Last updated August, 2021
Administrator- DiveInData; ul. Zwycięska 45 building 3 apartment 3.4 53-033 Wrocław,
GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC.
Website – website run by the Administrator at: https://diveindata.com
User – any natural person visiting the Website or using one or more services or functionalities described in the Policy.
2. Data processing
In connection with the User's use of the Website, the Administrator shall collect data to the extent necessary to provide individual services. The detailed rules and purposes of processing personal data collected during the use of the Website by the User are described below.
3. Purposes and legal grounds for data processing
Personal data of all Users using the Website (including IP address or other identifiers and information collected via cookies) shall be processed by the Administrator:
- in order to provide electronic services in the scope of making the content collected on the Website available to the Users – then the legal basis for processing shall be the necessity of processing to perform the agreement (Article 6 par. 1 letter b of GDPR);
- in order to possibly establish and pursue claims or defend against them – the legal basis for processing shall be the legitimate interest of the Administrator (Article 6 par. 1 letter f of GDPR) consisting in the protection of his rights.
The User's activity on the Website, including User’s personal data, shall be recorded in system logs (a special computer program used to store a chronological record containing information about events and activities related to the IT system used to provide services by the Administrator). The information collected in the logs shall be processed primarily for purposes related to the provision of services. The Administrator shall also process it for technical and administrative purposes, for the purposes of ensuring the security of the IT system and managing this system, as well as for analytical and statistical purposes – in this respect, the legal basis for the processing shall be the legitimate interest of the Administrator (Article 6 par. 1 letter f of GDPR).
The Administrator's website uses "cookies". Failure to change the browser settings on the Reader's side shall be tantamount to consenting to their use. These are short text information saved on a computer, phone, tablet or other User's device. They can be read by the Administrator, as well as by systems belonging to other entities whose services are used (such as Google). Cookies usually contain the name of the website they come from, the storage time on the end device and a unique number. More information on cookies can be found at www.allaboutcookies.org.
Cookies shall be used for the following purposes: maintaining the security of services and preventing fraud, facilitating website performance, registering visits for marketing and statistical purposes, using social functions, supporting website personalization (e.g. saving language settings). Cookies may also be used and posted by partners cooperating with the Administrator – then they shall be subject to cookie policies or privacy policies of the entities that publish them.
The Administrator shall reserve the right to use Google Tag Manager for marketing purposes. This shall be related to the use of Google cookies, for example Google Ads codes.
In case of using Google Chrome, the instructions can be found here – https://support.google.com/chrome/answer/95647?hl=enIn case of using Mozilla Firefox, the instructions can be found here – https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computerIn case of using Safari, the instructions can be found here – https://support.apple.com/kb/ph21411?locale=pl_PLIn case of using Microsoft Edge, instructions can be found here – https://docs.microsoft.com/en-us/microsoft-edge/devtools-guide/debugger/cookiesIn the case of using Internet Explorer, the Administrator suggests to change the tool to one of the above, and the instructions can be found here – https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage- cookies
5. Processing of the User’s data
Due to the fact that some entities cooperating with the Administrator are based outside the European Union, and therefore in the scope of the provisions of the GDPR, they are treated as the so-called third countries. the Administrator shall ensure that the data is transferred to entities from the United States that use standard contractual clauses.
For Google Inc. – providing Google Analytics solution used to monitor website traffic. The collected data shall make it impossible to identify a specific person, and more information about the privacy standards of the tool shall be available at the link www.google.com/intl/pl/policies/privacy/partners/. In addition, by using the following link: https://tools.google.com/dlpage/gaoptout, it shall be possible to disable the activity measured by Google Analytics.Thus, it shall guarantee compliance with standards analogous to the Regulation in the field of personal data protection, and the Administrator's use of their technology when processing personal data shall be lawful.
6. The period of personal data processing
The period of data processing by the Administrator shall depend on the type of service provided and the purpose of processing. As a rule, data shall be processed for the duration of the service or the performance of the order, until the consent is withdrawn or an effective objection to data processing is raised in cases where the legal basis for data processing is the Administrator's legitimate interest.
Data processing period may be extended if the processing is necessary to establish and assert any claims or defend against them, and after that time only if and to the extent that it will be required by law. After the expiry of the processing period, the data shall be irreversibly deleted or anonymized.
7. Users’s rights
The User shall be entitled to:
-access to the content of data and to demand their rectification,
-object to processing of data,
-lodge a complaint to the supervisory body – the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw.
To the extent that the User's data is processed on the basis of consent, the consent can be withdrawn at any time by contacting the Administrator.
The User shall have the right to object to processing of data for marketing purposes, if the processing takes place in connection with the Administrator's legitimate interest, as well as for reasons related to the specific situation of the User in other cases where the legal basis for data processing is the Administrator's legitimate interest (e.g. in connection with the implementation of analytical and statistical purposes).
8. Data recipients
In connection with the provision of services, the personal data will be disclosed to external entities, including in particular suppliers responsible for the operation of IT systems and entities related to the Administrator.
The Administrator shall reserve the right to disclose selected information about the User to the competent authorities or third parties, which submit a request for such information based on an appropriate legal basis and in accordance with the provisions of applicable law.
Contact with the Administrator shall be possible at the e-mail address: firstname.lastname@example.org or in writing to the address of the Administrator’s registered office.
The Policy shall be verified on an ongoing basis and updated if necessary. The current version of the Policy was adopted and shall be effecitve from August 2021.