TheGoodCode logo

PrivacyPolicy

This Privacy Policy describes how we collect, use, and disclose information from visitors to our website. By using our website, you agree to the collection and use of information in accordance with this Privacy Policy.

Administrator ‘s Data

We hereby inform that the Administrator of your personal data is TheGoodCode Sp. z o.o. with its registered office in Gdańsk (post code: 80-386) at: ul. Lęborska 3B, entered in the Entrepreneur Register of the National Court Register [KRS] conducted by Regional Court “Gdańsk – Północ” in Gdańsk VII Department under the KRS number 0000902081, tax ID [NIP]: 6040223726, business statistical number [REGON] 388990223, hereinafter referred to as: “The Company”;

You may contact The Company regarding any case related to the processing of your personal data on the following address legal@thegoodcode.io.

Data Protection Officer

The Company has appointed a Data Protection Officer, currently the position is occupied by Mr Aleksander Twardowski Attorney at law who shall assist you in any matter related to the processing of your personal data. You may contact the Data Protection Officer via the following address: aleksnader.twardowski@adwokatura.pl.

Basis and purposes of processing personal data

In order to properly provide services or enter into agreements in accordance with the Company’s scope of business, The Company shall process your personal data for a variety of purposes with accordance with the provisions of the Polish and European law. You shall find the specified purposes as well as the legal basis for the processing indicated below:

To provide services or enter into agreements The Company processes the following types of data:

  • Name and last name;
  • Place of residence;
  • Telephone number;
  • Email address;
  • PESEL (Polish identification) number;
  • Number and series of Personal identification document;
The legal basis of the processing is specified in article 6 section 1 letter b of GDPR which entitles the Administrator to process personal data in order to properly execute the agreement or undertake any required steps to enter into an agreement.

Cookies

  1. Similar to many entities functioning on the market, The Company exploits “Cookies” on its website. A cookie is a small computer file or piece of information that may be stored in your computer's hard drive when you visit our websites. We may use cookies to improve our website’s functionality and in some cases, to provide visitors with a customized online experience. Cookies may be read by our system, or by the systems of other entities which provide services for The Company.
  2. Cookies provide many useful features for the user, which are listed below (in case of the need for any further information regarding cookies, please contact The Company).
    • Ensuring security – cookies are used to in order to authenticate users and prevent unauthorized access to customer’s panel therefore protecting personal data from being accessed by unauthorized parties.
    • Impact on operational processes and website performance – cookies are used to ensure the proper functionality of the website and its smooth operation which are possible inter alia by memorization of settings between visits on the website. Cookies enable easier navigation on the website and subpages.
    • Session state – Cookie files frequently store the information regarding the user’s conduct on the website. Due to the aforementioned – the user may switch to other websites without the necessity to repeatedly log in, which ensures comfort during visits on the website.
    • Creating statistical data – cookies are used to analyze the conduct of users during the visits on our website (how many users open our website, how much time they spend on the website, which content is of interest to the users etc.). Due to the utilization of cookies, the website may be constantly improved and adjusted to the preferences of the users. In order to track the activities and creating statistics we use Google’s tools such as Google Analytics; apart from reporting the statistics of website’s traffic, Google Analytics by working with cookies may optimize users internet search by exposing user to more accurate content in Google services and the entire web.
  3. We would like to inform that most of the cookies used by The Company’s website are anonymized and we are unable to identify our users based solely on cookies.
  4. By default your browser allows the use of cookies on your device, therefore we kindly ask you to allow the use of cookies during your first visit to our website. If you do not wish to use cookies while browsing the website, you can change the settings in the web browser - completely block the automatic support for cookies or request notification whenever cookies are saved on the device.
  5. While respecting the autonomy of all persons using the website, we feel obliged to warn that the exclusion or limitation of cookies may cause quite serious difficulties in using the website, e.g. longer loading time of the website, limitations in using the functionalities.

The right to withdraw consent

  1. If the processing of your personal data is based on consent, at any moment you are entitled to withdraw consent – at your discretion.
  2. Should you choose to withdraw consent you may follow one of the following steps:
    • Send an email directly to the Administrator – The Company at legal@thegoodcode.io.
    • Send an email to the Data Protection Officer at aleksander.twardowski@adwokatura.pl.
    • Click the link found at the bottom of any email received from The Company.
  3. If the processing of your personal data was based on consent, its withdrawal does not deem the processing of personal data, until the moment of withdrawal, illegal.

The requirement to provide personal data

  1. Providing your personal data is voluntary, however should you refuse to provide it, the execution of the contract or providing the services by our Company may not be possible.
  2. Providing your personal data is voluntary, however should you refuse to provide it, the execution of the contract or providing the services by our Company may not be possible.
  3. In order to receive a properly issued invoice form The Company, it is necessary to provide all data required by Polish tax law, which are: name, last name, place of residence or the headquarters of company, tax identification number. With no access to the aforementioned data, we are unable to issue and invoice.
  4. In order to contact you via telephone in matters regarding the execution of the agreement, it is necessary to provide you telephone number. With no access to the aforementioned data, we are unable to contact you via the telephone.

Automated decisions and profiling data

We would like to inform you that the Company does not make decisions in an automated manner and your data shall not be profiled.

Personal data receivers

  1. The Company uses the services of external service providers which may result in necessity of transferring your personal data. Due to the aforementioned fact, we may transfer your personal data to other entities in order to provide services or execute the contract. We assure you that the entities that shall be processing your personal data implement data processing procedures non less stringent than the Company’s.
  2. Apart from the aforementioned transfers, we may be obligated to transfer your personal data to other public or private entities (i.e. based on a court order or administrative decision). Therefore, The Company can not predict a fixed catalogue of entities that may receive your personal data, yet The Company ensures that any request for access to personal data is analyzed thoroughly by our legal team in order to avoid the situation of transferring your data to unauthorized parties.

Transfer of data outside of the EU

We would like to inform you that we are not transferring your personal data outside of the European Economic Area.

Period of personal data processing

  1. In accordance with the law, we do not process your personal data indefinitely. Your personal data is processed for the period of time necessary to fulfill the purpose for which they were disclosed. After that period expires, your personal data shall be irreversibly deleted or/and destroyed.
  2. In the event when The Company does not require to perform any operations on your personal data apart from storing it until they are destroyed or deleted, The Company additionally protects your data from disclosure by pseudonymization. Pseudonymization is a process that ciphers your data or database, in a way that they may not be disclosed without entering the security passwords, which prohibits any unauthorized person from accessing your data even in the event of its theft or misplacement.
  3. We process your personal data for the following periods of time:
    • For 5 years – regarding the data such as: name, last name, address, PESEL number, Personal identification document number, telephone number, email address – processed in order to enter into contract or employment agreement and to comply with the accounting obligations;
    • For 3 years - regarding the data such as: name, last name, address, PESEL number, Personal identification document number, telephone number, email address – processed during employee recruitment.
  4. The aforementioned periods of time are calculated from the end of the year in which the data processing began which ensures a swift and organized process of destroying personal data. Calculating the periods individually would result in technical and organizational difficulties, which are circumvented, resulting in a seamless process. Naturally, in case of exercising the right to be forgotten, every case is calculated and analyzed individually.
  5. The additional year included in the period of processing is dictated by the fact, that you are entitled to present a claim close to the end of limitation period as well as miscalculating the limitation period which may result in a necessity to process personal data longer, in order to address such claim.

Data subject’s rights

  1. According to GDPR, you have the right to:
    1. Access your data and receive a copy;
    2. Correct your data;
    3. Demand the removal of your data or object to its processing;
    4. Delete your data;
    5. Transfer your data;
    6. File a complaint with supervisory body.
  2. The Company respects your rights derived from the GDPR and other legal acts regulating the protection of personal data and ensures maximized level of their realization.
  3. The Company hereby informs that all of the listed rights are not absolute, therefore in certain situations we can legally refuse to comply with them. Nonetheless, we assure you that any situation that requires refusal of exercising your rights is thoroughly analyzed and implemented only if unconditionally required by the law.
  4. In regard to your right to object processing of personal data The Company informs that at any moment you are entitled to object processing of personal data based on a legally justified reason by The Company (listed in section Basis and purposes of processing personal data). Nonetheless, The Company may refuse to cease the processing if it is able to prove that:
    • there are valid legitimate grounds, superior to your interest and rights that justify the continuation of processing your data;
    • processing your data shall be necessary to determine, pursue or defend our claims that may arise due to execution of the agreement.
  5. At any moment you are entitled to object the processing of your personal data for marketing purposes. In such case, we will immediately cease to process your personal data for this purpose.
  6. Your rights may be exercised by:
    1. Contacting The Company directly by sending an email to legal@thegoodcode.io or,
    2. Contacting The Company’s Data Protection Officer by sending an email to aleksander.twardowski@adwokatura.pl .
  7. If you reckon that your personal data is being processed with violation of law, you are entitled to submit a complaint regarding the processing of your personal data by The Company to the Polish President of Data Protection Office.

Final provisions

  1. Any matters not regulated herein shall be governed by the regulations of the Polish data protection laws and GDPR.
  2. You shall be informed of any changes applied to The Company’s privacy policy via email.
  3. Privacy policy shall apply from the date 21.05.2021