In the context of Articles 13 and 14 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“RODO”), for the sake of your comfort and security, please read the information below.

1. The administrator of your personal data is Rhenus Data Office Polska Sp. z o. o. with its registered office in Nadarzyn, for which the District Court for the capital city of Warsaw in Warsaw keeps the registration files under KRS No. 0000012426, NIP 5213114482.

2. Rhenus Data Office Polska Sp. z o.o. has appointed a Data Protection Officer for the proper protection of personal data, who can be contacted at e-mail address:

3. Furthermore, the Administrator can also be contacted in writing at the following address: Rhenus Data Office Polska Sp, z o. o., al. Katowicka 66, 05-830 Nadarzyn, with the note “Personal Data” and by telephone at 0 801-013-014.

4. Your personal data may be processed as indicated below:

– pursuant to Article 6(1)(f) RODO, i.e. on the basis of a separate consent granted by you in each case for specifically defined purposes – until the purpose is achieved or until the consent granted by you is withdrawn,

– on the basis of Article 6(1)(b) of the DPA, for the purpose of concluding an agreement, taking steps to conclude an agreement and to the extent necessary for performance of the agreement – until such time as these purposes are fulfilled,

– on the basis of Article 6(1)(c) of the DPA, in order to fulfil the Administrator’s obligations arising from legal regulations, such as, among others, accounting, archiving and tax obligations, as well as obligations towards courts and law enforcement authorities – until these purposes are fulfilled

– on the basis of Article 6(1)(f) RODO, in order to:

– enable the Administrator to contact the persons whose data are being processed, respond to complaints or questions asked – until the purposes in question are realised or an effective, reasoned objection is raised against further data processing,

– enable the Administrator to assert or defend against possible claims – until the purposes in question are achieved, the period for which the claims are barred expires or the Administrator raises an effective, reasoned objection to further data processing

– enable the Administrator to verify persons authorised to represent contractors, including with regard to the performance of a contract – until the purposes in question are achieved or an effective, reasoned objection is raised against further data processing,

– on the basis of Article 9(2)(f) RODO in order to enable the investigation or defence against possible claims – until the realization of the said objectives, the expiry of limitation periods for claims or the lodging of an effective, well-founded objection to further data processing.

5. Your personal data will not be processed for automated decision-making or profiled for this purpose.

6. Your data may be processed as follows:

– name and surname,
– PESEL – in case there is a need to verify your person,
– telephone number indicated for contact,
– correspondence address,
– e-mail address,
– name of the company on behalf of which you are acting,
– your job title.

7. Recipients of your data may be:

– entities entitled to obtain your personal data on the basis of legal provisions, including but not limited to tax offices, courts, police,
– authorised employees of the Administrator,
– entities processing personal data on the basis of entrustment agreements concluded with the Administrator, including such entities as companies operating in IT sector, providing security services, courier services, consulting,
– other entities cooperating with the Administrator, providing services among others in the field of debt collection, legal advice, postal services.

8. The Administrator does not disclose your personal data to countries outside the European Economic Area or to international organisations.

9. All external entities that process your personal data are obliged to ensure data security and comply with data protection obligations.

10. To the extent provided by law, you have:

– the right to access the content of your personal data – the right to obtain information on the processing of your personal data,
– the right to rectify your personal data – the right to have inaccurate data corrected or incomplete data completed
– the right to erasure of personal data, the so called “right to be forgotten” – the entitlement to have your data erased, among others, when the processing is no longer necessary for any of the purposes for which the data was collected
– the right to restrict the processing of personal data – the right to demand that the operations performed upon personal data be restricted, with the exception of the operations to which the data subject has given his or her consent, and that the data be stored – until the reasons for the restriction of processing cease to exist
– the right to data portability – the right to request the transfer of personal data in a machine-readable format to the extent that the data are processed on the basis of a contract concluded or consent given,
– the right to lodge a complaint to the supervisory authority – the right to lodge a complaint in case the processing of personal data violates the regulations in the field of personal data protection to the President of the Office for Personal Data Protection, to the address 2 Stawki Street, 00-193 Warsaw,
– the right to withdraw at any time your consent to the processing of personal data – with regard to personal data which are processed on the basis of your consent. However, withdrawal of the consent shall not affect the legality of the processing which was performed on the basis of the consent given before its withdrawal. A declaration of withdrawal of consent to the processing of personal data must be made in writing or electronically to the addresses indicated in points 2 and 3 of this clause.
– the right to object to the processing of personal data – with regard to data processed pursuant to Article 6(1)(f) RODO. In case of your objection, the Administrator shall cease to process your personal data for those purposes, unless the Administrator can demonstrate the existence of valid, legitimate grounds for further processing of your personal data which override the interests of the person who lodged the objection or constitute a basis for the establishment, assertion or defence of claims.

11. Your data may be collected from the following sources:

– from you directly,
– from a contracting party who has provided the Administrator with the data of his representatives or contact persons,
– using publicly available information, in particular the National Court Register or the Central Register and Information on Business Activity.

12. Providing your personal data is voluntary, however, failure to provide it may result in the impossibility to conclude an agreement or take certain actions aimed at its execution, including contacting you in order to execute it.