Privacy Policy

  1. General provisions
  2. Purpose and scope of data collection
  3. Basis for data processing
  4. Right to control, access and rectify your data
  5. „Cookies” files
  6. Final provisions
  1. GENERAL PROVISIONS The controller of personal data collected via the website https://www.kosmed.kielce.com is Kosmed Sp. z o.o., registered office address: Łazy 30A, 25-677 Kielce, correspondence address: Łazy 30A, 25-677 Kielce, entered in the register of entrepreneurs under KRS number: 0000073088, NIP: 9591503529, REGON: 292454602, with share capital of PLN 150,000, e-mail address: biuro@kosmed.kielce.com hereinafter the „Controller”, who is at the same time the Service Provider. The Customer’s personal data is processed in accordance with the Personal Data Protection Act of 29 August 1997 (Journal of Laws No. 133, item 883, as amended) and the Act on the Provision of Electronic Services of 18 July 2002 (Journal of Laws No. 144, item 1204, as amended). 3. The Controller exercises particular care to protect the interests of the data subjects, and in particular ensures that the data it collects is: processed lawfully, collected for specified, lawful purposes and not subjected to further processing incompatible with those purposes, substantively correct and adequate in relation to the purposes for which it is processed, and stored in a form that allows the identification of the data subjects no longer than necessary to achieve the purpose of the processing.
  2. PURPOSE AND SCOPE OF DATA COLLECTION The personal data of Customers collected by the Controller is used for: contacting the customer (client), marketing purposes (Newsletter). The Controller processes the following personal data of Customers: First and last name, Address, E-mail address, Telephone number, NIP (tax ID), Other. The Controller may process the following data characterising the Customer’s use of services provided electronically (operational data): Identifiers of the telecommunications network endpoint or ICT system used by the Customer. Information on the start, end and scope of each use by the Customer of the service provided electronically. Information on the Customer’s use of services provided electronically. Providing the personal data referred to in point 2 is necessary for the Service Provider to provide services electronically within the website.
  3. BASIS FOR DATA PROCESSING Use of the website and the conclusion through it of agreements for the provision of services by electronic means, which entails the need to provide personal data, is entirely voluntary. The data subject decides independently whether they wish to begin using the services provided electronically by the Service Provider in accordance with the Terms and Conditions. Pursuant to Article 23 of the Personal Data Protection Act of 29 August 1997 (Journal of Laws No. 133, item 883, as amended), data processing is permissible, among others, when: the data subject consents to it, unless it concerns the deletion of data relating to them; it is necessary for the performance of a contract to which the data subject is a party, or when it is necessary to take action prior to the conclusion of a contract at the request of the data subject. The Controller always processes personal data within the grounds for the admissibility of its processing listed in point 2. The processing of data will be connected with the performance of a contract or the need to take action prior to the conclusion of a contract at the request of the data subject (point 2 letter b).
  4. RIGHT TO CONTROL, ACCESS AND RECTIFY YOUR DATA The Customer has the right to access the content of their personal data and to rectify it. Every person has the right to control the processing of data concerning them that is contained in the Controller’s data set, and in particular the right to request the completion, updating, rectification of personal data, the temporary or permanent suspension of its processing, or its deletion if it is incomplete, out of date, untrue or was collected in breach of the act, or is no longer needed to achieve the purpose for which it was collected. To exercise the rights referred to in points 1 and 2, you can send an appropriate e-mail message to the address: biuro@kosmed.kielce.com
  5. “COOKIES” FILES The Service Provider’s website uses „cookies” files. The Customer’s failure to change their browser settings is tantamount to consent to their use. The installation of „cookies” files is necessary for the proper provision of services on the website. „Cookies” files contain information necessary for the proper functioning of the website, in particular those requiring authorisation. The following types are used within the website: session, persistent, analytical. „Session” „cookies” are temporary files that are stored on the Customer’s end device until logging out (leaving the website). „Persistent” „cookies” files are stored on the Customer’s end device for the time specified in the parameters of the „cookies” files or until they are deleted by the User. „Analytical” „cookies” make it possible to better understand how the Customer interacts with the content of the website and to better organise its layout. “Analytical” „cookies” collect information on how the website is used by Customers, the type of page from which the Customer was redirected, and the number of visits and the duration of the Customer’s visit to the website. This information does not record specific personal data of the Customer but is used to develop statistics on the use of the website. The User has the right to decide on the access of „cookies” files to their computer by selecting them in advance in their browser window.  Detailed information on the possibilities and methods of handling „cookies” files is available in the software settings (web browser).
  6. FINAL PROVISIONS The Controller applies technical and organisational measures ensuring the protection of the processed personal data appropriate to the threats and the categories of data covered by the protection, and in particular it secures the data against being made available to unauthorised persons, being taken by an unauthorised person, processing in breach of applicable regulations, and against change, loss, damage or destruction. The Service Provider provides appropriate technical measures preventing unauthorised persons from obtaining and modifying personal data transmitted electronically. In the case of photographs posted by the Service Provider that feature the image or part of the image of a third party, the Service Provider declares that it posts the aforementioned materials for informational purposes, not using them commercially (i.e. as a component of promotional or advertising materials), under the right of quotation.