Privacy and cookies policy

Last update: 20.08.2019    |    Valid from: 09.09.2019

Privacy

Security of your data

We employ technical and organisational measures intended to protect your personal data, including the fact that access to our application is only possible via encrypted SSL connections, authenticated by a proper certificate, our offices are located in a guarded building and only trained employees who have obtained the appropriate access have access to the data.

Who is the Controller of your Personal Data

The Controller of your Personal Data is Curulis Sp. z o.o., located at Pl. Wiosny Ludów 2, 61-831 Poznań, Court no: 0000432301, NIP: 7831691499, Regon: 302201928, with share capital of 200.000,00 PLN, hereinafter referred to as "Curulis" or "Data Controller".

What are the purposes, categories and legal grounds for processing your Personal Data?

Setting up an account
Purpose of processing data

In order to enable you to access our service, we have to identify you as an individual user and obtain your contact details, which we will be able to use to get in touch with you.

Categories of processed data

The Data which we gather for this purpose include the details which allow us to identify you (first and last name, the name of your company), and your contact details (e-mail address, telephone number).

Legal ground

Art. 6 section 1 letter b) of GDPR - processing is necessary for the performance of a contract.

Providing particular functionalities and security of our services
Purpose of processing data

We want to continually improve the services which we provide and enhance their functionalities and security.

Categories of processed data

Your personally identifiable information, contact details and data related to using the application and our website (data regarding your activity within the application and on the website, history of your visits, browsing, sessions, IP address, data regarding the web browser and operating systems which you are using).

Legal ground

Art. 6 section 1 letter b) of GDPR - processing is necessary for the performance of a contract AND
Art. 6 section 1 letter f) of GDPR - processing is necessary for the purposes of the legitimate interests pursued by the controller

Contacting you - responding to your questions, pursuing or protection of our rights
Purpose of processing data

We want to communicate with you, and we care about your satisfaction concerning the services which we provide. Based on the services which we provide, a need may arise to clarify the factual or legal status in order to establish, exercise and possibly defend claims resulting from using our services.

Categories of processed data

Your personally identifiable information and contact details, data regarding the way you use our services, data which is the subject of your questions, complaints and requests.

Legal ground

Art. 6 section 1 letter f) of GDPR - processing is necessary for the purpose of the legitimate interests pursued by the controller in the scope of establishing, exercising and defending claims before courts of law or with the help of other appropriate national authorities.

Marketing of our services
Purpose of processing data

We use the data of our clients, users of our Services and the persons subscribed to the newsletter mailing list/persons who receive our ebooks and other informational and advertising materials, for marketing purposes, mainly by informing them of events which we are currently organising.

Categories of processed data

Your personally identifiable information and contact details, data regarding your activity within our service.

Legal ground

Art. 6 section 1 letter f) of GDPR - processing is necessary for the purpose of the legitimate interests pursued by the controller in the scope of marketing their services.

The period for which your data is stored

Once you set up an account on our website, your personal data will be stored by us for the duration of the validity of this account and the following 5 years, to provide the service of enabling the access and use of the application as well as for marketing purposes. After this period your data will only be stored with the intention of considering any complaints and claims related to the services which we provide, for the duration of a period which is defined by the provisions of the law, with regards to the statute of limitations for those types of claims.

Recipients of personal data

Your personal data will be transferred by Curulis, in case it is required for the particular purpose of processing and in compliance with the proper legal grounds. Current categories of recipients of your personal data include: 1) Data center operators; 2) Cloud services providers; 3) Providers of access to innovative technologies and internet advertising; 4) Providers of advertising services; 5) Providers of accounting services.

Where do we transfer your personal data?

Your personal data may be transferred to recipients located within the European Economic Area (hereinafter referred to as “EEA”), and beyond (to Third Countries). Any transfer of your personal data to Third Countries may only take place under the conditions defined within chapter 5 of GDPR, to countries for which the European Commission decided that the third country ensure an adequate level of protection.

Your rights

In order to pursue any of the below-mentioned rights, you may contact us: 1) The right of access to data; 2) Right to have the personal data rectified; 3) Right to erasure (“right to be forgotten”); 4) Right to a restriction of processing; 5) Right to data portability; 6) Right to object.

Cookies policy

The use of cookies

We use cookies, which are tiny files stored on your telecommunications device. We use them both on the Curulis website and within the Services which we provide.

Changing the terms of storing and using cookies

We hereby inform you that you can change the settings within your internet browser so that storing cookies on your end device is not possible anymore. You may also remove cookies by making appropriate changes in your web browser settings.

Storing cookies

We store two types of cookie files: 1) session cookies (which are stored until the web browser is closed or until you leave our website), 2) permanent cookies (which are stored for a defined period which is indicated within their parameters or until the user removes them).