Part I. Definitions
Part II: Security
The Personal data controller declares that it uses technical and organisational means aimed at protecting the personal data entrusted in compliance with applicable legal regulations. In particular, the Service Provider declares that it has prepared this security policy and instruction on managing the IT system used for data processing. The Personal data controller declares that each person (e.g. full-time employee, persons providing services under a civil law agreement, other persons who work for the Service Provider) who will be allowed to process the personal data entrusted by the Service User will be obliged to keep these data in secret. That secret also covers any information concerning the manners in which the personal data entrusted for processing are protected. At the Service User's request, the Service Provider will provide a report confirming destruction of the data entrusted. Such a report will be delivered to the Service User within 14 calendar days of the day on which such a request was received by the Service Provider. The Service Provider reserves the right to make the data available to public administration offices and bodies authorised to process the data under the applicable regulations, e.g. law enforcement offices or courts. Transaction data, including personal data, provided by the client (Service User) during the payment are processed by Braintree, being a payment organisation, which intermediates in the process of making the payment.
Part III: Collection of personal data during visits on our website and cookies
If you use our website only for information purposes, i.e. you don’t register in the System or you don’t use the chat function, we collect only those personal data which are sent by your browser. We need the data we collect for technical reasons, in order to display our website correctly, as well as guarantee its stability and security. During visits on www.prbean.com we collect the following personal data: IP address Date and time of the visit Request content Access status/http response code Browser Language and version of the browser’s software Furthermore, apart from the above-mentioned data, cookies are saved on your computer when you use our website. Cookies cannot open any software or transfer viruses to your computer. Thanks to them the internet offer is more user-friendly and effective. Furthermore, apart from the above-mentioned data, cookies are saved on your computer when you use our website i.e. small text files stored in the computer's memory and attributed to the browser you use. Thanks to them the entity which sends cookies (in this case us) receives certain information. Cookies cannot open any software or transfer viruses to the User's computer. Thanks to the cookies used the Internet our offer is more user-friendly and effective. The Service Provider informs that cookies are used for the following purposes: adapting the Service's content to the User's preferences and optimisation of the way in which the websites are used. In particular, the files help recognise the User's device and properly display the website adapted to his individual needs keeping the User's session (if he is logged), which means that the User does not have to log on each subsite of the Service. creating statistics which are the basis for analysis how Users use websites research into the user's behaviour in the application, aimed at optimising the website and Service. The Service Provider informs that two types of cookies are used as part of the Service: Session cookies, i.e. temporary files which are stored on the User's device until logging out, leaving the site or turning off the internet browser. Persistent cookies, i.e. cookies which are stored on the User's device for the period of time set out in the cookies' parameters or until the User removes them. The Service Provider informs that the following types of cookies are used as part of the Service: cookies which enable using the services available as part of the Service, e.g. authenticating cookies which are used for services which require authentication as part of the Service. cookies whose aim is to ensure security, e.g. used for identifying authentication abuse as part of the Service. cookies which help collect information on the manner in which the website and Service are used. cookies which enable remembering the settings chosen by the User and User's interface personalisation, e.g. regarding the language chosen or region from which the user comes. cookies which help deliver to the Users advertising content which is better adapted to their interests (advertising cookies). The User needs to be aware of the fact that software for browsing websites (internet browser) very often allows storing cookies on the User's end device by default. Users may, at any time, change cookie settings. These settings may be changed, e.g. in such a way that they block automatic cookie handling in the internet browser's settings or inform each time they have been placed on the User's device. Detailed information on the possibilities and ways of managing cookies is available in the internet browser's settings. The Service Provider declares that limitations on using cookies may influence certain functionalities available on the Service websites. Cookies placed on the User's end device may be used by the advertisers and business partners which cooperate with the Service Provider.
Part IV: Processing of user’s personal data
The Service Provider is the controller of the personal data submitted by the Users upon registration in the Service. The Service Provider processes the following categories of data: names and surnames of entrepreneurs who conduct business activity; names and surnames of the Service User’s contact persons; e-mail addresses: and mobile telephone numbers of the persons indicated in clause 1.1. and 1.2. above, as well as their IP numbers and cookies data; The data indicated in section 1 above will be processed by the Service Provider only for the following purposes: connected with performance of the agreement on provision of electronic Services, i.e. in connection with provision of the services covered by the agreement on provision of the electronic services (including those connected with handling complaints, conducting statistics, analysis of the Service users’ behaviour), with consent - connected with direct marketing of own products and services. Marketing information concerning Service Provider’s products and services will be sent, until the Service User withdraws the marketing consent granted, or objects to processing of his personal data for the needs of the above-mentioned marketing, including profiling, to the extent to which the processing will be connected with the Service Provider’s direct marketing, on condition that consent is given - to the e-mail address indicated in the newsletter subscription form the Service Provider will transfer commercial information and send marketing content related to third parties. Data are provided on a voluntary basis, but processing of the personal data by the Service Provider for the purposes indicated in section 2.1. above is necessary to perform the agreement on provision of electronic Services. The data subject has the right to withdraw the consent at any time. However, the withdrawal of the consent does not affect the compliance with law of the processing which took place on the basis of the consent prior to its withdrawal. Withdrawal of the consent given for processing of personal data by the Service Provider may take place by submitting a declaration in any form, including electronic one to the Service Provider’s e-mail address, firstname.lastname@example.org, email@example.com. During the Service User’s registration in the System, the Service Provider makes available to him all information necessary in connection with gathering of personal data by the Service Provider, as well as the information necessary to ensure reliable and transparent processing. The Service Provider is the Controller of the personal data of the users who visit our website. If you want to browse our website, we collect only those data, sent to our server by your browser, which are necessary due to technical reasons, in order to display our website correctly, as well as guarantee its stability and security (the legal basis is Article 6 clause 1 sentence1 (f) of the GDPR). These are: IP address date and time of the inquiry request content (specific site) access status/http response code website being the request’s source browser, language and version of the browser’s software. Furthermore, apart from the above-mentioned data, cookies are saved on your computer when you use our website, i.e. small text files stored in the computer’s memory and attributed to the browser you use. Thanks to them the entity which sends cookies (in this case us) receives certain information. Cookies cannot open any software or transfer viruses to the User’s computer. Thanks to the cookies used the internet our offer is more user-friendly and effective. Software for browsing websites (internet browser) very often allows storing cookies on the User's end device by default. Users may, at any time, change cookie settings. These settings may be changed, e.g. in such a way that they block automatic cookie handling in the internet browser's settings or inform each time they have been placed on the User's device. Detailed information on the possibilities and ways of managing cookies is available in the internet browser's settings. The Service Provider declares that limitations on using cookies may influence certain functionalities available on the Service websites. Cookies placed on the User's end device may be used by the advertisers and business partners which cooperate with the Service Provider.
Part V: Processing of Contact Personal Data
The Service User is the controller of the personal data entered by the Service User or User in the process of using the Service's individual functionalities. The Service User, for the purposes connected with using the Service's functionalities, entrusts data processing to the Service Provider on the basis of the written agreement they enter into. The details of entering into agreements on entrusting personal data processing have been set out in the Rules for providing the Services https://prbean.com/terms-of-service. The agreement on entrusting the processing of personal data is entered into for a definite period of time, connected with the period during which the Services purchased by the Service User will be provided. Termination of the agreement on provision of the electronic Services made available as part of the System is tantamount to termination of the agreement on entrusting the data processing.
Part VI: Who we make your personal data available toon our behalf. They provide to us, among other things, support covering the Services’ certain functions, hosting services, client support (chat service), as well as services connected with diagnosing and solving problems in the Service, analysis of the traffic in the Service, analysis of the users’ behaviour on the website and in the Service, effectiveness of advertising campaigns. We send the personal data you provide us with both to entities established in the European Economic Area, and to entities in the United States of America which provide to us services connected with rendering the services by prbean.com. Those entities process your data on our behalf. The entities we cooperate with hold certificates of the Privacy Shield programme. The Privacy Shield operates on the basis of the Commission Implementing Decision (EU) 2016/1250 of 12 July 2016 pursuant to Directive 95/46/EC of the European Parliament and of the Council on the adequacy of the protection provided by the EU-U.S. Privacy Shield (notified under document C(2016) 4176).
Part VII: Rights connected with personal data processing
In connection with the fact that prbean.com processes your personal data, you have the right to request access to your data, to rectify, delete them or restrict processing thereof. You also have the right to object to processing of your personal data by prbean.com, and to move your personal data. Right to lodge a complaint Please be informed that in connection with processing of your personal data by prbean.com you have the right to lodge a complaint to the supervisory authority - the President of the Personal Data Protection Office. Right to object Please be informed that in the cases in which we process your personal data under Article 6 clause 1 (f), including profiling, you have the right to object to such processing of your personal data by prbean.com at any time - due to reasons connected with your special situation. As for our processing of your personal data for the needs of direct marketing, including profiling, you have the right to object to such processing of your personal data by prbean.com to the extent to which our processing of your personal data is connected with direct marketing. If you want to exercise the right to object we have informed you about, please write to us at the e-mail address: firstname.lastname@example.org. You can get in touch with us by traditional post by writing to the address: ul. Madalińskiego 71/1, Warszawa. Right to withdraw consent You have the right to withdraw consent for processing of personal data at any time. Processing of personal data by prbean.com is legal from the moment when the consent is given until the moment of its withdrawal, i.e. the moment when prbean.com receives such information. Once processing of data for the original purpose is completed, they will not be processed for any other purpose.