Data protection statement

Privacy policy

Data protection

Data protection in one of the key priority for EOS KSI Poland sp. z o.o.

Since May 25, 2018 the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation hereinafter referred as "GDPR") applies, according to this we have prepared a set of necessary information concerning the processing of your personal data.

I Basic definitions:

Personal data - any information about an identified or identifiable natural person. Depending on the context personal data includes, but is not limited to: first name, surname, address, email, telephone number, parents' names, ID number.

Controller - means a natural or legal person, public authority, agency or other body, which alone or jointly with others, determines the purposes and means of processing of personal data.

Processor - means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Processing – means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Personal data breach - means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.

II Processing purposes

The purposes of processing your personal data depend on the relationship between you and EOS KSI Polska Sp. z o.o. The primary purpose of our contact is to conduct activities related to debt collection, in which you can act as a person having debts or power of attorney/representative of that person. We may also process your data for the purpose of recruitment due to your job application, process your complaint, as well as to comply with legal obligations, such as tax and accounting purposes.

III Processing basis

1) EOS KSI Polska Sp. z o.o. act as a data processor.

When EOS KSI Polska sp. z o.o. contacts you for the purpose of debt collection, it means that you have got receivables with one of the entities with which EOS KSI Polska sp. z o.o. has concluded a debt service agreement or you are a power of attorney/representative of a person who have financial liabilities. In such cases, EOS KSI Polska sp. z o.o. acts as a data procesor and is processing your personal data on behalf of and at the request of the data controller. The legal basis for the processing of personal data by EOS KSI Polska sp. z o.o. base in Article 95 § 1 of the Civil Code Act and Article 28 paragraph 3 of the GDPR.

Depending on for which entity you have got financial liability, we encourage you to read detailed Information on the processing of personal data under Article 13/14 of the General Regulation on the Protection of Personal Data (GDPR):

- EOS Investment Poland GmbH – download

- EOS 1 Fundusz Inwestycyjny Zamknięty Niestandaryzowany Fundusz Sekurytyzacyjny – download

- VPF 1 Niestandaryzowany Sekurytyzacyjny Fundusz Inwestycyjny Zamknięty – download

- Aneto Niestandaryzowany Sekurytyzacyjny Fundusz Inwestycyjny Zamknięty – download

Power of Attorney/representative of a person having an financial liability towards to:

- EOS Investment Poland GmbH – download

- EOS 1 Fundusz Inwestycyjny Zamknięty Niestandaryzowany Fundusz Sekurytyzacyjny – download

- VPF 1 Niestandaryzowany Sekurytyzacyjny Fundusz Inwestycyjny Zamknięty – download

- Aneto Niestandaryzowany Sekurytyzacyjny Fundusz Inwestycyjny Zamknięty – download

If we are contacting with you on behalf of an entity that is not listed above, you should contact that entity directly for information on the processing of your personal data.

2) EOS KSI Polska Sp. z o.o. act as a data controller.

EOS KSI Polska Sp. z o.o. may also act as a data controller, e.g. in the following situations:

1) If you have sent your job application, we encourage you to acquinte with the information about the processing of personal data for candidates to work at EOS KSI Polska or EOS & M. Witoń Kancelaria Prawna

2) If you have sent to us correspondence by e-mail or traditional mail, and we do not contact with you re: debt collection, we encourage you to acquinte with the information about processing of personal data for third parties submitting applications, inquiries, complaints - download

The Data Protection Inspector of EOS KSI Polska Sp. z o.o. is Mateusz Mirkiewicz, in case of any doubts related to the processing of personal data by EOS KSI Polska Sp. z o.o., please contact us by e-mail at inspektor.ochrony.danych@eos-ksi.pl or by post at the address: Bitwy Warszawskiej 1920 r. 7a, 02-366 Warsaw.
Policy privacy
1. Name and contact data of body responsible for processing (‘data controller’) and company data protection officer

The privacy policy applies to data processing by:

EOS KSI Polska Sp. z o.o.
ul. Bitwy Warszawskiej 1920 r. 7a
02-366 Warszawa

Tel. +48 22 318 56 00
Fax. +48 22 318 46 02
E-mail: info@eos-ksi.pl

MD: Dariusz Petynka
KRS: 0000114457 VAT
UE: PL 6342278894
NIP: 634-22-78-894

The data protection officer for the company EOS KSI Polska Sp. z o.o. Mateusz Mirkiewicz can be contacted at the above address or by email at inspektor.ochrony.danych@eos-ksi.pl

2. Scope

This privacy policy applies to the collection of personal data on our website and the subsequent processing of these data by us.

This privacy policy further serves towards provision of information pursuant to Articles 13 and 14 of the GDPR for data processing outside the scope of collection via this website. As such we will provide you with separate privacy policies for specific data processing activities on a case-by-case basis.

3. Privacy policies of the other companies of EOS Group

This privacy policy does not apply to data processed by the other companies of EOS Group. This is also the case if these other companies of EOS Group along with their contacts are named on our website and/or their services are shown on our website.

The other companies of EOS Group will provide you with separate privacy policies for specific data processing activities on a case-by-case basis.

4. Collection and storage of personal data and nature and purpose of their processing

a. When you visit the website

When you retrieve our website eos-globalcollection.com the browser used on your device automatically sends information to our website’s server. This information is temporarily saved in a log file. The following information is collected without your intervention and saved until it is automatically deleted after three (3) days:
- IP address of retrieving computer,
- date and time of access,
- name and URL of retrieved file,
- website from which access occurred (referrer URL),
- website retrieved from our website,
- your computer’s browser and possibly operating system as well as name of your access provider.
The aforementioned data are processed by us for the following purposes:
- to ensure trouble-free connection establishment to the website,
- to ensure comfortable use of our website,
- to analyse the system security and stability, and
- for other administrative purposes.
The legal basis for processing of the data is Art. 6(1) Sent. 1 (f) of the GDPR. Our legitimate interest follows from the purposes for data collection listed above. Under no circumstances do we use the collected data for the purpose of drawing conclusions about you.

Beyond that we use cookies and analysis services when you visit our website. More detailed information about this can be found in sections 4 and 5 of this privacy policy.

b. When you contact us by email

You can contact us with questions of any kind via the provided email address(es).

If you do so the personal data transmitted via the email are saved. The legal basis for data processing for the purpose of making contact is Art. 6(1)(f) of the GDPR. If contact is made for the purpose of concluding a contract an additional legal basis for processing is Art. (6)(1)(b) of the GDPR.

We delete the personal data collected by us after processing your enquiry provided we are not legally entitled or obligated to process it further.

5. Passing on of data

We only pass your personal data on to other companies of EOS Group or other third parties (recipients) if:
- you have provided your explicit consent for one or more specific purposes pursuant to Art. 6(1) Sent. 1 (a) of the GDPR,
- disclosure pursuant to Art. 6(1) Sent. 1 (f) of the GDPR is necessary for the assertion, exercising or defence of legal claims and there is no reason to assume that you have a primary protection-worthy interest in not having your data disclosed,
- for the case that there is a legal obligation for disclosure pursuant to Art. 6(1) Sent. 1 (c) of the GDPR and
- it is legally permissible and necessary for fulfilment of contractual obligations pursuant to Art. 6(1) Sent. 1 (b) of the GDPR.
- we have the data processed on our behalf in compliance with Art. 28 of the GDPR.
Transmission of your personal data for purposes other than those listed above does not occur.

6. Cookies

We use cookies on our website. Cookies are small files that are automatically created by your browser and stored on your device (laptop, tablet, smartphone or similar) when you visit our website. Cookies do not harm your device and contain no viruses, Trojan horses or other malware.

Data respectively yielded from the combination with the specific device used are saved in the cookie. However, this does not mean that we immediately become aware of your identity through this.

For one thing, use of cookies serves to make our offering more pleasant for you to use. To that end we use so-called session cookies to detect whether you have already visited individual pages on our website. They are automatically deleted when you leave our website.

We also use temporary cookies that are stored on your device for a specified time period to improve usability. If you visit our website again to use our services you are automatically recognised as a repeat visitor and the entries and settings you made previously are automatically recognised so you do not have to make them again.

We also use cookies to collect statistics on the use of our website and analyse them for the purpose of optimising our offering for you (see section 5). With these cookies we can automatically recognise that you are a repeat visitor when you visit our website again. These cookies are automatically deleted after leaving our website on the respective validity date.

The data processed by cookies are necessary for the purposes mentioned for safeguarding our legitimate interests as well as the legitimate interests of third parties pursuant to Art. 6(1) Sent. 1 (f) of the GDPR.

Most browsers accept cookies automatically, but you can configure your browser to prevent cookies being stored on your computer or to display a notice before a new cookie is saved. If you completely deactivate cookies, you may not be able to use all the features of our website.

7. Analysis tools

The tracking measures listed below and used by us are carried out on the basis of Art. 6(1) Sent. 1 (f) of the GDPR. We use these tracking measures to ensure that our website is designed according to requirements and optimised on an ongoing basis. We also use the tracking measures to collect statistics on the use of our website and analyse them for the purpose of optimising our offering for you. These interests are to be considered as being legitimate in the sense given in the aforementioned regulation.

The respective purposes for data processing and data categories can be found in the corresponding tracking tools in this section.

a) Use of Siteimprove Analytics

This website uses Siteimprove Analytics, a web analytics service provided by Siteimprove. Siteimprove Analytics uses "cookies" - text files stored on your computer or smartphone to help EOS Holding GmbH (EOS) analyze how visitors use the site. The information that is generated by the cookies about the visitors' website usage is stored and processed by Siteimprove on servers in Denmark.
IP addresses are completely anonymized before collected data can be viewed via the Siteimprove Suite for EOS. A reversal of the anonymization of IP addresses and an assignment of IP addresses to collected data is not possible.
EOS will use this information to evaluate the user behavior of its website visitors, to report on it and ultimately to improve the website experience for its visitors. Siteimprove will not share this information with third parties or use it for marketing or promotional purposes of any kind.

These cookies from Siteimprove are used on this website:

Name of the cookie: nmstat

Type: Persistent - expires after 1000 days

This cookie is used to record visitor behavior on the site. It is used to collect statistics on website usage, eg. for example, when the visitor last visited the website. The cookie contains no personal data and is used solely for website analysis.

Name of the cookie: siteimproveses

Type: session cookie

This cookie is used to track the sequence of pages that a visitor views as they visit the site. The cookie contains no personal data and is used solely for website analysis.
By using this website, the visitor agrees to the processing of his or her data for the purposes described above.
You may object to the collection of your data by Siteimprove Analytics by clicking on the link below. This will set an opt-out cookie that prevents future collection of your data when you visit this site.

b) Use of Outbrain

This website works together with Outbrain. Outbrain respects its users' privacy practices and adheres to best practices for privacy and standards such as model clauses and ISO 27001. For more information on the topic, please visit the Outbrain Terms of Use at http://www.outbrain.com/de/legal/tos.
Outbrain does not collect data for marketing, except for a unique ID number that allows Outbrain to differentiate between different marketers. To track conversions that result from Outbrain campaigns, those data are collected that affect the unique Universally Unique Identifier (UUID) that triggers the Outbrain Pixel. This assigns marketers to customer audiences. These data include: device source, browser type and IP address (translated in geo-location to comply with EU data protection reform). The conversion records will be kept for up to 60 days from the time the UUID clicked on the marketer's recommendation.

8. Social Media

a) Shariff solution

We use Shariff buttons from social networks Facebook, Twitter, Google+, LinkedIn, Xing on our website. The buttons are simple HTML links. The procedure we use is within the framework of the Shariff solution. With the Shariff solution a script retrieves the number of times, e.g., the share button on a page has been clicked on: for this the script contacts the social network via the programming interfaces and retrieves the numbers. None of your personal data are transmitted in the process. Rather than your IP address, only our server address is transmitted to Facebook, Google and Twitter. You only become directly connected to Facebook, Google or Twitter if you perform an action. Before that the social networks cannot collect any data about you. As long as you do not click on a link to share content, you remain invisible to the networks. If you click on a link, the obligation to provide information about data collection and processing no longer rests with us, but rather with the operator of the social network.

b) YouTube Videos

Our website contains links to videos from YouTube LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. If you visit a website on our website that contains such a video, a direct connection is established between your browser and the YouTube server after you have activated the video.
YouTube receives the information that you have visited our website with your IP address. If you click on the link to the video, your IP address will be forwarded to YouTube. We would like to point out that, as the provider of our website, we have no knowledge of the content of the transmitted data or of its use by YouTube. For more information, please see YouTube's privacy policy (https://www.youtube.com/)

9. Data subject rights

You have the right:
- pursuant to Art. 15 of the GDPR to request information about your personal data processed by us, in particular about the purposes for processing, the personal data category, the categories of the recipients to whom your data have been or will be disclosed, the planned retention duration, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if they were not collected by us and the existence of automated decision-making including profiling and if applicable meaningful information about their details;
- pursuant to Art. 16 of the GDPR to demand the immediate rectification of incorrect or completion of the personal data saved by us about you;
- pursuant to Art. 17 of the GDPR to demand the erasure of the personal data saved by us about you as long as processing is not necessary for exercising of the right to freedom of expression and information, for fulfilment of a legal obligation, for reasons of public interest or for assertion, exercising or defence of legal claims;
- pursuant to Art. 18 of the GDPR to demand the restriction of processing of your personal data as long as the accuracy of the data is questioned by you and processing is unlawful, but you reject their erasure and we no longer need the data, but you require them for assertion, exercising or defence of legal claims or you have filed an objection to the processing in accordance with Art. 21 of the GDPR;
- pursuant to Art. 20 of the GDPR to demand receipt in a structured, standard and machine-readable format of your personal data which you provided to us or transmission to another responsible party;
- pursuant to Art. 7(3) of the GDPR to withdraw the consent you previously granted us at any time. This has the consequence that we may not continue the data processing upon which this consent was based in the future and
- pursuant to Art. 77 of the GDPR to file a complaint with a supervisory authority. Usually you can contact the supervisory authority in your usual place of residence or workplace or our headquarters.
10. Right to object

If your personal data are processed on the basis of legitimate interests in accordance with Art. 6(1) Sent. 1 (f) of the GDPR you have the right pursuant to Art. 21 of the GDPR to object to the processing of your personal data as long as there are reasons arising from your particular situation for this or the objection is directed to direct advertising. In the latter case you have a general objection right which will be implemented by us without statement of any particular situation.

If you would like to make use of your right to withdraw or reject you only need to send an email to datenschutz@eos-solutions.com - Subject: EOS in Germany - de.eos-solutions.com.

11. Data security

Within the website pl.eos-solutions.com we use the widespread SSL (secure socket layer) method in conjunction with the highest level of encryption supported by your browser. In general this is 256-bit encryption. If your browser does not support 256-bit encryption, we fall back on 128-bit v3 technology instead. You can recognise that an individual webpage in our internet presence is being transmitted in encrypted form by the closed key or padlock icon in the bottom status bar of your browser.

We also take suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are being improved continuously according to technological developments.

12. Up-to-dateness and amendment of this privacy policy

This privacy policy is currently valid and was last updated in August 2018.

It may be necessary to change this privacy policy due to improvements in our website and the offerings via our website or due to changed legal or official requirements. The current privacy policy can be retrieved from our website at pl.eos-solutions.com and printed out at any time.