The personal data controller is: IT-DEV sp. z o.o. with its registered seat in Wrocław, at Sikorskiego 26, postal code 53-659 Wrocław, Poland (hereinafter referred to as: IT-DEV).
Regarding the processing of your personal data by IT-DEV and the related requests you may contact us at: email@example.com or at the following address: IT-DEV sp. z o.o., at Sikorskiego 26, 53-659 Wrocław
Our Personal Data Processing Policy was developed in connection with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter: GDPR).
We collect your personal data directly or by electronic means, including by:
sending queries through contact forms available at engagy360.com
The provision of data is necessary for entering into an agreement with us, using our services or obtaining information. Otherwise, providing the data is voluntary.
We ensure that your personal data is processed legally, for legitimate purposes, transparently and reliably.
Our websites use a safe web protocol – SSL Certificate, ensuring confidentiality of data transmission sent over the Internet. This means that your data provided through the contact form are sent through a safe encrypted connection.
Purpose of processing
Description of the Data Controller’s legitimate interests
GDPR legal basis
Handling contracts: concluding, performing and settling the agreement, including contacts in connection with its performance
Article 6(1)(B) – processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
Article 6(1)(c) – processing is necessary for compliance with a legal obligation to which the controller is subject;
archiving documents, i.e. agreements and settling documents
Exercise of legal claims in connection with the agreement
Enforcement of liabilities, conducting court proceedings and subsequent enforcement proceedings
Article 6(1)(f) – processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data;
Generating general statistics not identifying individuals (e.g. Google Analytics)
Statistics regarding our activities allow us to
improve the conduct of our business
Handling queries or reports received through the contact form.
Providing information, responding to reports and queries received through the contact form or otherwise, including storage of reports and the responses given for accountability purposes
Conducting marketing activities regarding own products or services (including profiling)
Promoting our activities, building and strengthening business relationships. In the case of using e-mail addresses and telephone numbers – solely based on the received consents.
Conducting marketing activities regarding external products or services – solely based on the received consents.
If the basis for personal data processing is your consent (Article 6(1)(a) of GDPR) – the data will be used until the consent is withdrawn. We have the obligation to store your personal data for the time required under the law and when necessary for the functioning of IT-DEV and ensuring accountability.
Type of personal data
Duration of the processing
Data in documents, such as orders, reports, agreements, letters of authorization
The period of performing the obligations and the period of the statute of limitations resulting from the law; until the end of the time specified in a statute of limitations for contractual claims.
Data in settlement documents
The books and the related documents, until the end of the time specified in a statute of limitations for tax liability, unless the fiscal acts provide otherwise.
The data in the documents connected with statutory warranty and guarantee
The documents related to statutory warranty, guarantee and complaints will be processed for 1 year after termination of the statutory warranty, guarantee or settlement of a complaint.
Data for marketing purposes
Where processed based on consent – until such consent is withdrawn;
Where processed based on legitimate aim – until an objection is raised.
Contact form data
For two years, to make sure the accountability principle is followed.
For technical reasons, your personal data may be shared with other entities for processing. These include:
authorized employees and co-workers who use the data in order to do our business and the entities entrusted by us with supporting our business, including but not limited to specialists, advisors or providers of solutions supporting our business;
state authorities or other authorities competent pursuant to the provisions of law (for the purposes of fulfilling legal obligations), such as: the Social Insurance Institution, Tax Office;
Your personal data may be transferred outside the European Union only as a result of performing an agreement concluded with the Controller, if necessary to obtain a license from a third party with registered office outside the European Union.
Personal data shall not be subject to automated decision-making, including profiling.
Subject to the principles set forth under Article 15 – Article 20 of GDPR you have the right to access the content of your personal data and the right to rectify or erase them, restrict their processing, transfer them, object, withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal (if the data are processed based on consent).
You may submit a request regarding your data rights:
in writing to the following address: IT-Dev sp. z o.o., at Sikorskiego 26, 53-659 Wrocław,
If our processing violates the GDPR provisions, you have the right to file a complaint to the supervisory authority, i.e. the President of Personal Data Protection Office.
The Policy is verified on an ongoing basis and updated as needed. The current version of the Policy is applicable as of 1 June 2022.