PERSONAL DATA CONTROLLER
Your personal data are controlled by Maciej Cićkiewicz (Dental Movies Maciej Cićkiewicz), Osowska 70/72/3, 04-332 Warsaw, NIP [Taxpayer ID No.]: 1132570226, REGON [Business ID No.]: 141665782: 382226120, e-mail: info@academyoforthodontics.com, hereinafter referred to as: Data Controller.
PURPOSES AND BASIS FOR DATA PROCESSING
Any personal data are processed by Data Controller primarily for the purpose of providing services to you, including, in particular, contacting you, organising and carrying out training courses, including sending training materials, issuing a training certificate, for the purpose of fulfilling orders placed by you, in order to provide online medical advices and promoting Data Controller activities.
Your personal data may also be processed for marketing purposes, including for the purpose of sending newsletters and information about our services via e-mail.
We process your data obtained as part of service provision in accordance with the provisions of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), i.e. in accordance with “GDPR”. The legal basis for processing is as follows:
- conclusion and performance of the agreement (provision of services) in accordance with Article 6(1)(b) of the GDPR;
- legitimate protection of the interests of Data Controller in accordance with Article 6(1)(f) of the GDPR;
- compliance with the legal obligation imposed on Data Controller in accordance with Article 6(1)(c) of the GDPR;
- consent to the processing of personal data obtained from you (marketing consent, consent to the processing of health data consent) in accordance with Article 6(1)(a) of the GDPR.
Providing personal data is voluntary, however necessary for us to provide services to you.
As we also process your personal data pursuant to Article 6(1)(f) of the GDPR, we would like to inform you that this is due to the following legitimate interests pursued by us or by a third party:
- processing for marketing purposes;
- concluding and performing the agreement, including contacting you in connection with its execution;
- handling complaints;
- pursuing claims related to the concluded agreement.
CATEGORIES OF PERSONAL DATA PROCESSED
We process the following categories of personal data:
- name, surname, company name;
- address of residence (address of the registered office);
- the NIP [Taxpayer ID] number;
- telephone number;
- e-mail address;
- image,
- age and gender,
- information on health, including diseases and the treatment process.
PERIOD OF PERSONAL DATA RETENTION
We retain all data during the period in which we provide services to you or until your consent is withdrawn (where the processing is based on your consent). When we discontinue to provide services to you, we store your data for a period equivalent to the limitation periods for claims you may raise against us or we may raise against you. Upon the expiry of the limitation periods, your personal data will be erased or rendered anonymous.
DISCLOSURE OF PERSONAL DATA TO THIRD PARTIES
Your personal data will be disclosed to third parties only to the extent required by law and to the extent necessary to ensure the highest quality of services provided to you. The above third parties may include entities cooperating with us in the field of IT services, accounting as well as postal operators, photographers and entities providing legal services, social media channels, in particular Facebook and Instagram. If you choose to pay via Przelewy24, PayPro S.A. with its registered office in Poznań is such an entity.
As we may use the services of other providers, personal data may be transferred outside the European Economic Area. In such a case, the data will be transferred pursuant to the relevant agreement between Data Controller and the said entity, containing the standard data protection clauses adopted by the European Commission. As processing entities’ servers may be located outside the European Economic Area, we may transfer personal data to such countries. Pursuant to the decision of the European Commission of 12 July 2016 IP/16/216, the transfer of personal data to entities established in the United States that have entered into the EU-US Privacy Shield agreement ensures an adequate level of protection of personal data, in line with Article 45 of the GDPR.
PROTECTION OF PERSONAL DATA
We exercise the utmost diligence to protect your personal data. All data we process are stored in a safe place and protected against unauthorised access. Personal data are processed in accordance with the data protection principles set out in the GDPR.
COOKIES
Cookies are small text files stored on the user’s device, containing information necessary for the website it belongs to to be displayed correctly and customised to the user’s preferences. Cookies may only be read by the website they belong to and are safe for the device in which they are stored.
Cookies are used to:
- customise the content of the website to the user’s preferences and to optimise the use of the website; in particular, these files recognise the website user’s device and allow the display of a website tailored to their individual needs;
- produce statistics which help to understand the manner the website users navigate the web pages which facilitates the improvement of their structure and content;
- maintain the website user’s session (after logging in) in order to avoid the need to re-enter the login and password on every subpage.
We use two main types of cookies: session cookies and persistent cookies. Session cookies are temporary files stored on the user’s device until the user logs off, leaves the web page or exits software (web browser). Persistent cookies are stored on the user’s device for a period of time determined in the parameters of the cookies or until removed by the user.
During a visit to our website, data about the visit are automatically collected and they include in particular:
- IP address of the device;
- domain name;
- the type of browser;
- the type of operating system;
- the type of device making the connection;
- the time of connection to the website.
The data obtained by means of cookies by themselves do not allow the identification of the user.
You may change your cookie settings at any time, specifying the conditions for storing cookies and accessing your device by cookies. You may change these settings using your web browser or by using the service configuration. These settings may be changed in particular to disable automatic cookie activation in the settings of your web browser or to receive notifications each time cookies are stored on your device. Detailed information about enabling cookies and the related settings is available in the settings of the software (web browser). Please note that restricting the use of cookies may affect certain features available on the website.
Cookies may be deleted at any time by using the functions available in a web browser. The instructions for deleting cookies depend on the type of browser used.
YOUR RIGHTS
At any time you may request that your personal data be deleted from our database. Moreover, you may withdraw your consent to the processing of your data at any time. However, please note that the request of your personal data deletion or withdrawal of certain consents will prevent us from providing services to you. Where the data processed are not accurate or incomplete, you have the right to request their rectification or completion. At any time you may request that all your data processed by us be transferred to you, moreover you may request that your personal data be transferred to another data controller. You have the right to object to the processing of your personal data. The objection shall be lodged with the supervisory authority, i.e. the Chairman of Data Protection Office, ul. Stawki 2, 00-193 Warsaw.