Privacy policy
Privacy Policy
GDPR is the General Data Protection Regulation (Regulation of the European Parliament and of the Council (EU) of April 27, 2016, 2016/679), which regulates the protection of personal data within the European Union.
The purpose of the GDPR is to strengthen and unify personal data protection legislation in the European Union.
The purpose of this policy is to provide information about what personal data we collect, for what purposes, how we use it and who we are. It is intended to set out your rights regarding our processing of your personal data. This privacy policy does not apply to our processing of the personal data of the employees.
Who is the Personal Data Administrator?
We hereby inform you that the administrator of your personal data is:
RNRS COMPANY Sp. z o.o. with registered office in Warsaw, 75A/7 Złota Street, registered with the District Court in Warsaw under the number of the National Court Register: 0001104064, TIN 5273111273, number of the National Register of Economic Entities (REGON) 528559690, hereinafter referred to as the Personal Data Administrator.
You can contact us regarding the protection of personal data at the following e-mail address: hello@rnrs.solutions or at RNRS COMPANY Sp. z o.o., 75A/7 Złota Street, 00-819 Warsaw, with the note “GDPR”.
Personal Data Protection Officer
The Administrator has not appointed a Personal Data Protection Officer.
What are the purposes and grounds for processing personal data?
In order to provide services in accordance with the scope of our activities, the Personal Data Administrator processes your personal data for various purposes, but always in accordance with the law.
Below you will find detailed purposes of personal data processing, along with the legal basis:
- In order to perform actions at your request, before concluding a service agreement in accordance with the scope of our activities, we process the following personal data:
- Name and surname, company name, Universal Electronic Population Registration System (PESEL) number, registered office of a company, address for correspondence, e-mail address, telephone number, TIN, number of the National Register of Economic Entities (REGON), National Court Register (KRS), website address, information contained in state registers, bank account number, employee data: name, surname, contact details, position.
- The legal basis for such data processing is Article 6 paragraph 1 letter b of the GDPR, which allows the processing of personal data if it is necessary for the performance of a contract or the implementation of measures for the conclusion of a contract, as well as Article 6 paragraph 1 letter f of the GDPR (i.e., the legitimate interest of the data administrator) in the case of processing personal data of persons who are not the other party to the future contract, for example, persons acting on behalf of a counterparty.
- For the purpose of concluding and performing a contract, i.e. providing services, we process the following personal data:
- Name and surname, company name, Universal Electronic Population Registration System (PESEL) number, registered office of a company, address for correspondence, e-mail address, telephone number, TIN, number of the National Register of Economic Entities (REGON), National Court Register (KRS), website address, information contained in state registers, bank account number, employee data: name, surname, contact details, position, as well as other personal data contained in documents you provide to us.
- The legal basis for such data processing is Article 6 paragraph 1 letter b of the GDPR, which allows the processing of personal data if it is necessary for the performance of a contract or the implementation of measures for the conclusion of a contract between us.
- In order to fulfill our legal obligations, for example: issuing VAT invoices, accounting documents and tax calculations, we process the following personal data:
- Name and surname, company name, Universal Electronic Population Registration System (PESEL) number, registered office of a company, address for correspondence, e-mail address, telephone number, TIN, number of the National Register of Economic Entities (REGON), National Court Register (KRS), website address, information contained in state registers, bank account number, employee data: name, surname, contact details, position.
- The legal basis for such data processing is Article 6 paragraph 1 letter b of the GDPR, which allows the processing of personal data if such processing is necessary for the Administrator to fulfill its obligations arising from the legislation.
- For the purpose of storing unanswered proposals/inquiries, we process the following personal data:
- Name and surname, company name, e-mail address, telephone number or other data provided to us;
- The legal basis for such data processing is Article 6 paragraph 1 letter f of the GDPR, which allows the processing of personal data if the Administrator pursues its legitimate interest in this way (in this case, the Administrator’s interest is to allow the use of our services for a specified period of time without the need to renew the proposal).
- In order to present your candidacy to the employer, we process the following personal data:
- Name(s) and surname, CV, contact details, documents created in the course of the recruitment process.
- The legal basis for such data processing is Article 6 paragraph 1 letter a of the GDPR, which allows the processing of personal data on the basis of your consent.
- In order to present your candidacy in the future to a new employer, we process the following personal data:
- Name(s) and surname, CV, contact details, documents created in the course of the recruitment process.
- The legal basis for such data processing is Article 6 paragraph 1 letter a of the GDPR, which allows the processing of personal data on the basis of your consent.
- For the administration of the website (automatically saving the following data in so-called server logs every time you use our website www.rnrs.solutions), we may process personal data such as:
- IP address, server date and time, web browser information, operating system information.
- The legal basis for such data processing is Article 6 paragraph 1 letter f of the GDPR, which allows the processing of personal data if the Administrator pursues its legitimate interest in this way (in this case, the Administrator is interested in the ability to administer the website). More information can be found in our Cookies Policy.
- In order to fulfill the purposes of direct marketing, we process the following data:
- Name and surname, company name, e-mail address, telephone number, address for correspondence, data contained in state registers, for example, the National Court Register, the Central Accounting and information on economic activities, or other data that you have provided to us;
- The legal basis for such data processing is Article 6 paragraph 1 letter a of the GDPR, which allows the processing of personal data on the basis of voluntary consent, as well as Article 6 paragraph 1 letter f of the GDPR, which allows the processing of personal data if the Administrator pursues its legitimate interest in this way.
How to exercise the right to withdraw consent?
If personal data is processed on the basis of your consent, you have the right to withdraw your consent at any time, at your discretion. If you want to withdraw your consent to the processing of personal data, all you need to do is:
- Send a letter directly to the Personal Data Administrator at: RNRS COMPANY Sp. z o.o., 75A/7 Złota Street, 00-819 Warsaw;
- Send an e-mail to: hello@rnrs.solutions with the note “GDPR”.
If the processing of your personal data was based on your consent, its withdrawal does not make the processing of personal data up to that point unlawful. In other words, until the consent is withdrawn, we are authorized to process your personal data and its withdrawal does not affect the lawfulness of the previous processing.
Requirements for the provision of personal data
Providing any personal data is voluntary and depends on your decision. However, in some cases, the provision of specific personal data is necessary to meet your expectations regarding the use of the service provided by the Personal Data Administrator.
To receive a commercial proposal, you shall provide your e-mail address – without it, we cannot meet your expectations and maintain the high quality of service, which is very important to us.
Do we use automatic decision-making and profiling?
In order to carry out marketing activities, the Administrator, in some cases, uses profiling (Facebook Ads, Google Ads campaigns). This means that, through automatic data processing, the Administrator evaluates selected factors about individuals in order to analyze their behavior or make a forecast for the future. When performing this type of profiling, the Administrator does not take any actions that could lead to legal consequences for the User or have a similar significant impact on the User.
To whom can we transfer your personal data?
We can transfer your personal data to our employees who need to have access to the data to fulfill our obligations or to carry out activities for your benefit. Like most entrepreneurs, we also use the assistance of other entities in our activities, which often involves the need for the provision of personal data. Therefore, if necessary, we transfer your personal data to the following recipients:
- Entities that provide us with marketing services, organize trainings and events;
- Entities that maintain our information and teleinformation systems;
- Entities engaged in payment activities (banks, payment institutions);
- Entities engaged in postal and courier activities;
- Research agencies/institutions acting on our behalf;
- Entities that provide us with consulting, advisory, audit services or legal, tax, accounting, human resources and training assistance;
- Entities that are looking for employees for their own needs.
In addition, it may happen that, for example, based on a relevant legal provision or a decision of a competent authority, we also have to transfer your personal data to other organizations, state or private, including, among others: the Social Insurance Office, the Tax Office, the National Tax Administration, etc. However, we assure you that we analyze each request for personal data very carefully and thoroughly to prevent accidental provision of information to an unauthorized person.
Do we transfer your personal data to third countries?
We hereby inform you that your personal data may be transferred outside the European Economic Area in connection with our use of cloud services from providers outside the EEA.
How long can we keep your personal data?
In accordance with the current legislation, we process your personal data within the time necessary to achieve the set goal. After this period, your personal data will be deleted without the possibility of recovery or destroyed.
With regard to certain periods of personal data processing, we inform you that we process personal data for the following periods:
- During the term of the contract, as well as after its termination, but no longer than 5 years – this applies to personal data processed for the purpose of concluding and performing a contract; to personal data related to the fulfillment of the obligations under the tax legislation, for example, storing invoices and bills;
- 1 year – this applies to personal data that was collected in connection with sending a proposal, but no contract was concluded;
- Until the consent is withdrawn or the purpose of processing is achieved, but not more than 2 years – for personal data processed on the basis of the consent; for personal data processed on the basis of the Administrator’s legitimate interest or for marketing purposes;
- Until the time of loss of relevance, loss of usefulness, withdrawal of the consent, but not longer than 5 years for personal data processed on the basis of the consent for the purpose of presenting your candidacy to future employers.
We count the periods in years from the end of the year in which we started processing personal data to simplify the process of deleting or destroying personal data. Calculating the period separately for each event would entail significant organizational and technical difficulties, as well as significant financial costs, so setting a single date for deletion or destruction of personal data allows us to manage this process more efficiently.
The right to be forgotten: Of course, if you exercise your right to be forgotten, such cases are considered individually.
What rights do you have?
We kindly inform you that you have the following rights:
- The right to access the content of your personal data – i.e. to receive information about the purpose and method of processing your personal data and a copy of the data.
- The right to data correction (refutation) – i.e. correction of data if it is incorrect, changed or outdated.
- The right to partial or complete erasure of data (“the Right to be forgotten”) – i.e., erasure of data that is processed without a legitimate legal basis.
- The right to restriction of processing – i.e. limitation of data processing to its storage.
- The right to data transfer – i.e. to receive your personal data that you have provided to us, or to specify another administrator to whom we should transfer it, if technically feasible.
- The right to object to personal data provided voluntarily – i.e., among other things, for direct marketing purposes.
- The right to withdraw your consent – you can withdraw any consent you have given at any time. Please note that after sending your request, we will no longer process your data for the purpose you have indicated, however, until you withdraw your consent, we are authorized to process your data.
We respect your rights arising from the provisions on personal data protection and try to facilitate their realization as much as possible.
Please note that the above rights are not absolute and therefore, in some cases, we may legally refuse to exercise them. However, if we refuse to fulfill a request, we will do so only after careful analysis and only when refusal to fulfill the request is necessary.
With regard to the right to object, we hereby clarify that you have the right to object to the processing of personal data at any time based on the legitimate interest of the Personal Data Administrator in connection with your particular situation. However, you should keep in mind that, according to the regulations, we may refuse to accept the objection if we prove that:
- There are legitimate grounds for processing that are higher than your interests, rights, freedoms, etc.;
- There are grounds for lodging, executing or defending claims.
In addition, you can object at any time to the processing of your personal data for marketing purposes. In this case, upon receipt of your objection, we will stop processing for this purpose.
You can exercise your rights by:
- Sending a letter directly to the Personal Data Administrator: RNRS COMPANY Sp. z o.o., 75A/7 Złota Street, 00-819 Warsaw or
- Sending a letter to the e-mail address: hello@rnrs.solutions with the note “GDPR”.
You have the right to lodge a complaint with the Office for Personal Data Protection
If you believe that your personal data is being processed in violation of the current legislation, you can lodge a complaint with:
The Head of the Office for Personal Data Protection
Office for Personal Data Protection
2 Stawki Street, 00-193 Warsaw
Final Provisions
Within the scope not regulated by this Privacy Policy, the provisions on personal data protection shall apply, in particular:
- General Data Protection Regulation (Regulation (EU) of the European Parliament and of the Council of April 27, 2016, 2016/679)
- Law of May 10, 2018 on the Protection of Personal Data
- Law of July 18, 2002 on the Provision of Services by Means of Electronic Communication
- Law of July 16, 2004 – Telecommunications Law
You will be notified of any changes to this Privacy Policy by e-mail or through notifications on our website: www.rnrs.solutions.
This Privacy Policy comes into force on 01.08.2024.
Cookies Policy
RNRS COMPANY Sp. z o.o., 75A/7 Złota Street, 00-819 Warsaw
What are cookies?
Cookies are short information/text files that are recorded on your computer, phone, tablet, or other device through the websites you visit. Cookies are encrypted so that unauthorized persons cannot access them.
They can be read by us, as the Personal Data Administrator, as well as by systems belonging to other trusted entities whose technologies we use.
For what purpose do we use cookies?
Cookies perform many functions on the website, most often useful ones, which we will try to describe below (if there is not enough information, please contact us):
- Security guarantee – cookies are used to authenticate users and prevent unauthorized use of the client panel. Therefore, they are used to protect the user’s personal data from access by unauthorized persons;
- Impact on the processes and efficiency of using the website – cookies are used to ensure the efficiency of the website and the ability to use the functions available on it, which is possible, among other things, by remembering the settings between subsequent visits to the website. Thanks to these files, you can navigate the website and its individual subpages efficiently;
- Session state – cookies often record information about how visitors use the website, such as which subpages they viewed most often. They also allow us to identify errors that are displayed on some subpages. Cookies that are used to store the so-called “session state” help to improve services and increase the comfort of browsing websites;
- Session state maintenance – if the client is logged in to their panel, cookies allow maintaining the session. This means that after switching to another subpage, you do not need to enter your login and password every time, which makes it easier to use the website;
- Generating statistics – cookies are used to analyze how users use the website (how many open the website, how long they stay on it, what content is of most interest, etc.) This allows us to continuously improve the website and tailor it to the users’ preferences. To track activity and generate statistics, we use Google tools such as Google Analytics; in addition to reports on website usage statistics, the Google Analytics pixel may also be used along with some of the cookies described above to help display more relevant content to the user on Google services (e.g. Google search) and across the Internet;
It should be noted that many cookies are anonymous to us – without additional information, we cannot identify you based on them.
How can cookies be controlled?
Your web browser allows the use of cookies on your device by default, so please agree to the use of cookies the first time you visit. However, you can control and manage the cookies that are set by default. How to do it?
- Control – web browser: if you do not want cookies to be used while browsing a website, in most web browsers you can change the settings to block the automatic processing of cookies completely or to request a notification every time cookies are placed on your device. You can change your settings at any time. For more information on this matter, please visit: https://www.aboutcookies.org/
What happens if you do not agree to the use of cookies?
Respecting the autonomy of all users of the website, we feel obliged to warn you that disabling or restricting the use of cookies may cause quite serious difficulties in using the website, for example, in the form of the need to log in on each subpage, longer page loading times, restrictions in the use of functionality, restrictions in liking the page on Facebook, LinkedIn, Instagram, etc.
How long will we use cookies?
Cookies remain on your device:
- Until you leave the website or turn off the software (web browser) – this mainly applies to technical cookies;
- Some cookies may remain on your device until you manually delete them.
A quick guide on how to disable cookies in your web browsers:
For Firefox:
For Google Chrome:
https://support.google.com/chrome/answer/95647?hl=pl
For Internet Explorer 9:
https://support.microsoft.com/pl-pl/hub/4338813/windows-help
Additional information about the processing of your data
Further information about the processing of your personal data and your rights can be found in our Privacy Policy or by contacting us: RNRS COMPANY Sp. z o.o., 75A/7 Złota Street, 00-819 Warsaw, e-mail: hello@rnrs.solutions.