Privacy policy of the service www.prs.pl

§ 1

General

  1. The Publisher of the service www.prs.pl : Polski Rejestr Statków Joint Stock Company seated in Gdańsk, gen. Józefa Hallera 126; 80-416 Gdańsk, e-mail: mailbox@prs.pl (further referred to as: „PRS”) is the Data Controller of your personal data.
  2. For matters concerning personal data subject rights, the PRS designated Data Protection Officer shall be contacted under: email: iod@prs.pl, phone: + 48 058 751 12 97, address: al. gen. Józefa Hallera 126 80-416 Gdańsk.
  3. PRS, by law, protects your personal data.
  4. Your personal data are processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (called further GDPR).
  5. PRS does not collect purposefully „sensitive” personal data, unless such obligation is consequent upon mandatory law regulations, for example for the purpose of recruitment.

§ 2

Objectives, legal basis and period of personal data processing

  1. PRS uses your personal data for the below objectives:
  • monitoring and maintaining statistic records;
  • conducting marketing activities;
  • providing and developing interactive products;
  • submitting offer inquiry, contact inquiry;
  • providing interactive services;
  • assessing our services;
  • conducting recruitment processes;
  • transmitting to trusted third parties, including Google LLC;
  • establishing and managing your account(s);
  • executing newsletter services;
  • responding to inquiries submitted with the use of available forms and e-mail boxes.
  1. Your personal data are processed by PRS upon various legal bases and with different purposes, in particular:
  • the data acquired by forms, when you are asked to give your consent for processing data in specified purpose – based on your consent, with the purpose adequate to the form (Customer assessment questionnaire, response to questions sent by contact form, newsletter subscription, etc.), for a period of 3 years from the last contact in relevant matter or until withdrawal of your consent (art. 6 (1a) of GDPR);
  • the data acquired for the execution of agreement or for taking actions at your request prior to concluding the agreement – which are indispensable for the service execution (e.g. for conducting the training) and for informing on changes and new/similar PRS services (so called direct marketing of own services), which you may be interested in, until terminating co-operation or withdrawal of your consent, and in case of processing data for tax, accounting etc. purposes – until the day defined by legal regulations (art. 6 (1b) of GDPR);
  • the data of employment candidates – in accordance with consent expressed by the candidate for data processing within one or several (future) recruitment processes – for the recruitment period for the defined job you have applied for and for the purpose of future recruitments depending on the contents of your consent (art. 6 (1a) of GDPR);
  • at the exercising so called legitimate interests, e.g. at receipt of your inquiry and giving response to it for the time necessary for executing of the goal (art. 6 (1f) of GDPR);
  • when the processing is necessary for the execution of legal obligation incumbent on us, e.g. when personal data are to be made available to state authorities (art. 6 (1c) of GDPR).

§ 3

Freedom of submitting personal data

Submitting data is voluntary and is not result of any legal obligation. If you do not provide your personal data, PRS will not be able to provide services to you nor answer your questions, send offers, newsletters, match contents of PRS webpage to your interests, disclose misuses in services, carry out statistic measurements, improve services.   

§ 4

Rights related to personal data processing by PRS

  1. In accordance with GDPR, with regard to processing your personal data by PRS, you have the right to:
  • access your data and receive their copy;
  • demand rectification (correction) of your data;
  • erase data, restrict data processing;
  • transfer data;
  • withdraw already expressed consent to process data;
  • submit a claim to the President of the Personal Data Protection Office in respect of breaching the right for protection of personal data or other rights consequent upon GDPR.
  1. With the purpose to exercise the rights referred to in item 1 (1 - 5), the Data Protection Officer shall be contacted, as given in § 1.

§ 5

Data security

  1. With the use of appropriate technical and organizational means, your data while stored will be secured against unauthorized or unlawful processing and accidental loss, destruction or damage.
  2. Authorized employees/co-workers are recipients of your data, and they may be given access thereto for conducting their duties.

 

§ 6

Data transfer to other objects, transfer to the Processors established in third countries (outside European Economic Area EEA)

  1. Your personal data may be disclosed also to the Processors from PRS capital group (subsidiaries) and to PRS (Polish and foreign) Branches.   
  2. Your data may be accessible for PRS sub-contractors (sub-processors), such as marketing, accounting, law and IT firms.
  3. Your data may be stored in services located outside the European Economic Area (the EEA includes all EU countries plus Norway, Iceland and Liechtenstein), as PRS uses external systems and that means that PRS may transmit any data transferred by you by means of Internet websites or applications or services from outside EEA.  
  4. Data transfer outside is carried out maintaining appropriate measures protecting access thereto by unauthorized persons.

 § 7

Automated data processing (profiling)

  1. In some cases, PRS and service suppliers use „cookies”, web beacons and other technologies in order to automatically collect specified kind information during users visits on our webpage or by e-mail addresses. Collecting such kind of information allows to better understand and improve operation, function and performance of PRS Internet services and to determine efficiency of marketing activities.  
  2. Information so collected are not each time personal data, i.e. it may be the case that the given user is identifiable, however, when the IP address or information on location may be related to a specified e-mail address of the user.

 § 8

Identifiers of appliances – cookies, IP addresses and data on network traffic

  1. Similar to majority of webpages, also the PRS Internet service you are just viewing, may use “cookies”. They are IT data sent by webpage and stored in terminal facility (e.g. on hard disc) of the service user. They are usually simple text files including the name of mother webpage, their storage time in the terminal and a unique number. They are used for identification of the browser during the use of the service and thus information on the webpage to be displayed may be found and contents offered by the Publisher may be adjusted to your individual preferences.  
  2. By using PRS webpage, you expresses your consent for using “cookies” and identifiers of appliances for the execution of services. If you do not express your consent for using ”cookies” by us, you should block them in your browser settings.
  3. On our servers, in automatic event log, a record is kept of network traffic data, such as your IP address and information on the appliance.