Eventy

Privacy policy

TOMASCON, LLC

General

Tomascon, Limited Liability Company, owner of the

Internet website www.tomascon.com.pl, aims at securing high level of privacy protection to satisfy as a minimum the standards set out in the existing regulations, in particular, in the Act of 18 July 2002 on Providing Services by Electronic Means (“Act on Providing Services by Electronic means”),  Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as GDPR), Act of 10 May 2018 on Protection of Personal Data (Personal Data Protection Act) as well as the Act of 16 July 2014 on Telecommunication Law (“Telecommunication Law”).

By using our services (hereinafter jointly referred to as “Services” or separately “Service”) i.e. the services provided by and through the website tomascon.com.pl (hereinafter “Website”) you furnish us with your information. It also happens that this information is provided to third parties operating in the environment of our services, and to the trusted partners we cooperate with directly or indirectly, largely in order to secure a high level of services and in the area of marketing activities (hereinafter “Trusted Partners”).

Privacy policy explains what data is collected, what is the purpose of collecting it and what it is used for. As this information is of high importance, we encourage you to familiarize yourselves with this document.

 

Who is your data administrator?

Your data administrator is Tomascon, LLC with its registered office in Warsaw at Racławicka Str. 146, 02-117 Warsaw, entered into the register of enterprises kept by the District Court for the capital city of Warsaw, 12th Commercial Division of the National Court Register, under KRS No. 0000375813, REGON 142790213, NIP 7010277971  (hereinafter “Administrator”).

 

Trusted Partners

The Administrator’s trusted partners are Google, Facebook, Instagram.

 

What data is processed?

We process the data you provide or leave while using our Services. The data we collect include all the information shared with us during registration and subsequent use of the Website, including primarily: first and last names, the address, the e-mail address, the phone number. This is the information you supply in the forms or windows available in Services, and the data you leave behind while using our services, e.g. the information left in cookies. The extent of data processing may vary from service to service – the relevant information can be found in your administration panel, or you can always consult our Personal Data Protection Officer (contact information below).

Personal Data Protection Officer and how to contact him

The Personal Data Protection Officer has been nominated to facilitate resolving data processing issues. The Officer can be contacted with regard to any matters related to personal data processing and exercising the rights connected with such data processing.  Please use the contact information provided below to get in touch with our DPO.

The address for correspondence is: Tomascon, spółka z ograniczoną odpowiedzialnością, ul. Racławicka  146, 02-117 Warszawa, e-mail: iod@tomascon.pl

Purpose of and legal bases for personal data processing

The legal bases for processing your personal data for the various purposes include:

a) for presenting our offer with you consent or in reply to your offer request (legal basis – GDPR Article 6, Section 1, Letter a);

b) for concluding a sales agreement in reply to your interest in our offer (GDPR Article 6, Section 1, Letter b);

c) for contacting through the contact form available on our web site (GDPR Article 6, Section 1, Letter a and f);

d) for analytics, i.e. for matching an offer request to your needs;

e) for optimizing our Services in response to your feedback information (GDPR Article 6, Section 1, Letter f);

 f) for direct marketing, including the analysis of past advertising campaigns;

g) for establishing, pursuing or protecting against possible claims, which is our legitimate interest (GDPR Article 6, Section 1, Letter f).

 

Is providing your data mandatory?

Providing your personal data is voluntarily, however, lack of data marked as mandatory will result in failure to render Services on your behalf.

 

Who will your personal data be transferred to?

To the extent necessary for Services to be rendered on your behalf, your data may be transferred to entities from which the Administrator commissions a data processing service, including IT services providers, marketing agencies, etc (however, such entities process data in compliance with an agreement with the Administrator, and solely when commissioned by the Administrator), as well as the entities which are entitled to obtain such data by law, e.g. law enforcement bodies upon a legitimate request (e.g. for the purposes of criminal proceedings).

 

What are your rights related to your personal data processing?

You have the following rights in connection with processing your personal data:

  1. the right to access your data, including obtaining a copy of your data,

b) the right to demand correcting your data,

c) the right to delete your data (in certain situations),

d) the right to lodge a complaint with the body supervising protection of personal data,

e) the right to limit the extent of your data processing.

If your data is processed on the base of your consent, you can also exercise the following rights:

f) the right to withdraw your consent to process your personal data to the extent to which it is processed on the base of such consent. The withdrawal will not affect the legitimacy of the processing performed prior to the withdrawal.

If your data is processed on the base of your consent or within a Service being rendered (the data is necessary for the service to be performed), you can additionally exercise the following rights:

g) the right to transfer your personal data, i.e. to receive your personal data in a structured, commonly used, machine readable format from the Administrator. You can transfer such data to another administrator.
In order to exercise the above rights, contact the Administrator or PDO (contact information above). The Administrator will remove your personal data within 10 days from receiving your notice.
 

Personal data processing within Facebook and Instagram profiles administration 

Your personal data may be processed by the Administrator when your activity in Facebook and Instagram portals occurs (including adding likes of the Administrator’s profile, comments, likes, etc).

The legal basis for this action is the administrator’s legitimate interest which is collecting, by means of the above-mentioned portals, the data related to the activities on the Administrator’s profile, the interests, the data for anonymous analysis of users groups and their interactions, and presenting marketing offers of the Administrator’s products and services (GDPR Article 6, Section 1, Letter f); as well as your consent arising from your activity on the Administrator’s portals Facebook and Instagram (in accordance with GDPR Article 6, Section 1, Letter a).

By means of the portals, the Administrator may receive the following data broken down into user categories: total number of entries, reactions to the posts, comments, male to female visitors ratio, source of the visit, information about which screen content is clicked, such as maps or contact information, the reach of the Administrator’s posts. 

Your activity on the Administrator’s Facebook and Instagram portals is purely voluntary, however, its occurrence is tantamount with personal data processing. The Administrator has no influence on creating and displaying analysis and cannot stop collecting and processing data for this purpose. If you want to restrict your connection with the Administrator’s Facebook and Instagram profiles, you can use the functions offered by the platform to stop following or subscribing the Administrator’s profile.

Apart from the above, Facebook and Instagram portals can use your data for their own purposes, in particular, for market research and advertising. Cookie can be stored on your computer which analyses your behaviour while visiting the websites. Other information,  including your computer and internet connection information may be collected and matched with your account. The platforms above may create your profile even when you are not logged in and do not have a registered account on the platform. Such profiles may be used to display targeted advertising on either platform.

Facebook and Instagram portals are provided by Facebook Ireland Ltd., 4 Grand Canal Square, Dublin, Ireland, with its mother company Facebook, Inc. 1601 Willow Road Menlo Park, California 94025.


Detailed information on how personal data is processed by Facebook has been provided in the documents regarding privacy policy accessible at

https://www.facebook.com/about/privacy/update.

Detailed information on how personal data is processed by Facebook has been provided in the documents regarding privacy policy accessible at https://help.instagram.com/519522125107875?helpref=page_content

 

Personal data processing connected with managing the Administrator’s profile on the LinkedIn portal

Your personal data may be processed by the Administrator if your activity on the LinkedIn Administrator’s panel occurs. Your use of LinkedIn buttons constitutes the Administrator’s legitimate interest (in accordance with GDPR Article 6, Section 1, Letter f) defined as an opportunity to exchange information about the Administrator’s services and products, and refine them.

The platform is provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. The company processes personal data of the users with permanent address in the EU, in the European Economic Area or Switzerland.
The mother company is LinkedIn Corporation, 1000 W. Maude Avenue Sunnyvale, CA 94085, USA which processes personal data of the users outside the countries mentioned above.  

When logged on to a LinkedIn account, LinkedIn may match user’s viewing habits with other information.

Beyond the above scope, the LinkedIn Privacy Policy accessible at  https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy is applicable.

 

Information on ”cookies”

The Administrator notifies the user that cookies are used.

What are „cookies”?

Cookies are blocks of data, in particular text files, stored on end users’ devices while browsing web sites. These files make it possible to recognize the user’s device and display a website relevant to the user’s preferences. Cookies usually contain the name of a website they come from, the time they have been stored on end user’s device and their unique number.

Cookies basically do not allow to identify natural persons, only the computer and web browser. 

However, due to the special attention we pay to protection of personal data, we take protection measures applicable to personal data with regard to cookies. Storing cookies in your web browser memory does not affect your software or devices in a negative way. The information stored in a cookie can only be retrieved by the server which has created it. 

Using cookies does not mean collecting confidential information. The very fact of storing cookies or accessing them does not alter any settings on your device.

Cookies are used for:

a) creating statistics which help understand the user browsing pattern, which results in improving websites structure and content;

b) (after logging in) keeping the User’s session active so that the User does not need to provide logging and password information for each subsequent subsite;

c) defining the user profile for displaying relevant material in ads networks, Google in particular.

The Administrator uses two basic types of cookies: session cookies and persistent cookies. Session cookies are temporary files which are stored on the end User device until the user logs out, leaves the website or quits the software (a web browser). Persistent cookies are stored on the end user’s device for a definite period as determined in the settings or until they are removed by the user.

The Administrator notifies the user that the software for browsing the internet content (web browser) by default allows to store cookies on the end user’s device. The user can alter the way cookies are used at any time. Majority of browsers offer the option to accept or reject all cookies, accept some types of cookies, or notify the user each time a website attempts to store cookies. The user can also easily remove cookies which have already been stored on the device by the browser. The cookies management and removal options vary from browser to browser. Blocking all cookies may result in disruptions or total inability to use some of the website functionalities. 

Additional information on cookies and other technologies can be found e.g. at the addresses:  www.wszystkoociasteczkach.plyouronlinechoices.com, or by looking up Help in the browser menu.

The website www.tomascon.com.pl offers links to access other websites. The Administrator has no influence on the privacy and cookies policies followed by other administrators, and may not be held liable for their policies.

Back to Top