Privacy Policy
1. Data Controller
The controller your personal data is Kancelaria Radcy Prawnego Dariusz Czuchaj (hereinafter: "data controller or we").
You can contact us at the following address: ul. Ludowa 17/13, 00-780 Warsaw, by sending an email to info[at]syntheticlaw.com or via the contact box on our website.
2. How we'll use your data
We'll process your personal data because you're the point of contact for us at your client's, contractor's, or potential client's or contractor's company.
We'll use your data to:
Keep in touch: We'll contact you about current matters, like the performance of contracts between us and your employer/entity you represent, presenting offers, receiving orders, and answering questions. We have a legitimate interest in staying in touch with our contractors (i.e. their employees/associates).
Invite you to events: We'll invite you to participate in our webinars, trainings, and provide other information about our activities and possible forms of cooperation. We have a legitimate interest in maintaining relationships with employees and associates of our contractors.
Protect ourselves: We'll defend ourselves against possible claims or pursue any claims related to the contract with the entity you work for or represent, i.e. our contractor - if a dispute arises regarding the contract. We have a legitimate interest in protecting ourselves from claims or pursuing claims.
3. Data security
We make every effort to protect the personal data of our clients. For this purpose, we use e.g. the following security measures:
- Personal data is stored on Google Workspace servers, which are protected by high-quality security, including data encryption at rest and in motion. Data location is set on EU.
- Only authorized persons have access to personal data, such as employees, who have been trained in the protection of personal data.
- we apply security procedures aimed at preventing unauthorized access to personal data, their change, loss or destruction.
4. Encryption
Personal data stored on Google Workspace servers is encrypted both at rest and in motion. Encryption at rest means that personal information is encrypted when stored on Google servers. On-the-fly encryption means that personal information is encrypted in transit between Google's servers and users' devices.
In particular, the encryption of personal data at rest on Google Workspace servers is implemented using the TLS (Transport Layer Security) protocol. TLS is a cryptographic protocol that ensures the confidentiality and integrity of data sent over the Internet.
Encryption of personal data in motion on Google Workspace servers is implemented using HTTPS (Hypertext Transfer Protocol Secure). HTTPS is a secure version of the HTTP protocol that uses TLS to encrypt data sent over the Internet.
4. Recipients of your personal data
We will transfer your personal data to our suppliers to whom we will commission services related to the processing of personal data, eg IT services. Such entities process data on the basis of an agreement with us and only in accordance with our instructions.
We do not transfer personal data to third countries that do not ensure an adequate level of personal data protection.
5. Data source
We have received your data directly from you or from your employer/entity you represent.
We receive data from your employer/entity you represent, such as your name and surname, business telephone number and email address, place of work, position or information on what type of cases you deal with.
6. Retention of your personal data
We will process your personal data during the period of performance of the contract concluded with us by your employer/entity you represent, as well as for the period of limitation of claims under the contract.
7. Your rights related to the processing of personal data
You have the following rights related to the processing of personal data:
- the right to object to the processing of your data due to a special situation,
- the right to access your personal data,
- the right to request rectification of your personal data,
- the right to request the deletion of your personal data,
- the right to request restriction of the processing of your personal data.
8. Right to lodge a complaint with a supervisory authority
If you believe that our activities related to the processing of personal data have infringed your rights, you may lodge a complaint with a supervisory authority, i.e. an independent public authority responsible for the monitoring of the application of the GDPR. In Poland, the function is performed by the President of the Personal Data Protection Office.
You may contact the Polish supervisory authority:
- via mail: ul. Stawki 2, 00-193 Warsaw,
- electronically at: https://www.uodo.gov.pl/pl/p/kontakt