Privacy Policy of Ostsped Logistics Ltd.
The privacy policy is a document describing the principles of personal data protection applied by the Administrator in order to meet the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of individuals with regard to the processing of personal data, hereinafter referred to as GDPR.
This policy serves as one of the organizational measures to demonstrate that personal data processing is carried out in accordance with this regulation, as well as to streamline and systematize the Administrator’s organizational operations.
- Administrator
The Administrator of personal data, i.e., the entity responsible for deciding on the processing of personal data, is Ostsped Logistics Ltd., located in Kalisz, Obozowa Street 68, 62-800; hereinafter referred to as the Administrator. The Administrator addresses this information to individuals in relation to the need to fulfill the obligations specified in Articles 13(1) and (2) and Articles 14(1) and (2) of the General Data Protection Regulation (EU) 2016/679, hereinafter referred to as GDPR. You can contact the Administrator to obtain more information about the processing of your personal data. Contact with the Administrator can be made via email at office@ostsped.pl or by traditional postal mail. Correspondence should be sent to: Ostsped Logistics Ltd., Obozowa Street 68, 62-800 Kalisz.
Source of your personal data: Your personal data may have been provided to the Administrator directly, for example, by using the contact form available on the ostlog.pl website or through establishing a business relationship with the Administrator.
- Purpose of Data Processing
2.1. Your data may be processed in order to respond to inquiries sent via the contact form – legal basis for processing: your consent and the legitimate interest of the Administrator, which includes marketing its own services and/or actions taken at your request before entering into a potential agreement (i.e., Article 6(1)(a) and (f) GDPR in conjunction with Article 10 of the Act of July 16, 2002, on the provision of electronic services and/or Article 6(1)(b) GDPR).
2.2. We may also process data to respond to other inquiries and requests that do not relate to the services offered by the Administrator – legal basis for processing: your consent (i.e., Article 6(1)(a) GDPR).
2.3. Conducting other forms of marketing, including maintaining fan pages and organizing competitions and other corporate events – legal basis for processing: your consent and/or the necessity of processing for the performance of the contract and/or the legitimate interest of the Administrator, which includes marketing its own services (i.e., Article 6(1)(a) and/or (b) and/or (f) GDPR).
2.4. Processing data for the performance of contracts with clients, suppliers, or other contractors who are natural persons, including actions taken at their request before entering into an agreement – legal basis for processing: necessity of processing for the performance of the contract and actions taken at your request before entering into such an agreement (i.e., Article 6(1)(b) GDPR).
2.5. Conducting business cooperation through processing your personal data (for natural persons conducting sole proprietorships, as well as employees, representatives, and persons performing tasks on behalf of such individuals or legal entities) – legal basis for processing: necessity of processing to fulfill the legal obligations of the Administrator (i.e., Article 6(1)(c) GDPR).
2.6. Fulfilling any legal obligations of the Administrator, including accounting and tax obligations or obligations related to consumer rights (e.g., warranty and guarantee) – legal basis for processing: necessity of processing to fulfill the legal obligations of the Administrator (i.e., Article 6(1)(c) GDPR in conjunction with other relevant laws).
2.7. Acquiring and further processing data from public sources or publicly available registers of businesses – legal basis for processing: legitimate interest of the Administrator, which includes performing statutory activities (i.e., Article 6(1)(f) GDPR).
2.8. Protecting the interests and property of the Administrator and defending against potential claims – legal basis for processing: legitimate interest of the Administrator, which includes the protection of its interests and property, also through the use of video surveillance, which covers production and warehouse areas as well as the space surrounding the Administrator’s premises (i.e., Article 6(1)(f) GDPR).
- Scope of Data Processing
During the processing activities, the Administrator applies the principle of data minimization. We aim to process only the minimum and necessary personal data, unless specified otherwise by law. In most cases, the processing of special categories of personal data, such as health-related information, is not required. Therefore, if personal data is provided directly by you, please avoid submitting excessive data to the Administrator.
- Rights in Relation to Data Processing
- Right to access to data
- Right to rectification of data
- Right to erasure of data
- Right to restriction of processing
- Right to data portability
- Right to object
The Administrator recommends contacting us by email at office@ostsped.pl for any inquiries or requests related to these rights.
