§1 General Provisions

The administrator of the data is the company Northman Sp. z o.o. with its registered office in 11-600 Węgorzewo, 10 Przemysłowa St. Data protection is carried out in accordance with the requirements of generally applicable laws, and their storage takes place on secure servers.

We respect the right to privacy and take care of data security. For this purpose, among others, a secure communication encryption protocol (SSL) is used.

Data will also be processed for the purpose of fulfilling legal obligations, including the issuance of invoices.

§2 Data Administrator

As the administrator of your data that we process your data such as: name, surname, pesel, address, e-mail address, telephone number.

Personal data is processed:
a) in accordance with data protection regulations,
b) in accordance with the implemented Privacy Policy,
c) to the extent and for the purpose necessary for the establishment, formation of the content of the Agreement, amendment or termination thereof, and proper implementation of Services provided electronically,
d) to the extent and for the purpose necessary to fulfill legitimate interests (legally justified purposes), and the processing does not violate the rights and freedoms of the data subject:
e) to the extent and for the purpose in accordance with the consent given by you if you subscribe to the newsletter,

Each person who provides their data, is given the right to access, rectify, delete or restrict processing, the right to object, the right to lodge a complaint with the supervisory authority.

Contact with the person who supervises the processing of personal data in the Service Provider’s company is possible by traditional means and by e-mail at: RODO@northman.pl

We reserve the right to process your data after the termination of the Agreement or the withdrawal of consent only to the extent for the purpose of pursuing possible claims in court or if national or EU regulations or international law oblige us to retain the data.

The Service Provider shall have the right to share the User’s personal data and other data of the User with entities authorized under applicable laws.

Deletion of personal data may occur as a result of withdrawal of consent or filing a legally permissible objection to the processing of personal data.

The Service Provider shall not make personal data available to other entities than those authorized under the relevant legislation.

Personal data is processed only by persons authorized by us, or by processors with whom we cooperate closely.

We have implemented data encryption and access policy, thanks to which we minimize the consequences of any possible breach of data security.