Statement on the personal data protection (GDPR clause)

The statement on the personal data protection in „KANCELARIA JURYSTA RADCOWIE PRAWNI STAŃDO, WYSZATKIEWICZ I PARTNERZY” (hereinafter referred to as “Law firm”) with its registered seat in Opole concerns the personal data collected by the Law firm in connection with providing legal services, as well as personal data collected for the purpose of the Law firm’s operations. GDPR means the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC (General Data Protection Regulation) (Official Journal UE L 119 dated May 4, 2016, p. 1, with amendments).

1. The personal data controller

The personal data controller is:

KANCELARIA JURYSTA RADCOWIE PRAWNI

STAŃDO, WYSZATKIEWICZ I PARTNERZY

Konsularna street 1/13, 45-089 Opole

NIP (TIN) 7540403171, KRS number (National Court Register number) 0000449549

District Court in Opole, VIII Commercial Division of the National Court Register

(hereinafter referred to as the “Controller”)

2. Contact information with respect to the Controller

Konsularna street 1/13, 45-089 Opole

tel. +48 77 402 41 15, 77 402 41 16

e-mail: biuro@kancelariajurysta.pl

3. Your personal data are processed in order to:

1) provide legal services, including in particular the performance of agreement for legal services, as well as carrying out legal proceedings, including administrative proceedings and court proceedings, or taking action on the behalf of the client prior to the conclusion of the agreement for legal services,

2) perform agreements concluded by the Controller with the suppliers of goods or services, as well as concerning employees or interns or candidates for employment or internships,

3) fulfill obligations of the Controller, including obligations concerning court and administrative proceedings,

4) protect interest of the person providing personal data or another person, in connection to providing legal services,

5) resulting from legitimate interests pursued by the Controller or by a third party, including in scope of pursuing claims, defending against claims, ensuring ICT security, using control systems, performing corporate obligations, for archiving purposes, as well as providing services to the client, in situations where the customer's interest overrides the interests, rights and freedoms of the data subject (Article 6 (1) (f) of the GDPR),

4. To the extent that your personal data is necessary to conclude or perform a contract concluded with the Controller/ provide services by the Controller, providing your personal data is necessary to conclude this contract / perform services. If such data is not provided, the Controller will not be able to conclude and perform the contract / provide services.

5. The Controller does not transfer personal data outside the European Economic Area, except for IT services or tasks.

6. Your personal data in connection with their processing for the purposes set out above in point 3 may be entrusted for processing or transferred to other entities, primarily to:

1) shareholders, employees and/or interns of the Controller,

2) entities administering Controller’s IT and ICT systems and its servers,

3) competent authorities and courts, including the Supreme Court, common courts and administrative courts,

4) service providers or suppliers, including Polish Post, a bank servicing the Law firm, an accounting office, as well as other service providers or suppliers.

7. The Controller will process the personal data referred to above for the period necessary to achieve the individual purposes of processing, i.e. for the period necessary to perform the contract / provide services, and after that period for the period required by law or to secure any claims or protect against them, while in the scope of point 3 (5) until the Controller fulfills the obligations. In the case of personal data collected in the course of proceedings conducted by a legal advisor as part of the profession, personal data will be stored for no longer than 10 years from the end of the year in which the proceedings ended.

8. You have the right to:

1) access the personal data (art. 15 GDPR),

2) obtain the rectification of inaccurate personal data (art. 16 GDPR),

3) obtain the erasure of personal data (art. 17 GDPR),

4) obtain restriction of processing the personal data (art. 18 GDPR),

5) transmit the personal data to another controller (art. 20 GDPR),

6) object the processing of personal data (art. 21 GDPR),

7) lodge a complaint with a supervisory authority (art. 77 GDPR),

8) an effective judicial remedy against a controller (art. 79 GDPR),

9) to compensation (art. 82 GDPR).

9. Personal data in the field of legal assistance within the meaning of art. 3 sec. 4 of the Act on legal advisers is privileged. For this reason, some rights are limited under the terms of the Act on legal advisers - the rights specified in art. 15, 16, 18 and 19 of the GDPR and art. 21 GDPR (to the extent that the data was obtained in connection with the provision of legal assistance).

10. If you have any questions or concerns, please contact the personal data Controller at the Controller's address indicated above.