The privacy protection of Users is particularly important to GM AUTOMATYKA SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ. For this reason, Users of the Website www.gmautomatyka.pl are guaranteed high standards of privacy protection. GM AUTOMATYKA SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, as the data controller, ensures the security of the data provided by Users.

The Controller's objective is also to duly inform Users about their rights and obligations related to the processing of personal data, especially in light of the provisions on the protection of personal data specified in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27.04.2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as "GDPR"). Therefore, in order to protect the privacy of the Website Users, in this document, the Controller informs about the legal basis for processing personal data provided by Users in connection with their use of the Website www.gmautomatyka.pl (hereinafter referred to as the "Website"), the methods of collecting, processing, and protecting personal data, as well as the rights of Users.

A User is any natural person to whom the data relates, using the website www.gmautomatyka.pl or electronic services available through the Website.

The controller of personal data provided by the User on the Website www.gmautomatyka.pl is GM AUTOMATYKA SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, Sikorka 51, 32-300 Olkusz, NIP 6492306557 (hereinafter referred to as the "Controller").

​

USER CONSENT

Use of the Website www.gmautomatyka.pl by the User means that the User accepts that the Controller collects and uses personal data in accordance with this Privacy Policy.

The personal data of the Website User are processed by the Controller based on their consent, and in some cases described in this document, within the framework of the Controller's legitimate interest. The User has the right to withdraw previously expressed consent at any time. Withdrawal of consent does not affect the lawfulness of the processing carried out based on consent before its withdrawal.

In the event of a change to this Privacy Policy and the User's continued use of the Website, it is deemed as consent to the current terms of the Privacy Policy.

​

PERSONAL DATA PROCESSED BY THE CONTROLLER

Method of obtaining personal data The Controller obtains personal data directly from the User via the Website, by the User filling out the contact form available on the Website and sending a message to the Controller through it. Providing personal data contained in the contact form is voluntary.

Types of personal data processed The Controller collects the following personal data regarding the User through the Website:

• First name and last name;

• E-mail address;

• Phone number;

• Message content;

• Message subject.

PURPOSES OF PERSONAL DATA PROCESSING

The way the Controller processes User data depends on how the User uses the Website and its available functionalities. The Controller processes the User's personal data for the following purposes:

Communication with the User. The Controller uses the User's personal data to communicate with them in a personalized manner. Information communicated to the User concerns offered products or services, personal data security, network updates, reminders, but also suggested offers from the Controller or its partners. Communication with the User also concerns User service. Personal data are used to assist the User, solve technical problems, and respond to their complaints or grievances.

Presenting commercial offers to the User by electronic means. The purpose of using the User's personal data provided through the contact form available on the Website is marketing communication conducted by the Controller as part of its business activities, in particular, presenting commercial offers to the User via electronic means.

Presenting commercial offers to the User via telephone contact. The purpose of using the User's personal data provided through the contact form available on the Website is marketing communication conducted by the Controller as part of its business activities, in particular, by presenting commercial offers to the User via telephone contact.

Enabling the User to send comments or opinions. The Controller uses the User's personal data to enable them to comment/provide opinions on the activities, services, or products of the Controller or entities cooperating with it.

The Controller may also process the User's personal data provided in the contact form for the following purposes:

• for the conclusion and performance of a possible contract between the User and the Controller and User service as a client of the Controller in accordance with Art. 6(1)(b) of the GDPR;

• for the purpose of financial settlements with a User who is a client of the Controller for the performance of a possible contract concluded between the parties, as well as the possible pursuit of claims from a User who is a client within the framework of the Controller's legitimate interest in accordance with Art. 6(1)(f) of the GDPR and fulfillment of the Controller's legal obligations towards tax authorities based on separate regulations in accordance with Art. 6(1)(c) of the GDPR;

• for the implementation of the Controller's marketing activities within the framework of the Controller's legitimate interest within the meaning of Art. 6(1)(f) of the GDPR, as well as in accordance with declarations of intent regarding marketing communication submitted to the Controller. Consents granted in the scope of marketing communication (e.g., for sending commercial information by electronic means or telephone contact for direct marketing purposes) may be withdrawn at any time, without affecting the lawfulness of the processing carried out based on consent before its withdrawal;

• for the fulfillment of the Controller's legal obligations towards the User specified in the GDPR, within the meaning of Art. 6(1)(c) of the GDPR.

SHARING OF PERSONAL DATA

The User's personal data are or may be transferred to the following categories of recipients:

• providers of advertising or marketing services.

USER RIGHTS

User Rights At every stage of data processing, the User is provided with a range of rights allowing them to access their data, verify the correctness of data processing, correct them, as well as the right to object to their processing, request data deletion, restriction of processing, or data portability. If the User wishes to exercise their rights as a personal data subject, they may contact the Controller using the following contact details: GM AUTOMATYKA SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, Sikorka 51, 32-300 Olkusz, biuro@gmautomatyka.pl.

Right to lodge a complaint with a supervisory authority A User whose personal data are processed by the Controller has the right to lodge a complaint with the supervisory authority competent in matters of personal data protection (the President of the Office for Personal Data Protection / Prezes Urzędu Ochrony Danych Osobowych).

COOKIES

The Controller informs that while using the Website, short text information called "cookies" is saved on the User's terminal device. "Cookies" contain such IT data as: the IP address regarding the User, the name of the website they come from, the time of storing them on the User's terminal device, record of parameters and statistics, and a unique number. "Cookies" are directed to the Website's server via the web browser installed on the User's terminal device.

"Cookies" are used on the Website for the purpose of:

• maintaining the technical correctness and continuity of the session between the Website server and the User's terminal device;

• optimizing the User's use of the Website pages and adjusting the way they are displayed on the User's terminal device;

• ensuring the security of using the Website;

• collecting statistics of visits to the Website pages supporting the improvement of their structure and content;

• displaying advertising content on the User's terminal device optimally suited to their preferences.

Within the Website, two types of "cookies" are used: "session" and "persistent". "Session" cookies are files that are automatically deleted from the Website User's terminal device after logging out of the Website, leaving the Website pages, or turning off the web browser. "Persistent" cookies are stored on the User's terminal device for the time specified in the cookie parameters or until they are deleted by the User. "Persistent" cookies are installed on the User's terminal device only with their consent.

The Controller informs that:

• web browsers by default accept the installation of "cookies" on the User's terminal device. Each Website User can change the settings regarding "cookies" at any time in the web browser they use in such a way that the browser automatically blocks the handling of "cookies" or informs the User about their every placement on their terminal device. Detailed information about the possibility and ways of handling "cookies" is available in the settings of the web browser used by the Website User.

• limiting the use of "cookies" by the User may negatively affect the correctness and continuity of the provision of Services on the Website.

"Cookies" installed on the Website User's terminal device may be used by advertisers or business partners cooperating with the Controller. "Cookies" can be considered personal data only in connection with other identity-identifying data provided to the Controller by the User within the framework of using the Website. Only the Controller has access to "cookies" processed by the Website server. If the User does not agree to the saving and receiving of information in "cookies", they can change the rules regarding "cookies" using the settings of their web browser.

OTHER IMPORTANT INFORMATION

Protection of personal data security The Controller introduces appropriate measures aimed at ensuring the security of the User's personal data. The safe use of the Website is ensured by the systems and procedures used, protecting against access and disclosure of data to undesirable persons. In addition, the systems and processes used by the Controller are regularly monitored to detect possible threats. Personal data obtained by the Controller are stored in computer systems to which access is strictly limited.

Storage of personal data The period of storage of Users' personal data depends on the purposes of processing by the Controller. The Controller stores personal data for such a period as is necessary to achieve specific goals, i.e.:

• for the period of conducting business activity by the Controller.

In each of the above cases, after the necessary processing period, the data may be processed only for the purpose of pursuing claims based on the relationships between the parties until the final legal resolution of these claims.

Changes to the Privacy Policy In order to update the information contained in this Privacy Policy and its compliance with current legal regulations, this Privacy Policy may be subject to change. In the event of a change in the content of the Privacy Policy, the date of its update indicated at the end of its text will be changed. In order to obtain information on the method of personal data protection, the Controller recommends that Users regularly read the provisions of the Privacy Policy.

Contact information In order to obtain any information regarding this Privacy Policy, the User may contact the personal data controller: GM AUTOMATYKA SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, Sikorka 51, 32-300 Olkusz, using the following contact details: biuro@gmautomatyka.pl. In addition, there is also the possibility of contact by mail at the address: Sikorka 51, 32-300 Olkusz.