Privacy policy

Privacy policy

SkyDelay views data privacy as a fundamental component of doing business. This policy, together with our Terms and Conditions and Cookie Policy, sets out the approach that we, SkyDelay Sp. z.o.o., take to the collection and handling of any such information and applies to all websites and other services.

By using the SkyDelay Services you are deemed to agree to our use of your information in accordance with this policy. We encourage you take a few minutes to read through and contact us if you have any queries. In the event of any changes to our approach, we will update this policy and post the latest version on this page – please check back regularly to ensure you remain up to date.

We adhere to a minimal collection policy to only collect what we absolutely need to deliver the service.

General provisions

§ 1

The expressions used in the content of the Privacy Policy shall be understood:
  1. Personal data – any information relating to an identified or identifiable natural person whose identity can be determined, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his physical, physiological, mental, economic, cultural or social characteristics, excluding inFormation to identify a person, where this would involve excessive costs, time or effort;
  2. Personal data filing system – a structured set of data of a personal nature accessible according to specific criteria, regardless of whether the set is dispersed or functionally fragmented;
  3. Data processing – all activities carried out on personal data, such as collection, recording, storage, processing, modification, making available and deletion, and especially those carried out in information systems;
  4. Administrator of Personal Data – an entity dealing with the processing of personal data.
  5. Confidentiality– to provide access to information only to authorised persons;
  6. Integrity – data integrity, ensuring that data is not altered, added or deleted in an unauthorised way;
  7. Accessibility – ensuring that authorised persons have access to information only when justified.
  8. Service – an Internet service made available by SkyDelay Sp. z o. o. with its registered office in Gdynia enabling Users to use the services provided by SkyDelay Sp. z o. o.
  9. SkyDelay Sp. z o. o. – SkyDelay limited liability company with its registered office in Gdynia, ul. Mściwoja 10/6a, 81-361 Gdynia, Poland registered in the Register of Entrepreneurs kept by the District Court Gdańsk-Północ in Gdańsk, Poland 8th Commercial Division of the National Court Register under KRS number 0000813284, NIP number: 5862350634, REGON number: 384854368 and share capital of PLN 5,000 paid up in full.
  10. User – any natural person having full legal capacity, legal person or organisational unit having legal capacity, which uses the Service, in any way receiving data or placing them in the Service. The Service User may also be a natural person who does not have full legal capacity, acting by means of a statutory representative.
  11. Device – the User’s electronic device through which he gains access to the Service.
  12. Consent to the processing of personal data – the voluntary, concrete, conscious and unequivocal expression of intent by the data subject in the form of a statement or clear affirmative action – consents to the processing of personal data concerning him/her.

§ 2

  1. The privacy policy specifies:
    1. data of the Personal Data Administrator;
    2. the type of Data to be processed, the scope and method of processing;
    3. principles of the protection of personal data processed;
    4. the rights of persons whose personal data are processed.
  2. The basis for the development of this document and its implementation in the Company are in particular the following legal regulations:
    1. the Personal Data Protection Act of 29 August 1997 (consolidated text of 28 June 2016, Journal of Laws 2016, item 922, as amended);
    2. Regulation of the Minister of the Interior and Administration of 29 April 2004 on documentation of personal data processing and technical and organisational conditions to be met by IT systems used for personal data processing (Journal of Laws No. 100, item 1024);
    3. Regulation of the Minister of Administration and Digitisation of 11 May 2015 on the manner of proenforcement of information security of the register of data sets by the administrator (Journal of Laws of 2015 No. 0 item 719);
    4. Regulation of the Minister of Administration and Digitisation of 11 May 2015 on the procedure and manner of performing tasks in order to ensure compliance with the provisions on personal data protection by the administrator of information security (Journal of Laws 2015 No. 0 item 745 as amended).
    5. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereafter referred to as „GDPR”).
  3. . The Data Controller shall ensure that the activities carried out in connection with the Processing and Protection of Personal Data comply with this policy and the relevant legal provisions.
  4. Personal data provided in the contact form available on the Website are treated as confidential and are not visible to unauthorised persons.
  5. . The Data Controller shall provide the persons whose Personal Data is to be processed with the opportunity to acquaint themselves with the content of this policy before the transfer of such data.

Data controller and Processing of personal data

§ 3

  1. The Data Administrator is SkyDelay limited liability company with its registered office in Gdynia, ul. Mściwoja 10/6a, 81-361 Gdynia, registered in the Register of Entrepreneurs kept by the District Court Gdańsk-Północ in Gdańsk, 8th Commercial Division of the National Court Register under KRS number 0000813284, NIP number: 5862350634, REGON number: 384854368 and share capital of PLN 5,000 paid in full.
  2. Data protection is carried out in accordance with the requirements of generally applicable laws and is
    stored on secure servers.
  3. . The Data Controller processes the following groups of personal data:
    1. personal data related to the provision of legal assistance, consisting of: name, surname, PESEL,
      telephone number, address, e-mail address, information about persons acting on behalf of legal persons, information about the case, proceedings signatures, personal data of opponents of the proceedings, witnesses, experts and other participants in the proceedings; in the case of legal persons or natural persons conducting business activity – also the company NIP, REGON and
      address of the company;
    2. personal data of employees and collaborators, consisting of name, PESEL, telephone number,
      address, e-mail address, and in case of collaboration with others natural persons, legal persons or persons conducting business activity – also the company NIP, REGON and address of the company;
  4. The personal data indicated above shall be processed in accordance with the principles of Processing
    provided by law, in particular:

    1. in accordance with data protection legislation,
    2. in accordance with the implemented Privacy Policy,
    3. for specific, explicit and legitimate purposes, including in particular:
      1. • to the extent and for the purpose necessary to establish, shape, amend or terminate a legal aid
        contract;
      2. to the extent and for the purpose consistent with the data subject’s consent to the Data Controller’s
        sending by e-mail of any information related to the case;
      3. to the extent and for the purpose necessary to establish, shape the content of employment
        contracts and contractsThe company has a legal entity, on the basis of which SkyDelay Sp. z o. o. employs employees
        and establishes cooperation with persons from outside the company in the form of advocates, trainee advocates and legal persons.
  5. Personal data will not be further processed in a way incompatible with these purposes.
  6. Personal data shall be processed only to the extent necessary to achieve the purpose of the processing
    and only if the person whose personal data is to be processed has given his or her express consent to the
    processing of the data for the aforementioned purposes.
  7. The controller shall not undertake Processing activities which are likely to involve a serious risk to the
    rights and freedoms of persons. If such action is planned, the controller shall carry out the activities
    referred to in Article 35 et seq. GDPR.
  8. Personal data is correct and updated when necessary.
  9. The duration of data storage is limited to the period of their usefulness for the purposes for which they
    were collected, and after that period they are anonymised or deleted.
  10. The obligation to provide information to the data subject shall be exercised in accordance with Articles
    13 and 14 of the TYPE.
  11. Data are protected against breaches of data protection.
  12. In case of planning new Processing activities, the Administrator shall analyse their effects on the
    protection of personal data and take into account data protection issues during the design phase.
  13. The Data Controller reserves the right to process personal data after the termination of the contract or
    withdrawal of consent only to the extent that it is necessary to assert possible claims before a court or if
    national or EU or international law obliges the Data Controller to retain them.
  14. The Data Administrator shall have the right to make the User’s personal data and other data of the User
    available to entities authorised under the applicable law, in particular to the prosecuting authorities.

§ 4

  1. The website uses cookies. These are small text files sent by a web server and stored by the browser software. When the browser re-connects to the website, the website recognizes the type of device from which the user connects. The parameters allow for reading the information contained therein only to the server that created them. Cookies make it easier to use previously visited websites.
  2. The information collected as part of the cookie files relates to the IP address, type of browser used, language, type of operating system, Internet service provider, time and date information, location and information sent to the site via the contact form.
  3. The collected data is used to monitor and check how users use the Service in order to improve the functioning of the Service providing more efficient and trouble-free navigation.
  4. Cookies identify the user, which allows you to adjust the content of the website you are using to your needs. By remembering your preferences, it allows you to adjust the targeted to it advertisements. The Data Administrator uses cookies to guarantee the highest standard of comfort of the Service and the collected data is used only inside SkyDelay Sp. z o. o. to optimise operations.
  5. Within the Service, the Data Administrator uses the following cookies:
    1. „necessary” cookie files, enabling the use of services available within the service, e.g. authentication of cookie files used for services requiring authentication within the service;
    2. cookies used to ensure security, e.g. used to detect misuse of authentication within the service;
    3. „Performance” cookies, enabling the collection of information on how to use the website;
    4. „functional” cookies, enabling the user to „remember” the settings selected by the user and personalise the user interface, e.g. in terms of the selected language or region from which the user comes from, font size, website appearance, etc;
    5. „advertising” cookies, which make it possible to provide users with advertising content that is less relevant to their interests.
  6. The user has the possibility to disable or restore the option to collect cookies at any time by changing the settings in his Internet browser.

Powers of the data subjects

§ 5

  1. The person whose personal data is to be processed:
    1. within the framework of an employment contract or a civil law contract, consents to the processing of her personal data by making an appropriate declaration of will. This declaration may be made in writing or electronically.
    2. within the scope of using the Service agrees to the processing of its Personal Data by unchecking the appropriate field available in the case report form.
    3. as part of the use of cookies, agrees to the processing of her Personal Data by unchecking the appropriate box available after loading the main page of the Website.

§ 6

  1. Any person whose data is processed has the right to:
    1. access to and rectification of data,
    2. the removal or restriction of processing,
    3. to raise objections,
    4. to lodge, without prejudice to other administrative or judicial remedies, a complaint with the
      supervisory authority competent in the Member State of his habitual residence, place of work or
      place of the infringement.
  2. Contact with the Personal Data Administrator and the person supervising the Processing of Personal
    Data in the Company is possible via e-mail: info@skydelay.pl.
  3. Deletion of personal data may take place as a result of revoking consent or raising legally permissible
    objections to the processing of personal data.
  4. The Personal Data Controller shall not make personal data available to entities other than those
    authorized under applicable law.
privacy-policy

Procedure for the protection of personal data

§ 7

  1. The controller shall ensure that the technical and organisational measures necessary to ensure the confidentiality, integrity, accountability and continuity of the Data Processed are applied.
  2. The Controller of Personal Data uses pseudonymisation, data encryption, access control with the aim of minimising the effects of possible data security breaches.
  3. Personal data shall be processed by persons exclusively authorised by the Personal Data Administrator or the processor to whom the Data Processing has been entrusted on the basis of a separate agreement.
  4. The Personal Data Administrator uses, among others, a secure communication encryption protocol (SSL) to secure the processed personal data.

Entrustment of Processing of personal data

§ 8

  1. The Controller of Personal Data may entrust the processing of personal data to another sub-authority only by means of an agreement concluded in writing, in accordance with the requirements indicated for such agreements in Article 28 of the GCRL.
  2. Before entrusting the Processing of personal data to the Controller, the Personal Data Controller shall, as far as possible, obtain information about the processor’s past practices regarding the protection of personal data.

Transfer of data to a third country

§ 9

The controller shall not transfer personal data to a third country, except at the request of the data subject.

Final provisions

§ 10

  1. This Privacy Policy enters into force on 13 November 2019.
  2. Each time the content of this Policy is changed, the Administrator of Personal Data shall immediately inform the persons whose personal data are processed.