Information policy on the processing of personal data
for contractors of LEX-TRADUCT Translation Agency and persons acting on their behalf
Pursuant to Article 13(1) and (2) and Article 14(1) and (2) of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/56/EC (hereinafter referred to as 'the GDPR”) applicable as of 25 May 2018 we hereby inform you about the manner and purpose for which we process your personal data ("Data"), as well as about your data protection rights.
1. Entity responsible for processing Data and contact on processing matters
The Controller of your Data is LEX-TRADUCT Bartłomiej Rocławski, hereinafter referred to as "LEX-TRADUCT") (hereinafter referred to as the “Controller”) providing translation and interpretation services. The Controller can be contacted:
in writing, by sending correspondence to the address: Biuro Tłumaczeń LEX-TRADUCT, ul. Siewna 15 lok. 302, 94-250 Łódź, Poland
by telephone at 0048 667 051 070,
by e-mail: rodo@lextraduct. pl
2. Purpose and legal basis of data processing
We process your data in accordance with the provisions of the GDPR and the Polish law on data protection. We're doing this because we're observing:
contractual obligations (Article 6(1)(b) of the APRD),
legal obligations (Article 6(1)(c) of the GDPR).
In means that:
Data are processed for the purpose of performance of agreements concluded with the Contracting Party or for the purpose of performance of actions prior to the conclusion of the agreement, which are performed at the Contracting Party's request.
The important thing is that:
we process Data, if necessary, for the purposes of legitimate interests pursued by the Controller or a third party (Article 6(1)(f) of the GDPR).
This may include, but is not limited to, processing the data of persons acting on behalf of the Contracting Party to perform the contract with the same, preventing fraud and crime, ensuring IT security, enforcing claims, and defending against claims.
3. Entities to whom Data may be transmitted
Data may be made available to other recipients in order to perform the contract with the Contracting Party, in order to perform the Controller's legal obligation or for purposes resulting from legally justified interests of the Controller or a third party.
The recipients of Data may be, in particular:
authorized LEX-TRADUCT employees,
translators/specialists cooperating with LEX-TRADUCT,
other institutions and entities authorized to obtain your Data on the basis of relevant legal regulations,
entities processing Data on behalf of the Controller and their authorized employees,
entities such as: entities providing accounting, HR, IT, consulting and marketing services.
4. Time limit for processing and storage of data
The data will be processed for the period necessary to achieve the purposes of the processing indicated in point 2, i.e.:
within the scope of performance of the concluded contract - until the end of its execution,
with respect to the fulfilment of legal obligations incumbent upon the Controller in connection with the conduct of business and the performance of concluded agreements - until such time as the Controller fulfils these obligations;
until the fulfilment of LEX-TRADUCT's legitimate interests underlying the processing or until you object to such processing, unless there are valid legitimate grounds for further processing of the Data (e.g. settlement of possible claims or defence against claims, when the Data may be processed, for the period resulting from the running of general limitation periods for claims counted from the expiry of the contract).
5. Adequate data protection rights
You have the right to:
request access to his or her Data, as well as the rectification, restriction or deletion of his or her Data;
demand the transfer of the Data processed by you to the Controller in order to conclude and perform the contract. The transfer shall consist in obtaining from the Data Controller in a structured, machine-readable and commonly used format and the right to send it to another Data Controller, where technically possible. The right does not apply to data that are the Controller's business secrets or professional secrets;
lodge a complaint with the supervisory authority competent for the protection of personal data.
object to the processing of Data when the Controller processes Data for purposes based on legitimate interests (Article 21(1) of the GDPR),
In exercising your rights, the Controller may request additional information necessary to confirm your identity.
Your Data is not subject to automated decision making, including profiling related to automated decision making.
6. Obligation and lack of obligation to provide data
Providing Data is voluntary, but it is necessary to conclude and perform an agreement with the Controller. In order for us to comply with these obligations, laws require that the necessary information and documentation is provided, and any changes promptly notified. The Controller will not be able to conclude or perform contracts or services unless you provide the necessary information and documents.
7. Sources of data acquisition and categories of data
Data shall be provided by the Contracting Parties or persons representing the Contracting Parties on the basis of powers of attorney granted or applicable laws.
In the case of Data of persons representing entrepreneurs or otherwise acting on their behalf, we may obtain Data from public sources.
When processing Data relating to persons acting on behalf of a Contractor, the Controller may process such categories of Data as: identification data and, if required by law, contact and address data.