Privacy and cookies policy
By using the Service or the services provided by Smartstock Sp. z o.o. solutions you entrust us with your personal information. We realize the importance of respecting your right to privacy, which is why we ensure that the data we access is only processed to the extent necessary to use our services, and is fully inaccessible to unauthorized parties.
This document contains information about what you can expect when you share your data with us.
By reading the content below, you will learn, among other things. about:
- Why we process your personal data
- for what purpose we do it
- whether providing data is necessary
- how long we keep your data
- Whether there are other recipients of your personal data
- what rights you have
The processes related to the collection and processing of all data are aimed at guaranteeing you a sense of full security and the legality of processing at a level appropriate to the applicable Polish data protection law, including Regulation 2016/679 of the European Parliament and of the Council of April 27, 2016. on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC - That is, the so-called. RODO.
Personal Data Administrator
The entity that decides the purposes and uses of your data (i.e. the controller of your data in accordance with the provisions of the RODO) is Smartstock Sp. z o.o. of Poznań, entered in the Register of Entrepreneurs of the National Court Register kept by the District Court Poznań - Nowe Miasto and Wilda in Poznań, VIII Economic Department of the National Court Register under number: 0000802331.
Have questions? Contact us:
- Or traditionally at: Królowej Jadwigi 43, 61-817 Poznań
We are conscientious about protecting the data concerning you and are constantly developing our security systems, applications and processes. We also use the highest standards to support the maintenance of a robust information security management system.
What data do we process?
We process only the data that you have provided to us and mark as required. Most of the personal data we process is provided to us directly because of one of the following reasons:
- you are our customer or a user of the solutions we provide
- we serve as a processor of the customer who is the controller of your data and the data has been made available to us within the scope of the cooperation binding us with the customer
- you filed a complaint or inquiry with us
- you have submitted a request for information to us
- you participated in an event organized by us
- you represent your organization
In connection with the use of Social Networks, we will also process: .
• user's name (including profile name) and
• Data to which we have gained access after your consent
depending on its privacy settings, or data sent by the user via a contact form as part of a marketing campaign conducted on a given social network (e.g. Linkedin Lead Gen Forms), including but not limited to: phone number and other contact information provided or made public by the user, and data such as interests, declared location, comments, likes, demographics, image, photos, videos, social networks and connections, and
• other information provided by the user in the content of published comments.
The data indicated above we always collect from you.
Users' personal data is also processed in a manner not attributable to Us by the operator of the respective social network on which Our Social Networks are posted. For information on the scope of the data to be acquired, the principles and legal basis for their processing, as well as retention periods, please see
• LinkedIn https://www.linkedin.com/legal/privacy-policy?_l=pl_PL
Basics of processing
Whenever we process your personal data, we must have what is known as a "legal basis". The legal basis comes directly from the law (RODO), below are the ones we rely on:
- Consent: you have indicated to us that you consent to the processing of your data for a specific purpose, e.g. to receive marketing information
- Legitimate interests: only if the processing is necessary for us to conduct our business and does not interfere with your right to respect for your privacy, e.g. to improve the quality of our services
- Performance of the contract: we need to process your personal data in order to provide you with the services you have requested
- Legal claims: when the processing is necessary to establish, exercise or defend legal claims
- Zobowiązanie prawne: wtedy, gdy na gruncie bezwzględnie obowiązujących przepisów prawa jesteśmy zobowiązani do przetwarzania Twoich danych osobowych
How do we use the personal information we have?
We use the information we have only for the purpose for which it was collected. There are many ways and opportunities to use personal information about you, depending on how you interact with us. For example, if you do not provide us with your data, we will not be able to contact you in this way, or we will not be able to enable you to use the solutions or services we provide.
We may also want to tell you about our offers, ideas, products and services that we think may be of interest to you.
If we have your permission to do so or it is in our legitimate interest to do so, we may do so via app, SMS or other electronic communications. We don't send you marketing messages if you don't want us to, but if you use the services we provide, we may direct messages to you related to that service.
In connection with the use of Social Networks, we primarily process:
a) for the proper management of the profile including the publication of information about services
and products on social networks - based on Art. 6 paragraph. 1(f) RODO,
b) in order to conduct marketing of own products and services including providing Users with access to receive personalized marketing information, in particular about products, services and contests organized through the social network - on the basis of Art. 6 paragraph. 1(f) RODO,
In the case of the Linkedin website, users' personal data may also be processed to the extent of marketing campaigns conducted therein:
a) to establish a business relationship at the request of the user by means of a contact form provided as part of an ongoing marketing campaign of the company's own products and services resulting from pre-contractual activities - on the basis of Art. 6 paragraph. 1(b) RODO
(b) to respond to questions or complaints directed to Us via the social network - pursuant to Art. 6 paragraph. 1(f) of the RODO, and in specific situations also:
c) in order to defend or assert claims arising from or related to the use of social networks by Users, established business relationships - based on the provision of Article. 6 paragraph. 1(f) RODO.
Who can have access to your data?
In addition to Us, a number of entities may have access to your data. They may be service providers we work with who help us provide the products and services you expect from us or support us in our business. These entities process personal data on our behalf and must meet high security standards. We share only the information that allows them to provide us with services or facilitate the provision of services to you.
In some circumstances, we may also be legally obliged to share information about you - for example, by court order, law or decision of a public authority. In each case, we make sure we have a legitimate basis for sharing your information and document our decisions.
Transfer of data to the so-called. third country.
In terms of fulfilling the processing purposes described above, as a general rule, we do not transfer your personal data outside the European Economic Area (EEA). Whenever your data may go outside the EOG we will inform you.
How long do we retain your data?
We will retain your data only for the period of time strictly defined and necessary to fulfill the purposes of processing and in accordance with relevant regulations. We never keep personal data longer than necessary. However, in some cases, we are required to keep personal data for up to 6 years after the end of the relationship due to legal limitation periods or applicable laws such as taxation.
Is there an obligation to provide data?
Providing the data is necessary to complete the order placed, provide the service or send the requested information.
In order to view the content of the Website, you are not required to provide any data.
Your rights related to processing
Under data protection laws, you have specific rights against the processing of your personal data.
Right to access
You have the right to find out if and how we use or store your personal information - known as "personal information". right to access. By exercising this right, you can also ask us for a copy of your data.
Right of rectification
You can question the accuracy of the data we process and ask us to correct it. This is the so-called "right of correction." If your data is incomplete, you can also ask us to complete it, for example, by adding new information.
The right to delete data
You can ask us to delete your data, and in some circumstances we must do so. This entitlement is also known as the so-called. "the right to be forgotten." This right is not absolute and applies, under the following circumstances when:
- we no longer need your data
- You initially gave your consent to the processing, but have now withdrawn it
- you objected to the use of your data
- we have processed your data unlawfully
We may deny your right to "be forgotten" in the following circumstances:
- When we are legally obliged to store your data
- storing data is necessary to establish, exercise or defend legal claims
Right to limit processing
You have the right to restrict how we use your data, especially if you are concerned about the veracity of the data or how it is used. If necessary, you can also direct a request to delete certain information about you. This right is closely related to your rights to challenge the accuracy of your data and the ability to object to its use.
Right to object to processing
Under certain circumstances, you have the right to object to the processing (use) of your data. If your objection is valid, we must stop using your data for the purpose for which it was originally processed, unless we are able to provide reasons justifying the continued use of your data despite the objections directed.
You have the absolute right to object to the use of your data for direct marketing purposes. In this case, if you object we will absolutely stop using your data for this purpose.
Right to data portability
You have the right to obtain your personal data in an accessible and computer-readable manner, e.g. as a csv file. You also have the right to ask us to transfer your data to another entity - we will do so if the transfer is, as the RODO says "technically feasible". This right applies only to the information you have provided to us, and the processing is done electronically.
Right to withdraw consent
If your data is processed on the basis of the consent you have given, you can additionally exercise the right to revoke it at any, any time - revocation, however, does not affect the compatibility of the processing before it was carried out.
The right to file a complaint with the supervisory authority
We work to high standards when it comes to processing your personal data.
If you have questions or concerns, please contact us and we will respond.
If you remain dissatisfied with the content of the response or the exercise of your right, you may file a complaint with the President of the Personal Data Protection Authority about the way we process your personal data.
Exercise of your rights
You can request the exercise of your rights verbally, in writing or electronically. If you give us your request verbally, we recommend that you also send it in writing or in an email to ensure a clear trail of correspondence. This will also provide us with clear evidence of your actions and allow us to respond according to the content of your expectations as soon as possible.
We do not charge for the exercise of your rights, and we aim to provide information within no more than one month - if we find that we need more time we will let you know.
Cookies are used for the following purposes:
- provision of the Service
- facilitate the use of the Website
- later identification when reconnecting to the device on which they were stored
- creating statistics that help to understand how users use the site, which allows to improve its structure and content
- maintaining the session of the Service User (after logging in), thanks to which the User does not have to re-enter his/her login and password on each sub-page of the Service;
Types of Cookies
We use the following types of cookies within the services:
- "session" - which are stored on the user's terminal equipment until the user leaves the website or switches off the web browser
- "permanent" - stored on the terminal device for a specified period of time
in the parameters of cookies or until they are deleted by the user
- "performance" - enabling the collection of information about how the websites are used
- "functional" - allowing to remember settings selected by the user
and personalization of the user interface
- "own" - posted by the Service
- "external" - coming from a site external to the Service
Managing browser settings
Web browsing software ie. Internet browser, usually by default, allows the storage of cookies on the end device. You can make changes to the settings in this regard.
Your web browser allows you to delete cookies. It is also possible to automatically block cookies. For details, please refer to the help or documentation of the web browser you are using.
Information about certain user behaviors is subject to logging at the server layer. This data is used exclusively for the administration of the Website and to ensure the most efficient operation of the hosting services provided.
The resources viewed are identified by URLs. In addition, the record may be subject to:
- timing of the inquiry
- response sending time
- the name of the client's station - identification carried out by the http protocol
- information about errors that occurred during the execution of http transactions
- URL address of the page previously visited by the user (referer link) - in case the access to the Site was through a link, information about the user's browser
- IP address information.
The above data are not associated with specific browsers. The above data is used only for server administration purposes.