Privacy policy

Privacy policy

In order to protect the privacy rights of users of our services and to comply with legal requirements, we publish this Privacy Policy, in which we explain and inform you how we process and secure personal data obtained during the use of the website or other services.

We pay particular attention to respecting the privacy of users visiting our website (hereinafter: “Website”), and therefore we take the utmost care to ensure the security of the personal data processed and the compliance of the processing with applicable law, in particular with Regulation (EU) 2016/679 of the European Parliament and of the Council (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: “GDPR”).

We also use cookies and similar technologies on our Website. Information on how they work can be found in our Cookie Policy.

1. Personal data controller

The controller of personal data is Performers sp. z o.o. with its registered office in Warsaw, at Al. Jerozolimskie 134, 02-305 Warsaw, entered in the Register of Entrepreneurs of the National Court Register under number 0000605589, NIP: 5223057666, Regon: 363975068, hereinafter referred to as the “Controller”.

For matters relating to the processing of personal data, including the exercise of rights, please contact us at: iod@groupone.com.pl

2. Categories of personal data processed

We process data that you provide or leave when using the Website, e.g. via forms, cookies (including ID numbers, web browser user agent data).

3. Purposes and legal basis for the processing of personal data

We collect users’ personal data and use it for purposes related to the operation of the Website, including managing and improving its functioning, for analytical and statistical purposes – the legal basis for processing is our legitimate interest (Article 6(1)(f) of the GDPR). Providing this data is voluntary. We store the data for the duration of our legitimate interest or until an objection is upheld.

• Where the processing of your personal data is related to the provision of electronic services, we collect and process personal data for the purpose of offering content or services (e.g., functionality on our website) – the legal basis for processing is the necessity of processing for the performance of a contract (Article 6(1)(b) of the GDPR, Article 6(1)(c) of the GDPR in conjunction with the Act of July 18, 2002, on the provision of electronic services). Providing data is voluntary, but necessary in order to use the services. We store the data for the period necessary to conclude and perform the contract.
• We may process personal data for the purpose of establishing and pursuing claims or defending against them – the legal basis for processing is our legitimate interest (Article 6(1)(f) of the GDPR). We store the data until the claims expire or the proceedings are concluded.
• If you agree to receive the newsletter, the legal basis for the processing of your personal data is our legitimate interest (Article 6(1)(f) of the GDPR). Providing your data is voluntary, but necessary in order to receive the newsletter. We store your data for as long as our legitimate interest exists or until your objection is upheld.
• If you send us a message (e.g., by filling out a form or sending an email), we process your personal data in order to respond to your inquiry or take other actions requested by the sender of the message—the legal basis for processing is our legitimate interest (Article 6(1)(f) of the GDPR). Providing data is voluntary, but necessary in order for us to respond or take other (requested) actions. We store the data for the duration of our legitimate interest or until the objection is positively considered.
• We may process personal data contained in correspondence (e.g., emails) for the purpose of concluding and performing a contract with our contractors—the legal basis for processing is our legitimate interest (Article 6(1)(f) of the GDPR), or the conclusion and performance of a contract with a contractor who is a natural person (Article 6(1)(b) of the GDPR). We store the data for the period necessary to achieve the purpose of processing, i.e. the existence of our legitimate interest (or until the objection is positively considered), for the time necessary to conclude and perform the contract.
• We process personal data in order to fulfill our legal obligations, e.g., in the field of accounting and taxation (Article 6(1)(c) of the GDPR in conjunction with other provisions). We store the data for the period required by law. 
• Personal data contained in correspondence (e.g., emails) with contractors and their representatives may be processed for the purpose of analyzing, creating, training, and improving algorithms—the legal basis for processing is our legitimate interest (Article 6(1)(f) of the GDPR). We use personal data to the extent necessary, apply the necessary security measures, and pseudonymize and anonymize data. We store personal data for the period necessary to achieve the purpose of processing, i.e., the existence of our legitimate interest (or until an objection is upheld).
• We also process personal data for the purpose of ensuring the security of the IT system and managing that system, for analytical and statistical purposes – the legal basis for processing is our legitimate interest (Article 6(1)(f) of the GDPR). We store the data for the duration of our legitimate interest or until the objection is upheld.

Advertising and marketing

We may process users’ personal data for marketing purposes. Providing data for marketing purposes is voluntary, but failure to do so will result in the Controller or its partners being unable to provide marketing content to the user.

Advertising and marketing activities may include:

Contextual advertising: displaying marketing content to users that is not tailored to their preferences. The legal basis for processing is our legitimate interest or that of our partners (Article 6(1)(f) of the GDPR). We store the data for as long as our legitimate interest exists or until an objection is upheld.

Behavioral advertising: displaying marketing content to users that corresponds to their interests. Users’ personal data, including personal data collected through cookies and other similar technologies, is processed by the administrator and trusted partners for marketing purposes in connection with targeting users with behavioral advertising (i.e., advertising that is tailored to the user’s preferences). The processing of personal data then includes user profiling. The legal basis for the processing of personal data is the user’s consent (Article 6(1)(a) of the GDPR). We store the data until consent is withdrawn.

If the user does not consent to the use of behavioral advertising, they will receive marketing content that may not be tailored to their interests and needs.

Other forms: direct marketing of goods and services (sending commercial information by electronic means and telemarketing activities). Personal data is used to send marketing content to the user, e.g., via SMS/MMS or telephone. Such activities will only be undertaken if the user has consented to receiving commercial content or has provided their data for this purpose. The user may withdraw their consent to receive commercial content at any time, which will not affect the lawfulness of data processing until the consent is withdrawn. The legal basis for the processing of personal data is the legitimate interest of the Controller or its partners (Article 6(1)(f) of the GDPR). We store the data for the duration of our legitimate interest or until the objection is upheld.

Profiling 

The personal data collected may be profiled for marketing purposes (behavioral advertising). This means that, through automatic data processing, selected factors relating to users (e.g., pages visited, content clicked on, information viewed) are evaluated in order to analyze their behavior or make predictions for the future. On this basis, the user is provided with marketing content tailored to their needs and interests.

Social networking sites

The Controller processes the personal data of users visiting the Controller’s profiles on social media (e.g., Facebook, YouTube, Instagram, Twitter, TIK TOK, LinkedIn). This data is processed solely in connection with maintaining the profile, including for the purpose of informing about the Controller’s activities and promoting events, services, and products. The legal basis for the processing of personal data is the legitimate interest of the Controller (Article 6(1)(f) of the GDPR). We store the data for the duration of our legitimate interest or until an objection is upheld.

4. Data sharing

The Controller does not transfer personal data to international organizations. 

As the Controller uses suppliers who may transfer personal data outside the European Economic Area (abbreviated as “EEA”), personal data may be transferred outside the EEA to the extent necessary. In such a case, the data transfer is based on a decision of the European Commission. In the absence of a decision confirming an adequate level of protection, the safeguards specified in Chapter V of the GDPR shall apply, including standard contractual clauses. For information on transfers or copies of safeguards, please contact the Controller.

Where necessary, the Controller will make personal data available to entities providing services to the Controller, e.g., ICT support for the Website, legal advice. 

Personal data may be transferred to our partners, in particular companies belonging to the Group One capital group, for the purpose of presenting an offer.

5. User rights

The user has the following rights:

1. Right of access to data

The controller will provide the user with access to their personal data and answer questions regarding its processing.

2. The right to request the rectification of personal data

f the personal data processed by the Controller is incomplete, outdated, or inaccurate, the user may request the Controller to rectify the personal data concerning him or her.

3. Right to object to the processing of personal data

The user may object to the processing of their personal data. If the user’s rights, interests, and freedoms outweigh the rights, obligations, and interests of the Controller in the use of personal data, the scope of personal data processing will be limited or the personal data will be deleted.

4. Right to request restriction of processing

There are several situations in which you may request that we restrict our use of your personal data, including (but not limited to) cases where:

•    you have effectively objected to processing on general grounds (as described above); 

•    you contest the accuracy of the personal data we hold; 

•    we have used your personal data unlawfully, but you do not want us to delete it.

5. Right to request deletion of data

There are situations in which you may request the deletion of your personal data, including (but not limited to) cases where:

•    there is no longer a need for us to process your personal data;

•    you have effectively lodged a general objection (as described above); 

•    we have processed your personal data unlawfully.

6. Right to data portability

The right to data portability allows personal data to be transferred between organizations. This applies to data that you have provided to us. You can exercise this right if the processing is carried out by automated means and on the basis of consent or a contract.

7. Right to complain to a data protection supervisory authority

The user has the right to lodge a complaint with the supervisory authority, i.e. the authority responsible for personal data protection – the President of the Data Protection Authority.

8. Right to withdraw consent to the processing of personal data

The user has the right to withdraw consent to the processing of personal data at any time. Withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

Cookies policy

1. Cookies are small files of letters and numbers, downloaded onto your device while using the website.
2. We use cookies within the scope of the Website to make its use functional and user-friendly. We also use cookies to create statistics and verify the way, in which the Website is used.
3. Due to the lifetime of cookies and other similar technologies, we use two main types of these files:
   1. session – temporary files stored in the user’s terminal device until logging out, leaving the Website or switching off the software (web browser);;
   2. permanent – stored in the user’s terminal device for the time specified in the parameters of cookie files or until their removal by the User.
4. Due to the purpose of cookies and other similar technologies, we use the following types of cookies:
   1. necessary for the performance of the service – enabling the use of our services, e.g. authenticated cookies used for services requiring authentication; files used to ensure security e.g. used to detect misuse of authentication
   2. statistical – to keep statistics on the Website.
5. The settings in web browsers are usually programmed to accept cookies by default, but this can easily be adjusted by introducing changes therein. However if you decide to disable cookies in your browser, you may not be able to use all the services offered by the Website. More information about the cookie settings in individual browsers can be found on the pages of the browsers, such as:
   1. Internet Explorer
   2. Mozilla Firefox
   3. Chrome
   4. Opera
6. Information on cookies can be found, for example, at wszystkoociasteczkach.pl, or in the Help section of your web browser menu.

Annex to the Privacy Policy No 1:

List of reliable partners:

1. Value Media Sp. z o.o.
2. Mediaplus Sp. z o.o.
3. Labcon Sp. z o.o.
4. Group One Media Sp. o.o.
5. RL Media Sp. z o.o. Sp.k.