Website Privacy Policy

Bezpieczne HFC / Website Privacy Policy

Introduction

Thank you for visiting the website: https://www.bezpiecznehfc.pl/.

This Privacy Policy contains information regarding the processing of personal data of visitors to the above website by the Climate Protection Foundation PROZON, with its registered office in Warsaw, 03-876, ul. Matuszewska 14, Building B9, Tax ID (NIP): 524-18-25-696 (hereinafter referred to as the “Foundation”, “controller”, “PROZON”, or “we”), operated by the Foundation (hereinafter collectively referred to as “Users”).

As the data controller, we wish to assure you that the processing of your personal data is carried out in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as “GDPR”), as well as other generally applicable legislation.

We respect the privacy of our Users and therefore provide this Privacy Policy so that every User is aware of the scope and manner in which their personal data is processed, and can independently, consciously and freely decide whether to use the services and products we offer. In this Privacy Policy, we describe in general terms how and to what extent we collect Users’ personal data, the purposes for which we use such data, to whom we disclose or entrust it, how we protect it, and what rights Users have.

Contact details of the Data Protection Officer

The Data Protection Officer at the PROZON Climate Protection Foundation is Paweł Modrzejewski, and the Deputy Data Protection Officer is Izabela Walczak.

The designated Data Protection Officer can be contacted by email at: inspektor@kiodo.pl.

The Deputy Data Protection Officer can be contacted by telephone at: 791 543 400.

Principles of personal data processing

We value the trust placed in us by our Users. Below we set out the key principles that guide us in processing data:

  • we make every possible effort to ensure that personal data is processed in a secure, fair, lawful and transparent manner,
  • personal data is collected and further processed to the minimum extent necessary for the purposes for which it is gathered,
  • the purposes for collecting personal data are clearly defined and grounded in law — we do not process data in a manner inconsistent with those purposes,
  • PROZON makes every effort to ensure the accuracy and currency of Users’ personal data and to respond promptly to any requests for rectification or updating,
  • in accordance with the principles set out in the GDPR, and depending on the legal basis for processing, we provide Users with the right of access to their personal data, the right to rectification, as well as the right to erasure, restriction of processing, data portability and the right to object to processing,
  • where processing is based on consent, we ensure that consent can be withdrawn as easily as it was given. Withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent prior to its withdrawal,
  • we ensure every User the right not to be subject to a decision based solely on automated processing, including profiling,
  • we limit the retention of personal data in accordance with applicable law, to the period strictly necessary for the purposes for which the data is collected, unless circumstances arise that may extend the retention period, such as the pursuit of legal claims,
  • we ensure the security of the data processed,
  • where personal data is shared with third parties, this is done in a secure manner, contractually safeguarded and in compliance with applicable law.

Personal data security

The Foundation implements technical and organisational measures to protect personal data against unlawful or unauthorised access or use, as well as against accidental destruction, loss or compromise of integrity. We ensure the commitment of management and all staff to the operation of the data security system we have established, and a process-based approach to data processing.

As part of ensuring the security of the personal data we process, we undertake to take into account:

  1. confidentiality of data — we protect data against accidental disclosure to third parties,
  2. integrity — we protect data against unauthorised modification,
  3. availability — we ensure that data can be accessed on request, within the assumed timeframe, by an entity authorised to work within the given IT system or resource.

Users’ personal data may be processed by third parties only where such a party has committed to providing appropriate technical and organisational measures guaranteeing the security of personal data processing, as well as to maintaining the confidentiality of such data. Every employee and contractor of the Foundation who has access to personal data holds the appropriate authorisation and is obliged to maintain confidentiality.

  • For what purposes and on what legal basis do we process Users’ data?

    The Foundation processes Users’ personal data exclusively for specified, explicit and lawful purposes and on a defined legal basis, in particular:
  • Article 6(1)(e) GDPR — processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller

    in connection with the implementation of the project “Development and implementation of a model of cooperation between state authorities and other entities in order to improve monitoring in the area of HFCs and their illegal trade”, for the purpose of enabling the submission of reports of suspected illegal activities concerning suspected HFC (hydrofluorocarbon) smuggling/illegal trading and taking appropriate action in response to such reports — activities undertaken for the purpose of environmental protection (pollution prevention) in cooperation with the relevant public authorities. The primary objective of the LEGAL HFC 4 LIFE project is to develop and implement a model of cooperation and tools between public authorities and other entities in order to improve monitoring in the area of HFCs and their illegal trading;
  • for the purpose of responding to enquiries submitted via any communication channel (e.g. email, telephone, social media), including in particular those relating to interest in our services/products (e.g. training, dedicated services), where the legal basis for processing is the necessity to take steps at the User’s request prior to entering into a contract (Article 6(1)(b) GDPR) and the legitimate interest pursued by the data controller (Article 6(1)(f) GDPR);
  • for the purpose of performing a concluded contract, where the legal basis is Article 6(1)(b) GDPR if you are a party to the contract, or Article 6(1)(f) GDPR — PROZON’s legitimate interest — if you are a person representing the entity entering into the contract, a contact person for the performance of the contract, or a person participating in training designated by your employer.

    In such cases, we typically process basic professional data such as: first name, surname, email address and telephone number, provided by your employer. In specific circumstances, where justified, we may also process data concerning the absence of a final criminal conviction for an offence against the environment;
  • for the purposes described in detail in the “Cookies” section, on the basis of consent given (Article 6(1)(a) GDPR) or the Foundation’s legitimate interest (Article 6(1)(f) GDPR);
  • for the purpose of potential marketing activities, on the basis of consent given (Article 6(1)(a) GDPR) or our legitimate interest (Article 6(1)(f) GDPR);
  • for the purpose of pursuing or defending against legal claims, should any arise, which constitutes our legitimate interest (Article 6(1)(f) GDPR);
  • for statistical and archiving purposes, on the basis of applicable law or our legitimate interest (Article 6(1)(c) and Article 6(1)(f) GDPR).

Reports of suspected illegal activity may be submitted anonymously. The Foundation does not require reporters to provide their personal details. However, it may occur that a reporter voluntarily chooses to provide a detailed description of the matter, thereby knowingly and voluntarily consenting to the processing of additional data provided on their own initiative.

Where necessary for the proper consideration of a report, the reporter may indicate the participants in the illegal activity. It should be noted that the form created by the Foundation is intended solely for reporting interventions related to the activities of business entities (companies). Reports concerning offences committed by natural persons should be directed to the relevant local municipality or law enforcement authorities — directory of Local Government Units.

Where you send us an enquiry, request contact, or send a message via social media, your data will be directed to the relevant persons responsible for the given area of activity.

If you are interested in participating in a training session, including one related to the project’s subject matter, please contact our training and technical specialist. Further information: https://www.bezpiechnehfc.pl/kontakt-szkolenia.

Providing contact details in an email or other message is voluntary; however, failure to do so may prevent us from responding to your enquiry.

Providing data is mandatory where its processing is based on statutory requirements, in particular for the purpose of delivering specific training sessions. Failure to provide such data will result in the inability to conclude and perform the contract.

Manner and scope of data collection

The personal data of our Users is, as a rule, provided by the Users themselves.

The source of any personal data, including data relating to third parties contained in the anonymous reporting form, is the reporting party (to the extent included in the description of the situation).

Where you express an interest in participating in a given training session, we collect data to the minimum extent necessary for the delivery of the specific service/order. This typically includes:

  • when sending us an email and/or calling: basic identification and contact data of Users — first name, surname, email address, message content, telephone number, VAT number, business address, etc.;
  • when submitting offers in response to requests for quotation: name, VAT number, address, contact person, other contact details, project information, content of relevant declarations;
  • when registering for training sessions: details of the person registering, participant data — first name, surname, contact details, national ID number (PESEL) in specific cases, company data (name, address, VAT number), email address, telephone number, data collected in required declarations and powers of attorney (e.g. for collecting a certificate from the Office of Technical Inspection).

Where data is provided by contact persons designated for the performance of a contract or by persons registered for specific training sessions, the source of such data is the entity with which PROZON has concluded the relevant contract.

Independently, in connection with the User’s use of PROZON’s websites, we also collect data contained in system logs (see the Cookies Policy below for further details).

The website also contains plugins linking to our social media pages (Facebook, LinkedIn). Clicking on these will redirect you to the relevant platform, which will involve the transfer of certain data to the administrator of that platform. Further information on this can be found in the “Social Media Profiles” section.

Users’ rights in connection with the processing of personal data

PROZON upholds Users’ rights in connection with the processing of their personal data. These rights arise from the applicable personal data legislation, in particular Articles 15–22 of the GDPR.

We ensure that every User has:

  • the right of access to data, meaning the right to receive from the Foundation confirmation of whether personal data is being processed by PROZON, to what extent and in what manner, including the right to obtain a copy thereof,
  • the right to rectification — applicable, for example, to outdated or inaccurate personal data, as well as the right to have incomplete data completed,
  • the right to object to the processing of personal data, where we process personal data on the basis of our legitimate interest (e.g. for direct marketing purposes or in pursuit of legal claims — in such cases, upon the User’s objection, we will be required to cease processing their data, unless we can demonstrate the existence of compelling legitimate grounds for the processing that objectively override the User’s privacy interests),
  • the right to erasure of personal data (the “right to be forgotten”) — this consists, as a rule, in requesting the controller to erase the User’s personal data without undue delay. Such a request will be fulfilled in particular where data is processed on the basis of consent or our legitimate interest that is not overriding in relation to the User’s rights and freedoms, or where the purpose of processing based on statutory provisions has ceased to apply. We note, however, that a request for erasure will not be fulfilled where processing is necessary for compliance with a legal obligation to which PROZON is subject,
  • the right to restriction of processing of personal data — this typically involves the temporary blocking of access to the User’s data or the transfer of data to another system,
  • the right to data portability — this entails the ability to receive or have a copy of data transmitted to a specified recipient. It applies where processing is carried out on the basis of consent or a contract, and in an automated manner,
  • the right to lodge a complaint with a supervisory authority — this entails the ability to lodge a complaint with the President of the Personal Data Protection Office (UODO), where the User considers that the processing is being carried out in breach of applicable regulations,
  • the right to withdraw consent to the processing of personal data at any time (see details below in the “Consent — Withdrawal of Consent” section).

The exercise of the above rights must be carried out in accordance with the law, principles of social coexistence and must not infringe the rights and freedoms, including personal rights, of other individuals. Any requests concerning the processing of personal data, including the exercise of rights, may be submitted by email to: prozon@prozon.org.pl or in writing to the Foundation’s registered office, marked “Personal Data”. In the case of a request to withdraw consent, please refer to the “Consent — Withdrawal of Consent” section below.

Each request will be fulfilled without undue delay, and in any event no later than one month after its receipt. This period may be extended in the case of a complex or high volume of requests.

Consent — Withdrawal of consent

In the course of our relationship with Users, including through services offered via the website, Users may be asked to consent to the processing of personal data for marketing purposes, including electronic marketing, where consent constitutes the appropriate legal basis for such processing. The Foundation does not require consent where it is not necessary in a specific case. We also note that the obligation to obtain consent may arise from other legal provisions — for example, consent for telephone or electronic marketing is obtained on the basis of the Telecommunications Law and/or the Act on the Provision of Electronic Services.

The User has the right to withdraw their consent at any time by contacting the Foundation’s office directly or by sending an email to rodo@prozon.org.pl. Contact details for our individual departments are available at: https://prozon.org.pl/kontakt/.

Withdrawal of consent does not entail any negative consequences or inconvenience; however, it may result in the inability to use certain services such as receiving newsletters or invitations to events organised by the Foundation.

Withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent prior to its withdrawal.

A request for withdrawal of consent will be processed without undue delay. Following the fulfilment of the request, we will cease processing personal data for marketing purposes, including the sending of marketing and commercial information by electronic means and by telephone. Until the request has been fulfilled, it may occur that the User receives communications from us that they have opted out of by withdrawing their consent. We also emphasise that where we process data for other purposes (e.g. to perform a contract or service, to establish evidence, or to pursue legal claims), we may continue to process such data for those purposes on a different legal basis.

Data retention

The Foundation retains personal data for the period necessary to achieve the purposes for which it was collected. The retention period for personal data is determined in strict compliance with applicable law, taking into account the possible pursuit of legal claims where relevant.

The User has the right to obtain from us information on the retention period for their personal data in connection with a specific matter.

Where data is processed on the basis of consent, it will be processed until consent is withdrawn, unless the purpose for which consent was given has ceased to apply.

We retain personal data in accordance with applicable law and to the extent necessary, unless circumstances arise that may extend the retention period (e.g. the pursuit of legal claims).

Data recipients and transfers to third countries

The recipients of your personal data may include entities entitled to receive data under applicable legal provisions — that is, public authorities and entities performing public tasks or acting on the instructions of public authorities, to the extent and for the purposes arising from generally applicable law.

In the case of training sessions and examinations required by law, data may be transferred, on the basis of powers of attorney received or pursuant to statutory provisions, to certification bodies such as the Office of Technical Inspection or the Welding Institute.

In the context of project activities and the proper functioning of the “Bezpieczne HFC” service, a recipient of personal data in relation to activities undertaken for the purpose of environmental protection may be the Chief Inspector of Environmental Protection, who receives and processes data on the basis of Article 6(1)(c) and (e) GDPR, for the purpose of processing reports, applications and complaints and intervention requests, for the purpose of carrying out inspection and intervention activities relating to environmental pollution or suspected environmental pollution, initiated on the basis of the provisions of the Act of 20 July 1991 on the Environmental Protection Inspectorate, for the purpose of taking action under the aforementioned legal act, for the purpose of ensuring the proper handling of complaints and applications referred to in Chapter VIII of the Act of 14 June 1960 — the Code of Administrative Procedure, and for the purpose of properly conducting administrative proceedings.

In the context of EU projects, data may also be transferred to entities cooperating with us within their scope and to the European Commission.

Data may also be transferred to entities that cooperate with us in implementation, including entities processing personal data on our behalf on the basis of a data processing agreement concluded with us (e.g. hosting companies, IT providers, software suppliers).

As a rule, we do not transfer data to third countries; however, we inform you that in connection with the implementation of the project, we maintain profiles on social media platforms including Facebook and LinkedIn. Data held on the servers of these platform providers is processed in third countries, including the USA, in accordance with the privacy policies of the respective services. Under the applicable terms and conditions, these providers ensure that processing is carried out in compliance with applicable regulations and to the highest security standards (transfers to the USA on the basis of the Data Privacy Framework — DPF). For entities not registered under the DPF programme, the legal basis for the transfer will be the entity’s commitment to comply with the standard contractual clauses adopted pursuant to an implementing decision of the European Commission. Further information on this, as well as links to the relevant privacy policies, can be found in the “Social Media Profiles” section.

Cookie Policy

We inform you that when using the website https://www.bezpiechnehfc.pl, we collect data contained in system logs. We use this data primarily for technical purposes related to the administration of the website.

In addition, PROZON uses this information for statistical purposes. The statistics we collect allow us primarily to analyse how users make use of the functionalities provided by our websites. System logs contain information about IP addresses (network interface numbers); however, this data does not enable us to unambiguously identify a User (i.e. to identify a specific natural person using a computer or other device connected to the Internet).

Cookies are small text files sent by a given website and stored on the User’s computer (or other device in use). We do not use cookies to collect personal data such as names, surnames or email addresses.

The websites operated by the Foundation use cookies to recognise Users’ personal preferences. In other words, the cookies we use enable us to recognise the User’s computer on their next visit to the website and are intended solely to make navigation easier.

Cookies typically contain the name of the website from which they originate, the duration of their storage on the end device, and a unique identifier. Cookies are used for the purpose of:

  • tailoring the content of the website to the user’s preferences and optimising the use of the website; in particular, these files allow the user’s device to be recognised and the website to be displayed in a manner adapted to their individual needs;
  • generating statistics that help us understand how users navigate the website, enabling us to improve its structure and content; maintaining the user’s session (after logging in), so that the user does not need to re-enter their login credentials on each subpage of the website.

The website uses two principal types of cookies: “session” cookies and “persistent” cookies. Session cookies are temporary files stored on the user’s end device until they log out, leave the website or close the browser. Persistent cookies are stored on the user’s end device for the period specified in the cookie parameters, or until they are deleted by the user.

The following types of cookies are used on the website:

  • “essential” cookies, enabling the use of services available within the website, e.g.

authentication cookies used for services requiring authentication within the website;

  • security cookies, e.g. used to detect authentication abuses within the website;
  • “performance” cookies, enabling the collection of information about how users navigate the website;
  • “functional” cookies, enabling the website to “remember” the settings chosen by the user and to personalise the user interface, e.g. with regard to the selected language or region, font size, website appearance, etc.;
  • “advertising” cookies, enabling the delivery of advertising content better tailored to users’ interests.

In many cases, web browsing software (internet browsers) allows cookies to be stored on the user’s end device by default. Users of the website may at any time change their cookie settings. These settings may be changed in particular so as to block the automatic handling of cookies in the browser settings or to receive notification each time a cookie is placed on the user’s device. Detailed information on the options and methods for managing cookies is available in the software (browser) settings.

The Foundation informs that restrictions on the use of cookies may affect certain functionalities available on the website. Cookies may be placed on the end device of the user of the PROZON website and may also be used by advertisers and partners cooperating with us.

Detailed information on changing cookie settings and deleting them manually in the most popular internet browsers is available in the browser’s help section and on the following pages (simply click the relevant link):

in Chrome in Firefox in Internet Explorer in Opera in Safari in Microsoft Edge

In addition, we inform you that every User may at any time change the settings on their Google account to limit the advertisements displayed to them at https://myaccount.google.com/privacy#ads in the Ads Settings section. Every User may also at any time remove their data from the Analytics database using the plugin: https://tools.google.com/dlpage/gaoptout.

Google Analytics

Our websites use Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses cookies stored on the user’s computer to help analyse how the website is used. The information generated by the cookie about your use of the website will generally be transmitted to and stored on servers operated by Google in the United States. If IP address anonymisation has been activated on the website, your IP address will be truncated by Google within member states of the European Union or in other countries party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and truncated there. Google will use this information on our behalf as the operator of the website for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser in the context of Google Analytics will not be combined with any other data held by Google. You may refuse the storage of cookies by selecting the appropriate settings in your browser; however, please note that if you do this, you may not be able to use the full functionality of this website. You may also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google, and the processing of such data by Google, by downloading and installing the browser plugin available at: https://tools.google.com/dlpage/gaoptout?hl=pl.

Google Analytics demographic features

The websites administered by PROZON use the “demographic features” function of Google Analytics to generate reports containing information about the age, gender and interests of website visitors. This data comes from interest-based advertising served by Google and visitor data from third-party providers, including Google accounts, Gmail, YouTube and the Google Display Network. This data cannot be linked to a specific individual. This feature may be disabled at any time via the Ads Settings in your Google account. You may also withdraw consent to the collection of information about you by Google Analytics as described in this section. We use Google Analytics to analyse how our website is used and to continuously improve it. We may use the statistics obtained to improve our offering and make it more attractive for users. The legal basis for using Google Analytics is Article 6(1)(f) GDPR. Information about the third-party provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, fax: +353 (1) 436 1001, can be found at the following addresses: ▪ terms of service: https://www.google.com/analytics/terms ▪ overview of data protection information: https://support.google.com/analytics/answer/6004245?hl=pl ▪ privacy statement: https://policies.google.com/privacy?hl=pl.

Google Analytics remarketing

Our websites use the remarketing function in Google Analytics in conjunction with the cross-device capabilities of Google AdWords and Google DoubleClick. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. This feature enables the linking of target audiences created for remarketing purposes in Google Analytics with the cross-device capabilities of Google AdWords and Google DoubleClick. In this way, interest-based and personalised advertising messages tailored to the user based on their previous use and browsing behaviour on a device (e.g. a mobile phone) can also be displayed on other devices (e.g. a tablet or computer). Once consent has been given, Google will link your web and app browsing history to your Google account for this purpose. This will enable the same personalised advertisements to be shown on every device on which the user logs in with their Google account. To support this feature, Google Analytics collects Google-authenticated user IDs, which are temporarily linked to our Google Analytics data in order to define and create target audiences for cross-device advertising. You can opt out of cross-device remarketing/targeting by disabling personalised ads in your Google account by clicking the following link: https://www.google.com/settings/ads/onweb/. Additional information and data protection provisions can be found in Google’s privacy statement at: https://policies.google.com/technologies/ads?hl=pl-PL.

Social media profiles

As part of our marketing activities, we maintain project-related profiles, in particular on the following platforms:

  • Facebook
  • LinkedIn

The Facebook social media platform is provided by Meta Platforms, Inc., with its registered office at 1 Hacker Way, Menlo Park, California 94025. It administers the entire IT infrastructure of Facebook and other associated platforms and technologies (Instagram, Messenger, WhatsApp, Oculus, Workplace, Portal, Novi).

Information on data processing on these platforms is available at https://www.facebook.com/privacy/policy.

The LinkedIn service is provided by LinkedIn Corporation, with its registered office at 1000 W Maude, Sunnyvale, CA 94085, US, and belongs to the Microsoft group. Information on personal data processing by the service is available at LinkedIn Privacy Policy.

Social media plugins

Our website contains plugins for the above-mentioned platforms: LinkedIn and Facebook. We inform you that by clicking on a plugin for a given service, data relating to our website’s User — such as their IP address and browser identifier — may be transferred to the relevant data controller of that service (in particular if the User is logged into those services), in accordance with their privacy policies. For further information, please refer to the privacy policy of the relevant service, links to which are provided in the section above.

Data processing on PROZON’s social media profiles

We inform you that responsibility for maintaining the social media pages/profiles lies with the

PROZON Climate Protection Foundation, with its registered office in Warsaw, 03-876, ul. Matuszewska 14, Building B9, Tax ID (NIP): 524-18-25-696. We also inform you that personal data processed through these profiles is jointly administered with the entities responsible for operating the respective platforms. PROZON collects and processes only a portion of the data shared with us by Users of those services. We ensure that the operation of our pages complies with the requirements set out in the platforms’ terms of service.

Through the operation of our pages, we collect and process the following personal data:

  • online identifier (typically containing a first name, surname or username);
  • profile picture (which may in some cases reveal the User’s likeness);
  • other photographs (which may also depict a person’s likeness) arising from the page-user relationship, received as a result of activities undertaken by the User on our profiles. The sharing of such photographs with us is entirely voluntary;
  • the content of comments and of conversations conducted via messaging applications (e.g. Messenger) — in such conversations, Users may provide us with, for example, their email address or telephone number; we also receive the description provided by the User in connection with the circumstances of our correspondence. Personal data collected through communication with Users is processed solely for the purpose of providing a response, where necessary. User activity in connection with our pages will not be archived outside the platforms, unless necessary for evidential purposes. The processing of personal data on our pages is carried out on the following legal bases:
  • Article 6(1)(a) GDPR — on the basis of consent expressed by the User when submitting an enquiry on our profile,
  • Article 6(1)(b) GDPR — in connection with an interest in our products and services and the intention to enter into a contract with us,
  • Article 6(1)(f) GDPR — on the basis of our legitimate interest, which may include, for example, sending the User a message about a project, product or promotion that the User is or may be interested in, or for the purpose of pursuing legal claims.

Information about Users contained in messages will be retained for the period necessary to respond to your questions. Information contained in comments shared by Users will remain available on our service until deleted by the author or the administrator. As a rule, personal data collected by the platforms — such as post history and messaging activity history — is subject to retention in accordance with the terms set out in the platforms’ terms of service.

Each User has, in accordance with the principles set out in the GDPR, the following rights with regard to their personal data:

  • the right of access to their data,
  • the right to obtain a copy thereof (where technically possible),
  • the right to rectification,
  • the right to erasure,
  • the right to restriction of processing,
  • the right to object to processing,
  • the right to data portability (where technically possible),
  • the right to lodge a complaint with the President of the Personal Data Protection Office (UODO) in the event of a finding that we have violated applicable data protection legislation.

In the case of any requests relating to a person’s likeness, please specify the particular photograph concerned.

The establishment of any relationship between the controller and a platform User is entirely voluntary, and the User may always withdraw their consent to the processing of their data.

We do not make decisions in an automated manner.

Data may be transferred outside the European Economic Area — for example, to the USA, where the servers of the platform providers are located. As a rule, such transfers will be carried out on the basis of the new Data Privacy Framework.

Changes to the Policy

PROZON reserves the right to make changes to this Policy, which may result from the need to adapt to changes in legislation or applicable privacy standards, or from the expansion of our offering or the website’s functionality. The Foundation will notify Users of any such changes by means of an appropriate notice on its websites.

Copyright

All rights to the website https://www.bezpiechnehfc.pl/, including all graphic elements, photographs, page layouts and any other elements thereof, are reserved. The website and all its elements are protected by law, in particular by the Act of 4 February 1994 on Copyright and Related Rights, the Act of 16 April 1993 on Combating Unfair Competition, and the Act of 27 July 2001 on the Protection of Databases.

Updated: 30 August 2024