I. In connection with the entry into force of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR), we inform you that ANVI GROUP sp. z o.o. processes personal data: of clients who are individuals; of the Administrator’s clients who are legal entities or organisational entities that are not legal entities, personal data of persons entitled to provide such persons, employees and employees of such clients; of service providers who are natural persons, as well as employees and employees of service providers; of persons seeking assistance from the Administrator in the field of legal advice provided by the Administrator, as well as persons whose data was obtained in the course of providing such services to the Administrator’s clients; those who permanently or periodically cooperate with the Administrator in the provision of services by the Administrator; persons regarding whom the Administrator has data from and in accordance with applicable law, for the provision of legal services; persons regarding whom the Administrator performs legal acts; persons using the newsletter or who have requested to receive offers. The administrator of your personal data is ANVI GROUP sp. z o.o. (LLC), with its registered office in Warsaw, ul. Williama Heerleina Lindleya 16, registered in the District Court, Commercial Department of the National Court Register under the number KRS:0001027089, with the share capital of PLN 5,000, NIP:7011135492, REGON:524816807, hereinafter referred to as the “Administrator”. Notwithstanding the above, additional contact information of the Administrator is provided below: info@anvi-group.com PURPOSES OF DATA PROCESSING, LEGAL AND JURISDICTION. We inform you that your personal data will be processed when it is necessary for: conclusion and performance of an agreement, i.e. on the basis of Art. 6(1)(b) of the GDPR, including, in particular, legal services contracts or Agreements for the provision of services to the Administrator by providers of such services; performance of legal obligations imposed on the personal data Administrator in accordance with Art. 6(1)(c) of the GDPR, arising from European and Polish law; for the purpose of legitimate interests pursued by the Administrator or a third party in accordance with Art. 6 paragraph 1 letter f GDPR, for which the Administrator acknowledges, in particular: filing claims, installation and protection against claims, fraud prevention, ensuring environmental safety, IT, application of the internal control system, Administrator control and registration of entry and exit from the Administrator Platform, determination of conflicts of interest and violations of ethics to the extent necessary to combat abuse for archival and statistical purposes, as well as the provision of services for the benefit of the customer, in a situation in which the interests of the client prevail over the interests, rights and freedoms of data subjects; hiring, establishing cooperation (Article 6 paragraph 1 letters A and B GDPR, that is, to the extent specified in the provisions of labor law, the legal basis is the need to take measures to conclude an agreement (Article 6 paragraph 1 letter B GDPR), and in the area beyond the scope of labor law, the basis for data processing); taking measures to respond to a sent message (Article 6 paragraph 1 letter f GDPR, that is, the legitimate interest of the Administrator in processing correspondence); accepting a request for consideration on the basis of the GDPR (Article 6, paragraph 1, letter C of the GDPR, i.e. the obligation arising from the GDPR, provide the person to whom the data relates with information about the actions taken in connection with the assignment); processing business card data when they have been returned (for the purpose of correspondence, establishing a commercial contact and any other purposes for which they were provided to us); running a reception area (Article 6(1)(f) of the GDPR for the purpose of scheduling a meeting with a representative of the Administrator and investigating or defending against claims); archiving documents (Article 6(1)(c) or (f) of the GDPR); carrying out our own marketing and advertising activities (Article 6(1)(f) of the GDPR); carrying out marketing and advertising activities on the basis of separately given consent (Article 6(1)(a) of the GDPR); transmission of commercial information in electronic form, including sending out newsletters (Article 10, paragraph 2, of the Act of 18 July 2002 on the Provision of Services by Electronic Means (Article 10, paragraph 2017, item 1219) – Article 6, paragraph 1, letter A (GDPR); use of telecommunications terminal equipment and automated systems called for direct marketing purposes in accordance with Article 172 of the Act of 16 July 2004 “Law, Telecommunications” (Dz. u. z 2017 r. pos. 1907 p. as amended) (Article 172 of the Act of 16 July 2004 “Law, Telecommunications” (Dz. u. z 2017 r. pos. 1907 p. as amended); conformity of the content of the portal info@anvi-group. com with the interests of users, including profiling of Users of the web portal Administrator, as well as detection of bots and abuse, as well as statistical measurements and improvement of customer service; );direction of mailing (if consent to receive it is revealed).
III. CATEGORIES OF RECEIVING DATA The Administrator processes personal data, and in addition, for the purpose of implementing the agreement, the Administrator has the right to exchange collected or processed personal data of subjects, including: employees; employees working with the Administrator; other persons providing services on behalf of the Administrator and independently deciding the purposes and methods of processing data, accounts receivable of buyers; persons authorized in accordance with applicable law (in particular, courts and government agencies); economic information agencies; courier companies; payment service providers; Internet providers, domain and hosting, payment system operators, including online, accounting and financial auditors; IT service providers, network operators; service providers, including advertising, Google, social networks; firms, seizure and destruction of documents, legal entities cooperating with the Administrator; banks, financial institutions, compensation, insurance companies, government agencies, KAS, social insurance fund; as well as other persons authorized by the client. The data will be transferred to the minimum required. The processed personal data are not transferred externally to recipients other than those specified above in a form that allows any identification of Users. CATEGORIES OF PROCESSED PERSONAL DATA
The administrator processes the following categories of personal data (if provided to him): first name, last name; residential/correspondence address; e-mail address; telephone number; bank account number; TIN (if required for the provision of the service); additionally, the company name, business address, TIN number; other personal data.
In addition, the Administrator may process other categories of personal data if this data cannot be attributed to any of the specified groups and the processing is carried out for the purposes specified in this information; Your personal data will not be transferred to third parties unless they are obtained within the framework of Google Analytics. The data may then be transferred to the USA. The provision of data is necessary for the conclusion and performance of contracts and the provision of services, as well as for other purposes described above provided for in this article, in case of failure to provide data, it is impossible to conclude the above contracts and their performance, as well as to provide services, and to perform the actions described above, except in cases provided for by law. You have: the right to access data, including receiving a copy of the data; the right to request correction of data (Article 16 GDPR); the right to erasure of data “the right to be forgotten” (Article 17 GDPR); the right to limit data processing (Article 18 GDPR); the right to transfer personal data (Article 20 GDPR); the right to object (Article 21 GDPR); the right to withdraw consent (Article 7 GDPR); the right to lodge a complaint with a supervisory authority responsible for the protection of personal data. V. DATA STORAGE PERIOD Personal data will be processed for the period in accordance with applicable law or, in certain cases, until the consent is withdrawn. Personal data, in accordance with applicable law, will be processed for as long as required by the relevant laws, in particular tax and accounting laws, and as long as it is necessary to establish, investigate or defend claims, and in particular: a) the purpose of fulfilling the contract/contracts – until their termination or expiry; b) the establishment, investigation or defense of claims – until the expiry of the limitation period for claims or objections; c) the purpose of fulfilling the legal obligations imposed on the Administrator – until the expiry of the obligations arising from the provisions of the Law. In case of consent to the processing of personal data, as a rule, until the consent to the processing of personal data is denied or revoked, if we processed the data on such a basis. Your personal data is subject to profiling in terms of personal preferences and interests based on analytical data collected on the website info@anvi-group.com, as well as for statistical and marketing purposes, for the purpose of sending out newsletters (if consented to). The privacy policy for processing is also available online at info@anvi-group.com. You can also contact us at any time for further information. On behalf of: ANVI GROUP sp. z o.o., from 01.07.2022.