I. Personal data administrator
The administrator of personal data within the meaning of Art. 4 point 7 of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (GDPR) is Regnitum sp. z o.o. with its registered office at Szczeblewskiego 15, 81-458 Gdynia, NIP: 5861659387, REGON: 191200989.
The company was established in 1996 and was entered into the commercial register RHB No. 11495 by the decision of the District Court, 12th Registration and Economic Department in Gdańsk, in the register of enterprises KRS 0000060795.
Contact details of the data administrator: telephone: +48 512 355 126, e-mail address: email@example.com.
Administrator pursuant to Art. 32 section 1 GDPR complies with the principle of personal data protection and applies appropriate technical and organizational measures to prevent accidental or unlawful destruction, loss, modification, unauthorized disclosure or unauthorized access to personal data processed in connection with the business.
Providing personal data is voluntary, but necessary in order to establish cooperation and/or conclude a contract with the data administrator.
The data controller processes personal data only to the extent necessary for the proper provision of services or to take actions at the request of the data subject.
II. Purpose and basis for processing personal data
The administrator processes personal data for the following purposes:
- preparing a commercial offer in response to the customer's interest, which is the legitimate interest of the data controller (Article 6(1)(f) of the GDPR); provision of services electronically via the Internet Portal, based on the concluded contract (Article 6(1)(b) of the GDPR);
- handling the complaint process, based on the obligation imposed on the data controller in connection with applicable law (Article 6(1)(c) of the GDPR);
- accounting related to issuing and accepting settlement documents, pursuant to tax law provisions (Article 6(1)(c) of the GDPR);
- archiving data for the purpose of establishing, investigating or defending against claims or the need to prove facts, which is the legitimate interest of the data controller (Article 6(1)(f) of the GDPR);
- contact by telephone or via e-mail, in particular in response to inquiries addressed to the data controller, which is the legitimate interest of the data controller (Article 6(1)(f) of the GDPR);
- sending technical information regarding the functioning of the Online Portal and the services used by the customer, which is the legitimate interest of the data controller (Article 6(1)(f) of the GDPR);
- marketing of the data controller's own products, which is his legitimate interest (Article 6(1)(f) of the GDPR) or is based on previously granted consent (Article 6(1)(a) of the GDPR).
III. Data recipients. Transfer of data to third countries
The recipients of personal data processed by the data controller may be entities cooperating with the data controller when it is necessary for the performance of the contract concluded with the data subject. The recipients of personal data processed by the data controller may also be subcontractors - entities whose services the data controller uses to process data, e.g. accounting offices, law firms, entities providing IT services (including hosting services).
The data administrator may be obliged to provide personal data under applicable law, in particular to provide personal data to authorized state authorities or institutions.
Personal data may be transferred to an entity based outside the European Economic Area, i.e. to Google LLC or Facebook Inc. The transfer of data is based on appropriate legal safeguards, which are standard contractual clauses for the protection of personal data approved by the European Commission.
IV. Personal data storage period
The data administrator stores personal data for the duration of the contract concluded with the data subject and after the end of its validity for purposes related to pursuing claims related to the contract, fulfilling obligations arising from applicable legal provisions, but for a period not longer than the limitation period in accordance with the provisions of law. Civil Code.
The data administrator stores personal data contained in settlement documents (e.g. invoices) for the period of time specified in the provisions of the Goods and Services Tax Act and the Accounting Act.
The data administrator stores personal data processed for marketing purposes for a period of 10 years, but no longer than until the consent to data processing is withdrawn or an objection to data processing is raised.
The data controller stores personal data for purposes other than those indicated in section. 1-3 for a period of 3 years, unless consent to data processing has been withdrawn earlier, and data processing cannot be continued on a basis other than the consent of the data subject.
V. Rights of the data subject
Every data subject has the right:
- access – obtaining confirmation from the administrator whether her personal data is being processed. If data about a person is processed, he or she is entitled to access them and obtain the following information: about the purposes of processing, categories of personal data, information about the recipients or categories of recipients to whom the data have been or will be disclosed, about the period of data storage or about the criteria for their processing. determining the right to request rectification, deletion or limitation of the processing of personal data of the data subject, and to object to such processing (Article 15 of the GDPR);
- to receive a copy of the data - to obtain a copy of the data subject to processing, the first copy is free of charge, and for subsequent copies the administrator may impose a reasonable fee resulting from administrative costs (Article 15(3) of the GDPR);
- to rectify - request the rectification of incorrect personal data or the completion of incomplete data (Article 16 of the GDPR); - to delete data
- request the deletion of personal data if the administrator no longer has a legal basis for their processing or the data is no longer necessary for the purposes of processing (Article 17 of the GDPR);
- to limit processing - request to limit the processing of personal data (Article 18 of the GDPR), when: a) the data subject questions the accuracy of the personal data - for a period enabling the administrator to check the accuracy of the data, b) the processing is unlawful, and the data subject objects to their deletion and requests the restriction of their use, c) the controller no longer needs the data, but they are needed by the data subject to establish, pursue or defend claims, d) the data subject , has objected to the processing - until it is determined whether the legitimate grounds of the controller override the grounds of the data subject's objection;
- to transfer data - receiving personal data concerning him or her in a structured, commonly used, machine-readable format, which he or she provided to the controller, and requesting that these data be sent to another controller if the data is processed on the basis of the data subject's consent or a contract with him or her contained and if the data are processed in an automated manner (Article 20 of the GDPR);
- to object - to object to the processing of her personal data for the legally justified purposes of the administrator, for reasons related to her particular situation, including profiling. The controller then assesses the existence of valid legitimate grounds for processing, overriding the interests, rights and freedoms of data subjects, or grounds for establishing, pursuing or defending claims. If, according to the assessment, the interests of the data subject are more important than the interests of the controller, the controller will be obliged to stop processing data for these purposes (Article 21 of the GDPR).
To exercise the above-mentioned rights, the data subject should contact the controller using the provided contact details and inform him which right he wants to exercise and to what extent.
The data subject has the right to lodge a complaint with the supervisory authority, which is the President of the Personal Data Protection Office in Warsaw.
VI. Automated decision making. Profiling
Personal data will not be processed automatically, including through profiling.
VII. Facebook plugins
The administrator uses the Social Plugins of the social networking site Facebook.com. Plugins are marked with the portal's logo, icon or the addition "Facebook Social Plugin". If a user launches a website that contains such a plug-in, the browser will create a direct connection to the Facebook server.
The content of the plug-in is transferred directly to the browser by Facebook.com and incorporated into the website. In this respect, the administrator has no influence on the size of the data that Facebook collects using this plug-in. If a user is a Facebook member but does not want the website to associate collected user data, he or she can make appropriate settings in his or her Facebook account.
This entity is responsible for granting access to the usage data provided by the user to Facebook and in case of doubt, please contact this entity directly or make changes to your Facebook account settings.
VII. Other relevant marketing techniques
The administrator uses remarketing techniques that allow advertising messages to be tailored to the user's behavior on the website, which may give the illusion that the user's personal data are used to track him, but in practice, no personal data is transferred from the administrator to advertising operators. The technological condition for such activities is that cookies are enabled.
The portal does not automatically collect any information, except for information contained in cookies. Cookies (so-called "cookies") are IT data, in particular text files, which are stored on the Service User's end device and are intended for using the Portal's websites.
Cookies usually contain the name of the website they come from, their storage time on the end device and a unique number.
The entity that places cookies on the Service User's end device and obtains access to them is the Service Provider within the meaning of the Portal Regulations.
Cookies are used for the following purposes:
- adapting the content of the Portal's websites to the preferences of the Service User and optimizing the use of websites; in particular, these files make it possible to recognize the Service User's device and properly display the website, tailored to his individual needs;
- creating statistics that help understand how Users use websites, which allows improving their structure and content;
- maintaining the Service User's session.
The Portal uses various cookies:
- "session" (session cookies) and "persistent" (persistent cookies). "Session" cookies are temporary files that are stored on the Service User's end device until they log out, leave the website or turn off the software (web browser). "Permanent" cookies are stored on the Service User's end device for the time specified in the cookie parameters or until they are deleted by the Service User;
- "necessary" cookies enabling the use of services available on the Portal, e.g. authentication cookies used for services requiring authentication within the Portal;
- cookies used to ensure security, e.g. used to detect abuses in the field of authentication within the Portal;
- "performance" cookies, enabling the collection of information on how the Portal's websites are used;
- "functional" cookies, enabling "remembering" the settings selected by the Service User and personalizing the Service User's interface, e.g. in terms of the selected language or region from which the Service User comes, font size, appearance of the website, etc.;
- "advertising" cookies, enabling the provision of advertising content to Service Users more tailored to their interests.
In many cases, the software used to browse websites (web browser) allows cookies to be stored on the Service User's end device by default. Service recipients may change cookie settings at any time. These settings can be changed in particular in such a way as to block the automatic handling of cookies in the web browser settings or to inform each time they are placed on the Service User's device. Detailed information about the possibilities and methods of handling cookies is available in the software (web browser) settings.
Personal Data Protection Regulation
Regnitum sp. z o. o. is an entity authorized to audit financial statements, registered by the Polish Audit Oversight Agency under number 1538.
Due to his activities, the auditor is insured against civil liability.
The Company's Management Board is managed by Mateusz Jankowski (President of the Management Board, statutory auditor no. 13833) and Krzysztof Jankowski (Vice-President of the Management Board, statutory auditor no. 6928).
Do you want to cooperate with us?
Complete the offer questionnaire at
audit of financial statements
Mo .- Fr.: 8:00-16:00
See what they write about us
“Initially, I was afraid of the complicated procedure and difficulties associated with the liquidation of my company. However, the Regnitum team responsible for managing the process advised and helped me every step of the way. I was impressed by their knowledge and ability to solve even the most difficult problems that arose during the liquidation. Communication with the team was great and I can recommend their services with clear conscience.”
“I had the pleasure of using the services of a certified auditor and I am very pleased with the results. Mr. Krzysztof, who was our auditor, turned out to be not only an expert in his field, but also a very competent and friendly professional. He was able to answer all our questions and doubts and clearly explain complex issues regarding our finances. His insight and precision were impressive, which benefited us greatly in our company.”
“I am very satisfied with the services of Regnitum auditors. First of all, thank you for your commitment to your work. The certified auditor who handled my case turned out to be a very competent person who carefully analyzed the financial documentation of my company. Additionally, he was able to explain difficult financial concepts to me in a way that I could understand. I recommend."