{"id":1872,"date":"2025-12-20T23:52:14","date_gmt":"2025-12-20T22:52:14","guid":{"rendered":"https:\/\/innsoft.local\/polityka-prywatnosci\/"},"modified":"2026-04-23T08:54:21","modified_gmt":"2026-04-23T06:54:21","slug":"polityka-prywatnosci","status":"publish","type":"page","link":"https:\/\/innsoft.pl\/en\/polityka-prywatnosci\/","title":{"rendered":"Privacy Policy"},"content":{"rendered":"\n

Privacy Policy<\/span><\/h1>\n\n

1. Data Controller<\/span><\/h3>\n\n

The controller of personal data is INNSOFT Sp. z o.o., with its registered office in Warsaw (04-203) at ul. Murma\u0144ska 25, entered into the National Court Register under number 0000024387, NIP: 5210324183, REGON: 001317779, contact e-mail: daneosobowe@innsot.pl<\/mark> <\/a>(hereinafter: the Controller).For matters related to the processing of personal data, you may contact us at:e-mail: daneosobowe@innsot.pl<\/a><\/mark><\/p>\n\n

2. Contact Form<\/span><\/h3>\n\n

The Administrator processes data provided in the contact form, such as:<\/p>\n\n

    \n
  • full name,<\/span><\/li>\n\n\n\n
  • email address,<\/span><\/li>\n\n\n\n
  • phone number (if provided),<\/span><\/li>\n\n\n\n
  • message content,<\/span><\/li>\n\n\n\n
  • IP address.<\/span><\/li>\n<\/ul>\n\n

    Purpose of processing:<\/p>\n\n

      \n
    • responding to inquiries,<\/span><\/li>\n\n\n\n
    • managing correspondence,<\/span><\/li>\n\n\n\n
    • taking steps prior to entering into a contract.<\/span><\/li>\n<\/ul>\n\n

      Legal basis:<\/p>\n\n

        \n
      • Art. 6(1)(b) GDPR, <\/span><\/li>\n\n\n\n
      • Art. 6(1)(f) GDPR. <\/span><\/li>\n<\/ul>\n\n

        Data is stored for the duration of the correspondence and then for the period necessary to establish, pursue, or defend against claims.<\/p>\n\n

        3. Recruitment<\/span><\/h3>\n\n

        Application documents are sent directly to the Administrator’s email address.Data contained in CVs is processed:<\/p>\n\n

          \n
        • for the purpose of conducting current recruitment,<\/span><\/li>\n\n\n\n
        • if separate consent is given \u2013 also for the purpose of future recruitments.<\/span><\/li>\n<\/ul>\n\n

          Legal basis:<\/p>\n\n

            \n
          • Art. 6(1)(c) GDPR (data required by law), <\/span><\/li>\n\n\n\n
          • Art. 6(1)(a) GDPR (consent \u2013 additional data and future recruitments)bnej zgody \u2013 r\u00f3wnie\u017c w celu przysz\u0142ych rekrutacji. <\/span><\/li>\n<\/ul>\n\n

            Storage period:<\/p>\n\n

              \n
            • current recruitment \u2013 until the end of the recruitment process, and then for a period not longer than 12 months for the purpose of defending against potential claims,<\/span><\/li>\n\n\n\n
            • future recruitments \u2013 12 months or until consent is withdrawn.<\/span><\/li>\n<\/ul>\n\n

              4. Client Zone (service request system)<\/span><\/h3>\n\n

              As part of contract fulfillment, the Administrator provides access to a service request system (Redmine).<\/p>\n\n

              Processed data may include:<\/p>\n\n

                \n
              • user’s full name,<\/span><\/li>\n\n\n\n
              • business email address,<\/span><\/li>\n\n\n\n
              • data of the represented organization,<\/span><\/li>\n\n\n\n
              • the content of submissions and all communication related to their handling, including correspondence, comments, the history of the submission, and other information provided during its processing,<\/span><\/li>\n\n\n\n
              • technical data (IP address, session identifiers, system logs).<\/span><\/li>\n<\/ul>\n\n

                Purpose of processing:<\/p>\n\n

                  \n
                • contract performance,<\/span><\/li>\n\n\n\n
                • handling requests,<\/span><\/li>\n\n\n\n
                • ensuring IT system security,<\/span><\/li>\n\n\n\n
                • pursuing and defending claims.<\/span><\/li>\n<\/ul>\n\n

                  Legal basis:<\/p>\n\n

                    \n
                  • Art. 6(1)(b) GDPR, <\/span><\/li>\n\n\n\n
                  • Art. 6(1)(f) GDPR. <\/span><\/li>\n<\/ul>\n\n

                    Data related to the performance of the contract is stored for the duration of the contract, and after its termination for the period necessary to:<\/p>\n\n

                      \n
                    • establish, pursue, or defend against claims,<\/span><\/li>\n\n\n\n
                    • fulfill legal obligations,<\/span><\/li>\n\n\n\n
                    • ensure business continuity and the maintenance and development of IT services, including for analytical and statistical purposes \u2013 these analyses are conducted solely on the basis of technical data and do not include the content of submissions or clients\u2019 business data.<\/span><\/li>\n<\/ul>\n\n

                      The retention period may be extended accordingly if justified by the stated purposes.<\/p>\n\n

                      System logs and technical data processed for security purposes are stored for up to 12 months, unless further retention is necessary due to an ongoing investigation or a legal obligation.<\/p>\n\n

                      5. Cookies<\/span><\/h3>\n\n

                      The website uses cookies to:<\/p>\n\n

                        \n
                      • ensure proper website operation,<\/span><\/li>\n\n\n\n
                      • maintain user session in the Client Zone,<\/span><\/li>\n\n\n\n
                      • conduct basic statistics (if analytical tools are used).<\/span><\/li>\n<\/ul>\n\n

                        The user can change cookie settings in their web browser at any time.<\/p>\n\n

                        6. Social Media<\/span><\/h3>\n\n

                        The website contains links to the Administrator’s profiles on LinkedIn, YouTube, and Facebook.Clicking an icon redirects to an external service. The Administrator does not transfer users’ personal data to these entities directly through the mere use of the website. Data processing principles are defined by the separate privacy policies of these services. <\/p>\n\n

                        7. Data Recipients<\/span><\/h3>\n\n

                        Personal data may be transferred to entities supporting the Administrator in the scope of:<\/p>\n\n

                          \n
                        • hosting and IT infrastructure maintenance,<\/span><\/li>\n\n\n\n
                        • email service,<\/span><\/li>\n\n\n\n
                        • technical support,<\/span><\/li>\n\n\n\n
                        • accounting and legal services.<\/span><\/li>\n<\/ul>\n\n

                          Data is transferred only to the extent necessary to achieve the indicated purposes.<\/p>\n\n

                          8. Transfer of Data Outside the EEA<\/span><\/h3>\n\n

                          As a rule, personal data is not transferred outside the European Economic Area.When using providers outside the EEA, data is transferred with appropriate safeguards, in particular standard contractual clauses.<\/p>\n\n

                          9. Rights of Data Subjects<\/span><\/h3>\n\n

                          The data subject has the right to:<\/p>\n\n

                            \n
                          • access data,<\/span><\/li>\n\n\n\n
                          • rectify data,<\/span><\/li>\n\n\n\n
                          • erase data,<\/span><\/li>\n\n\n\n
                          • restrict processing,<\/span><\/li>\n\n\n\n
                          • object to processing,<\/span><\/li>\n\n\n\n
                          • data portability (to the extent provided by law),<\/span><\/li>\n\n\n\n
                          • withdraw consent at any time,<\/span><\/li>\n\n\n\n
                          • lodge a complaint with the President of the Personal Data Protection Office.<\/span><\/li>\n<\/ul>\n\n

                            10. Voluntariness of Data Provision<\/span><\/h3>\n\n

                            Providing data is voluntary, but in some cases it may be necessary for:<\/p>\n\n

                              \n
                            • responding to an inquiry,<\/span><\/li>\n\n\n\n
                            • participation in recruitment,<\/span><\/li>\n\n\n\n
                            • contract performance and access to the Client Zone.<\/span><\/li>\n<\/ul>\n\n

                              11. Changes to the Privacy Policy<\/span><\/h3>\n\n

                              The Administrator may update this Privacy Policy. The current version of the document is available on the website. <\/p>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":3,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"open","template":"page-content-1.php","meta":{"_acf_changed":false,"footnotes":""},"class_list":["post-1872","page","type-page","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/innsoft.pl\/en\/wp-json\/wp\/v2\/pages\/1872","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/innsoft.pl\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/innsoft.pl\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/innsoft.pl\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/innsoft.pl\/en\/wp-json\/wp\/v2\/comments?post=1872"}],"version-history":[{"count":5,"href":"https:\/\/innsoft.pl\/en\/wp-json\/wp\/v2\/pages\/1872\/revisions"}],"predecessor-version":[{"id":3325,"href":"https:\/\/innsoft.pl\/en\/wp-json\/wp\/v2\/pages\/1872\/revisions\/3325"}],"wp:attachment":[{"href":"https:\/\/innsoft.pl\/en\/wp-json\/wp\/v2\/media?parent=1872"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}