Niezbędnik Pacjenta – Twoja mobilna pierwsza pomoc 🩺

Twoja mobilna pierwsza pomoc 🩺

Polityka prywatności ENG

APPLICATION PRIVACY POLICY

Patient Essentials

  1. The Administrator of Personal Data of Niezbędnik Pacjenta Mobile Application, hereinafter referred to as the Application, is Niezbędnik Pacjenta sp. z o.o. with its registered office in Wrocław at: ul. Swojczycka 38E, 51-501 Wrocław, entered in the Register of Entrepreneurs of the National Court Register kept by the District Court for Wrocław Fabryczna in Wrocław , VI Commercial Division of the National Court Register, under KRS number: 0001052695, NIP: 8952260617, REGON: 52610088100000 , hereinafter referred to as the Personal Data Administrator.
  2. Any enquiries, requests, complaints regarding the processing of personal data by the Personal Data Controller, hereinafter referred to as Submissions, should be addressed to the following e-mail address: kontakt@niezbednikpacjenta.com.pl. or in writing to the address ul. Swojczycka 38E, 51-501 Wrocław. The content of the Notification should clearly indicate:
  1. the data of the person or persons concerned by the Notification,
  2. the event that gives rise to the Notification,
  3. present their claims and the legal basis for those claims,
  4. indicate the way in which the case is expected to be handled.
  5. We collect the following personal data in our Application:
  1. your name – may be processed when you, as a user of our Application, provide it to us via email , when contacting us by telephone, or by post
  2. telephone number – this may be processed when you contact us by telephone and also when you provide it to us by email, or by post,
  3. e-mail address – this may be processed when you, as an Application user, provide it to us by e-mail, by post as well as when contacting us by telephone,
  4. the IP address of the device and potential personal data contained in cookies – information resulting from the general principles of Internet connections, such as the IP address (and other information contained in system logs), is used for technical and statistical purposes, including in particular the collection of general demographic information (e.g. about the region from which the connection is made).
  5. Other data may be collected in the context of case management or may be provided to users of our Application by e-mail, post or telephone.
  1. Each person who uses our App has the opportunity to choose whether and to what extent they wish to use our services and share information and data about themselves, to the extent set out in the contents of this Privacy Policy.
  2. We process personal data for:
  1. the conclusion and performance of contracts in connection with the services we offer (Article 6(1)(b) RODO) – in this respect, the data will cease to be processed once the contract in question has been fulfilled,
  2. to comply with legal obligations incumbent on the Personal Data Controller, in particular record keeping, etc. (Article 6(1)(c) of the DPA) – in this respect, the personal data will be deleted once the specified legal obligations have been fulfilled,
  3. targeting marketing content relating to the Administrator and carrying out website analytics in connection with the use of cookies (Article 6(1)(a) of the DPA) – in this regard, personal data is processed until the session ends or the user deletes the cookies, withdraws consent or until an effective objection is made to the processing for this purpose,
  4. the operation of the website (Article 6(1)(f) RODO in conjunction with Article 173(1) of the Telecommunications Act) – in this respect, personal data will cease to be processed when a cookie expires, when cookies are deleted or when the relevant session ends, respectively,
  5. ongoing communication related to the functioning of the Application (Article 6(1)(f) RODO, i.e. the legitimate interest of the Personal Data Controller) – in this respect, your personal data will cease to be processed when the question or questions in question are answered,
  6. to establish, assert or defend against claims (Article 6(1)(f) RODO, i.e. the legitimate interest of the Personal Data Controller) – in this respect, personal data will be deleted when the claims in question expire, but as a general rule after the expiry of the 3-year limitation period for claims .
  1. The source of the Personal Data processed by the Controller is the data subjects.
  2. The Administrator uses the tools of Google Ireland Ltd (Google Analytics, Admob). As a general rule, the data processed through the use of these tools, are processed on servers located within the EEA. However, the providers of these tools may be obliged to transfer the data to third parties if such an obligation is imposed on them by law or is necessary due to the characteristics of the services provided (SaaS, hosting, etc.). The scope of personal data transferred in this regard refers exclusively to potential personal data contained in cookies. The legal bases for the processing of the personal data indicated in the preceding sentence are indicated in points 5(d) and 5(e) of this Policy . The transfer of personal data to the United States takes place on the basis of the European Commission Decision of 10.07.2023 to ensure an adequate level of protection by the EU-US Data Protection Framework (Article 45(1) RODO).
  3. We do not share any personal data with third parties without the express consent of the data subject. Without the consent of the data subject, personal data may only be shared with entities under public law, i.e. authorities and administrations (e.g. tax authorities, law enforcement authorities and other entities authorised by generally applicable laws).
  4. Personal data may be entrusted for processing to entities that process such data on our behalf as Personal Data Controller. In such a situation, we as the Personal Data Controller shall enter into a personal data processing entrustment agreement with the processor. The processor shall process the entrusted personal data only for the purposes, to the extent and for the purposes indicated in the entrustment agreement referred to in the preceding sentence. Without the entrustment of Personal Data for processing, we would not be able to carry out our activities within the Application. As Personal Data Controller, we entrust personal data for processing to the following entities in particular:
  1. providing hosting services for the website on which our Application runs,
  2. supporting CRM.
  1. Personal data is not subject to profiling by us as a Personal Data Controller within the meaning of the DPA.
  2. In accordance with the provisions of the DPA, any person whose personal data we process as a Personal Data Controller has the right to:
  1. access to their personal data as referred to in Article 15 of the RODO,
  2. to be informed of the processing of personal data, as referred to in Article 12 of the RODO,
  3. correcting, completing, updating, rectifying personal data as referred to in Article 16 of the RODO,
  4. to withdraw consent at any time, as referred to in Article 7(3) of the RODO,
  5. erasure (right to be forgotten) as referred to in Article 17 of the DPA,
  6. the restriction of processing referred to in Article 18 RODO,
  7. data portability as referred to in Article 20 RODO,
  8. to object to the processing of personal data, as referred to in Article 21 of the RODO,
  9. in the case of a legal basis in the form of consent, the right to withdraw consent at any time without affecting the lawfulness of the processing carried out on the basis of consent before its withdrawal,
  10. of not being subject to the profiling referred to in Article 22 in conjunction with Article 4(4) of the RODO,
  11. to lodge a complaint with the supervisory authority (i.e. the President of the Office for the Protection of Personal Data) referred to in Article 77 of the RODO.
  1. If you wish to exercise your rights referred to in the preceding paragraph, please send a message by e-mail to the e-mail address or in writing to the postal address referred to in paragraph 2 above.
  2. Each identified security breach shall be documented and, in the event of one of the situations set out in the provisions of the RODO or the Act, the data subjects and, if applicable, the PUODO shall be informed of such security breach.
  3. In matters not regulated by this Privacy Policy, the relevant provisions of generally applicable law shall apply accordingly. In the event of any inconsistency between the provisions of this Privacy Policy and the aforementioned regulations, these regulations shall prevail.
Strona główna