.png)
.png)
.png)
Privacy Policy
1. Personal data administrator
The personal data administrator is:
ISPIK Sp. z o.o.
Al. Prymasa Tysiąclecia 46
01-242 Warsaw
E-mail address: biuro@ispik.eu
Website address: https://ispik.eu
2. The purpose of processing personal data
Your personal data is processed only for the purposes of scheduling a visit, providing a service and creating a history of treatments in our company. We only process your contact details such as name and surname, telephone number and notes regarding the services performed for you for which you have consented.
3. Legal basis for data processing
The legal basis for data processing is: Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), in particular Article 6 of that Regulation establishing general principles of data processing compliance.
4. Recipients of data
The recipients of your personal data are authorized persons employed in ISPIK Sp. z o.o. solely for the purpose of efficient implementation of the services we provide.
Data processing in third countries
ISPIK Sp. z o.o. does not transfer personal data to third countries or international organizations.
5. Data storage periods
In the case of personal data collection based on consent (legal basis: Art. 6 sec. 1 lit. a or f GDPR), your personal data are stored from the moment you give your consent to the processing of the data covered by it (also during the performance of the contract) until the request to withdraw this consent is fulfilled.
6. Customer's rights related to the processing of personal data
The customer has the right to request access to the content of their personal data, their rectification, deletion, restriction of processing. Additionally, the customer has the right to object to the processing of data and the right to transfer data. The implementation of the rights listed in this paragraph is carried out in accordance with the provisions of the General Data Protection Regulation (GDPR) - based on the definitions and mechanisms described in this regulation.
7. The right to lodge a complaint
The customer has the right to lodge a complaint with the supervisory authority under the principles set out in the general regulation on data protection, in particular under art. 77 of this regulation. In Poland, the supervisory authority since 25 May 2018 is the Office for Personal Data Protection.
8. Description of the security measures used in processing
• Access to personal data is only available after the employee logs in with a login and password that is changed every 30 days.
• After leaving the computer where personal data is displayed, the employee logs out or closes the program.
• All of our company computers have up-to-date software and anti-malware programs installed.
• Due to the location of the computer monitor, unauthorized persons do not have the ability to view the personal data of persons displayed on the monitor.
The full text of the European General Data Protection Regulation (GDPR) can be found at: