INFORMATION ON THE PROCESSING OF PERSONAL DATA
According to Article 13 (1) and (2) of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons concerning the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (Official Journal of the EU L. No. 119, p. 1), hereinafter “GDPR”, we inform you:
WHO IS CARRYING OUT THE PROCESSING? WHO ARE WE?
iCode Trust sp. z o.o., based at 24D/7 Bukowińska Street, 00-634 Warsaw is the administrator of your personal data. Contact Us at[email protected]
You can contact our Data Protection Officer anytime via the e-mail address [email protected] or via snail mail at the Administrator’s registered office address indicated above with the notation “To the Data Protection Officer”.
WHAT KINDS OF YOUR DATA DO WE PROCESS?
We process the data you provided us: name, surname, phone number and e-mail address. In addition, we also collect other data (e.g., Analytics on our website traffic). Still, we do so in such a way that it is not possible to uniquely link it to a specific person.
WHY DO WE PROCESS YOUR DATA, AND WHAT IS THE LEGAL BASIS OF PROCESSING?
Depending on how you provided us with data, we process it:
- if you provided us with data by entering into a contract for a course – we process your data to allow you to participate in the purchased training, i.e., based on Article 6(1)(b) of the GDPR, providing this personal data is a condition for entering into the contract;
- if you agreed to receive information from us about our new offers and promotions – we will process the data to provide you with this information, that is, based on Article 6(1)(a) GDPR (based on your consent), providing this personal data is not mandatory. However, the lack of this data will prevent us from providing you with information;
- if you provided us with data by ordering our newsletter, a free lesson, requesting a consultant, signing up for a free webinar, or taking a test – we process your data so that we can contact you (call you back, send you a newsletter, let you in on a webinar, talk about your impressions, and offer you a course most suited to your needs, i.e., based on Article 6(1)(a) of the GDPR (based on your consent).
Remember that you can revoke your consent given to us at any time – just send an e-mail to: [email protected] or click on the automatic unsubscribe link at the bottom of our e-mails.
HOW LONG DO WE PROCESS DATA?
We process personal data for the following periods:
- if you are our student – we will delete your data for 3 years after your access to our platform ends;
- if you have given us permission to process your data for marketing purposes – we will delete your data as soon as we are notified that you are withdrawing your consent.
TO WHOM DO WE SHARE YOUR DATA?
We do not share your personal data with any other entities that might offer you unwanted services or send you spam. On the other hand, we pass them on to other entities to whom we outsource activities that involve processing personal data or entities we may be required to disclose your data by law. Therefore, we may transfer your personal data to:
- entities that provide banking services, including those handling electronic payments;
- service providers that supply us with technical, IT and organisational solutions, electronic mail, enabling us to conduct our business, including the E-Learning Platform and the Electronic Services, provided through it;
- accounting, legal and consulting service providers that provide us with accounting, legal or consulting support;
- to our mentors and course leaders – so that they can contact you and support you during the course;
- state bodies authorised under applicable law, in particular, organisational units of the Prosecutor’s Office, the Police, the President of the Office for Personal Data Protection, the President of the Office for Competition and Consumer Protection or the President of the Office of Electronic Communications;
- we may also – at your express instruction, as long as you provide us with separate consent – provide your data to potential employers who offer employment opportunities to graduates of our courses;
Transfer of personal data to third countries, i.e., countries outside the European Economic Area.
Your data may be transferred only to third countries or entities for which a decision of the European Commission has established an adequate level of data protection. In the absence of a decision by the European Commission stating a proper level of protection as defined in Article 45(3) of the GDPR, your personal data may be transferred to a third country only based on: binding corporate rules, standard data protection clauses adopted by the European Commission, standard data protection clauses adopted by the Polish supervisory authority and approved by the Commission, an approved code of conduct or an approved certification mechanism (Article 46 of the GDPR).
In the absence of a decision by the European Commission finding an adequate level of protection as defined in Article 45(3) of the GDPR, or the lack of sufficient safeguards as defined in Article 46 of the RODO, including binding corporate rules, we will ask you to expressly consent to such transfer to a third country or international organisation, informing you of the prior risks involved in such transfer based on Article 49(1)(a) of the GDPR.
Your personal data may be subject to profiling to analyse or forecast your personal preferences and interests.
WHAT ARE YOUR RIGHTS?
In connection with our processing of your personal data, you have several rights:
- you have the right to access your data, correct it, rectify it, request its deletion, and obtain information about whether and how it is processed;
- you have the right to object to the processing of your personal data;
- you have the right to withdraw the consent you have given us to process your data at any time;
- if you decide that our processing of your personal data violates the law, you have the right to lodge a complaint with the competent supervisory authority – the President of the Office for Personal Data Protection.
For all matters, we are at your service; you can reach us at [email protected]