Information about personal data processed by

Process Diagnostic And Control sp. z o.o. sp.k.

 

  1. Introduction

 

  • Process Diagnostic and Control Sp z o.o. Sp.K (hereinafter referred to as “the Administrator”) is the administrator of personal data as defined in the Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of natural persons in connection with the processing of personal data and on the free movement of such data and the repeal of Directive 95/46 / EC (general data protection regulation – hereinafter called “RODO”).
  • The Data Administrator’s seat is located in Poznań (60-106), at Kacza 17/1 Street. The Administrator can also be contacted by phone at +48 (61) 6618303 or by e-mail sent to the address: biuro@pdc-automatyka.pl
  • The administrator processes personal data concerning the following categories of natural persons:candidates for work,
  • employees and former employees of the Administrator,
  • family members of employees,
  • persons indicated by employees to be notified in the event of an accident,
  • Administrator’s clients and contractors,
  • natural persons representing the Administrator’s clients or contractors,
  • persons using the contact form on the Administrator’s website.

 

  1. Legal basis, purpose and period of data processing. Data recipient categories.

 

2.1. Personal data of candidates for work

 

  • Personal data included in the recruitment applications are processed in order to carry out the recruitment process under which the application was submitted. The data is processed until the end of this process, but no longer than 3 months from the date of submitting the recruitment application.
  • If personal data is also to be used for the purposes of future recruitment, separate consent must be provided. In this case, the data will also be processed for purposes related to the recruitment processes conducted by the Administrator in the future, however, for a period not longer than 2 years from the date of sending the application.
  • Personal data including first and last name, date of birth, address of residence (correspondence), education and course of previous employment are processed on the basis of art. 221 of the Labor Code, and providing these data is mandatory. Lack of this data may be the basis for not considering the application in the recruitment process.
  • Providing other data is voluntary and their processing may take place on the basis of consent to the processing of personal data. If the declaration of consent to their processing has not been included in the content of the application, please send the following statement: “I agree to the processing of all my personal data contained in the submitted application for recruitment purposes”. In the absence such a statement, the data will be deleted.
  • The consent to data processing may be revoked at any time. In this case, data not covered by the consent will not be included in the recruitment process. Withdrawal of consent does not affect the legality of the processing, which was made on the basis of consent, before its withdrawal.
  • Personal data can also be processed to establish, investigate or defend against claims if the claims relate to recruitment. The data will be processed for this purpose for the period during which it will be possible to investigate and enforce claims on this account. The basis for their processing for this purpose will be the justified interest of the Administrator, consisting in the right to assert and defend against claims, in accordance with art. 6 par. 1 lit. f) RODO.
  • Personal data of candidates may be made available to entities with which the employer cooperates in the performed activity, such as entities providing human resources, in the scope of BHP, accounting or legal.

 

2.2. Data of employees and former employees

 

  • Employees ‘personal data includes data provided to the Employer in connection with the employment process and data found in the employees’ personal files and processed in order to fulfill the Employer’s obligations arising from the employment relationship for the time of its duration. After the ending the employment relationship, personal data will also be processed for archiving purposes and related to determining the right to retirement benefits over a period of 50 years. In the case of contracts concluded after January 1, 2019, this period is 10 years.
  • The basis for processing personal data referred to the art. 221 of the Labor Code is art. 6 par. 1 lit. b) and c) the RODO in connection with art. 49 par. 2 of the Act on the social insurance system, art. 50 of the Act on general defense duty and art. 125 par. 4 of the Act on old-age and disability pensions from the Social Insurance Fund. The data is processed in order to fulfill the obligations arising from the employment contract and in order to fulfill the obligations imposed on the Administrator by the law.
  • Other data processed based on the employee’s consent. Consent can be withdrawn at any time. Withdrawal of consent does not affect the legality of the processing, which was made on the basis of consent before its withdrawal. Lack of consent, or its withdrawal, can not be the basis of unfavorable treatment and can not cause any negative consequences, especially it can not be a reason justifying refusal to employ, termination of employment contract or its termination without notice by the employer.
  • Employee data can also be processed by the employer to determine, assert or defend against claims related to the employment relationship. The data will be processed for this purpose for the period during which it will be possible to investigate and enforce claims on this account. The basis for their processing for this purpose will be the justified interest of the Administrator, consisting in the right to assert and defend against claims, in accordance with art. 6 par. 1 lit. f) RODO.
  • Personal data may be made available to entities with which the employer cooperates in the performed activity, such as entities providing human resources, occupational health and safety, occupational medicine, accounting or legal services. In addition, to the extent required by law, they may be transferred to authorized ofices, including tax administration, military commandant supplements, the Social Insurance Institution and inspection offices.
  • In addition, business contact details may be provided to clients or counterparties of the Administrator as well as to other entities within the reasonable scope of employee duties of the data subject.

 

2.3. Data of the employee’s family members

 

  • The Administrator processes the details of family members of employees, to the extent in which they were given by employees, in connection with the inclusion of the employee’s family members by social insurance and health insurance. The basis for data processing by the Administrator in this case is the need for the Administrator to perform obligations under the law, in accordance with art. 6 par. 1 lit. c RODO. These data are processed for the duration of the employee’s employment.
  • Personal data of the employee’s family members may be made available to entities with which the employer cooperates in the performed activity, such as entities providing human resources, BHP, occupational medicine, accounting or legal services, moreover, to the extent required by law, they may be transferred to authorized institutions, including the Social Insurance Institution and inspection institution.

 

2.4. Data of persons to be notified in the event of an accident

 

  • The Administrator processes personal data including the first name, last name, mailing address and contact phone number of persons who have been given to the Administrator by an employee. The persons will be notified in the event of an accident at work.
  • Personal data are processed in order to enable the Administrator to notify such persons about an accident at work concerning an employee, which is a legitimate interest of the Administrator and the employee (Article 6 paragraph 1 letter f RODO). These data are processed for the duration of the Employee’s employment.
  • Personal data of the employee’s family members may be made available to entities with which the Administrator cooperates in the performed activity, such as entities providing human resources, occupational health and safety, occupational medicine, accounting or legal, in addition, to the extent required by law they may be transferred to authorized institutions, including the Insurance Social Institution and control authorities.

 

2.5. Data of clients and contractors

 

  • The Administrator processes the contact details and identification data of their clients and contractors who are natural persons, including persons running a sole proprietorship.
  • Personal data is processed for the purpose and to the extent necessary for the conclusion and performance of contracts concluded by the Administrator with the persons which the data are concerned. The basis for the processing of these data is art. 6 par. 1 lit. b RODO. Personal data are processed for the duration of the contracts, and for the period and to the extent to which, in accordance with applicable regulations, the Administrator is obliged to keep accounting records regarding such contracts.
  • The data may also be processed by the Administrator in order to establish, assert or defend against claims related to concluded contracts. The data will be processed for this purpose for the period during which it will be possible to investigate and enforce claims on this account. The basis for their processing for this purpose will be the justified interest of the Administrator, consisting in the right to assert and defend against claims, in accordance with art. 6 par. 1 lit. f) RODO.
  • Personal data may be made available to employees of the Administrator, entities with whom he cooperates in the performed activity, such as entities providing accounting or legal services, moreover, to the extent required by law, they may be transferred to authorized institutions, including tax administration authorities and control authorities. The data may also be transferred to entities through which the Administrator performs its services, such as subcontractors or carriers.

 

2.6. Data of employees and representatives of clients and contractors

 

  • The Administrator processes the contact details of employees and representatives of their clients and contractors. These data are processed for the purpose and to the extent necessary to enable the Administrator to contact in matters relating to cooperation with clients and contractors. These data are processed during the period of cooperation with a specific customer or contractor.
  • The basis for the processing of these data is the legitimate interest pursued by the Administrator (Article 6 (1) (f) of the RODO), which is the need to perform or enforce performance of contracts.
  • The data may also be processed by the Administrator in order to establish, assert or defend against claims related to agreements concluded with the Administrator’s clients or contractors. The data will be processed for this purpose for the period during which it will be possible to investigate and enforce claims on this account. The basis for their processing for this purpose will be the justified interest of the Administrator, consisting in the right to assert and defend against claims, in accordance with art. 6 par. 1 lit. f) RODO.
  • Personal data can be made available to employees of the Administrator, entities with whom he cooperates in the performed activity, and entities through which the Administrator performs his services, such as subcontractors or carriers.

 

2.7. Data of people using the contact form on the website

 

  • The Administrator processes personal data of persons using the contact form on the Administrator’s website, including name, surname, telephone number and e-mail address, in order to make contact and answer questions asked in the form. The basis for data processing is the consent of the persons sending the query, in connection with art. 6 par. 1 lit. and RODO. Consent can be withdrawn at any time. Withdrawal of consent does not affect the legality of the processing, which was made on the basis of consent before its withdrawal.
  • In the case where the inquiries concern the conclusion of a contract, the data may also be processed to the extent necessary to conclude it, based on art. 6 par. 1 lit. b. RODO.
  • Personal data may be made available to employees of the Administrator or entities with whom he or she cooperates in the performed activity to the extent necessary to answer the question, make contact with the person sending the form to the Administrator or conclusion of the contract.

 

  1. Automated decision making

 

Personal data processed by the Administrator are not subject to automated decision making, including profiling.

 

  1. Data transmission outside the European Economic Area

 

The Administrator does not provide personal data outside the European Economic Area.

 

  1. Rights of persons who the data conern:

 

  • To the extent that the legal basis for data processing is legally justified interest of data’s Administrator based on art. 6 lit. f) RODO, persons which the data concern have the right to object at any time to the processing of their personal data based on that basis – for reasons related to their specific situation. In the event of opposition, the Administrator is no longer allowed to process such personal data, unless he demonstrates the existence of valid legally grounds for processing, overriding interests, rights and freedom of the person who the data concern or grounds for establishing, investigating or defending claims.
  • If the data is processed in an automated manner, on the basis of a contract or based on consent for their processing, the persons who the data concern have the right to receive their personal data that they provided to the Administrator and then send it to another chosen by them, personal data administrator. They may also request that personal data be sent by the Administrator directly to such an administrator, if it is technically possible. In this case, the Administrator will send the customer’s personal data in the form of a file in a machine-readable format and allowing the received data to be sent to another personal data administrator.
  • The persons have the right to access their data and correct them. In case of questioning the correctness of the data being processed, it is possible to demand limiting their processing – for a period allowing to check the correctness of this data.
  • When data is no longer needed for the purposes for which it was collected or processed, you can request removal or restriction of processing (if it is needed to establish, assert or defend claims).
  • If it is found that the processing is illegal, you can request to limit their processing or to delete them.
  • If it is decided that the processing of personal data will violate the ruless of the RODO, the persons who the data concern have the right to lodge a complaint with the supervisory authority – the President of the Office for Personal Data Protection, Stawki 2 Street, 00-193 Warsaw.