1. JD Kancelaria
  2. Privacy and Cookies Policy

Privacy and Cookies Policy

I. General Information

1. This Privacy and Cookies Policy sets out the rules governing the processing of personal data and the use of cookies related to the use of the website www.jdudeklegal.pl, operated by JDK Legal | Kancelaria Radcy Prawnego| Joanna Dudek (“the Website”). 

2. The personal data controller is JDK Legal Kancelaria Radcy Prawnego Joanna Dudek, with its registered office at ul. Gwiaździsta 22/4, Wrocław 53-413, Tax Identification Number (NIP): 7831848765 (“Controller”).

3. The Controller can be contacted: (a) at the postal address: Wrocław 53-413, ul. Gwiaździsta 22/4 or (b) at the email address: info@jdklegal.pl. 

4. Personal data is processed in accordance with: Regulation (EU) 2016/679 of the European Parliament and of the Council (“GDPR”), the Personal Data Protection Act and other applicable regulations concerning the protection of personal data, including those replacing the aforementioned regulations. The controller implements appropriate technical and organisational measures to ensure the protection of data against loss, destruction, disclosure or access by unauthorised persons.  

II. Scope of processed data

Depending on how you use the Website, the following data may be processed: first name and surname, email address, telephone number, data contained in the content of messages sent via the contact form or email, IP address, data relating to the user’s activity on the Controller’s LinkedIn profile, and data concerning the use of the Website obtained via cookies and analytical tools.

The submission of personal data is voluntary, but may be necessary to use the contact form or other features of the Website.

III. Purposes and grounds of processing personal data

Personal data may be processed for the following purposes:

1. In the case of the contact form and correspondence, data is processed for the purpose of: replying to the message sent and taking steps prior to entering into a contract. The legal basis for processing is: Article 6(1)(b) of the GDPR (conclusion of a contract) or Article 6(1)(f) of the GDPR, i.e. the Controller’s legitimate interest (establishing contact and communicating in connection with replying to a message). 

2. In the case of marketing and information activities, the processing purposes may include: providing the user with access to materials and information concerning the Controller’s activities, analysing user activity, assessing the effectiveness of marketing activities and analysing the Website’s functioning. The basis for data processing is: Article 6(1)(a) of the GDPR (consent) or Article 6(1)(f) of the GDPR (the Controller’s legitimate interest – marketing of its own services).

3. In the event of pursuing or defending against claims: data may be processed to the extent necessary to establish, pursue or defend claims. The basis for data processing for this purpose is Article 6(1)(f) of the GDPR (the Controller’s legitimate interest – pursuing claims).

IV. Data retention period

1. Data relating to the contact form, correspondence and social media is processed: for the period necessary to respond and maintain communication, and subsequently for the period required to secure any claims, which is usually 3 or 6 years and ends at the end of the last calendar year. 

2. Data processed on the basis of the Controller’s legitimate interest is retained until a valid objection is raised or the purpose of processing ceases to apply. Data processed on the basis of consent is retained until consent is withdrawn or the purpose of processing ceases to apply. 

3. Upon expiry of the retention periods, the data is deleted or anonymised.

4. The retention period for cookies depends on their type and purpose. Some cookies are deleted at the end of the browser session (session cookies), whilst others may be stored for a specific period indicated in their technical settings.

V. Data processing rights

The data subject has the right at any time to:

- access their personal data and obtain a copy of it, 

- have their data rectified, 

- have their data erased or processing restricted, 

- have their data transferred (where processing is carried out by automated means, on the basis of consent or a contract), 

- object to the processing of data where the basis for processing is the Controller’s legitimate interest,

- withdraw consent at any time, if the basis for processing was consent, provided that the withdrawal of consent does not affect the lawfulness of processing carried out prior to its withdrawal,

- submit a complaint to the President of the Personal Data Protection Office (Prezes Urzędu Ochrony Danych Osobowych). 

Request and questions related to the above rights should be submitted to the Controller.

VI. Access by third parties

Personal data may be disclosed to entities processing personal data on behalf of the Controller, including IT, software and hosting service providers, marketing agencies, consultants, and entities cooperating with the Controller in the provision of legal and organisational services. 

Data may also be disclosed to entities authorised under applicable law, e.g. law enforcement agencies.

VII. Transfer of data outside the European Economic Area

Personal data may be transferred to third countries, in particular to the United States, in connection with the use of services provided by suppliers such as Google. Data transfers are carried out in accordance with the provisions of the GDPR, in particular on the basis of the European Commission’s decision confirming an adequate level of data protection (EU–US Data Privacy Framework) or by applying other appropriate safeguards provided for by the GDPR.

VIII. Cookies

1. The Website employs cookies and similar technologies that are essential for the Website to function effectively. 

2. Cookies are small data files that are saved and stored on the user’s device whilst they are using the Website. 

The Website may use the following types of cookies: session cookies, permanent cookies, functional cookies, technical cookies, statistical cookies and analytical cookies. 

3. The use of cookies is primarily intended to ensure the proper functioning of the Website, maintain the user’s session, increase security and remember selected settings and preferences, as well as for statistical analysis related to the use of the Website.

Cookies necessary for the operation of the Website are used in accordance with the law and do not require the user’s consent.

4. Analytical and optional cookies are used once consent has been given via the cookie banner. Consent to the use of optional cookies may be withdrawn at any time by changing your cookie settings. You can manage cookies via your web browser settings, although restricting them may affect the proper functioning of certain features of the Website. Web browsers allow cookies to be stored on the end device by default. Information on how to manage cookies is available in the software settings. It is possible to block cookies completely (however, this may prevent certain features from working or prevent you from using the Website).

IX. Server logs

Using the Website involves sending requests to the server on which the Website is hosted. 

Each such request may be recorded in server logs and may include, amongst other things, the user’s IP address, the date and time of the request, details of the web browser used, and information about the device’s operating system. 

The data collected in the logs is used solely for administrative and technical purposes, and to ensure the secure operation of the website.

X. Social media

The Controller maintains profiles on social media, in particular on LinkedIn.

In connection with users’ use of this profile, the Controller may process data provided by users via LinkedIn, in particular identification data, the content of comments and messages.

The data is processed for the purposes of maintaining the profile, communicating with users and promoting the Controller’s business activities on the basis of Article 6(1)(f) of the GDPR, i.e. the Controller’s legitimate interest.

Detailed information regarding the processing of data by LinkedIn is available in LinkedIn’s privacy policy.

XI. Amendments to the Policy

The Privacy and Cookies Policy may be updated, in particular in the event of changes to legislation or changes to the way in which personal data is processed. The current version of the Policy is always available on the Website.

Strona korzysta z plików cookie w celu realizacji usług zgodnie z Polityką Prywatności. Możesz samodzielnie określić warunki przechowywania lub dostępu plików cookie w Twojej przeglądarce.