The security of our customers’ personal data is very important to us, and we strive to maintain the highest standards.
1. Who is the administrator?
The administrator of your personal data is A8 Architektura Piotr Lewandowski with its registered office in Warsaw, ul. Osmańczyka 14/U1, NIP: 527 229 23 73. Contact e-mail: email@example.com.
2. What data do we process?
We process only the data that you have voluntarily provided to us through contact with our office or the data received from the companies cooperating with us, to whom you have provided this data in order to use design services. In particular, we process the following personal data: name, surname, contact telephone number, e-mail address, address of the real estate to which the services relate. In the case of concluding a contract with us, an additional PESEL number, ID card number or NIP number in relation to Clients-entrepreneurs.
On the website www.a8architektura.pl we show selected projects supplemented with photos of their implementation and references, if we receive them from you. The form of project presentation and references on our website is agreed with you each time.
We also use the Google Analytics tool on the website, which collects data on cookies. We need them for statistical purposes to check how often individual websites and their tabs are visited. We also use this data to optimize and develop the website. If you do not consent to the collection of data by Google Analytics, please download and install the plugin.
3. Sensitive data
We do not process any data of a sensitive nature (so-called “sensitive data”).
4. Purpose of data processing
Personal data will be processed:
– in order to provide a design or consulting service to the extent necessary to perform the contract;
– for the purpose of marketing own services and contacting you.
5. Data recipients
The recipients of your data may include District/County Offices and other administrative bodies in accordance with the Construction Law.
6. The basis for data processing
The legal basis for processing is the concluded agreement, voluntary consent, as well as the legitimate interest of the data controller regarding the transfer of data to cooperating businesses for the purpose of fulfilling your order, as well as for marketing our own services.
7. Data storage time
The personal data provided by you will be stored for the period necessary for the performance of the agreement, and additionally for a period resulting from the statute of limitations regulations, for the purpose of potential legal protection of the data controller. No later than one year after the expiration of this period, personal data will be permanently deleted from the information systems, and paper documents will be permanently destroyed.
8. What rights do you have regarding the processing of your data?
You have the right to access and rectify your personal data, as well as the right to erasure, restriction of processing, the right to data portability, the right to object, and the right to withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. You can also exercise the right to be forgotten, which entails the immediate deletion of your data. However, withdrawing consent for data processing during the term of an agreement may prevent us from fulfilling certain rights arising from the content of the agreement. Such a request will also not be effective regarding data necessary for the performance of the agreement or data that we are required to process in accordance with applicable laws.
You have the right to lodge a complaint with the President of the Personal Data Protection Office (PUODO) when you consider that the processing of your personal data violates the provisions of the General Data Protection Regulation of 27 April 2016 (GDPR).
10. Voluntary provision of data
Providing your personal data is a condition for entering into an agreement. The consequence of not providing personal data or withdrawing consent for their processing by us may result in the inability to provide design services.
Neither we nor any entity to whom the personal data provided by you will be entrusted uses profiling within the meaning of the GDPR or makes automated decisions based on profiling.
All data we have is secured against unauthorized access by third parties. In relation to computer files, we use cryptographic methods or access passwords. Only authorized persons have access to the application containing personal data and only to the extent necessary, and paper documents are stored in places physically protected against access by unauthorized third parties.
Last updated: 11.05.2019