Administrator – means Transition Technologies MS S.A. with its registered seat in Warsaw at Chmielna 69, entered into the Register of Entrepreneurs kept by the District Court for the City of Warsaw in Warsaw, XII Economic Division of the National Court Register under KRS no.: 0000539306, REGON: 360679205, NIP: 5272728327.
Personal Data - information about a natural person identified or identifiable by one or more factors specific to physical, physiological, genetic, psychological, economic, cultural or social identity, including device IP, Internet ID and information collected through cookies and other similar technology.
GDPR - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27.04.2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.
Website - the website operated by the Administrator at ttms.com
User - any natural person visiting the Website or using one or more services or functionalities described in the Policy.
In connection with the use of the Website by the User, the Administrator collects data to the extent necessary to provide the individual services offered. The detailed principles and purposes of the processing of Personal Data collected during use of the Website by the User are described below.
Use of the Website
Personal Data of all persons using the Website is processed by the Administrator:
in order to provide services electronically in terms of providing Users with access to the content collected on the Website - in which case the legal basis for the processing is the necessity of the processing for the performance of the agreement (Article 6.1.b GDPR);
for the purpose of establishing and investigating claims or defending against claims - the legal basis for processing is the legitimate interest of the Administrator (Article 6.1.f GDPR), consisting in the protection of his/her rights.
Administrator zapewnia możliwość skontaktowania się z nim przy wykorzystaniu elektronicznego formularza kontaktowego. Skorzystanie z formularza wymaga podania Danych osobowych niezbędnych do nawiązania kontaktu z Użytkownikiem i udzielenia odpowiedzi na zapytanie. Użytkownik może podać także inne dane w celu ułatwienia kontaktu lub obsługi zapytania. Podanie danych oznaczonych jako obowiązkowe jest wymagane w celu przyjęcia i obsługi zapytania, a ich niepodanie skutkuje brakiem możliwości obsługi. Podanie pozostałych danych jest dobrowolne.
Personal data is processed in order to identify the sender and to handle his/her enquiry sent via the form provided - the legal basis of the processing is the necessity of the processing for the performance of the contract for the provision of the service (Article 6.1.b GDPR); with regard to the data provided optionally, the legal basis of the processing is consent (Article 6.1.a GDPR).
The User's personal data may also be used by the Administrator to direct marketing content to the User by email or telephone. Such activities are only undertaken by the Administrator if the User has given his/her consent, which he/she may withdraw at any time.
Personal data shall be processed:
for the purpose of sending the requested commercial information - the legal basis for the processing, including with the use of profiling, is the legitimate interest of the Administrator (Article 6.1.f GDPR) in relation to the consent given;
for analytical and statistical purposes - the legal basis of the processing is the Administrator's legitimate interest (Article 6.1.f GDPR), consisting of conducting analyses of Users' activity on the Website in order to improve the applied functionalities.
The period of data processing by the Administrator depends on the type of service provided and the purpose of the processing. As a general rule, data shall be processed for the duration of the service provided, until the withdrawal of the consent given or until an effective objection is made to the processing of the data in cases where the legal basis for the processing is the legitimate interest of the Administrator.
The processing period may be extended where the processing is necessary for the establishment and assertion of possible claims or the defence against claims, and thereafter only where and to the extent required by law. After the expiry of the processing period, the data shall be irreversibly deleted or anonymised.
The User has the right to access the content of the data and to request rectification, erasure, restriction of processing, the right to data portability and the right to lodge a complaint to the supervisory authority dealing with the protection of Personal Data.
The User shall also have the right to object to data processing that is based on the legitimate interest of the Administrator.
To the extent that the User's data is processed on the basis of consent, this consent may be withdrawn at any time by contacting the Administrator via e-mail at email@example.com.
In connection with the provision of the Webistes, Personal Data will be disclosed to external entities, including in particular IT service providers enabling the correct use of the Website.
In the case of obtaining the User's consent, his/her data may also be disclosed to other entities for their own purposes, including marketing purposes.
The Administrator reserves the right to disclose selected information concerning the User to the competent authorities or to third parties, who will submit a request for such information on the basis of the relevant legal basis and in accordance with the provisions of the applicable law.
The level of protection of Personal Data outside the European Economic Area (EEA) differs from that provided by European law. For this reason, the Administrator transfers Personal Data outside the EEA only when necessary and with an adequate level of protection, primarily by:
cooperating with processors of Personal Data in countries for which a relevant decision of the European Commission has been issued as to whether an adequate level of protection of Personal Data is ensured,
applying the standard contractual clauses issued by the European Commission,
the application of binding corporate rules approved by the competent supervisory authority.
The Administrator shall always inform of its intention to transfer Personal Data outside the EEA at the stage of collection.
The Administrator shall, on an ongoing basis, conduct a risk analysis to ensure that Personal Data is processed by the Administrator in a secure manner - ensuring, in particular, that only authorised persons have access to the data and only to the extent that this is necessary for their tasks. The Administrator shall ensure that all operations on Personal Data are recorded and performed only by authorised employees and associates.
The Administrator shall take all necessary measures to ensure that also its subcontractors and other cooperating entities guarantee the application of appropriate security measures whenever they process Personal Data on behalf of the Administrator.
Contact with the Administrator is possible via firstname.lastname@example.org.
The Policy is reviewed on an ongoing basis and updated as necessary.
The current version of the Policy has been adopted and is effective as of 27.02.2023.