Introduction:

From May 25, 2018, Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and the repeal of Directive 95/46 / WE (commonly referred to as "GDPR").

The GDPR will apply to the same extent in all European Union countries, including Poland, and introduces a number of changes to the rules governing the processing of personal data, which will affect many areas of life, including the use of Internet services. In this information, we present a summary of the most important issues regarding the processing of personal data that may  take place after May 25, 2018 in connection with the use of our services.

Personal data means information about an identified or identifiable natural person. HIPERkursy processes personal data for various purposes, and depending on the purpose, different collection methods, legal bases for processing, use, disclosure and retention periods may apply.

When collecting and using personal data, we want to be transparent about the basis and method of processing personal data.

Data controller and contact details:

The data administrator is HIPERkursy Paulina Piasecka with headquarters in Gdańsk, Jasieńska 91.

If you have any questions regarding this document and the method and purpose of our processing of personal data, please contact us at:

HIPER courses Paulina Piasecka, ul. Jasieńska 91, 80-175 Gdańsk

and via the e-mail address: hypererkursy@gmail.com to contact the data protection officer.

​

​

The basis and purposes of data processing:

Personal data will be processed by HIPER courses in particular for the following purposes:

1. Taking action before concluding the contract or performing the contract, [pursuant to Art. 6 sec. 1 lit. b) and lit. c) GDPR] in order to:

   1. Taking action before concluding the contract, at the request of the data subject or performing the contract to which the data subject is a party and are necessary to conclude the contract.

   2. Take action before concluding the contract, at the request of people obtained from chat systems on the websites of websites.

   3. Fulfilling the legal obligation incumbent on the Administrator.

2. Based on the legitimate interest of HIPERkursy  [pursuant to Art. 6 sec. 1 letter f) of the GDPR] in order to:

   1. Marketing of own products or services, including those personalized based on the Client's profile.

   2. Investigating or securing claims.

   3. Conducting technical quality analyzes of the services and equipment provided.

   4. Analyzes of customer preferences or interests, audience analysis or development of services provided, based on automated data processing by the Administrator.

3. Based on a separate consent [i.e. based on Article. 6 sec. 1 lit. a) GDPR] in order to:

   1. Verifying the customer's payment credibility based on information from economic information offices, in particular the National Debt Register based in Wrocław or contained in the Administrator's database.

   2. Providing the customer with information about the proposed changes to the Agreement, including the Regulations, confirmation of the receipt of the complaint and reply to it to the indicated e-mail address (e-mail).

   3. Direct marketing of products or services of entities cooperating with HIPER courses, in particular websites: www.mailerlite.com , www.google.com in accordance with the website regulations.

   4. Direct marketing may be carried out by HIPER courses by means of electronic communication (e.g. SMS, e-mail).

​

The period for which personal data will be stored:

​

The data will be stored until there is a basis for their processing, including:

1. Personal data processed in order to conclude or perform the contract and fulfill the Administrator's legal obligation will be kept for the duration of the contract, and after its expiry for the period necessary to:

   1. Post-sale customer service (e.g. handling complaints).

   2. Securing or pursuing any claims due to HIPER courses.

   3. Fulfilling the Administrator's legal obligation (e.g. resulting from tax or accounting regulations).

2. Personal data processed for the purposes of marketing HIPER's own products or services, on the basis of a legitimate legal interest, will be processed until the data subject submits an objection.

3. Personal data, when the basis for data processing is the legitimate interest of the Administrator, will be processed until this legitimate interest exists.

4. Personal data processed on the basis of a separate consent will be stored until its revocation.

​

The rights of the data subjects and the manner of their implementation:

​

Natural persons have certain rights regarding their personal data and data controllers are responsible for the implementation of these rights. In the event that the decision on the method and purpose of personal data processing belongs to us, we are the Data Administrator and below we provide information on the rights of natural persons and the manner of their implementation:

1. The right to access your personal data, i.e. the right to obtain confirmation whether the Administrator processes data and information regarding such processing.

2. The right to rectify data if the data processed by the Administrator is incorrect or incomplete.

3. The right to request the Administrator to delete data.

4. The right to request the Administrator to limit data processing.

5. The right to transfer data, i.e. the right to receive personal data provided to the Administrator and to send them to another administrator.

6. The right to object to the processing of data, based on the legitimate interest of the Administrator or to processing for the purpose of direct marketing.

7. The right to lodge a complaint with the Polish supervisory authority or the supervisory authority of another European Union Member State competent for the place of habitual residence or work of the data subject or the place of the alleged violation of the GDPR.

8. The right to withdraw consent at any time (without affecting the lawfulness of processing based on consent before its withdrawal).

9. The right to obtain human intervention from the Administrator, express your own position and to challenge the decision based on automated data processing.

The rights listed in points 1) -6) and points 8) -9) above can be exercised, inter alia, by contacting the data protection officer hypererkursy@gmail.com.

​

When and how do we transfer personal data to third parties:

​

The collected personal data may be made available to entities indicated in the law and entities cooperating with HIPER courses. In this case, the contract provides for provisions and security mechanisms to protect data and maintain standards in the field of data protection, confidentiality and security. Personal data stored by us may be transferred to external entities, including in particular:

1. banks,

2. postal operators,

3. carriers,

4. printing and printing companies,

5. economic information offices,

6. document archiving companies,

7. debt collection companies,

8. partners providing technical services (e.g. developing and maintaining IT systems for websites),

9. statutory auditors and other professional advisers,

10. Compliance bodies, regulators and other governmental authorities or third parties when required by applicable law (in a manner consistent with such law).

​

Changes to this document:

​

We recognize that transparency is an ongoing obligation and we will review and update this document on a regular basis.