INFORMATION REGARDING THE PROCESSING OF PERSONAL DATA
The information contained in this document concerns the processing by Baydo Limited Liability Company based in Bydgoszcz and financially, personally, and organizationally related companies, of personal data in connection with concluded agreements for the sale of residential and non-residential premises, as well as the provision of additional services. The provided information complies with the European Union regulations regarding the processing of personal data (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC – hereinafter referred to as ‘GDPR’).
PRIVACY POLICY
By using our services, you entrust us with your personal data. The privacy policy serves as a guide to understand what data we collect, for what purpose, and how we use it. This information is important, so please carefully review this document.
WHAT PERSONAL DATA DO WE PROCESS?
We process data that you provide or leave as part of using our services. Personal data is relevant, appropriate, and limited to the necessary purposes for which it is processed.
The scope of processed data includes the following personal information:
a) last names and first names b) phone number c) email address d) residential or domicile address e) gender f) PESEL (Polish national identification number) g) Tax Identification Number h) place of birth i) marital status j) payment information.
If we process other personal data related to you, this data is associated with another email address you use. In such a situation, you have also received or will soon receive additional information about the processing of your data.
WHO IS THE DATA CONTROLLER?
The co-controllers of your personal data are financially, personally, and organizationally related companies:
-
Company under the name: Baydo Spółka z ograniczoną odpowiedzialnością with its registered office in Bydgoszcz, ul. Poznańska 31 lok. 10, 85-129 Bydgoszcz, NIP: 9532791231 / REGON: 523031270 / KRS: 0000990762
-
Company under the name: Baydo Spółka z ograniczoną odpowiedzialnością with its registered office in Bydgoszcz, ul. Poznańska 31 lok. 10, 85-129 Bydgoszcz, NIP: 9532791231 / REGON: 523031270 / KRS: 0000990762 (hereinafter collectively referred to as the “Controller”).
To ensure the security of personal data processed by our financially, personally, and organizationally related companies, as well as to ensure the high quality of services offered by us, we have adopted a model of co-administration of data. Under the agreement between the aforementioned entities, each of the companies, hereinafter referred to as a co-controller, has the same responsibilities and rights regarding the processed personal data. The co-controllers ensure strict compliance with applicable privacy and data protection laws. They provide sufficient guarantees for the implementation of appropriate technical and organizational measures to ensure that the processing meets the requirements of the GDPR and protects the rights of individuals whose data is processed.
Due to the agreement, personal data will be processed on the same principles by all co-controllers. The same Privacy Policy applies to all companies. Based on it, we manage personal data in accordance with legal regulations, especially those related to the protection of personal data and security requirements. Each co-controller is jointly responsible for any breaches in the data processing process. The person whose data is concerned may assert their claims against the selected co-controller, who will be obliged to remedy the damage, even if it was caused by another co-controller.
HOW TO CONTACT US
For any matters related to the processing of your personal data, you can contact us:
a) by sending an email to: daneosobowe@baydo.eu or b) in writing, by mail to the address: ul. Poznańska 31 lok. 10, 85-129 Bydgoszcz, with the note ‘Personal Data Protection’.
PURPOSES OF PROCESSING PERSONAL DATA
Your personal data is processed for the following purposes:
- to perform a contract or take steps prior to entering into a contract (e.g., providing services, handling orders, addressing complaints);
- to fulfill legal obligations imposed on the data controller and to carry out tasks in the public interest (e.g., storing tax documentation);
- based on legally justified interests (e.g., direct marketing of our own products, securing and pursuing claims, protecting and defending against claims from customers or third parties);
- for marketing purposes, not arising from legally justified interests (e.g., marketing services and products of third parties, our own marketing that is not direct marketing).
TO WHOM WILL YOUR PERSONAL DATA BE DISCLOSED
To the extent necessary to provide our services to you, data may be disclosed to entities processing personal data on behalf of the Controller, including IT service providers, marketing agencies, building managers and/or administrators, housing communities, banks, accounting offices. Such entities process data based on an agreement with the co-controller and solely in accordance with the instructions of the Controller. Additionally, data may be disclosed to entities authorized to obtain them under applicable law, such as law enforcement authorities upon a legally justified request (e.g., for the purposes of criminal proceedings).
WHAT RIGHTS DO YOU HAVE AND HOW CAN YOU EXERCISE THEM?
You have, among others, the right to request access to your personal data, correction or restriction of its processing, as well as the ‘right to be forgotten’. You can also withdraw your consent to the processing of personal data if you have provided it, and lodge an objection. If you wish to exercise your rights, please write to us by email or send a request by mail.
1/ Right to Confirmation of Processing
You have the right to obtain confirmation from us as to whether or not your personal data is being processed, and, if so, you are entitled to access the data and information concerning the processing of your data.
2/ Right to Rectification
You can request immediate rectification of your personal data if you believe it is incorrect or outdated. You can also ask us to complete the data if you believe it is incomplete due to the purpose for which we process the data.
3/ Right to be Forgotten
You have the right to be forgotten. This means you can request the deletion of your personal data from us, and we will promptly delete the data if:
a) the personal data is no longer necessary for the purposes for which we have the right to process it, we process data based on your consent, and you have withdrawn the given consent, b) you have objected to our data processing, c) despite our best efforts to properly protect and process your data in accordance with applicable regulations, it is processed unlawfully, d) the obligation to delete data arises from the purpose of fulfilling our legal obligation under European Union law or Polish law, e) personal data was collected in connection with offering information society services to a person who has not reached 18 years of age.
4/ Right to Request Restriction of Data Processing
You can request the restriction of processing your data if:
a) you question the accuracy of personal data – for a period allowing us to verify the accuracy of this data, b) you consider the processing of your data to be unlawful but you object to their deletion, instead requesting restriction of their use, c) we no longer need personal data for processing purposes, but you need them to establish, assert, or defend claims, d) you have objected to our data processing – until it is determined whether our legally justified grounds are superior to the basis of your objection.
5/ Right to Data Portability
You can request us to send, in a structured, commonly used, machine-readable format, your personal data that you have previously provided to us. You can transmit this data to another controller and also request us, if technically feasible, to transmit the data directly to another controller. The right to data portability applies only to data that we process based on a contract with you or based on your consent.
6/ Right to Object
We process collected personal data for direct marketing of our services, so you have the right to object (for reasons related to your particular situation) to the processing of data for direct marketing purposes at any time. In such a case, we will immediately cease processing your data for this purpose.
7/ Right to Lodge a Complaint
You have the right to lodge a complaint with the supervisory authority about our actions or omissions.
CATEGORIES OF DATA. DATA PROVISION REQUIREMENTS. CONSEQUENCES OF NOT PROVIDING DATA.
Providing personal data is voluntary, but not providing data marked as necessary for the provision of services to you will prevent their provision. This is significant because without certain data, we cannot provide services to you – an example may be the necessity of an email address for the provision of electronic services.
WHAT ARE THE PURPOSES AND LEGAL BASES FOR PROCESSING YOUR PERSONAL DATA AND FOR HOW LONG WILL THEY BE PROCESSED?
The legal bases for processing your data for specific purposes are as follows:
- Data processing purposes: execution of a contract between the Controller and the client (these contracts are most commonly reservation agreements, preliminary agreements, developer agreements, agreements on the establishment of separate ownership of premises, sales agreements, interior finishing agreements), Legal bases: Article 6(1)(b) of the GDPR – necessity for the performance of a contract to which the data subject is a party.
Processing period: until the expiration of a specific agreement between you and the Controller, with the reservation that sometimes this data may be processed even after the expiration of the agreement, but only if permitted or required by applicable law, e.g., for statistical, settlement, warranty/service purposes, for claims enforcement, or for processing personal data resulting from current information about entities entered in the National Court Register and certificates from the Central Register and Information on Economic Activity.
- Data processing purposes:
- Statistical measurements
- Marketing of the Controller’s products and services. Legal bases: Article 6(1)(f) of the GDPR – legitimate interests pursued by the Controller.
Processing period: until an effective objection is raised.
- Data processing purposes: Marketing of products and services of third parties. Legal bases: Article 6(1)(a) – voluntary consent.
Processing period: until the withdrawal of consent.
COOKIE INFORMATION
I. Types of Used Cookies
| Cookie Name | Domain | Path | Type | Expiration Period | Description |
|---|---|---|---|---|---|
| _ga_7SFE3DM3Z7 | .baydo.eu | / | First-party | 1 year 1 month | This cookie is used by Google Analytics to maintain session state. |
| _ga | .baydo.eu | / | First-party | 1 year 1 month | This cookie name is associated with Google Universal Analytics – a significant update to Google’s more commonly used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session, and campaign data for the site’s analytics reports. |
| Data Storage | File Type |
|---|---|
| google_adsense_settings | local |
| dot_lastSession | local |
| google_auto_fc_cmp_setting | local |
II. Purposes for which Cookies are Used
- The Controller uses Administrator’s Cookies for the following purposes: a) Configuration of the Service:
- Adjusting the content of the Service’s web pages to the User’s preferences and optimizing the use of the Service’s web pages.
- Recognizing the user’s Device and its location and displaying a web page adapted to individual needs;
- Remembering settings chosen by the user and personalizing the user interface, e.g., in terms of the selected language or region from which the user comes,
- Remembering the history of visited pages on the service for content recommendations. b) User authentication on the Service and ensuring sessions:
- Maintaining a session after logging into the Service – no need to re-enter the username and password on each subpage of the Service;
- Proper configuration of selected Service functions, enabling in particular the verification of the authenticity of the browser session;
- Optimization and improvement of the performance of services provided by the Controller. c) Implementation of processes necessary for the full functionality of web pages:
- Adjusting the content of the Service’s web pages to the user’s preferences and optimizing the use of the Service’s web pages. In particular, these files allow recognizing the basic parameters of the user’s Device and displaying a web page adapted to its individual needs;
- Proper handling of the affiliate program, enabling in particular the verification of sources of user redirection to the Service’s web pages. d) Remembering the user’s location to properly configure selected Service functions, enabling in particular the adjustment of information provided to the user based on their location. e) Analysis and research and audit of viewership to create anonymous statistics that help understand how users of the Service use the Service’s web pages, allowing for the improvement of their structure and content; f) Ensuring the security and reliability of the Service.
- The Service Administrator uses External Cookies for the following purposes: a) Collecting general and anonymous statistical data through analytical tools:
- Google Analytics [cookie administrator: Google Inc. based in the USA] – HotJar [cookie administrator: HotJar Ltd. based in Malta] b) Using interactive functions to promote the service through social media:
- Facebook.com [cookie administrator: Facebook Inc. based in the USA or Facebook Ireland based in Ireland]
III. Options for Specifying Storage or Access Conditions by Cookies
- The decision to accept the presence of Cookies lies with the user. One way is through the settings of the web browser. Most web browsers allow for some control over most Cookies through browser settings. Instructions for managing Cookies depend on the browser used. Additional information describing the configuration options for Cookies in the case of the most popular browsers can be found on the pages listed below:
- Google Chrome – https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=pl
- Opera – http://help.opera.com/Windows/12.10/pl/cookies.html
- Firefox – https://support.mozilla.org/pl/kb/ciasteczka
- Apple Safari – https://support.apple.com/kb/PH21411?locale=pl_PL
- Windows Internet Explorer – https://support.microsoft.com/pl-pl/help/17442/windows-internet-explorer-delete-manage-cookies
- The user can delete Cookies at any time using the available functions in the web browser they are using.
In formulating the above information, we aimed to make it as specific and precise as possible (including in line with the strict concepts and definitions established by the GDPR), while also keeping it simple, clear, and understandable. To ensure this continuously and due to frequently changing legal regulations, we reserve the right to continuously improve and enhance the form and content of this information. We are aware that this material is extensive, so if you have any comments, questions, or concerns (especially regarding the processing of personal data by us for specific purposes and situations), please feel free to contact us.
