Skip to main content

Privacy Policy

In accordance with Article 13 and Article 14 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (“GDPR”), we hereby inform that:

Data controller

The Controller of personal data is Mpack Poland sp. z o.o. with its registered office in 05-480 Karczew, Całowanie 103D, entered into the register of entrepreneurs of the National Court Register by the District Court for the Capital City of Warsaw in Warsaw, 14th Commercial Division of the National Court Register under the KRS number: 0000872629, Tax Identyfication Number (NIP): 5322063500, REGON:  36615724100000, share capital 12 000 000.00 PLN (“Controller“).

 

Contact information

If you have any questions about our data processing or the rights you have in connection with it, please send an email to mpack@mpack.com.pl with the subject “RODO” or address traditional correspondence to the Controller’s registered office.

 

For what purpose do we process your data?

We process your personal data only for the purpose of answering the questions you send us or for other matters for which you contact us using the contact form. Provision of personal data is voluntary, but failure to do so is connected with the impossibility of receiving an answer to your question.

 

What data do we collect?

The Controller collects the following personal data:

1. data provided in the contact form: e-mail address, telephone number, name, company, country, personal data contained in the body of the message;

2. data collected automatically when visiting the website: IP address.

 

On what basis do we process your data?

The legal basis for our processing of your personal data is the Controller’s legitimate interest in providing proper service to our current and potential customers, including answering questions directed to us (i.e. Article 6(1)(f) GDPR).

 

Recipients of the data

Data will be transferred only to entities providing support services to us, including accounting, HR and IT services, with such entities processing data on the basis of contracts concluded with us and only in accordance with the Controller’s instructions. In addition to the above-mentioned entities, your data may be disclosed only at the request of entities authorized to do so by law.

All persons authorized to process personal data are obliged to maintain the confidentiality of the data and protect them from disclosure to unauthorized persons.

 

Data retention period

Your personal data will be used by us for the period necessary for the response and nature of the correspondence. Where the basis for processing of personal data is your consent then your personal data shall be processed by us as long as the consent is not revoked, and after revocation of consent for a period corresponding to the period of limitation of claims. If the basis for processing is the performance of a contract, then your personal data are processed by us as long as it is necessary for the performance of the contract, and after that for a period corresponding to the period of limitation of claims.

 

What rights do you have in connection with our data processing?

You have the right to request from us access to your personal data rectification, erasure, restriction of processing or data portability. You have the right to object to the processing, unless the correspondence concerns the establishment, assertion or defense of claims. You also have the right to lodge a complaint to the supervisory authority in connection with the Controller’s processing of your personal data – the supervisory authority is the President of the Office for Personal Data Protection, 2 Stawki Street, 00-193 Warsaw.

 

Transfer of personal data to third countries

We store personal data processed as part of the website on in-format infrastructure provided by third parties, including email boxes whose servers may be located outside the European Economic Area, and thus may transfer personal data to recipients located outside the European Economic Area.

In other cases, we transfer personal data using mechanisms that comply with applicable law, including the requirements of the GDPR, as contained, among others, in Article 46 of the GDPR, in particular on the basis of standard contractual clauses. For more information on the existing safeguards we have implemented to ensure the processing of personal data in compliance with applicable laws, and how to obtain a copy of those safeguards or where and how to access those safeguards, please contact us as indicated in our privacy policy below.

 

Automated decision-making, including profiling

We do not make decisions based on automated processing, including profiling, based on the personal data provided in the form.

 

Changes to the Privacy Policy

We reserve the right to change this Privacy Policy. We will inform you of any changes on our website.