You are here: home page / Privacy policy / PKF Consult

Privacy policy

PKF Consult

PRIVACY NOTICE

“PKF Consult Spółka z ograniczoną odpowiedzialnością Spółka komandytowa”

with its registered office in Warsaw

Pursuant to Article 13 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“GDPR”),

we would like to inform you of the following:

I. Who is the controller of your personal information?

    1. “PKF Consult Spółka z ograniczoną odpowiedzialnością Spółka komandytowa” with its registered office in Warsaw, ul. Orzycka 6 lok. 1B, 02-695 Warszawa, company registration No. KRS 0000579479 is the Controller of your personal information (“Controller”).
    2. To get in touch with the Controller, you can send an email to pkfconsult@pkfpolska.pl or call (+48) (22) 560 76 50.
    3. The Controller has appointed Hanna Rubaszewska as its Data Protection Officer, e-mail: iod@pkfpolska.pl.

II. What are the purposes of the processing?

As the Controller, we will process personal information for the following purposes:

    1. to provide auditing, consulting, tax and accounting consultancy and business consultancy services to Clients, i.e. prepare proposals and execute and perform a contract;
    2. to conduct direct marketing of our products and services and if you have given your consent, of products and services offered by members of PKF Polska Group, i.e. PKF BPO Consult spółka z ograniczoną odpowiedzialnością Spółka komandytowa;
    3. to provide training services and issue certificates of training completion;
    4. to comply with the legal obligations to which the Controller is subject such as invoicing, dealing with the tax authorities, financial reporting and compliance with the social security obligations (ZUS); and
    5. to pursue legitimate interests of the Controller such as securing and exercising claims.

 III. What is the lawful basis for the processing?

Personal information is processed on the following lawful bases:

a) Article 6.1 (b) of the GDPR, i.e.:
- for performance of a service agreement for services mentioned in Section II (1) of this Notice;
- for contracting for training services (data collected through a registration form);
or in order to take steps at the request of the data subject prior to entering into a contract;
b) Article 6.1 (c) of the GDPR, i.e.: for compliance with a legal obligation to which the Controller is subject;
c) Article 6.1 (f) of the GDPR, i.e. for the purposes of the legitimate interests of the Controller (e.g. direct marketing of the Controller’s products and services), or Article 9.2 (f) of the GDPR: for the exercise of claims; and
c) Article 6.1 (a) of the GDPR, i.e. obtaining consent to the processing of personal information.

IV. Personal information retention period

Personal information will be processed for:

    1. as long as is necessary for the proper performance of a contract and, following the expiry of such contract, for as long as is necessary for compliance with the legal obligations to which the Controller is subject:
      a) for 5 years counted from the end of a calendar year for the purposes of financial accountability to the tax authorities;
      b) for 10 years for the purposes of social security accountability to the Social Insurance Institution (ZUS);
      c) for 2 years for the purposes of handling complaints (counted from the date of training completion);
      d) for as long as is necessary and legally permitted for the establishment and exercise of claims;
    2. until you withdraw your consent to the processing of personal information.

V. Who may have access to my personal information?

Your data may be disclosed to:

a) employees and associates and contractors who have authorisation from the Controller;
b) members of the PKF Polska Group, i.e. PKF BPO Consult Spółka z ograniczoną odpowiedzialnością Spółka komandytowa;
c) processors, i.e. entities who provide consultancy and legal, tax and accounting assistance to us;
d) computer technology and programming service providers;
e) government authorities and other authorities under the laws and regulations; and
f) your personal information will not be transferred to any third country or to international organisations.

VI. What are my rights?

    1. You may request from the Controller, at any time:
      a) access to or a copy of your personal information which is being processed;
      b) rectification (correction) of your information;
      c) erasure or restriction of the processing, or you may object to such processing;
      d) data portability; or
      e) to file a complaint with the President of the Office of Personal Data Protection.
    2. Some of the rights may not apply to the processing of personal information under the open contracts.

VII. Do I have the right to object to the processing?

In addition to the rights listed in Section VI., you also have the right to object to the processing of your personal information at any time under Article 6.1 (f) of the GDPR. In such a case, the Controller will no longer process your personal information for such purposes unless the Controller can demonstrate compelling legitimate grounds that the Controller has in respect of such personal data which override the interests, rights and freedoms of the data subject or the need for such personal information for the Controller to be able to establish, exercise or defend legal claims, if any.

VIII. Right to withdraw consent

You have the right to withdraw your consent for the processing of your personal information (to the extent that such consent provides the basis for the processing) at any time, but the withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal. Such withdrawal should be sent to: marketing@pkfpolska.pl.

IX. Voluntary provision of personal information

The provision of your personal information is voluntary but if you refuse to provide such information, we may be unable to enter into a contract with you or to provide the service properly.

X. How is your personal information protected?

    1. We would like to inform that your personal information is processed in a secure manner and in compliance with the relevant agreements in place and the laws and regulations, including the GDPR.
    2. We use our best efforts to ensure that all possible physical, technical and organisational security measures are established to protect personal information against accidental or intentional destruction, accidental loss, modification or unauthorised disclosure, use or access, in accordance with all applicable laws.

XI. Other

Please note that the Controller does not use automated decision-making and no personal information is subject to profiling.

strefa inwestora
GoldenLine LinkedIn YouTube Facebook Google+ SlideShare Isuu

This site uses cookies

By continuing to browse the site, you are agreeing to our use of cookies. Find out more.
close

Dziękujemy za Twoje zaufanie

Zamknij