weldinGo Privacy Statement
weldinGo views data privacy as a fundamental component of doing business. Our data protection policy and practices are focused on processing, sharing and storing personal information appropriately and lawfully, while providing confidentiality, integrity and availability.
This privacy statement applies to weldinGo Sp z o.o. with its registered office in Gdynia, entered into the Register of Entrepreneurs kept by the District Court Gdańsk – Północ in Gdańsk, VIII Commercial Division of the National Court Register under No. KRS 0000736281, with NIP number 5862332843, REGON 380525946, which uses e-mail address for contact with Consumers: [email protected] and telephone number: +48 509 983 834.
weldinGo processes and stores personal data within the EU and will at any given time be able to demonstrate compliance with the EU legislation as well as our principles set out herein.
Our website is governed in accordance with the General Data Protection Regulation (the “GDPR”), (Regulation (EU) 2016/679), which is a directly binding legislative act. The GDPR creates some new rights for individuals and strengthens some of the rights that currently exist under Directive 95/46/EC. Directive 95/46/EC will be repealed with effect from May 25, 2018. This policy is made compliant with the GDPR and is therefore also compliant with Directive 95/46/EC and national implementations thereof until they become obsolete on May 25, 2018.
The data protection officer (DPO) is responsible for the implementation of our data protection policy, which is intrinsically linked to the privacy statement. The DPO is ensuring compliance on a daily basis and is involved in all issues related to the protection of personal data.
weldinGo is to be considered the data controller and will determine the purposes and means of the processing of personal data submitted and collected online.
weldinGo data protection policy is based on the following data protection principles:
- The processing of personal data shall take place in a lawful, fair and transparent way;
- The collecting of personal data shall only be performed for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes;
- The collecting of personal data shall be adequate, relevant and limited to what is necessary in relation to the purpose for which they are processed;
- The personal data shall be accurate and where necessary, kept up to date;
- Every reasonable step shall be taken to ensure that personal data that are inaccurate having regard to the purposes for which they are processed, are erased or rectified without delay;
- Personal data shall be kept in a form which permits identification of the data subject for no longer than it is necessary for the purpose for which the personal data are processed;
- All personal data shall be kept confidential and stored in a manner that ensures appropriate security;
- Personal data shall not be shared with third parties except when necessary in order for them to provide services upon agreement;
- Data subjects shall have the right to request access to and rectification or erasure of personal data, or restriction of processing, or to object to processing as well as the right of data portability.
Personal data means any information that may be related to an identified or identifiable natural person (the “data subject”). Personal data includes all types of information that is direct or indirect (that is, used in conjunction with other data) referable to the data subject, such as names, date of birth, addresses, e-mail addresses, telephone numbers etc.
Collection of personal data
We collect personal data for other purposes such as statistics, administration and communication, IT and security administration, physical security, authentication and authorization systems, support systems, collaboration of internal projects and organizational teams and activities. We will process personal data only to the extent required for a specified, explicit and legitimate purpose or for a purpose required by law in places where we operate.
Use of personal data
We will use personal data for the purpose it is collected, and keep the data only for as long as it is necessary for that purpose. We may retain the customer’s information for as long as the customer’s account is active or as needed to provide services, comply with our legal obligations or any of the purposes listed above. Access to personal data is strictly limited to personnel of weldinGo and its controlled subsidiaries and affiliates who have appropriate authorization and a clear business need for the data.
Security of processing
We will process personal data securely, apply and maintain appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction or accidental loss, alteration, unauthorized disclosure or access, in particular where the processing involves the transmission of data over a network, and against all other unlawful forms of processing.
Access to and rectification or erasure of personal data
Customers have the right to access, rectify or request erasure or restriction of processing of any information we have collected, at any time. To help us keep personal data updated, we advise users to inform us of any changes or discrepancies.
weldinGo is upon consent allowed to send the customers marketing e-mails. This specific form of consent must be freely given, specific informed and unambiguous. These requirements are fulfilled when customers have opted-in to receive marketing e-mails (actively agreed).
Customers will always have the right to object, on request and free of charge, to the processing of personal data relating to the customer for purposes of direct marketing activities without having to provide specific justifications. Once a customer has objected, the personal data of that customer will no longer be processed for direct marketing.
The marketing e-mails contain information which we believe may be of interest to our customers such as the latest news on our products and services.
weldinGo is responsible for and will at any given time be able to demonstrate compliance with the GDPR as well as our principles set out herein. weldinGo shall maintain records of processing activities under its responsibility containing the information required by the GDPR and where applicable make the records available to the supervisory authority on request.
Customers have the right to file a complaint concerning our processing of their personal data. All queries and complaints shall be handled in a timely manner by the DPO in accordance with internal procedures.
Changes to this policy
This policy may be updated from time to time, e.g. due to modifications of relevant legislation or changes to weldinGo structure.
If any material changes are made, customers will be notified by e-mail or by mean of notice on the website prior to the change becoming effective. We encourage all our users to periodically review this page for the latest information on our privacy practices.