INFORMATION CLAUSE
REGARDING THE PROCESSING OF PERSONAL DATA IN ELECTRONIC CORRESPONDENCE
The personal data controller of your personal data is SPS TAX&LAW Szkudlarek i Wspólnicy sp. k. with its registered seat in Wrocław, ul. Świdnicka 36/12, 50-068 Wrocław, KRS 0000537068 („Company”).
The Company has not appointed a data protection officer.
For all matters concerning the processing of personal data, you can contact:
– by email to: rodo@spslaw.pl
– by sending traditional correspondence to the Company’s address indicated above (please add the reference: “personal data”).
The company declares that it strictly complies with the applicable legal provisions and has implemented appropriate organizational and technical measures to prevent breaches of the security of personal data processed in the Company’s e-mail systems.
The source of personal data may be:
All personal data in electronic correspondence, in particular contact details about senders and recipients of e-mail, data automatically generated by e-mail systems and personal data contained in the content of the correspondence will be processed by the Company for the following purposes:
We would like to inform you that the Company processes personal data belonging to specific categories of data referred to in art. 9 GDPR (so-called sensitive data) as well as data on criminal records referred to in art. 10 GDPR. The Company applies appropriate security measures adapted to the data being processed.
The provisions of personal data in connection with the exchange of correspondence by electronic means is voluntary, but necessary to achieve the purposes for which digital communication is used.
As a rule, e-mail correspondence will be stored for a period of 6 years, counting from January 1 of the year following the year in which the exchange of correspondence took place. This period may be extended if the data are necessary in court proceedings or before a public administration body.
In the process of data processing in e-mail systems, the Company does not use automated decision making, including profiling.
The company may disclose personal data to the following third parties:
IT service providers – Provision of ICT services
Providers of specialized services – Entities providing marketing, consulting, auditing, etc. services
The company may transfer personal data to the third countries in particular to the Republic of Korea. The transfer of personal data to Korea is based on the decision of the European Commission of December 17, 2021, stating that the Republic of Korea ensures an adequate level of protection of these data.
In connection with the processing of your personal data, you have the right to:
To exercise the above-mentioned rights, you should contact the Company in writing (or by sending an e-mail and inform us which right and to what extent you want to exercise.
At the same time, we would like to inform you that in the cases indicated in the GDPR, the Company may refuse to implement some of the above-mentioned rights, in particular if:
If you claim that the personal data concerning you are being processed contrary to the applicable law, you have the right to lodge a complaint to the supervisory authority, i.e. the President of the Personal Data Protection Office (2 Stawki St., 00-193 Warszawa). Detailed information on the complaint procedure can be found on the website of this Office. However, before you officially lodge a complaint or take other legal steps, please contact us in order to clarify any doubts and/or objections regarding the processing of your personal data.