Privacy Policy

Information note regarding provisions of the Regulation of the European Parliament and of the Council (UE) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation - GDPR).

The Controller of your personal data specified above is RTCLab Sp. z o.o. with its registered seat in Gdañsk at al. Grunwaldzka 212, 80-266 Gdañsk, Poland, entered into the register of entrepreneurs of the National Court Register by District Court Gdañsk-Pó³noc in Gdañsk, VII Commercial Department of National Court Register, under no. KRS 0000613170, with share capital in amount of 50,000 PLN, NIP (Tax Identification Number): 5842748894.

Personal data is processed on the basis of the provisions of the REGULATION OF THE EUROPEAN PARLIAMENT AND THE COUNCIL (UE) 2016/679 of 27 April 2016 (hereinafter referred to as GDPR), and also other provisions of Polish law.

Data protection supervisor in the company of the Controller is available at the correspondence address RTCLab Sp. z o.o., al. Grunwaldzka 212, 80-266 Gdañsk, Poland, and also at the e-mail address [email protected].

Capitalized terms have the meaning specified in the Terms of Service of the Website which is available here [link], to the extent in which they are therein defined.  

In order to perform obligations arising from GDPR the Controller provides hereby the following information on processing of your personal data:

1.       Processing of the following categories of your personal data:

1)          E-mail;

2)          Password;

3)          Nickname;

4)          Name and Surname;

5)          Telephone number;

6)          Country, street, city, state/region;

7)          Companies’ name;

8)          Time zone;

9)          Time and date format;

10)        Profile picture;

11)        Information note;

12)        IP address;

13)        Log-in sheet;

14)        History of password changes;

15)        History of changes of service package;

16)        Settings of external data storage;

17)        Settings of system limits;

18)        Operating System;

19)        Name and version of the Browser;

20)        Type of device;

21)        Date and hour of entry and exit to and from a meeting;

22)        Role of a participant of a meeting;

23)        Activity of a browser tab;

24)        Establishing connection;

25)        Connection summary;

26)        Problem with connection;

27)        Responses to requests;

28)        Action confirming participation in a meeting and lack of this action;

29)        Commencement and ending of transmitting;

30)        Establishing connection and its summary;

31)        Problem with connection;

32)        Start playback of a video;

33)        Stop playback of a video;

34)        Change of playback position;

35)        Ending of playback of a video;

36)        Start slideshow;

37)        Change of slide;

38)        Ending of slideshow;

39)        Start file viewer.

is necessary to perform the Website use agreement with regard to standard functionalities reserved for the Registered Users concluded by and between you and the Controller (Article 6(1) point (b) of GDPR) and for this purpose the data is processed.

2.       Processing of the following categories of your personal data:

1)      Name and surname

2)      Address where business is conducted

3)      NIP [Tax Identification Number]

4)      REGON [Statistical Identification Number]

5)      E-mail address

6)      Telephone number

is necessary to perform legal obligations (Article 6(1) point (c) of GDPR) of the Controller in the area of accounting and taxes.

3.       The categories of your personal data specified in points 1 and 2 above are transferred to other entities for purposes necessary for their processing in accordance with the purpose of processing declared by the Controller or in accordance with your instruction. The recipients to which we transfer your data are AMAZON WEB SERVICES INC. in USA with regard to use the Website in relation to standard functionalities reserved for the Registered Users, and the cooperating accountancy company, for accounting and tax purposes.

4.       The Collector intends to transfer the categories of your personal data specified in points 1 and 2 above to the United States of America (USA). This country provides the appropriate standards of protection and security of your personal data, which is confirmed by the European Commission in so-called Privacy Shield.     

5.       The Controller processes your personal data specified:

1) in point 1 above until execution or termination of the Website use agreement with regard to standard functionalities reserved for the Registered Users;  

2) in point 2 above until cessation of tax obligations (6 years as of the tax year end) or cessation of legal claims against you or ones of yours against the Collector, and which are related to the Website use agreement with regard to standard functionalities reserved for the Registered Users.  

6.       You have the right to demand from the Controller to have an access to the personal data related to you, its rectification, erasure or restriction of its processing, to object to processing, and also the right to transfer the data.

7.       You have the right to lodge a complaint against the Controller or activities related to  processing of your personal data with supervisory authority, in particular in a member state of the European Union of your habitual residence, your place of work or place where alleged breach has taken place, if you believe that processing of your personal data breaches the provisions of GDPR. In Poland the mentioned authority is the President of the Office of Personal Data Protection.   

8.       Providing personal data is voluntary. The consequences of not providing data specified in points 1 and 2 focus on impossibility of performance of the Website use agreement with regard to standard functionalities reserved for the Registered Users.  

(more about your rights at the end of this document)

Your Rights towards the Controller of Personal Data (hereinafter referred to as the Controller) as the data subject are as follows:

Right of access to data: Article 15 of GDPR. You have the right to obtain your data processed by the Controller (the Controller shall provide to you the copy of the data being subject to processing with fee regulated by GDPR as an option) and the information related to: the purpose of processing, categories of personal data concerned; the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in the third country or international organization; security related to transfer; where possible, the envisaged period for which the personal data will be stored, or, if it is not possible, the criteria used to determine such a period; the right to request from the Controller rectification or erasure of personal data or restriction of processing of personal data or to object to such processing; the right to lodge a complaint with a supervisory authority; where the personal data is not collected from you, any available information as to its source;  automated decision-making, including profiling and principles of how they are made, as well as the significance and the envisaged consequences of such processing for you.

Right to rectification: Article 16 of GDPR. You have the right to obtain from the Controller without undue delay the rectification of inaccurate personal data concerning you. Taking into account the purposes of the processing, you have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

Right to erasure, so-called right to be forgotten: Article 17 of GDPR. You have the right to obtain from the Controller the erasure of your personal data without undue delay where one of the following grounds applies: the personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed; the data owner withdraws consent on which the processing is based and where there is no other legal ground for the processing; you object to processing and there are no overriding legitimate grounds for the processing in cases other than direct marketing;  the personal data has been unlawfully processed; the personal data has to be erased for compliance with a legal obligation in European Union or member state law to which the Controller is subject; the personal data has been collected in relation to the offer of information society services. However, the law specified above shall not apply to the extent that the processing is necessary: for exercising the right of freedom of expression and information; for compliance with a legal obligation which requires processing by European Union or member state law to which the Controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller; for reasons of public interest in the area of public health; for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in so far as the right referred to above is likely to render impossible or seriously impair the achievement of the objectives of that processing; for establishment, exercise or defence of legal claims.

Right to restriction of processing: Article 18 of GDPR. You have the right to obtain from the Controller restriction of processing where one of the following applies: the accuracy of the personal data is contested by you - for a period enabling the Controller to verify the accuracy of this personal data; the processing is unlawful and you oppose the erasure of the personal data and request the restriction of its use instead; the Controller no longer needs the personal data for purposes of the processing, but it is required by you for establishment, exercise or defence of legal claims; the owner of data has objected to processing - pending the verification whether the legitimate grounds of the Controller override grounds of complaint of the person to whom data is related to, except for processing for purposes of direct marketing. Where processing has been restricted, such a personal data shall, with exception of storage, only be processed with your consent or for establishment, exercise or defence of legal claims or for protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.

Right to data portability: Article 20 of GDPR. You have the right to receive your personal data, which you have provided to the Controller, in a structured, commonly used and machine-readable format and have the right to transmit that data to another controller without hindrance from the Controller, where: the processing is based on consent or on a contract, and the processing is carried out by automated means. You have the right to have the personal data transmitted directly from the Controller to another controller, where technically feasible.

Right to object to data processing: The information about these rights was included by the Controller in the box below the main information, above.

You may exercise these rights in any manner, including by e-mail to the address [email protected], by mail to the address of the Controller specified at the beginning of this document.