Privacy Policy

As the Personal Data Controller, I am responsible for processing your personal data. I take good care of them and ensure proper protection in line with the regulations. You can check what is happening with your data. The Privacy Policy contains the rules with regard to the processing of personal data and the use of cookies in connection with the use of my Website: www.tomoyarmush.com.

overview

overview

overview

1. By using the www.tomoyarmush.com Website (the “Website”), you accept the following terms of the Privacy Policy.

2. This Privacy Policy sets out the rules for the processing and protection of personal data provided by the users and collected by cookies, as well as other technologies used throughout the www.tomoyarmush.com Website.

3. The Controller of the Website and the Subjects’ personal data is Tomasz Jarmuszkiewicz, Bertolta Brechta Street 12/81, Warsaw 03-473, PESEL 93012107333, NIP 6222726350, REGON 302642220 („The Controller”). You can contact the Data Controller by e-mail from the address hello@tomoyarmush.com or in writing to the Data Controller’s address.

4. The Personal Data Controller reserves the right to make changes to the Privacy Policy, and each user of the Website is required to read and understand the currently applicable Privacy Policy. Such changes can be made due to such reasons as: development of Internet technology, changes in generally applicable law or the growth of the Website. The date of publication of the current Privacy Policy can be viewed at the bottom of the page.

1. By using the www.tomoyarmush.com Website (the “Website”), you accept the following terms of the Privacy Policy.

2. This Privacy Policy sets out the rules for the processing and protection of personal data provided by the users and collected by cookies, as well as other technologies used throughout the www.tomoyarmush.com Website.

3. The Controller of the Website and the Subjects’ personal data is Tomasz Jarmuszkiewicz, Bertolta Brechta Street 12/81, Warsaw 03-473, PESEL 93012107333, NIP 6222726350, REGON 302642220 („The Controller”). You can contact the Data Controller by e-mail from the address hello@tomoyarmush.com or in writing to the Data Controller’s address.

4. The Personal Data Controller reserves the right to make changes to the Privacy Policy, and each user of the Website is required to read and understand the currently applicable Privacy Policy. Such changes can be made due to such reasons as: development of Internet technology, changes in generally applicable law or the growth of the Website. The date of publication of the current Privacy Policy can be viewed at the bottom of the page.

1. By using the www.tomoyarmush.com Website (the “Website”), you accept the following terms of the Privacy Policy.

2. This Privacy Policy sets out the rules for the processing and protection of personal data provided by the users and collected by cookies, as well as other technologies used throughout the www.tomoyarmush.com Website.

3. The Controller of the Website and the Subjects’ personal data is Tomasz Jarmuszkiewicz, Bertolta Brechta Street 12/81, Warsaw 03-473, PESEL 93012107333, NIP 6222726350, REGON 302642220 („The Controller”). You can contact the Data Controller by e-mail from the address hello@tomoyarmush.com or in writing to the Data Controller’s address.

4. The Personal Data Controller reserves the right to make changes to the Privacy Policy, and each user of the Website is required to read and understand the currently applicable Privacy Policy. Such changes can be made due to such reasons as: development of Internet technology, changes in generally applicable law or the growth of the Website. The date of publication of the current Privacy Policy can be viewed at the bottom of the page.

The requirement to provide data and the consequences of a failure to do so 

The requirement to provide data and the consequences of a failure to do so 

The requirement to provide data and the consequences of a failure to do so 

Although providing personal data is voluntary, providing some data may be necessary to perform the service, issue invoices, etc.  Failure to provide this data will make it impossible to achieve the purposes for which they are collected.  Any data provided by the Subject that is not necessary, or excess data that does not need to be processed by the Data Controller, is provided by the Subject at his or her own discretion; in such situations, the processing occurs on the basis of the premise contained in Article 6 (1) (a) of the GDPR (consent). The Subject expresses his or her consent to the processing of this data and to the anonymization of data that the Data Controller does not require and does not want to process, which was nonetheless provided by the Subject to the Data Controller.

PERSONAL DATA PROTECTION

PERSONAL DATA PROTECTION

PERSONAL DATA PROTECTION

In accordance with art. 13(1–2) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (the General Data Protection Regulation, hereinafter “GDPR”), I inform that:
As a Personal Data Controller, I hereby notify that I have not appointed the Personal Data Protection Inspector (PDPI) and perform my own duties related to the processing of personal data.

Purposes and Basis of Processing

Purposes and Basis of Processing

Purposes and Basis of Processing

Your personal data will be processed for as long as necessary for the following purposes:

a) Performing the service or the concluded Contract, sending an offer (e.g. advertising) at your request – pursuant to Article 6 (1) (b) of the GDPR (necessity in order to conclude and/or perform a Contract or take action upon request);

b) For the purpose of direct marketing of own products or services addressed to you – pursuant to Article 6 (1) (f) of the GDPR (legitimate interest of the Data Controller)

c) Establishing, pursuing or defending against claims – pursuant to Article 6 (1) (f) of the GDPR (legitimate interest of the Data Controller)

d) Issuing an invoice, bill and complying with other obligations resulting from the provisions of tax and laws and archiving regulations – pursuant to Article 6 (1) (c) of the GDPR (obligation resulting from legal provisions), Article 6 (1) (b) of the GDPR (necessity in order to conclude and/or perform a Contract);

e) Contact by e-mail in matters related to the implementation of the contract, services, billing issues and answering questions – pursuant to Article 6 (1) (b) of the GDPR (necessity in order to conclude and/or perform a Contract), Article 6 (1) (f) of the GDPR (legitimate interest of the Data Controller);

f) Postal correspondence via courier and postal services in matters related to the implementation of the contract, services, billing issues – pursuant to Article 6 (1) (b) of the GDPR (necessity in order to conclude and/or perform a Contract);

g) Contact by phone in matters related to the implementation of the services, inquiries – pursuant to Article 6 (1) (b) of the GDPR (necessity in order to conclude and/or perform a Contract), pursuant to Article 6 (1) (f) of the GDPR (legitimate interest of the Data Controller);

h) Data Controller’s promotion and advertising, if consent was given for this purpose – pursuant to Article 6 (1) (a) of the GDPR (consent);

i) Recording and processing of your image in order to perform the contract and services, defend against claims and demonstrate the correctness of the provided services – pursuant to Article 6 (1) (b) of the GDPR (necessity in order to conclude and/or perform a Contract), pursuant to Article 6 (1) (f) of the GDPR (legitimate interest of the Data Controller);

j) In order to disseminate your image, if consent was given for this purpose – pursuant to Article 6 (1) (a) of the GDPR (consent), Article 6 (1) (b) of the GDPR (necessity in order to conclude and/or perform a Contract);

k) For creating records related to the GDPR and other regulations – pursuant to Article 6 (1) (c) of the GDPR (obligation resulting from legal provisions);

l) Concluding entrustment contracts and keeping a register of entrustment contracts – pursuant to Article 6 (1) (c) of the GDPR (obligation resulting from legal provisions);

m) Considering complaints and claims related to the Contract – pursuant to Article 6 (1) (b) of the GDPR (necessity in order to conclude and/or perform a Contract) and pursuant to Article 6 (1) (c) of the GDPR (obligation resulting from legal provisions);

n) Keeping social media profiles (Facebook, Instagram, LinkedIn) and interacting with users of these social networks – pursuant to Article 6 (1) (f) of the GDPR (legitimate interest of the Data Controller);

o) for the analytical purposes, such as the analysis of data collected automatically while using the Website, including by cookies, such as Google Analytics cookies – pursuant to Art. 6 (1) (f) GDPR (legitimate interest of the Personal Data Controller);

p) for the purpose of using cookies on the Website and its subpages – pursuant to Article 6 (1) (a) of the GDPR (consent), and pursuant to Article 6 (1) (f) of the GDPR (legitimate interest of the Personal Data Controller).

the right to object

the right to object

the right to object

You can withdraw your consent at any time, but its withdrawal does not affect the legality of processing on the basis of the consent prior its withdrawal. You also have the right to object to the processing of your data on the basis of the legitimate interests of the Data Controller. The Data Controller will cease to process your data for these purposes, unless it can be demonstrated that in relation to this data, there are valid legally valid grounds for the Data Controller that have priority over your interests, rights and freedoms, or that this data will be necessary for the Data Controller to establish, pursue or defend claims.

Data Retention Period

Data Retention Period

Data Retention Period

Your data will be retained:

a) For the period of performance of the service and cooperation, as well as for the period of limitation of claims in accordance with the law – in relation to data provided by contractors and customers;

b) For the period of talks and negotiations preceding the conclusion of the Contract or the performance of the service – in relation to the data provided in an inquiry;

c) For the period required by law, including tax law – in relation to personal data related to the fulfillment of obligations under applicable laws;

d) Until an objection is submitted pursuant to Article 21 of the GDPR – in relation to personal data processed on the basis of the legitimate interest of the Data Controller, including for the purposes of direct marketing;

e) Until the consent is withdrawn or the purpose of processing or business purpose is achieved – in relation to personal data processed based on consent. After the consent is withdrawn, the data may still be processed for the purpose of defending against any possible claims in accordance with the limitation period for these claims or a (shorter) period specified to you;

f) until they become obsolete or become no longer useful – in relation to personal data processed mainly for analytical and statistical purposes, the use of cookies and the administration of the Personal Data Controller’s Websites.

Your data will be retained:

a) For the period of performance of the service and cooperation, as well as for the period of limitation of claims in accordance with the law – in relation to data provided by contractors and customers;

b) For the period of talks and negotiations preceding the conclusion of the Contract or the performance of the service – in relation to the data provided in an inquiry;

c) For the period required by law, including tax law – in relation to personal data related to the fulfillment of obligations under applicable laws;

d) Until an objection is submitted pursuant to Article 21 of the GDPR – in relation to personal data processed on the basis of the legitimate interest of the Data Controller, including for the purposes of direct marketing;

e) Until the consent is withdrawn or the purpose of processing or business purpose is achieved – in relation to personal data processed based on consent. After the consent is withdrawn, the data may still be processed for the purpose of defending against any possible claims in accordance with the limitation period for these claims or a (shorter) period specified to you.

Your data will be retained:

a) For the period of performance of the service and cooperation, as well as for the period of limitation of claims in accordance with the law – in relation to data provided by contractors and customers;

b) For the period of talks and negotiations preceding the conclusion of the Contract or the performance of the service – in relation to the data provided in an inquiry;

c) For the period required by law, including tax law – in relation to personal data related to the fulfillment of obligations under applicable laws;

d) Until an objection is submitted pursuant to Article 21 of the GDPR – in relation to personal data processed on the basis of the legitimate interest of the Data Controller, including for the purposes of direct marketing;

e) Until the consent is withdrawn or the purpose of processing or business purpose is achieved – in relation to personal data processed based on consent. After the consent is withdrawn, the data may still be processed for the purpose of defending against any possible claims in accordance with the limitation period for these claims or a (shorter) period specified to you.

Data recipients

Data recipients

Data recipients

Personal data processed by the Data Controller in respect of the Contract concluded between us or the provision of the services may also be entrusted to other entities. We may share personal data with the following recipients: entities with whom or on whose behalf we provide services to the extent necessary and with whom we cooperate in the course of performing commissions, the company that provides accounting software, companies providing postal and courier services, services providing IT system maintenance and hosting services, e-mail service and cloud services providers. We may also be required to disclose your data to private and public entities when required by legal provisions.

Personal data processed by the Data Controller in respect of the Contract concluded between us or the provision of the services may also be entrusted to other entities. We may share personal data with the following recipients: entities with whom or on whose behalf we provide services to the extent necessary and with whom we cooperate in the course of performing commissions, the company that provides accounting software, companies providing postal and courier services, services providing IT system maintenance and hosting services, e-mail service and cloud services providers. We may also be required to disclose your data to private and public entities when required by legal provisions.

Personal data processed by the Data Controller in respect of the Contract concluded between us or the provision of the services may also be entrusted to other entities. We may share personal data with the following recipients: entities with whom or on whose behalf we provide services to the extent necessary and with whom we cooperate in the course of performing commissions, the company that provides accounting software, companies providing postal and courier services, services providing IT system maintenance and hosting services, e-mail service and cloud services providers. We may also be required to disclose your data to private and public entities when required by legal provisions.

Data Transfer to Third Countries

Data Transfer to Third Countries

Data Transfer to Third Countries

Due to the fact that we use external providers of various services, such as Facebook, Instagram, Google or LinkedIn, your data may be transferred to third countries, such as the United States. However, they will be provided only to those recipients who have joined the so-called Privacy Shield Agreement, or who guarantee adequate protection of personal data.

Rights of Data Subjects

Rights of Data Subjects

You have the right to access your data, to receive a copy of your data and to rectify it, delete it (if in your opinion there are no grounds for us to process this data, you can request the data to be deleted) or restrict its processing, and the right to transfer the data.

Right to Submit a Complaint 

Right to Submit a Complaint 

Right to Submit a Complaint 

You have the right to submit a complaint with the Data Protection Commissioner, if you believe that the processing of personal data violates the provisions of the GDPR.

Profiling

Profiling

Profiling

The Subject’s personal data will not be used for automated decision-making that affects the rights and obligations or freedoms of the Subject within the meaning of the GDPR.
The Subject’s data may be profiled by the website and tracking technologies, which helps optimize the website content and solutions. However, this should not have any impact on the legal situation of the Subjects, in particular with regard to the terms and conditions of the contracts they have concluded or the contracts they intend to conclude. The information used is anonymous and is not associated with personal data provided by the Subject. They are derived from statistical data, such as gender, age, personal interests, approximate location, or behaviour on the website.
Each Subject has the right to object to profiling if it would have a negative impact on the Subject’s rights and obligations.

COOKIES POLICY

COOKIES POLICY

COOKIES POLICY

a) Similarly to most other websites, the Personal Data Controller’s Website uses tracking technologies, referred to as “cookies”, which are used to adapt and improve the Website and provide a better user experience for the visitors.

b) The Website does not automatically collect any information, with the exception of information contained in cookie files.

c) Cookies contain computer data and have the form of small text files that are stored on your end device, such as a computer, tablet, or smartphone, while you are using my Website.

d) These may include my own cookies (originating directly from my Website) and third-party cookies (originating from websites other than my Website).

e) Cookies are used to adapt the content of my Website to your individual preferences and the needs of other users visiting my Website. Cookies are also used for making statistics to illustrate the ways in which the visitors use the Website and how they navigate it. This enables me to improve my Website, its content, structure and appearance.

f) The Personal Data Controller uses the following third-party cookies on the Website:

  • Built-in Google Analytics code – to analyze Website statistics. Google Analytics uses its own cookies to analyze the actions and behaviour of Website users. These files are used to store information, such as the website from which the user navigated to the current website. They help improve the Website.

    This tool is provided by Google LLC. The actions in relation to the using the Google Analytics code are based on the Personal Data Controller’s legitimate interest in creating and using the statistics for the purposes of improving the Personal Data Controller’s services and optimization of the Website.

    While using Google Analytics, the Personal Data Controller does not process any data of the user that would enable his or her identification.

    The Personal Data Controller recommends you to read the details of using Google Analytics, including the option to disable the tracking code and, if necessary, submit any questions to the provider of the tool here: https://support.google.com/analytics#topic=3544906. 

  • Social media plugins and links pointing, such as Facebook, Instagram and LinkedIn.
    After clicking the plugin icon, the user is taken to the external provider’s website, in this case the owner of the particular social networking site, such as Facebook. Afterwards, the user has the option to click the “Like” or “Share” buttons to like the Personal Data Controller’s fanpage on Facebook or directly share its content (such as a post, an article, a video etc.). 

    The Personal Data Controller recommends you to read Facebook’s Privacy Policy before creating a profile there. The Personal Data Controller cannot affect the data processed by Facebook in any way. From the moment the user clicks the social media plugin, personal data is processed by the social networking site, such as Facebook, which becomes the Personal Data Controller and decides about the purposes and extent of the processing. Cookies left by the Facebook plugin (or other third-party plugins) may also be used on the user’s device after vising the Website and then associated with the data gathered by Facebook. Using the Website means that the user accepts that. The Personal Data Controller does not affect the processing of data by third parties in this way.

g) The Personal Data Controller recommends you to read the Privacy Policy of the providers of the services referred to above in order to understand what changes can be made and what settings can be used to protect the user’s rights.

h) The Website uses two types of cookies: session cookies, which are deleted when the user closes his or her browser, or when he or she logs out or leaves the Website, and permanent cookies, which allow the Website to recognize your browser whenever you visit the Website, which are stored on the user’s end device for a period of time defined in the cookie parameters or until they are removed by you.

i) In many cases, software used for browsing Websites (Web browsers) allows storage of cookies on the user’s end device by default. Users of the Website may change their cookie settings at any time. These settings can be changed, in particular in such a way as to block the automatic handling of cookies in the Web browser settings, or notify the User of any cookies being stored on the Website user’s device. Detailed information about cookie handling options can be found in the software settings of your Web browser.

j) The Personal Data Controller hereby notifies that limiting the use of cookies (by disabling or restricting them) may negatively affect or disable some of the functionalities available on the Website.

k) More information on cookies can be found at https://www.allaboutcookies.org or in the “Help” section in the browser’s menu.

server logs

server logs

server logs

a) Using the Website involves sending queries to the server on which the Website is stored.

b) Each query sent to the server is saved in the server logs. These logs include the user’s IP address, server date and time, and information about the user’s web browser and operating system.

c) Logs are saved and stored on the server.

d) The server logs are used for the purposes of administration of the Website and their content is not disclosed to anyone except persons and entities authorized to administer the server.

e) The Personal Data Controller does not use the server logs to identify the user in any way.

Last update: 26.01.2021

Last update: 26.01.2021

Last update: 26.01.2021

ty.

ty.

ty.

© 2021 TOMO YARMUSH PRIVACY POLICY

© 2021 TOMO YARMUSH PRIVACY POLICY

© 2021 TOMO YARMUSH | PRIVACY POLICY