Your personal data will be processed for the following purposes:

1. to perform the Contract, including conducting ongoing correspondence, documenting arrangements, monitoring the quality of services provided, and handling complaints or claims – pursuant to Article 6(1)(b) GDPR;
2. to comply with legal obligations under applicable laws, in particular those relating to anti-money laundering and counter-terrorist financing, transaction security (including identification, verification, or assessment and monitoring of business relationships), as well as obligations under tax regulations and the Accounting Act – pursuant to Article 6(1)(c) GDPR in conjunction with relevant legal provisions;
3. to establish, pursue, or defend against potential claims, should such claims arise – based on the controller’s legitimate interest in safeguarding its rights (Article 6(1)(f) GDPR).

The controller processes the following personal data: your name, surname, job title, and business contact details.

Your personal data may be shared with: entities authorized under applicable laws, the controller’s contractors, entities processing data on behalf of the controller to support its day-to-day business operations (subcontractors, suppliers, providers of external systems). Such entities process personal data on the basis of a contract with the controller and only under the controller’s instructions.

As a rule, your personal data will be processed and stored on servers located in the European Union, and transfers outside the EEA are not planned. However, if necessary for the performance of the Contract, such transfers may occur. In such cases, transfers will be carried out in accordance with the mechanisms set out in Chapter 5 of the GDPR, with appropriate standards and safeguards in place.

Your personal data will be processed for the duration of the business relationship and for as long as necessary to fulfill all related obligations and rights. Applicable laws may require the controller to retain your data for a longer period.

In relation to the processing of your personal data, you have the right to:

1. access your personal data and request rectification;
2. request the erasure of your data, under the conditions provided in Article 17 GDPR;
3. request restriction of processing, under the conditions provided in Article 18 GDPR;
4. object to processing under the conditions set out in Article 21 GDPR.

If you believe that the processing of your personal data does not comply with applicable law, you have the right to lodge a complaint with the President of the Personal Data Protection Office.

Your personal data were obtained either from the entity you represent under the Contract or directly from you.

We do not make any decisions that significantly affect you through automated means, including profiling.