Edge One Solutions

Privacy Policy

 

 

INTRODUCTION  

This document entitled “Privacy Policy” (hereinafter referred to as the Policy) is a description of the privacy policy of EDGE ONE SOLUTIONS Sp. z o.o. with headquarters in Warsaw, 14B Postępu Street, 02-676 Warsaw, entered in the Register of Companies of the National Court Register, kept by the District Court for the Capital City of Warsaw, XII Commercial Division of the National Court Register, under the KRS number: 0000514404, NIP: 701-043-07-63, REGON: 147368720 (hereinafter referred to as the Company, Administrator). 

This policy defines when personal data may be collected from candidates, clients and users and also explains and regulates issues related to its collection, processing and use. 

The Policy applies to all websites operated by or on behalf of the Company. 

We would like to ask you to read this Privacy Policy carefully before using the Company’s websites and before sharing data. 

If the User does not consent to the collection, use and disclosure of their personal information as described in this Policy (and any relevant nationwide or site-specific privacy documents), the User is asked to refrain from using the Company’s websites. 

 

DEFINITIONS 

 

  1. Administrator, Company – Edge One Solutions Sp. z o. o. – Personal Data Administrator 
  1. Policy – means this Privacy Policy, unless the context clearly indicates otherwise 
  1. GDPR – means the Regulation of the European Parliament and of the Council (EU) 2016/679 of 27.04.2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing of Directive 95/46/EC (General Data Protection Regulation) (OJ L 119 of 4.5.2016, p. 1) 
  1. Data – means personal data, unless the context clearly indicates otherwise 
  1. Profiling – means any form of automated processing of personal data which involves the use of personal data to evaluate certain personal factors of a natural person, in particular to analyze or predict aspects relating to that natural person’s work performance, financial situation, health, personal preferences, interests, credibility, behavior, location or movement 
  1. User – a job candidate, an employee, a person asking a question, a person recommending a friend for a job, a person visiting web pages belonging to the Company 
  1. Services – shall be understood to mean the services provided by the Company electronically via the website, i.e.: sending inquiries via the contact form and submitting documents necessary for the recruitment process 

 

PERSONAL DATA ADMINISTRATOR 

The Administrator of your personal data is the Company, i.e. EDGE ONE SOLUTIONS Sp. z o.o. with headquarters in Warsaw, 14B Postępu Street, 02-676 Warsaw, entered in the Register of Companies of the National Court Register, kept by the District Court for the Capital City of Warsaw, XII Commercial Division of the National Court Register, with the KRS number: 0000514404, NIP: 701-043-07-63, REGON: 147368720. 

 

DATA PROTECTION OFFICER 

The Data Protection Officer of the Company is Andrzej Rudko, e-mail: iodo@edge1s.com 

 

PERSONAL DATA 

By providing Personal Data on www.edge1s.com and other Company owned websites, you consent to the Company’s processing of your Data in the ways described in this Policy. 

In a situation when the user discloses personal data of a third party (e.g. a co-worker) in the online form, it will be assumed that the user has appropriate consents of the person whose data they provided to the Company. 

In case the Company obtains personal data from a third party, the Company will fulfill the notification obligation towards the data subject at the latest within one month after the data is obtained, or if the data is to be used for contact purposes – at the latest at the time of the very first contact, or if the obtained data is to be disclosed to another party – at the very latest at the point of the first disclosure. 

 

DATA PROTECTION 

The Company implements appropriate measures to ensure accountability, availability, protection of confidentiality of Personal Data and to maintain its integrity. Access to Users’ Personal Data has been restricted so that the information does not fall into the hands of unauthorized persons. 

 

PURPOSES OF PROCESSING PERSONAL DATA with data retention: 

To respond to submitted inquiries 

Purpose of processing and legal basis: 

Your personal data is processed in connection with 

  • leaving contact details and inquiries made through forms on the websites. Personal data is processed on the basis of voluntary consent Article 6 paragraph 1 point a) GDPR. 
  • sending to you via the indicated contact channels (telephone, e-mail) the answers to the inquiries sent via the contact form on the basis of Article 6 paragraph 1 point a) GDPR. 

 

Data storage time 

  • Storage period depends on the end purpose. 
  • If there are no other circumstances – 6 months from the date of the last contact. 

 

Categories of data recipients 

  • Providers of external cloud services, hosting, web applications on the basis of entered agreements of personal data entrustment. 
  • Entities running postal or courier services. 

 

Conducting recruitment processes 

Purpose of processing and legal basis 

Your personal data is processed in connection with: 

  • conducting recruitment processes in order to present you with an offer for a specific position Article 6 paragraph 1 point a) GDPR. 
  • in order to carry out further recruitment processes – on the basis of a voluntarily given consent in the event that you wish to remain with us after the recruitment process is Article 6 paragraph 1 point a) GDPR. 

The required data for the purposes of recruitment are specified by the provisions of art. 22(1) par. 1 KP. For all other data sent to Edge1s, candidates gave their voluntary consent at the time of sending the recruitment documents – Article 6 paragraph 1 point a) GDPR. 

 

Data storage time 

  • until the end of the recruitment process, i.e. at the moment of signing the final contract, which takes place 3 months after the end of the 3-month trial period employment contract. 
  • for the needs of the recruitment process, however, no longer than for 3 months, if no consent to conduct future recruitment processes was given. 
  • until the withdrawal of consent, but no longer than for a period of 3 years – if consent was given for the processing of data for future recruitment processes – Article 6 paragraph 1 point a) GDPR.
     

Categories of data recipients 

  • Clients who were provided with candidate data by the Personal Data Administrator as part of the recruitment process when making recruitment decisions. 
  • Providers of external cloud services, hosting, web applications on the basis of personal data entrustment agreements 
  • Postal or courier service providers. 

 

Entering into and processing civil law contracts and employment contracts. 

Purpose of processing and legal basis 

Your personal data is processed in connection with 

  • entering into and fulfilling the contract(s) linking you to us – because the processing is necessary for the fulfilment of the contract(s) art. 6, paragraph 1, point b) GDPR 
  • carrying out financial settlements art. 6, section 1, point f) GDPR 
  • fulfilment of obligations towards state/authorities/governmental bodies/authorities Article 6 section 1, point (c) GDPR 

 

Data storage period 

  • personal data will be processed during the period specified by the law and for the time necessary to ensure the possibility of examining any civil law claims that might arise in connection to the subject of the given consent. 
  • for persons employed on the basis of an employment contract, data will be stored for the period of their employment and keeping personnel records in connection therewith, as well as for the period of performing the administrator’s legal obligations, such as maintaining personnel files and documentation, storage, or other activities required by current law. 
  • for cooperation on the basis of a civil law contract (contract of mandate, contract for specific work or other form of cooperation), data will be stored for the duration of the contract and for the time in which it may be necessary to secure, establish, defend or enforce claims, conduct and complete proceedings before the relevant authorities or in connection with the protection of property and interests of the Administrator, as well as for the period after which claims arising from the contract expire. 

 

Categories of data recipients 

  • Government authorities or other entities authorized by law, 
  • Persons authorized by the Administrator providing services for Edge One Solutions 
  • Banks and entities that enable remote payment operations, 
  • Entities, partners, contractors of our business implementations, 
  • Providers of external cloud services, hosting, web applications on the basis of contracts entered into for the entrustment of personal data. 
  • Entities providing postal or courier services. 

 

Marketing and sales 

Purpose of processing and legal basis 

Your personal data is processed in connection with: 

  • researching product or service demand preferences within the scope of our business activities, as the processing is necessary for our legitimate interest Article 6 paragraph 1 point f) GDPR, which is to be able to determine a catalog of products and services that may be of interest to you. 
  • sending you, via the e-mail addresses provided by you, commercial and marketing information on the basis of voluntary consent art. 6 paragraph 1, point a) 
  • direct marketing of products or services, including carrying out analyses, including profiling (i.e. using personal data to create your profile, in particular regarding products and services in which you may be interested) – because processing is necessary for our legitimate interest (Article 6 paragraph 1 point f GDPR), which is the possibility of carrying out direct marketing and the possibility of starting future cooperation Article 6 paragraph 1 point b GDPR 
  • measuring your satisfaction with working with us or our partners and your satisfaction with our products or services – as the processing is necessary for our legitimate interest – Article 6 paragraph 1 point f GDPR, which is to assess the quality of our service and the level of satisfaction of our customers with our products and services. 

Personal data will be processed for the purpose indicated in the content of the given consent Article 6 paragraph 1 point a) GDPR and if the processing is necessary for the realization of the legitimate interest of the Administrator Article 6 paragraph 1 point f) GDPR. 

Data storage time 

  • Personal data will be processed until the purpose specified in the consent is achieved. 
  • or until withdrawal of consent, but no longer than 3 years 
  • or for the period following the statute of limitations for claims and until the completion of civil, enforcement, administrative and criminal proceedings requiring data processing. 

Categories of data recipients 

  • Individuals authorized by the Administrator who provide services to Edge One Solutions. 
  • Providers of external cloud services, hosting, web applications on the basis of concluded personal data entrustment agreements. 
  • Entities providing postal or courier services. 

We will not use your personal data for purposes other than those indicated above without first informing you and, if required by law, obtaining your consent. 

COOKIE FILES 

The personal data administrator informs that on the basis of the provisions of Article 173 and 174 of the Act of 16 July 2004 Telecommunications Law (Journal of Laws of 16 July 2004, with later amendments), we use so-called “cookies”. 

What are cookies? 

When you are using the websites of the Administrator of personal data, information (small text files) is saved by web servers on your end device, the so-called Cookie files, necessary for proper use of the websites. Servers can read them each time you make a connection from this end device. Cookies usually contain the domain name of the website they come from, the time of storage on the end device and a unique number. Cookies can be placed on the User’s end device and then used by external providers, cooperating with the Company, to monitor traffic and activity on the website and to collect statistical data (e.g. Google, Facebook). 

Cookie security 

Cookies can only be read by the server that created them. They do not change any settings or software installed on your device. A prerequisite for cookies is that your browser accepts them. The default settings of most browsers allow the use of cookies. You can delete cookies or block their use by changing your browser settings. 

Why do we collect cookies? 

  • for the purpose of statistics on viewing specific content 

cookies help us understand how you use our websites so that we can improve them 

  • for the proper functioning of the site. 

it is necessary to ensure safety and functionality of websites 

  • for marketing purposes 

the information collected from the behavior of navigating the sites and personal data provided through contact forms, allow us to provide personalized marketing and commercial content to users who have given their consent. 

Types of cookies used: 

  • Session Cookies
    are files that make it possible to use the services available on the website, in particular to use the session. They are stored on your device until the end of a given browser session and then they are permanently deleted from your device 
  • Persistent Cookies
    are files that are stored on your device and remain there until deleted. They make it possible to “remember” your selected settings and personalize the interface, for example, regarding the selected mobile or desktop version, the latest keywords typed into the search engine, the look of the website, etc. 
  • Outside Cookies
    files from external websites, e.g. advertising, social networks and other service providers cooperating with our websites 

In addition to our own cookies, third-party cookies such as those of advertisers and analytical systems such as Google Analytics are stored. These cookies are used for the following purposes: 

  • to create profiles and behavioral advertising tailored to the user profile and to avoid displaying the same ads to the same user 
  • functional support of third parties such as Facebook Connect, Instagram 
  • collecting statistical data on visits to particular subpages of websites 

Disabling cookies 

You decide whether cookies are saved and stored on your device. You can make changes in the settings of your web browser. Instructions on how to manage cookies can be found on the websites of web browser vendors: 

  • Microsoft Edge 
  • Google Chrome 
  • Mozilla Firefox 
  • Apple Safari 

 

Please note, however, that any restrictions on cookies may cause our websites to not function properly. 

Technical information 

We also use geolocation for statistical purposes. We check from which place (country, region or city) you are using our website. 

The data administrator also uses cookies to count the number of visitors to our website. 

Google Analytics cookies are used to compile statistics for our websites. The information generated by these cookies, including your IP address, is transmitted to and stored by Google on servers in the United States. This information is processed by Google for the purpose of evaluating your use of our websites. It is also used to create reports and to provide other services relating to the use of our websites and use of the Internet. 

  • _utma (Persistent Cookie, expires after 730 days) 

is the user ID. The Google Analytics tracking service, which is used by most websites. It tracks how many times a User has visited a website from the first visit to the last. This makes it possible to determine the number of unique visits. 

  • _utmb (Session Cookie, expires after 30 minutes of inactivity) 

is the session identifier. Google Analytics tracking service. This file allows you to determine how long a visit lasted. It collects a timestamp when a user is actively using the website 

  • _utmc (Session Cookie, expires 30 min after leaving the page) 

collects a timestamp when the user leaves the page and expires 30 min after _utmb expires. 

  • _utmz (expires after 182 days) 

is the campaign identifier. Google Analytics tracking service. Tracks where the user is coming from to the website, what browser and search engine they are using. What links they clicked on, what keywords they used, and where they were when they accessed our site. 

 

System logs 

Each visit of a User visiting the Company’s website is automatically recorded on the server in the so-called system logs. The data recorded in this way include, among others: the date, duration of the visit and IP address. The data from system logs are used solely for the purpose of server administration and website visit statistics. 

EXTERNAL SERVICE PROVIDERS with whom entrustment agreements have been entered into. 

Your personal information: 

  • may be shared with individuals providing services to Edge One Solutions authorized to process personal data by the Administrator 
  • may be provided to entities cooperating with the Company in the recruitment process. 
  • may be made available to companies affiliated by capital and personal relationship with the Company 
  • may be processed by tools and services under an entrustment agreement for the processing of personal data 

   

WEB Tools 

  • Traffit.pl –  the company Traffit sp. z o.o 

 

Hosting Companies 

  • OVH – OVH Groupe SAS 

 

Cloud service providers 

  • The administrator uses cloud solutions provided by GOOGLE (Google Workspace formerly G-Suite Basic). 

Information about Google’s security and privacy policies can be found at https://privacy.google.com/businesses/compliance/ and https://policies.google.com/privacy?hl=pl 

  • The administrator uses cloud solutions provided by Microsoft Office 365 

Information on Microsoft’s security and privacy policies can be found at https://privacy.microsoft.com/pl-pl/privacystatement 

Transfer of personal data outside the EEA 

Edge1S does not transfer personal data outside the EEA. 

PROFILING 

Your personal data will not be subject to automated decision-making including profiling. 

 

YOUR RIGHTS 

You have the following rights: 

  • the right to access, correct and add to your data, 
  • deletion, ceasing or restriction of processing, 
  • the right to object to their processing, 
  • The right to transfer your data, 
  • the right to declare the withdrawal of consent at any time. Withdrawal of consent does not affect the legality of processing, which was performed on the basis of consent before its withdrawal. 

Each of the above rights is exercised at the request of the User. The Company will consider the request sent to iodo@edge1s.com and will send a reply within 30 days from the date of its receipt. 

You also have the right to file a complaint with the President of UODO (to the address of the Office for Personal Data Protection, 2 Stawki Street, 00-193 Warsaw). 

QUESTIONS AND COMPLAINTS ABOUT PRIVACY PROTECTION 

If you have any questions or complaints about how the Company processes your personal information, please contact us at iodo@edge1s.com. 

 

NOTIFICATIONS OF CHANGES 

The implementation of significant changes to the Policy will be announced on the Company’s website for 30 consecutive days in the form of a notification.