Privacy
Policy
This Privacy Policy contains aggregate information regarding the processing of personal data in the domain jammas.pl and jammas.eu.
- General Terms of Personal Data Processing
The controller of personal data is Jammas sp. z o.o., located in 05-092 Łomianki, ul. Pancerz 6, registered in the Entrepreneurs Register maintained by the District Court for the Capital City of Warsaw, XIV Commercial Division in Warsaw, under the KRS number 0000446431, with NIP: 9522122563 (hereinafter referred to as the “Data Controller”).
- The Data Controller can be contacted in writing at the address mentioned above or via email at: biuro@jammas.pl.
- The processing of personal data by the Data Controller is carried out in accordance with the law, in particular in accordance with Regulation (EU) 2016/679 of the European Parliament and Council of April 27, 2016, on the protection of individuals with regard to the processing of personal data and the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as “GDPR”).
- The processing concerns individuals and personal data depending on the purpose for which they are processed (the specific purposes of processing are defined in point II of the Privacy Policy). Data is provided voluntarily, and the consequence of not providing it may be the inability to fulfill a specific purpose, e.g., providing a response to a submitted inquiry. If there is a requirement to provide personal data, the Data Controller will inform about this directly.
- The Data Controller does not process personal data exclusively in an automated manner, including the use of profiling.
- Legal Basis and Period of Personal Data Processing
Each processing of personal data is carried out for specific, clear, and legally defined purposes, and the Data Controller ensures that personal data is not collected or processed in a manner inconsistent with the purposes outlined below.
- Performance of Contractual Obligations: Personal data is processed based on Article 6(1)(b) of the GDPR, specifically for:
- Providing services in accordance with the contract;
- Communicating regarding the provided service;
- Taking actions prior to the conclusion of a contract, particularly delivering an offer at the request of the data subject.
The period of data processing for this purpose corresponds to the duration of the contract.
- Establishing Commercial Relationships: This processing is based on Article 6(1)(f) of the GDPR, in connection with the legitimate interests of the Data Controller, such as responding to inquiries. Personal data will be processed until an effective objection to data processing is raised, but no longer than until the last day of the calendar year following the completion of 3 years from the date the Data Controller provided a response.
- Pursuing or Securing Potential Claims and Handling Complaints: This processing is based on Article 6(1)(f) of the GDPR, related to the legitimate interests of the Data Controller in protecting the Data Controller’s and data subjects’ rights.The period of data processing relates to the statute of limitations of the claim and begins when the Data Controller initiates the pursuit or defense of the claim.
- Marketing Activities for the Data Controller’s Own Services or Third Parties: This processing is based on Article 6(1)(f) of the GDPR, in connection with the legitimate interests of the Data Controller, including protecting the Data Controller’s interests and promoting services to foster cooperation. The period of processing personal data for marketing activities lasts until the consent for receiving communications or information is withdrawn in accordance with the provisions of the Act on Providing Services by Electronic Means or Telecommunications Law, or until an effective objection to the processing of data is raised, but no longer than […].
- Fulfillment of tax and accounting obligations is carried out based on Article 6(1)(c) of the GDPR, in connection with the applicable tax and accounting regulations. The period of data processing for this purpose corresponds to the duration of the legal obligation, as defined by the applicable legal provisions..
- The rights of the data subjects
A data subject whose personal data is processed by the Data Controller, if the legally specified conditions are met, has the right to:
- Access the content of their data and obtain a copy,
- Rectification,
- Request erasure,
- Restriction of processing,
- Data portability,
- Object, for reasons related to their particular situation, to the processing of data based on the legitimate interest of the Data Controller,
- Object to processing based on the legitimate interest of the Data Controller for marketing purposes,
- Lodge a complaint with the supervisory authority if they believe that the processing of personal data by the Data Controller violates applicable law (address: President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw),
- Withdraw consent, if processing is based on consent (the withdrawal of consent does not affect the lawfulness of the processing carried out on the basis of consent before its withdrawal).
- Recipients of Personal Data
- Personal data may be transferred to entities authorized to receive it under applicable law, including the competent judicial authorities.
- Personal data may also be transferred to trusted recipients such as: carriers and postal service providers, accounting service providers, entities providing legal services, partners providing technical services (developing and maintaining IT systems and websites, providing software or systems), and debt collection companies.
- The Data Controller does not transfer personal data outside the European Economic Area (EEA) or to international organizations. / The Data Controller transfers personal data outside the European Economic Area (EEA) or to international organizations. Transfers outside the EEA are carried out based on a decision regarding the appropriate level of protection made by the European Commission or based on standard contractual clauses in accordance with a European Commission decision, or on another legal basis, such as the explicit consent of the data subject. Detailed information about the appropriate or relevant safeguards and how to obtain a copy of the safeguards or where they are made available is available from the Data Controller, who can be contacted as specified in Section I.2 of this Policy.
- Cookies
- General Information
- The Data Controller uses cookies or similar technologies (hereinafter collectively referred to as “cookies”) which are understood as computer data, particularly text files stored on the end devices of individuals browsing the websites.
- As part of using cookies, the Data Controller may process data about the user’s device, its location, activities performed on the website (e.g., visit duration), and other data depending on the applied cookie (e.g., interest in a selected advertisement).
- Cookies Used on the Websites jammas.pl and jammas.eu
- The Data Controller uses cookies – depending on their storage duration – “session” and “persistent” cookies. Session cookies are those that remain on the user’s device until they leave the website or log out, whereas persistent cookies remain for a specified period (indicated in the settings) or until manually deleted.
- The Data Controller uses cookies for the following purposes:
- Necessary cookies – enabling the website to function. This category cannot be disabled due to the proper functioning of the site.
- Statistical cookies – allowing the monitoring of user traffic on the site and verifying the choices made, including the number of visits.
- Marketing cookies – used in displaying ads and tailoring them to the user’s preferences. This customization is based on analyzing the behaviors of individual users on the website. The analysis may also be linked to behaviors on other websites, depending on the cookie provider.
- Functional cookies – enabling the remembering of choices made on the site, for example: preferred language, content layout, and the region where the user is located.
- The Data Controller uses both first-party cookies and third-party cookies. First-party cookies are sent directly by the website, while third-party cookies are created by external entities and administered by those entities.
- Managing Cookies
- All cookies, except for necessary ones, require the user’s consent before they are applied. The user makes a choice regarding the cookies used, and until consent is given, cookies are blocked. At any time, the user can change the cookie settings on the Data Controller’s website by withdrawing consent or expressing opposition to cookies that are not necessary.
- Cookie settings can also be changed directly in the browser being used. The user can manage cookies at the browser level by setting notifications for each instance of cookie placement on the device or blocking their automatic saving. Depending on the browser, the configuration can be done according to the information given below:
- Microsoft Edge https://privacy.microsoft.com/pl-pl/privacystatement
- Chromehttps://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=pl
- Opera https://www.opera.com/help/tutorials/security/cookie/
- Mozilla Firefox https://support.mozilla.org/pl/kb/blokowanie-ciasteczek
- Safari https://support.apple.com/pl-pl/HT201265
- If you restrict cookies, some of the functionalities may not work properly.