Privacy Policy

Principles of the Privacy Policy.

This Privacy Policy sets out:

  1. the rules for storing and accessing information on the User’s devices by means of Cookies used to provide electronic services requested by the User
  2. the rules under which personal data are processed and an overview of the basic rights related to personal data processing

I. Definitions

  1. Controller – means SILESIAN LOGISTICS Sp. z o.o. with its registered office at: 43-332 Pisarzowice, ul. Beskidzka 90 a, entered in the register of entrepreneurs of the National Court Register kept by the District Court in Bielsko-Biała, 8th Commercial Division of the National Court Register, KRS: 0000961572, REGON: 521529013, NIP: PL 9372742300, which provides electronic services and stores and accesses information on the User’s devices.
  2. Cookies – means IT data, in particular small text files, saved and stored on devices through which the User uses the website www.silesianlogistics.pl
  3. Controller’s Cookies – means Cookies placed by the Controller in connection with the provision of electronic services by the Controller through the website www.silesianlogistics.pl
  4. External Cookies – means Cookies placed by the Controller’s partners through the website www.silesianlogistics.pl
  5. Device – means an electronic device through which the User accesses the website www.silesianlogistics.pl
  6. User – means an entity for whom, in accordance with the law, electronic services may be provided or with whom an agreement for the provision of electronic services may be concluded.

II. Types of Cookies used.

  1. The Cookies used by the Controller are safe for the User’s Device. In particular, it is not possible for viruses or other unwanted or malicious software to enter Users’ Devices in this way. These files allow the software used by the User to be identified and the website www.silesianlogistics.pl to be individually adapted to each User. Cookies usually contain the domain name from which they originate, their storage time on the Device and an assigned value.
  2. The Controller uses two types of cookies:
    1. session cookies: these are stored on the User’s Device and remain there until the session of a given browser ends. The saved information is then permanently deleted from the Device’s memory. The session cookies mechanism does not allow any personal data or any confidential information to be collected from the User’s Device;
    2. persistent cookies: these are stored on the User’s Device and remain there until they are deleted. Ending the session of a given browser or switching off the Device does not delete them from the User’s Device. The persistent cookies mechanism does not allow any personal data or any confidential information to be collected from the User’s Device.
  3. The User may restrict or disable Cookies’ access to their Device. If this option is used, it will still be possible to use the website www.silesianlogistics.pl, except for functions which by their nature require Cookies.

III. Purposes for which Cookies are used.

  1. The Cookies mechanism is not used to obtain any information about website users or to track their navigation. Cookies used on the website www.silesianlogistics.pl do not store any personal data or other information collected from users.
  2. The Controller uses First-Party Cookies for the following purposes:
    1. Website configuration:
      1. optimising the use of the website www.silesianlogistics.pl
      2. recognising the User’s device on the website www.silesianlogistics.pl and adapting the website to the User’s individual needs
      3. remembering settings selected by the User and personalising the User interface, for example with regard to the selected language or the region from which the User comes.
    2. Carrying out processes necessary for the full functionality of websites. Optimising the use of the website www.silesianlogistics.pl; in particular, these files allow the basic parameters of the User’s Device to be recognised and the website to be displayed appropriately, adapted to the User’s individual needs.
    3. Analysis, research and audience auditing. Creating anonymous statistics that help to understand how Users of the website www.silesianlogistics.pl use it, which makes it possible to improve its structure and content.
    4. Ensuring the security and reliability of the website www.silesianlogistics.pl.
  3. The Controller uses External Cookies for the following purposes:
    1. collecting general and anonymous statistical data via analytical tools: Google Analytics [cookie controller: Google Inc. based in the USA]
  4. The website www.silesianlogistics.pl contains plugins for sharing content from the website to the following services: Facebook.com, Instagram.com and Linkedin.com.

IV. Options for determining the conditions for storing or accessing Cookies.

  1. The User may independently and at any time change the settings concerning Cookies by specifying the conditions for their storage and for Cookies’ access to the User’s Device. The User may change these settings using the settings of the web browser or through service configuration. These settings may be changed in particular so as to block the automatic handling of cookies in the web browser settings or to notify the User each time Cookies are placed on the User’s device. Detailed information on the possibility and methods of handling cookies is available in the settings of the software/web browser.
  2. The User may delete Cookies at any time using the available functions in the web browser they use.

V. Personal data protection.

  1. Data Controller.
    1. The Data Controller is SILESIAN LOGISTICS Sp. z o.o. with its registered office at: 43-370 Szczyrk, ul. Cmentarna 40. Contact with the Controller is possible via the above correspondence address, as well as by e-mail: rodo@silesianlogistics.pl.
    2. The Controller attaches particular importance to respecting privacy and the principles of personal data processing in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, hereinafter referred to as the “GDPR”.
    3. The Controller ensures that data are collected only to the extent necessary for the stated purpose and processed only for as long as necessary.
  2. Type of personal data
    1. The Controller processes personal data necessary to achieve a specific processing purpose, in particular: first name, surname, e-mail address, correspondence address, telephone number, residential address, which were provided in the course of the Controller’s business activities.
    2. Providing data is necessary for the provision of services and the settlement of business activities. In all other respects, providing data is voluntary; however, depending on the circumstances, refusal to provide data or a request to delete them may prevent the Controller from providing information about its activities and maintaining contact.
    3. Through this website, personal data are processed on the basis of consent expressly given by the User. The scope of personal data processed depends on the forms available on the website www.silesianlogistics.pl. During a visit to the website, information concerning the User’s visit is also collected automatically, e.g. IP address, domain name, browser type, operating system type, etc.
  3. Scope and purposes of personal data processing
    1. Cooperation with contractors and clients, including potential clients
      1. The Controller processes personal data within the following scope: first name, surname, e-mail address, correspondence address, telephone number, residential address, NIP, REGON, and, in strictly defined cases, also: series and number of the driving licence, identity card and passport. The Controller obtains personal data directly from the data subject, from the entity represented by the natural person, from commercial offers, from transport exchanges or from public registers (KRS, CEIDG).
      2. The Controller processes data for the following purposes:
        • performance of contracts and transport orders – the legal basis for processing is the action necessary for the performance of a contract with the data subject, i.e. Article 6(1)(b) GDPR;
        • protection against possible claims – the legal basis for processing is the Controller’s legitimate interest, which is protection against possible claims, i.e. Article 6(1)(f) GDPR;
        • fulfilment of tax and accounting obligations – the legal basis is Article 6(1)(c) GDPR in conjunction with the Accounting Act;
        • ongoing contact in connection with the conclusion or performance of a contract, presenting an offer, sending an order or answering questions – the legal basis is Article 6(1)(a) or (f) GDPR;
        • examining the quality of services provided, including optimisation of service processes, building knowledge about Clients and financial analysis of the Company – the legal basis is Article 6(1)(a) or (f) GDPR.
    2. Provision of services In the case of collecting data for the purpose of performing a specific contract, the Controller provides the data subject with information concerning the processing of their data, including the scope, purpose and retention period, at the time of concluding the contract.
    3. Correspondence and telephone contact.
      1. Scope and source of data. The Controller processes personal data within the following scope: first name, surname, e-mail address, correspondence address, telephone number. The Controller obtains personal data directly from the data subject.
      2. Purposes of processing. The Controller processes data for the following purposes:
        • conducting e-mail and traditional correspondence related to the Controller’s business activities – the legal basis is Article 6(1)(f) GDPR;
        • telephone contact related to the Controller’s business activities, including providing information about services – the legal basis is Article 6(1)(a) or (f) GDPR;
        • ongoing contact unrelated to services provided to persons who are senders of correspondence, in order to resolve or finalise the matter to which the correspondence relates – the legal basis is Article 6(1)(a) or (f) GDPR;
        • other legally justified purposes related to establishing and maintaining contacts and creating a network of contacts – the legal basis is Article 6(1)(a) or (f) GDPR.
    4. Contact via the website
      1. The Controller processes personal data within the following scope: first name, surname and e-mail address. The Controller obtained the personal data directly from the data subject through the contact form placed on the website www.silesianlogistics.pl.
      2. The Controller processes data for the purpose of responding to questions sent via the contact form – the legal basis is Article 6(1)(a) GDPR.
  4. Data retention period The Controller will process personal data for the period necessary to fulfil the purpose for which they were collected:
    1. cooperation with contractors and clients, including potential clients: for the period necessary to perform the contract, and also for the limitation period for claims arising from the contract. Where data are processed on the basis of the Controller’s legitimate interest, the data will be processed for the period enabling that interest to be pursued or until an effective objection to the processing is raised.
    2. correspondence and telephone contact: for the period necessary to achieve the purpose of the contact and during the period of maintaining ongoing relations, including exchange of correspondence, and after the end of that relationship for a period of 3 years. Where data are processed on the basis of the Controller’s legitimate interest, the data will be processed for the period enabling that interest to be pursued or until an effective objection to the processing is raised.
    3. contact via the website: during the period of maintaining ongoing relations, including exchange of correspondence, and after the end of that relationship for a period of 3 years.

    The processing period may be extended within the limits of the law where the processing of personal data is necessary to pursue or defend against claims. After the processing period, the data will be deleted or anonymised.

  5. Data recipients In connection with the Controller’s business activities, to the extent necessary, personal data may be transferred to external entities, including in particular:
    1. entities directly involved in the performance of transport orders,
    2. entities providing accounting services,
    3. entities conducting postal or courier activities,
    4. banks, where settlements need to be made,
    5. hosting service provider,
    6. cloud computing providers, including FireUp Software sp. z o.o. and Google Inc.,
    7. providers of the TRANS.EU platform,
    8. providers of the invoicing system,
    9. entities responsible for the operation of IT systems and equipment,
    10. state authorities or other entities authorised under the law, for the purpose of fulfilling obligations imposed on the Controller,
    11. other entities to the extent to which the Controller is required to do so by law.
  6. Transfer of data outside the European Economic Area Processed personal data may be transferred to a country outside the European Economic Area or to an international organisation within the meaning of the GDPR, as part of entrusting personal data processing or disclosure under the law, always provided that one of the following conditions is met:
    1. the European Commission has decided that the third country or international organisation ensures an adequate level of personal data protection, in accordance with Article 45 GDPR,
    2. the third country or international organisation provides appropriate safeguards and enforceable data subject rights and effective legal remedies are available there, in accordance with Article 46 GDPR,
    3. the case referred to in Article 49(1), second subparagraph, GDPR applies.
  7. Rights of data subjects. The processing of personal data as part of the provision of services is regulated by legal provisions or contracts concluded with clients. Subject to the situations specified by law, data subjects have:
    1. the right to access their data,
    2. the right to rectify inaccuracies or errors in the processed data or to have them completed,
    3. the right to information about the processed data, including the purposes and legal bases of processing,
    4. the right to restrict the processing of personal data,
    5. the right to withdraw consent at any time without affecting the lawfulness of processing, where processing is based on consent,
    6. the right to personal data portability,
    7. the right to object to processing for marketing purposes or on the basis of the Controller’s legitimate interest,
    8. the right to lodge a complaint with the supervisory authority, i.e. the President of the Personal Data Protection Office, if they consider that the processing of personal data violates the law, including the GDPR.
  8. Automated decision-making Personal data are not used for automated decision-making, including profiling.
  9. Personal data security. The Data Controller declares that it applies technical and organisational measures ensuring the protection of processed personal data appropriate to the risks and categories of data, and in particular protects Users’ personal data against loss, misuse, unlawful processing or modification. Access to personal data is granted only to persons authorised to process them and obliged to keep such data confidential.

VI. Links to other websites.

The website www.silesianlogistics.pl contains links to other websites. The Controller is not responsible for the privacy practices applicable on those websites. After accessing such websites, users should read the privacy policy or cookie policy of the relevant website.

VII. Amendments.

In the event of a change to the applicable Privacy Policy, appropriate amendments will be made to its content.