Privacy policy and cookies
This privacy policy specifies the principles related to collecting, processing and use of personal data. Data is collected by Kawczyński Logistics Sp. z o.o. with its main place of business registered at ul. Nakielska 7, 89-121 Ślesin, holding the following numbers: NIP 5581881423, REGON 525741980, KRS 0001044843, e-mail: firma@kawczynski.com.pl, phone number +48 52 385 76 84
1. Personal data is processed in accordance with the General Data Protection Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) – hereinafter referred to as “GDPR.”
2. You have the right to access your personal data, request their correction, deletion, restriction of processing, object to the processing of such personal data, and data portability.
3. When processing of personal data takes place based on your consent – you have the right to withdraw your consent anytime, informing us about it. Withdrawal of consent does not affect the lawfulness of the processing of data which was made on the basis of consent before its withdrawal.
4. You have the right to file a complaint with the President of the Office for Personal Data Protection.
Personal data contained in e-mail correspondence and contact form:
1. Processing is performed for the purpose of the legitimate interests pursued by the Administrator – i.e. keeping e-mail correspondence, pursuant to article 6 para. 1 letter f GDPR.
2. The following data are being processed: e-mail, name and surname and any other data that will be submitted by you in our e-mail correspondence.
3. Data can be stored on an external mail server. It also can be accessed by outside IT companies, in the scope of servicing and delivery of IT software and hardware. In addition, such data will not be disclosed (shared) to other third parties, apart from cases provided for in regulations that are currently in force.
4. Data can be transmitted to third countries – only when your e-mail service provider has a registered office or IT infrastructure outside the European Union. Data will not be transmitted to international organizations, unless such obligation will result from provisions of mandatory legislation.
5. Data will be stored for a period of 7 years – due to the binding tax regulations and statute of limitations for claims.
6. Provision of personal data is voluntary, however failing to communicate such data may prevent the Administrator from contacting a specific person by e-mail.
Personal data contained in invoices and other accounting documents:
1. Processing takes place in order to meet legal obligations by the Administrator (keeping accounting records) and exercise legitimate interests pursued by the Administrator (possible claiming of compensation or protection against claims), pursuant to article 6 para. 1 letters c and f GDPR.
2. The following data are being processed: name and address of seller and buyer, NIP numbers, possible data of the signer and other data placed on invoices and other accounting documents.
3. The Administrator can outsource processing of your personal data to outside accounting companies and law firms. Such data may also be accessed by outside IT companies, in the scope of servicing and delivery of IT software and hardware, as well as postal and overnight shipping services, concerning sending of correspondence. Your personal data, in the case of payment services, will be transmitted to banks. In all other cases, such data will not be disclosed (shared) to third parties, apart from cases provided for in regulations that are currently in force.
4. Data will not be transmitted to third countries or international organizations, unless such obligation will result from provisions of mandatory legislation.
5. Data will be stored for a period of 7 years – due to the binding tax regulations and statute of limitations for claims.
6. Data is acquired from you and from public registers (CEIDG, KRS). Providing of such data is necessary to fulfill accounting and tax related obligations.
Personal data contained in recruitment processes (CV, motivation letters):
1. Processing is necessary to meet legal obligations by the Administrator and takes place based on consent (in order to perform recruitment), pursuant to article 6 para. 1 letters a and c GDPR.
2. Provision of personal data is voluntary, not required by any regulations, however failing to communicate such data may prevent participation in recruitment process.
3. Personal data provided in your application is processed.
4. Such data may also be accessed by outside IT companies, in the scope of servicing and delivery of IT software and hardware. In all other cases, such data will not be disclosed (shared) to other third parties, apart from cases provided for in regulations that are currently in force.
5. Data will not be transmitted to third countries or international organizations.
6. Personal data will be stored during recruitment process and up to a year later, unless a candidate withdraws the consent given to processing of such data.
Personal data of drivers, carriers, loaders, unloaders, shippers, recipients and addressees of services in transportation and shipping processes:
1. Processing is necessary to meet legal obligations by the Administrator (business travel services, organization of activities related to transportation and shipping), pursuant to article 6 para. 1 letters b and f GDPR.
2. The following data are being processed: driver’s name and surname, his contact phone number, vehicle registration numbers, position and distance travelled, and other data related to transportation and shipping orders.
3. The Administrator can transmit data to customers and contracting parties, in the scope related to servicing of transportation and shipping orders (other transportation and shipping companies, loaders and unloaders, ferry carriers, hotels, etc.). Such data may be also accessed by outside IT companies, in the scope of servicing and delivery of IT software and hardware as well as outside accounting companies and law firms. In all other cases, such data will not be disclosed (shared) to other third parties, apart from cases provided for in regulations that are currently in force.
4. Some customers and contracting parties of the Administrator can have their registered offices outside European Union countries – then they can receive data of the mentioned persons in the scope and based on the principles specified in para. 3 above. In such case, art. 46 para. 2 letter c or d or art. 49 para. 1 letter b or c GDPR will apply. Data protection regulations that are in force in these countries may be less restrictive than UE regulations. In all other cases, such data will not be transmitted to third countries or international organizations.
5. Data will be stored for a period of up to 5 years – due to the binding tax regulations and statute of limitations for claims.
6. Data is acquired directly from principals, customers, contracting parties, drivers or from transportation and shipping companies cooperating with us.
7. Provision of personal data is voluntary, however when such data is necessary to conclude a contract, particularly related to providing of shipping services by the Administrator, failing to communicate them may prevent signing of a contract.
Personal data collected to handle reports filed by whistleblowers:
1. Processing is necessary to meet legal obligations by the Administrator, pursuant to article 6 para. 1 letter c GDPR, based on art. 8 para. 4 of the Act of 14 June 2024 on the Protection of Whistleblowers.
2. The following data are being processed: name and surname, position, e-mail, contact information and other data submitted by the whistleblower.
3. Such data can be disclosed to appropriate institutions when disclosure is a necessary and proportional obligation resulting from mandatory legislation in relation to formal investigation or legal proceedings, in order to guarantee the right of defense to the person subject to such proceedings. In all other cases, such data will not be disclosed (shared) to other third parties, apart from cases provided for in regulations that are currently in force.
4. Data will not be transmitted to third countries or international organizations.
5. Data will be stored for a period of 3 years after the end of the calendar year, in which an outside report was submitted to a public institution that is appropriate for follow-up actions or follow-up actions are completed, or after the end of proceedings initiated by these actions.
6. Provision of such data is voluntary, however when such data is necessary to file a violation by the whistleblower, failing to communicate them may result in a failure to process such complaint report.
Personal data collected within video surveillance:
1. Processing is necessary to meet legal obligations by the Administrator – to ensure safety of its employees and to protect property of the employer, pursuant to article 6 para. 1 letter f GDPR, in compliance with art. 222 of the Labor Code.
2. The following data are being processed: image of persons in the area under surveillance.
3. Data can be disclosed to appropriate services in an event of detecting crime or damaging property. In all other cases, such data will not be disclosed (shared) to other third parties, apart from cases provided for in regulations that are currently in force.
4. Data will not be transmitted to third countries or international organizations.
5. Data will be stored for a period of 3 months. In the case when security camera footage is used as evidence in legal proceedings or the employer found out that it can serve as evidence in legal proceedings, the mentioned period is extended until the final closing of court proceedings.
Personal data used for marketing purposes
1. Processing takes place based on the consent of the data subject (art. 6 para. 1 letter a GDPR), in accordance with art. 398 of the Act of 12 July 2024 on Electronic Communications Law. Based on art. 398 para. 2 of the Act of 12 July 2024 on Electronic Communications Law, the user consent before sending marketing content and commercial information can be expressed by sharing an e-mail.
2. Marketing content and commercial information can apply in particular to service provided, promotion, promotional events, loyalty programs and other marketing campaigns conducted by the Administrator. The Administrator communicates marketing content and commercial information to users with the use of:
- newsletter;
- e-mail;
- text messages;
- voice calls.
3. The following data are being processed: e-mail, name and surname, phone number, business name.
4. Data can be stored on an external mail server, can be transmitted to a company handling mailing or telecommunications service provider. Such data may be also accessed by outside IT companies, in the scope of servicing and delivery of IT software and hardware. In all other cases, such data will not be disclosed (shared) to other third parties, apart from cases provided for in regulations that are currently in force.
5. Data can be transmitted to third countries – only when your e-mail or telecommunications service provider has a registered office or IT infrastructure outside the European Union. Data will not be transmitted to international organizations, unless such obligation will result from provisions of mandatory legislation.
6. Data will be processed for marketing purposes until the withdrawal of the consent or an objection to receive marketing content and commercial information.
7. Provision of personal data is voluntary, however failing to communicate such data may prevent the Administrator from contacting a specific person.
Cookies:
1. In order to ensure the highest comfort of people spending time browsing our website, small text files known as cookies are recorded on your device. These files make possible adjustment of the service content to your needs and interests. Thanks to their recording on your device, website can be displayed in the way that is the most appropriate for a specific user.
2. When you visit our website for the first time, you can make the decision on giving cookie consent, having in mind that rejecting necessary cookies prevents users full access to our website.
3. The user can independently, anytime block or limit the possibility of recording cookies on one’s device; however, there is a risk that such action will impede the use of our website. Methods concerning configuration of cookie settings on the most popular browsers can be found at:
– Google Chrome
– Mozilla Firefox
– Microsoft Edge
4. We reserve the right to change cookies that are used currently on our website.
Summary:
1. All personal data processed by us are protected in accordance with GDPR requirements. We make all reasonable efforts to protect your personal data and secure them against third party actions.
2. We reserve the right to update and change this privacy policy by publication of its new version on this website.
3. Please do not hesitate to contact us in the case of any doubts and additional questions regarding protection of privacy.