you are guaranteed an identical level of protection for your data.
We attach great importance to limiting the scope of data we collect and the time we process it to the necessary minimum. To this end, we carry out regular reviews of paper and electronic documents we hold, removing those that are unnecessary or past their useful period. Remember that the data retention period—depending on the legal basis on which we obtained it—may be determined by separate legal regulations independent of us, which may impose an obligation to store your data regardless of your will or preference. Examples include labour law, social security law, or accounting regulations.
If the data we hold were to be used for a purpose other than that for which they were obtained, we will always inform you and you will be able to object.
If we process your personal data, you always have the right to:
All these rights are discussed in detail in Articles 15 to 21 GDPR, the text of which is available at the address indicated above.
You may also withdraw your consent to the processing of personal data; in such a case we will promptly delete your personal data, unless there is a legal obligation requiring further processing. For example, if you request deletion of your account providing access to the electronic gradebook of your child’s grades, we will promptly remove such data from the database. However, if your child attended or graduated from our school, we will continue to hold data related to their education in our documentation for the period specified by the Act of 14 July 1983 on the National Archival Resource and Archives.
If you believe that in any way—which we certainly do not intend—we have violated your rights or failed to ensure the security of your personal data, you have the right to lodge a complaint with the supervisory authority: the President of the Personal Data Protection Office, ul. Stanisława Moniuszki 1A, 00-014 Warsaw.
We do not make any decisions based solely on automated processing of your data, i.e., without human involvement. We also do not undertake any actions aimed at profiling you.
Please note that our website may contain links to other websites. They may open in a new browser window or in the same window. We are not responsible for the content provided by those sites, and you, as the User, are obliged to read the privacy policies or terms of those sites.
To ensure the security of your data, we use organisational and technical measures required by law. At our premises we have installed the necessary physical safeguards to prevent unauthorised access to data. Our employees hold the required authorisations and may process data in a limited manner, i.e., only to the extent necessary for the proper performance of their duties.
The security of your data transmitted electronically is ensured by the 128-bit SSL security protocol we apply. Its graphic symbol is the green padlock displayed in the web browser next to our site’s address. Thanks to encryption prior to transmission, you can be sure you are accessing our site, which has not been altered while travelling to you over the Internet.
Remember that you, as the User, should also exercise due care in securing your personal data transmitted over the internet, in particular not disclosing your login credentials to third parties, using antivirus protection, and updating your software.
Account creation form in the online store – it requires you to provide your first and last name, home address, and email address, and optionally your company name and VAT ID (NIP). These fields are mandatory. Then the User must confirm account creation by confirming the message received by email. The data obtained in this way are added to the list of store users. Account creation is carried out under the terms set out in the sales regulations and is an electronic service. The rules for maintaining the account and its possible deletion are contained in the store regulations.
Contact form – it requires you to provide your first name, email address, and enter your own message. These fields are mandatory. The User may also provide their last name (optional). To send an enquiry to us, the User must consent to the processing of the provided data and confirm that they have read this privacy policy. The data submitted in this way are used to contact the user.
Our website contains, among other things, materials of an informational and educational nature. Under no circumstances can it replace professional consultation with a specialist in the relevant field or reliance on an appropriate interpretation of applicable law. The authors are not responsible for its content in any respect, particularly for any damage caused by applying it, applying it incorrectly, or failing to apply it. In the guide we share only personal experience, acquired knowledge, and resources that can be found in publicly available sources or publications. The content on the site expresses the authors’ views, who reserve the right to change them at any time. Using this content does not create a legally binding contractual relationship.
Our site https://riverdi.com/ also contains links to other sites, videos, and information that we consider valuable or interesting. However, we are not responsible for the content on those sites, any changes thereto, or the privacy policies used by their current or future owners.
All content posted on our site https://riverdi.com/ constitutes the subject of copyright belonging to specific persons and/or the Controller (e.g., photos, texts, videos, free materials, etc.). The Controller does not consent to copying this content in whole or in part without their explicit prior consent.
The Personal Data Controller reserves the right to amend this Privacy Policy in accordance with applicable law. Reasons for changes may include developments in internet technologies, changes in generally applicable law, or the development of the Website through new administrative tools.
Ever faced issues with phantom touch events or certification?
Boost your R&D like a pro with our Whitepaper!
Download our White paper and learn how to: