Privacy policy

PRIVACY POLICY

Principles of personal data processing

Grenevia SA of Katowice, Al. Roździeńskiego 1a presents a policy explaining the principles of application, collection and processing of personal data for the sake of security, respect and observance of your rights, with particular emphasis on the right to privacy.
When processing personal data, Grenevia SA complies with the following guidelines by fulfilling at least one condition for processing personal data.

Rules on personal data processing:

  1. “processed lawfully, fairly and transparently”
  2. “collected for specific, explicit and legitimate purposes and not further processed in a way incompatible with those purposes”,
  3. “adequate, relevant and limited to what is necessary for the purposes of minimising data”,
  4. “correct and updated as necessary.”
  5. “‘kept in a form which permits identification of the data subject for no longer than is necessary for the purposes for which the data are processed’,
  6. “processed in such a way as to ensure adequate security of personal data: protection against unauthorised or unlawful processing and accidental loss, destruction or damage by appropriate technical and organisational measures”.

Lawfulness of processing:

  1. the data subject has consented to the processing of his/her personal data for one or more specified purposes;
  2. processing is necessary for the performance of a contract to which the data subject is party or to take action at the request of the data subject prior to entering into a contract;
  3. processing is necessary to fulfil the legal obligation of the controller;
  4. processing is necessary in order to protect the vital interests of the data subject or of another individual;
  5. processing is necessary for the performance of a task carried out in the public interest or in the exercise of public authority vested in the controller;
  6. processing is necessary for the purposes of legitimate interests pursued by the controller or by a third party, except where the interests or fundamental rights and freedoms of the data subject requiring the protection of personal data, in particular where the data subject is a child, override those interests.

Data Controller

The controller of your personal data is Grenevia SA of Katowice, ul. Al. Roździeńskiego 1a, KRS no.: 0000048716, REGON no.: 270641528, NIP tax ID: 6340126246.

Data Protection Officer

They can be contacted at e-mail:  iod@famur.com.pl and in writing by sending correspondence to GRENEVIA SA ul. Armii Krajowej 51, 40-202 Katowice with the note “Data Protection Inspector”.
The Data Protection Officer can be contacted on all matters concerning the processing of your personal data.

 

Legal basis for data processing

  1. consent granted,
  2. contract performance,
  3. legal obligation of the controller,
  4. the necessity to achieve objectives resulting from legitimate interests pursued by the controller, e.g. protection of the property of an employer or client.

Automated decision making

Your personal data will not be processed automatically, including in the form of profiling.

Retention period of personal data

The period for which your personal data is stored depends on the purpose for which the data is processed. The period for which your personal data will be stored is calculated, based on the following criteria:
  1. legal provisions which may oblige the Grenevia GROUP to store data for a certain period of time,
  2. period necessary to protect the interests of the controller,
  3. period necessary to provide services by Grenevia GROUP,
  4. period for which the consent was given.

Data recipients

The recipients of your data may be:
  1. IT service providers,
  2. couriers,
  3. delivery companies,
  4. security companies,
  5. entities entitled to receive Personal Data under the law,
  6. other companies of the Grenevia GROUP on a joint control basis

Transfer of data outside the European Economic Area

Your personal data will not be transferred to a third country or international organisation.

Your rights in relation to data processing

You have the right to:
  1. access the content of your personal data,
  2. rectify your data (corrections, additions),
  3. restrict their processing or delete the data,
  4. transfer the personal data you have provided to us, i.e. receive this personal data in a structured, commonly used machine-readable format, you have the right to send this data to another controller; if technically possible, you have the right to request that the personal data be sent by us directly to another controller,
  5. object to further processing of your personal data.
You have the right to withdraw your consent at any time. The withdrawal of consent does not affect the lawfulness of the processing of your data which was carried out on the basis of your consent before it was withdrawn.
In case of doubts concerning the correctness of processing of your personal data by Grenevia SA, you have the right to lodge a complaint with the President of the Office for Personal Data Protection.

How we secure your personal data

The safeguards that have been applied to protect your data are in accordance with legal requirements and guarantee an appropriate level of data confidentiality.

Processing data in the social media

Grenevia SA has social media profiles and operates pages on the following social media (hereinafter: Operator/Operators):

Facebook

You Tube

Linkedin

Vimeo

Twitter

Instagram

TikTok

Grenevia SA has limited influence over the processing of personal data by Operators to the extent that Operators process such data as separate Controllers or Joint Controllers (e.g., management of users and shared information, joint control with Facebook).
In matters over which we have influence, we act within the available capabilities towards service in accordance with the Operator’s privacy policy.
The Operator operates the entire IT infrastructure of the service, has its own privacy policy and maintains contact with you (if you are a registered user of the service of a particular social network). In addition, the Operator is solely responsible for all issues related to your data on the user profile, to which we, as Grenevia SA, do not have access.
You can find additional information about the Operator’s data processing in the Operator’s privacy policy:
Facebookhttps://www.facebook.com/privacy/explanation
https://www.facebook.com/legal/terms/information_about_page_insights_data
https://www.facebook.com/legal/terms/page_controller_addendum
YouTubehttps://support.google.com/youtube/topic/2803240?hl=pl&ref_topic=6151248
Linkedinhttps://www.linkedin.com/legal/privacy-policy?_l=pl_PL
Vimeo: – https://vimeo.com/privacy
Twitter / X : https://twitter.com/en/privacy
Instagram: https://privacycenter.instagram.com/policy
TikTok: https://www.tiktok.com/legal/page/row/privacy-policy/en
The purpose of processing data on our social media is to inform you about our products and events related to the Grenevia SA and our industry, to allow you to express your opinion on the content published and to communicate in relation to the topics with which you contact us.
The legal basis for processing your data is Article 6(1)(f) of Regulation (EU) 2016/679 of the European Parliament and of the Council.
The data you post on our social media sites, e.g., comments, videos, photos, links, public messages, etc., are published by the social media platform and are not used or processed by us for other purposes at any time.
We reserve the right to remove content on our social media profiles if necessary – it violates the law (including copyright and criminal law), obscene comments and/or attachments, also photos or videos, unapproved advertising information, etc. Content may also be removed due to updating a particular thread.
All of your published social media posts will remain on the timeline indefinitely, unless we remove them due to thread updates, violations of the law or of our guidelines.

Changes to our privacy policy

Grenevia SA reserves the right to change the privacy policy by publishing new content on the website. Once the change is made, the privacy policy will appear on the site with the new date.
Katowice, 02.03.2023 r.

Contact

Marzena Smolarska

Data Protection Inspector
Armii Krajowej 51
40-698 Katowice, Poland
iod@famur.com
T: 781550418

More:

Cookies policy
Information obligation