Who we are?

The owner of the company is Magdalena Puchacz, who runs a business under the name: MS5 Magdalena Puchacz, NIP: 6492210455, REGON: 521660990
Our website address is: https://ms5.com.pl/
MS5 Magdalena Puchacz has not appointed its representative referred to in Art. 13 sec. 1 lit. a of the GDPR, or the Inspector of Personal Data Protection referred to in art. 13 sec. 1 lit. b GDPR. Therefore, MS5 Magdalena Puchacz is the Administrator of your personal data.

The Administrator’s contact details are as follows:

Address: ul. Tadeusza Ważewskiego 34, 30-499 Kraków

Telephone number: 510 734 059 e-mail: Finansowe@ms5.com.pl
Under the above contact details, all interested persons will obtain information regarding the processing of their personal data.

What personal information we collect and why we collect it:

Based on the Regulation of the European Parliament of May 25, 2018 and of the European Parliament and of the EU Council 2016/679 of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / WE (hereinafter GDPR), in accordance with art. 6 sec. 1 lit. a, b, c, d and f GDPR, we would like to inform you that at MS5 Magdalena Puchacz, data processing is lawful in the following cases:
– The data subject has consented to the processing of his personal data for one or more specific purposes;
– Processing is necessary for the performance of a contract to which the data subject is a party. Or to take action at the request of the data subject before concluding a contract;
– Data processing is necessary to fulfill the legal obligation incumbent on the administrator;
– Processing is necessary to protect the vital interests of the data subject or another natural person;
– Processing is necessary to perform a task carried out in the public interest or in the exercise of official authority vested in the controller;
– Processing is necessary for the purposes of the legitimate interests pursued by the administrator or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, which require protection of personal data, in particular when the data subject is a child.

In connection with the obligation resulting from art. 13 sec. 3 of the GDPR, the Administrator informs that he does not plan to further process personal data for a purpose other than the purpose for which the data was collected.

Categories of Personal Data:

MS5 Magdalena Puchacz will collect and process the following personal data:
– Name and surname of the ordering person
– The exact correspondence address (street, house number, apartment number, postal code, city, province)
– PESEL
– Phone number
– E-mail adress
– VAT invoice details
– Messages sent to mailboxes in the @ms5.com.pl domain

The administrator of all personal data contained in all messages sent via the @ms5.com.pl website sent to and from mailboxes in the @ms5.com.pl domain, including data such as e.g. name, surname, address, e-mail address of their addressees is MS5 Magdalena Puchacz, ul. Tadeusza Ważewskiego 34, 30-499 Kraków

We process your personal data in order to carry out current correspondence and possible response to the content of the inquiry sent to us. The basis for the processing of your personal data is our legitimate interest based on the ability to communicate with you.

For each message, in accordance with the obligation arising from art. 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, information on the protection of personal data is attached along with with a link to this page where the information clause regarding the processing of personal data is published.

In addition, due to the possibility of contact via our website, data from the following sources may be processed:

Comments

When visitors leave comments on the site, we collect the data shown in the comments form, as well as the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (so-called hash) may be sent to the Gravatar service to check if you are using it. Gravatar’s privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is publicly visible in the context of your comment.

Media

If you are a registered user and upload images to the site, you should avoid uploading images with location EXIF tags. Visitors to the site can download and read full location data from images on the site.

Contact forms

Your personal data will be processed in order to conduct correspondence with you and handle the matter to which it relates, and for the purpose of possible claims or defense against such claims – the legal basis is the legitimate interest of ADO in accordance with art. 6 sec. 1 lit. f of the GDPR – handling matters submitted via the form, correspondence with interested entities and handling matters reported by them.

In addition, using the form, we will present our offer to you, in connection with the possibility of submitting and performing services and concluding sales contracts for products offered by MS5 Magdalena Puchacz, via the system (pursuant to Article 6(1)(b) of the GDPR) – if the inquiry sent via the form contained a request for an offer.

Cookies

If you leave a comment on our website, you will be able to choose the option of saving your name, email address and website address in cookies, thanks to which when you write subsequent comments, the above information will be conveniently completed. These cookies expire after one year.

If you visit the login page, we will create a temporary cookie to check whether your browser accepts cookies. This cookie does not contain any personal data and will be discarded when you close your browser.

When logging in, we also create a few cookies needed to save your login information and selected screen options. Login cookies expire after two days, and screen options cookies expire after a year. If you check the “Remember me” option, logging in will expire after two weeks. If you log out of your account, the login cookies will be deleted.

If you modify or publish an article, an additional cookie will be saved in your browser. This cookie does not contain any personal data, simply pointing to the ID of the article you just edited. It expires after 1 day.

Embedded content from other sites

Articles on this site may contain embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in a similar way as if the user had visited the website directly.

Sites may collect information about you, use cookies, add additional third-party tracking systems, and monitor your interactions with embedded material, including tracking your interactions with embedded material if you have an account and are logged in to that site.

Statistics analysis and external tools

Statistical analyzes of your surfing behavior may be performed when you visit our website. These activities are carried out mainly using cookies and website statistics. The analysis of your surfing behavior is usually carried out anonymously, i.e. we will not be able to determine your identity from this data. You can object to this analysis or prevent it from being performed by opting out of using certain tools.

Who we share data with

According to Art. 13 sec. 1 lit. e GDPR The personal data administrator declares that the recipients of your personal data are processing entities, including, among others, an entity that conducts the Administrator’s accounting and tax matters and acts as a processor for him.

According to Art. 13 sec. 2 lit. e GDPR The personal data administrator informs you that the provision of personal data is necessary for the conclusion and performance of the contract and for the Administrator to fulfill its obligations under the law, including primarily accounting obligations and obligations under tax law. If you refuse to provide personal data, the conclusion and performance of the contract becomes impossible.

How long do we keep personal data

According to Art. 13 sec. 2 lit. a) GDPR The personal data administrator informs that he stores your personal data from the moment of their acquisition to the remotest moment when the contract is performed and the Administrator fulfills all obligations arising from its conclusion, including, among others, accounting and other obligations resulting from the provisions of the tax law.

If you leave a comment, its content and metadata will be stored indefinitely. Thanks to this, we are able to recognize and approve subsequent comments automatically, without sending them to moderation each time.

For users who have registered on our website (if any), we also store the personal information entered in the profile. Each user can view, correct or delete their personal information at any time (except for the username, which cannot be changed). Site administrators can also view and modify this information.

What rights do you have to your data

According to Art. 13 sec. 2 lit. b) GDPR The personal data administrator informs that you have the following rights:

in accordance with Art. 15 sec. 1 of the GDPR, the right to obtain from the Administrator confirmation whether personal data concerning him are being processed, and if this is the case, you are entitled to access them and obtain information on their processing;

in accordance with Art. 16 of the GDPR, the right to request the Administrator to immediately rectify personal data that is incorrect, and the right to request completion of incomplete personal data, including by submitting an additional statement;

in accordance with Art. 17 GDPR, the right to request the immediate deletion of personal data;

in accordance with Art. 18 GDPR, the right to request restriction of processing;

in accordance with Art. 20 of the GDPR, the right to receive in a structured, commonly used machine-readable format personal data that you provided to the Administrator, and the right to send this personal data to another Administrator without hindrance from the Administrator to whom the personal data was provided;

in accordance with Art. 21 GDPR, the right to object to the processing of personal data;

in accordance with Art. 77 of the GDPR, the right to lodge a complaint with the supervisory authority if you believe that the processing of your personal data violates the GDPR;

the right to withdraw consent to the processing of personal data at any time without affecting the lawfulness of the processing that was carried out on the basis of this consent before its withdrawal.

If you have a user account or have added comments on this site, you may request a file with an exported set of your personal data in our possession, including all of those provided by you. You can also request that we delete all of your personal information in our possession. This does not apply to any data that we are obliged to keep for administrative, legal or security reasons.

Who we share data with and where we transfer data:

Your personal data may be sent to:

Entities to which the Personal Data Protection Administrator entrusted the processing of personal data (processing entities) on the basis of a concluded contract, including: law firms providing legal assistance to the Administrator and debt collection companies, as well as subcontractors providing other services to the Administrator, e.g. IT, accounting , accounting, billing;

Employees of the Personal Data Administrator in the scope of written authorizations

Common courts or state administration bodies

Other entities authorized to access data under the law.

In addition, guest comments may be checked through an automated spam detection service.

Your contact details:

Contact with the Administrator in matters related to the Protection of Personal Data

The Administrator informs that all requests and questions regarding your rights under the GDPR can be directed to the Administrator at the e-mail address: Finansowe@ms5.com.pl 

Additional information

How do we protect your data?

The operators of this website take the protection of your personal data very seriously. We treat your data confidentially and in accordance with the statutory provisions on data protection and this privacy policy.

Using this website means that various pieces of personal data will be collected. Personal information means any data that can be used to identify you. This privacy policy explains what information we collect and what we use it for. The privacy policy also explains how and for what purpose this is done. Please note that data transmitted over the Internet (e.g. in e-mails) may be subject to security breaches.

SSL or TLS encryption

This site uses SSL encryption for security purposes and to protect the transmission of confidential content, such as inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser’s address line by the fact that it changes from “http://” to “https://”, and a padlock icon is displayed in your browser’s address bar. If SSL encryption is enabled, then the data you send to us cannot be read by third parties.

The website is encrypted with an SSL Certificate, the issuer of which – CSS Media Tomasz Fronia – guarantees that the data sent to and from the website https://ms5.com.pl are encrypted and come from a server administered by CSS Media Tomasz Fronia. Please refer to the certificate and statement of its issuer.

We are not responsible for the disclosure of data during transmission to the server, each person using the website https://ms5.com.pl does so at their own risk.

Information about the party responsible for this website

MS5 Magdalena Puchacz

ul. Tadeusz Ważewski 34

NIP: 649 221 04 55

phone 510 734 059

e-mail: biuro@ms5.com.pl

What procedures do we have in place in the event of a data privacy breach

Procedure in the event of a personal data breach:

The administrator detects or is notified of a security incident and determines whether there has been a breach of personal data security.

If there has been a breach of personal data security, the Administrator notifies the supervisory authorities. If the breach affects individuals in more than one EU Member State, the Administrator notifies all relevant supervisory authorities.

The controller notifies the affected persons and, where appropriate, also provides them with information about the steps they must take to protect themselves from the consequences of the breach.

All violations are subject to notification in accordance with Art. 33 sec. 5 GDPR. The administrator should document the breach and keep the records on file.

From what third parties we receive data

We do not collect or receive data from third parties.

What automated decision making and/or profiling we do with your data

In connection with the obligation resulting from art. 13 sec. 2 lit. f GDPR The administrator informs that there will be no automated decision-making or profiling in relation to your data.