This Privacy Policy and its Information Clauses describe the principles of handling personal data and using cookies and other technologies on www.mediarecovery.pl.

The website is administered by MEDIA sp. z o.o. with its office in Katowice 40-047, Kościuszki 65 street,  NIP: 634-23-41-032 KRS: 0000232909, Share capital: PLN 479,298. Contact to the Administrator: biuro@mediarecovery.pl.

Information clauses

1A. Information clause – contact form at https://mediarecovery.pl/kontakt/

Pursuant to Article 13 (1) and (2) of the General Data Protection Regulation of April 27, 2016 (GDPR) we inform you that:

1. The Controller of your personal data is MEDIA sp. z o.o. with its office in Katowice 40-047, Kościuszki 65 street, NIP: 634-23-41-032 KRS: 0000232909, share capital: PLN 479,298. Contact to the Controller: biuro@mediarecovery.pl
2. The IOD can be contacted via email at: biuro@mediarecovery.pl.
3. Your personal data are processed according to voluntary consent given by you in order to handle your inquiry via the contact form (according to Article 6(1)(a) GDPR) or the inquiry form according to Article 6(1)(b) GDPR.
4. Your data will be stored for proper handling of inquiries for 90 days from the date of submitting an inquiry via the form. After this period they will be deleted.
5. If, as a result of your inquiry, you use our services and, as a consequence, you are in correspondence relationship with one of our merchants, your data will be processed for the period of the ongoing cooperation, as well as for a further period resulting from generally applicable laws.
6. The Controller reserves the right to process your personal data collected in connection with the use of our services for a longer period than indicated in items 5 and 6, according to the provision of Article 6(1)(f) GDPR, in order to pursue its legitimate interests consisting in the assertion of claims against you and third parties in connection with the use of the Service, or to protect you against such claims, until such claims expire or become time-barred.
7. Your data are processed by service providers acting on behalf of the Controller, such as the hosting of the website where the consent form is located, and email. Some of our providers have offices outside the European Union, but all are required to use standards that comply with the requirements of the GDPR. Our infrastructure is secured in accordance with best practices and the website and web forms have SSL certificates.
8. Provision of data is voluntary, but failure to do so will mean that we will not be able to provide you with helpful information.
9. The Controller will allow you the right of access to the content of your personal data and the right to rectify, erase, and restrict processing, the right to data portability, the right to object to processing – under the terms of the law.
10. You have the right to withdraw the consent you have given for the processing of your personal data at any time, which will not affect the correctness of their processing by the Controller until you withdraw your consent.
11. The Controller will inform you of your right to lodge a complaint to the supervisory authority – the President of the Office for Personal Data Protection, if you consider that our processing of your personal data violates applicable regulations.
12. The Controller secures all data in its possession against unauthorized access by third parties. In relation to computer files, the Controller uses login protection methods, access levels and passwords, and encryption. Only authorized persons have access to documentation containing personal data and only to the necessary extent. 13. Your personal data will not be used for automated decision-making, including profiling.

1B. Information clause – registration for events organized by Mediarecovery

Pursuant to Article 13 (1) and (2) of the General Data Protection Regulation of April 27, 2016 (GDPR) we inform you that:

1. The Controller of your personal data provided to us is MEDIA sp. z o.o. with its office in Katowice 40-047, Kościuszki 65 street, NIP: 634-23-41-032 KRS: 0000232909, share capital: PLN 479,298.00 Contact to the Controller: biuro@mediarecovery.pl.
2. The IOD can be contacted via email at biuro@mediarecovery.pl.
3. Your personal data will be processed for the purpose of proper registration and participation in events organized by MEDIA sp. z o.o. – according to Article 6(1)(b)GDPR.
4. Your data will be processed for the period of registration and participation in the event, and after its completion only to the extent necessary to service the event. To the same extent, your data will be processed for periods resulting from generally applicable laws, including accounting and tax regulations.
5. The Controller reserves the right to process your personal data collected in connection with the use of our services for a period longer than the period indicated in item 4, according to the provision of Article 6(1)(f) GDPR, in order to pursue its legitimate interests consisting in the assertion of claims against you and third parties in connection with the use of the Service, as well as registration and participation in events organized by the Controller, or protection against such claims, until such claims expire or are time-barred.
6. If you leave marketing consent, your data will be processed according to the consent you have given – i.e. according to Article 6(1)(a) GDPR.
7. To the extent covered by your consent, your data will be processed until you withdraw your consent. Your personal data will be processed in order to provide you with information regarding products, services, training, workshops and other marketing activities in the field of IT security and computer forensics offered by the Controller. 8. Provision of data is voluntary but necessary to receive marketing information.
9. Your data are processed by service providers acting for the Controller, such as hosting of the website where the consent form or email address are provided. Some of our providers have offices outside of the European Union, but all are required to use standards that comply with the requirements of the GDPR. Our infrastructure is secured in accordance with best practices, and the website and web forms have SSL certificates.
10. The Controller will allow you the right of access to the content of your personal data and the right to rectify, erase, restrict processing, the right to data portability, the right to object to processing, the right to withdraw consent at any time, without affecting the lawfulness of processing carried out according to consent before its withdrawal – under the conditions laid down by law.
11. You have the right to withdraw the consent you have given for the processing of personal data at any time, which does not affect the correctness of their processing by the Controller until the withdrawal of consent.
12. The Controller will inform you of the right to lodge a complaint to the supervisory authority – the President of the Office for Personal Data Protection, if you consider that the processing of personal data by us violates applicable regulations.
13. The Controller secures all data in its possession against unauthorized access by third parties. In relation to computer files, the Controller uses login protection methods, access levels and passwords, and encryption. Only authorized persons have access to documentation containing personal data to the extent necessary.
14. Your personal data will not be used for automated decision-making, including profiling.

1C. Information clause – marketing activities of Mediarecovery

Pursuant to Article 13(1) and (2) and Article 14(1) and (2) of the General Data Protection Regulation of April 27, 2016 (GDPR), we inform you that:

1. The Controller of your personal data is MEDIA sp. z o.o. with its office in Katowice 40-047, Kościuszki 65 street, NIP: 634-23-41-032 KRS: 0000232909, share capital: PLN 479,298. Contact to the Controller: biuro@mediarecovery.pl.
2. The IOD can be contacted via email at biuro@mediarecovery.pl.
3. Your personal data have been obtained by MEDIA sp. z o. o. when you have provided them directly, or otherwise than from the data subject (we have provided detailed information in this regard in the email).
4. In the case of marketing consent, your personal data will be processed according to the consent you have given – i.e. according to Article 6(1)(a) GDPR, for purposes related to marketing activities concerning the Controller’s own products and services and those of MEDIA sp. z o.o.’s business partners.
5. In the case of obtaining data in a manner other than from the data subject, the data will be processed according to Article 6(1)(f) GDPR, for the purpose of pursuing the Controller’s legitimate interests consisting of marketing activities for the Controller’s own products and services and the business partners of MEDIA sp. z o. o.
6. The Controller will process the following categories of your personal data: name, email address, employing company, position, telephone number (if applicable).
7. In the case referred to in item 4, your personal data will be processed until you effectively withdraw your consent.
8. In the case referred to in item 5, your personal data will be processed for the duration of the Controller’s marketing campaign, but no longer than 3 months, or until you effectively lodge an objection.
9. Notwithstanding the provisions of clauses (7) and (8), the Controller reserves the right to process your personal data for periods longer than those indicated above according to Article 6(1)(f) GDPR, in order to pursue its legitimate interests related to the need to assert claims or protect against such claims that have arisen in connection with the Controller’s marketing activities, until they expire or are time-barred.
10. Your data are processed by service providers acting for the Controller, such as providers of electronic mail. Some of our providers have offices outside of the European Union, but all are required to use standards that comply with the requirements GDPR. Our infrastructure is secured in accordance with best practices.
11. The Controller will allow you the right of access to the content of your personal data and the right to rectification, erasure, restriction of processing, the right to data portability, the right to object to processing, the right to withdraw consent at any time, without affecting the lawfulness of the processing carried out according to consent before its withdrawal – under the terms of the law.
12. The Controller will inform you of the right to lodge a complaint to the supervisory authority – the President of the Office for Personal Data Protection, if you consider that our processing of your personal data violates applicable regulations.
13. The Controller secures all data in its possession against unauthorized access by third parties. In relation to computer files, the Controller uses login protection methods, access levels and passwords, and encryption. Only authorized persons have access to documentation containing personal data to the extent necessary.
14. Your personal data will not be used for automated decision-making, including profiling.

1D. Information clause – personal data provided by the Controller’s contractors

Pursuant to Article 14 (1) and (2) of the General Data Protection Regulation of April 27, 2016 (GDPR) we inform you that:

1. The Controller of your personal data is MEDIA sp. z o.o. with its office in Katowice 40-047, Kościuszki 65 street, NIP: 634-23-41-032 KRS: 0000232909, share capital: PLN 479,298. Contact to the Controller is located .
2. The IOD can be contacted via email at: biuro@mediarecovery.pl.
3. Your personal data have been provided to MEDIA sp. z o. o. by the Controller’s relevant contractor, with whom you are in an employment or civil law relationship, in connection with the conclusion or performance of the agreement concluded between MEDIA sp. z o.o. and this contractor.
4. The aforementioned data will be processed in order to pursue the legitimate interests of the Controller, related to the process of concluding, executing and monitoring the performance of the agreement between the Controller and the relevant contractor, i.e. according to Article 6(1)(f) GDPR, with regard to personal data of persons representing the contractor, its employees, collaborators and other persons whose personal data have been or will be provided to the Controller by the contractor for the aforementioned purposes.
5. Your personal data will be processed for the duration of the contract concluded between the Controller and the relevant contractor, and after its termination for the period required by generally applicable regulations.
6. Notwithstanding the provisions of clause 5, the Controller reserves the right to process your personal data according to Article 6(1)(f) GDPR in order to pursue its legitimate interests related to the need to assert claims or protect against such claims that have arisen in connection with the conclusion or performance of the contract concluded between the Controller and the relevant contractor, until they expire or become time-barred.
7. The Controller will process the following categories of your personal data: name, e-mail address, employing company, position, telephone number (if applicable).
8. Your data are processed by service providers acting for the Controller, such as providers of electronic mail. Some of our suppliers have offices outside the European Union, but all are required to use standards that comply with the requirements GDPR. Our infrastructure is secured in accordance with best practices.
9. The Controller will allow you the right of access to the content of your personal data, as well as the right to rectification, erasure, and restriction of processing, the right to data portability, and the right to object to processing – under the terms of the law.
10. The Controller will inform you of the right to lodge a complaint to the supervisory authority – the President of the Office for Personal Data Protection, if you consider that the processing of your personal data by us violates applicable regulations.
11. The Controller secures all data in its possession against unauthorized access by third parties. In relation to computer files, the Controller uses login protection methods, access levels and passwords, and encryption. Only authorized persons have access to documentation containing personal data and only to the necessary extent. 12. Your personal data will not be used for automated decision-making, including profiling.

Collection of data about the User

The Controller hereby informs the User that it uses the following technologies to track the User’s activities on the website for statistical, marketing and UX purposes:

  • Facebook Pixel – for the purpose of managing Facebook ads, checking user actions between the landing page and the company’s Facebook company profile, and conducting remarketing activities.
  • Google Analytics tracking code – to analyze website statistics, content readability and collect anonymized data on users visiting the website.
  • Google Adwords code – to implement, as well as optimize online advertising activities.
  • Google LLC – YouTube files are embedded within the website, which contain embedded Google LLC code that counts user interactions with the embedded content.
  • Hotjar code – in order to improve the performance of the website including better matching of the searched content to the user’s preferences.
  • The processing of the aforementioned data is carried out according to the provision of Article 6(1)(f) GDPR, in order to pursue the legitimate interest of the Controller, i.e. for statistical, marketing and UX purposes.
  • The data collected in this way will be stored for a maximum period of 5 years.

Cookies

  • The Controller automatically collects information contained in cookies. Cookies are text files that are stored on the website user’s end device. They are intended for the use of the website. First of all, they contain the name of the website/subpage, its unique number, the time of storage on the end device.
  • The Controller stores cookies on the User’s end device and then accesses the information contained therein for statistical purposes, for marketing purposes (remarketing) and to ensure proper operation of the website.
  • The Controller hereby informs the User that most browsers are set by default to accept the storage of cookies on the end device. However, it is possible to configure the browser in such a way that it prevents cookies from being stored on the User’s end device. Failure to make modifications in this regard is tantamount to acceptance of the cookie collection rules used by the Controller on this website (Page with currently available Google Analytics blocking tools (https://tools.google.com/dlpage/gaoptout/). In the case of blocking cookies, the User’s use of the website may be impaired.
  • The Controller hereby indicates that cookies can be deleted by the User, in order to do so, the User should go to the browser settings and clear the browsing data including cookies.
  • The processing of data collected with the use of cookies referred to above takes place in connection with the granting of consent, based on the provision of Article 6(1)(a) GDPR. The consent granted by the User may be withdrawn at any time, provided that this will not affect the processing occurring before its withdrawal. • Data collected in this way will be stored for a maximum of 5 years.

Server logs

  • We would like to inform you that the use of the www.mediarecovery.pl website involves sending queries to the server on which the website is stored.
  • Each query directed to the server is recorded in the server logs. The logs include, among others, the User’s IP address, the date and time of the server, information about the Internet browser and the operating system used by the User.
  • Logs are saved and stored on the server.
  • The data stored in the server logs are not associated with specific individuals using the website and are not used by the Controller to identify the User.
  • The server logs are only auxiliary material used to administer the website, and their contents are not disclosed to anyone except those authorized to administer the server.
  • The processing of the aforementioned data is carried out with regard to the log data according to the provision of Article 6(1)(f) GDPR, i.e. for the purpose of pursuing the Controller’s legitimate interest, which includes administering the website and conducting statistics.
  • The collected logs are stored for a maximum period of 5 years.