Privacy Policy
PRIVACY POLICY
§1.
General provisions
- This privacy policy applies to the rules for the processing of personal data processed as part of the use of the collection of websites located in the domain of motopodrozni.pl ("Service").
- The administrator of the personal data processed on the Website is Motopodrozni.pl spółka z o.o. with its registered office at ul. Okrężna 32A, 87-700 Stawki, registered in the Register of Entrepreneurs of the National Court Register kept by the District Court in Bydgoszcz under the number 0000727110, entered in the Register of Tour Operators and Entrepreneurs Facilitating the Purchase of Related Tourist Services kept by the Marshall of the Kujawsko-Pomorskie Province under the number 340, having NIP 5621809114 and REGON 369936856, with the share capital of PLN 5,000, e-mail address: admin@motopodrozni.pl, phone: +48 512 818 380 (hereinafter referred to as "Administrator").
- The Administrator can be contacted in writing at the registered office address indicated above or at the e-mail address: admin@motopodrozni.pl.
- The Administrator shall comply with the principles of application of appropriate technical and organizational measures set forth in Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC ("RODO".), including, in particular, those relating to the adequate protection of personal data against unlawful access, modification or destruction of data by unauthorized persons.
- In matters not covered by this Privacy Policy, the relevant provisions of the Terms of Service available at: motopodrozni.pl/regulations. Any terms capitalized and not defined in the Privacy Policy shall have the meaning given to them in the Terms of Service.
- The Administrator reserves the right to change this Privacy Policy at any time, in particular due to a change in the functionality of the Service or a change in applicable laws.
§2.
Categories, purposes and grounds for processing
- The Administrator will process the following categories of data of users who use the Website ("Users"):
- data related to contracts concluded and bookings made, such as name, contact details, travel details, payment and transaction information;
- data associated with the account on the Website name, surname, contact details, login details;
- information about Users' use of the Website, such as IP address, end devices, website traffic data.
- The personal data provided by Users will be processed for the following purposes and on the following grounds:
- for purposes related to the conclusion and performance of contracts concluded through the Service and making reservations, or to take action at the User's request prior to concluding a contract (Article 6(b) RODO);
- for the purpose of communicating with Users and responding to messages received from Users, e.g. from contact forms available on the Service, which constitutes the Administrator's legitimate interest (Article 6(f) RODO),
- for purposes related to the User's use of the Service, operation of the account on the Service, provision of technical support, i.e. for the purpose of executing the contract for the use of the Service or to take action at the User's request prior to the conclusion of the contract (Article 6(1)(b) RODO),
- for the purpose of fulfilling the Administrator's legal obligations, in particular for accounting and tax purposes, in connection with possible inspections or inquiries, legal proceedings, etc. (Article 6(1)(c) RODO);
- in the case of receiving data from another User, which may be the case if the data are processed for the purpose of fulfilling a reservation made by a User (more people on a single reservation), which constitutes a legitimate interest of the Administrator (Article 6(1)(f) RODO),
- for the purpose of possible establishment, investigation or defense against claims, as well as to ensure the security of traffic and services, and to prevent fraud and abuse, which constitutes the Administrator's legitimate interest (Article 6(1)(f) RODO),
- for the purpose of offering the Administrator's products and services, which constitutes the Administrator's legitimate interest in the form of direct marketing opportunities (Article 6(1)(f) RODO),
- for archival and evidentiary purposes to secure information in the event of a legal need to prove facts, including fulfillment of accountability obligations under the RODO, which is a legitimate interest of the Administrator (Article 6(1)(f) of the RODO),
- in other cases, where provision is made for consent to the processing of personal data, the data will be processed to the extent and for the purpose expressed in the content of the consent (Article 6(1)(a) RODO). If the User has consented to receive marketing communications to his/her e-mail address and telephone number, the legal basis will also be Article 10 of the Act of July 18, 2002 on the provision of electronic services and Article 172 of the Act of July 16, 2004. - Telecommunications Law.
- Provision of personal data is voluntary, but refusal to provide it will make it impossible to make a reservation, use the functionalities of the Website or receive a response to an inquiry sent.
§3.
Users' rights
- Each User is entitled to:
- access to their data and receive a copy of it,
- rectify (correct) your data,
- Deletion of data, if permitted under the RODO,
- limitation of data processing, to the extent permitted by the RODO,
- object to the processing of data processed for the purposes of the legitimate interests of the Administrator or a third party, including direct marketing, and when the processing is necessary for the Administrator to perform a task carried out in the public interest or for the exercise of public authority entrusted to the Administrator,
- Data portability under the terms of the RODO,
- lodge a complaint to a supervisory authority - if the User believes that the Administrator processes his/her data unlawfully, he/she may lodge a complaint to the President of the Office for Personal Data Protection,
- withdrawal of consent to process personal data - at any time the User has the right to withdraw consent to process such personal data that the Administrator processes on the basis of the User's consent; withdrawal of consent will not affect the lawfulness of processing that was performed on the basis of consent before its withdrawal.
§4.
Data retention period
- Personal data will be kept for the period necessary to fulfill the purposes for which they were collected, i.e.:
- for the performance of contracts and bookings for a period of time in accordance with the law (until the expiration of the time limits for the assertion of claims and the expiration of the periods prescribed by law for the storage of accounting documents),
- in the event of use of the Service, as well as after the User's termination of use of the Service for a period of time in accordance with the law (until the expiration of the time limits for the assertion of claims and until the expiration of the periods prescribed by law for the retention of accounting documents),
- in the case of data processed on the basis of the User's consent - until the withdrawal of the consent, with the proviso that if the User withdraws the consent or deletes the data in the Service, the Administrator may continue to process such data that are necessary for the performance of previously concluded agreements,
- where personal data will be processed for the purpose of pursuing the legitimate interests of the Controller or a third party referred to in this Privacy Policy, for a period of time until such interests are fulfilled or an objection to such processing is raised, unless a situation arises where the RODO permits further processing,
- in the performance of a legal obligation incumbent on the Administrator for the period and to the extent required by law, and thereafter for the period resulting from the law or for the performance of the Administrator's legitimate interests, including the safeguarding and assertion of potential claims.
§5.
Recipients of data
- Users' personal data may be accessed:
- Insurance companies, airlines, hotels, tour operators and other entities cooperating in the execution of contracts concluded with Users, which may be separate data controllers in this regard,
- Entities in the implementation of payment processes available on the Website - payment operators, which may be separate data controllers in this regard,
- Service providers supplying the Administrator with technical and organizational solutions, in particular, entities providing services in the area of IT, hosting, marketing, analytics,
- Accounting offices, tax consultants, legal aid providers,
- competent state authorities, based on the applicable laws.
- The Administrator will not transfer or authorize the transfer of personal data outside the European Economic Area, except to entities for which the necessary measures will be taken to ensure that the transfer is in compliance with the RODO. The measures in question may include, in particular, the transfer of personal data to a recipient in a country that, in accordance with a decision of the European Commission, provides adequate protection of personal data, or the transfer of personal data will take place subject to the appropriate safeguards referred to in Article 46 of the RODO.
§6.
Cookies Policy
- The Website may use cookies (so-called "cookies") comprising computer data, in particular text files, which are stored on the User's terminal equipment. Cookies may be used by the Administrator as well as third parties who may be separate administrators in this regard.
- There are basically two types of cookies used on the Website, i.e. "session" cookies, which are temporary files that are stored in the User's terminal equipment until the User logs out, leaves the Website or shuts down the software (proper web browser), and "permanent" cookies - which are files stored in the User's terminal equipment for the time specified in the parameters of cookies or until they are deleted by the User.
- The following types of cookies may be used on the Website:
- "necessary" cookies to enable the use of services available on the Website, such as authentication cookies used for services that require authentication on the Website;
- cookies used for security purposes, e.g. used to detect abuse of authentication on the Website;
- "functional" cookies, which allow "remembering" the User's selected settings and personalizing the User's interface, e.g. with regard to the chosen language or region of origin of the User, font size, appearance of the website, etc;
- "advertising" cookies, allowing to provide Users with advertising content more tailored to their interests;
- "performance" cookies, which allow you to collect information about how you use the Website's websites.
- Users can change their cookie settings at any time by changing their web browser settings. These settings can be changed, in particular, in such a way as to block the automatic handling of cookies or inform about their placement on the User's device each time. Detailed information on the possibility and methods of using cookies is available in the settings of your software (web browser), e.g. on the following pages:
- Firefox: http://support.mozilla.org/pl/kb/ciasteczka,
- Internet Explorer: https://support.microsoft.com/pl-pl/topic/usuwanie-plik%C3%B3w-cookie-i-zarz%C4%85dzanie-nimi-168dab11-0753-043d-7c16-ede5947fc64d,
- Chrome: http://support.google.com/chrome/bin/answer.py?hl=pl&answer=95647,
- Opera: http://help.opera.com/Linux/12.10/pl/cookies.html,
- Safari: http://support.apple.com/kb/HT1677?viewlocale=pl_PL&locale=pl_PL
§7.
Final provisions
- This privacy policy is effective as of 13.06.2021