Privacy Policy

       I.            General Provisions

1.       The privacy policy of Core Logic sp. z o.o., as the data controller, is a collection of information concerning the processing of personal data.

2.       The privacy policy provides information on the processing of personal data obtained through the MPK Tracking application (hereinafter referred to as the "Application").

3.       Core Logic sp. z o.o. acts with due diligence to protect the privacy of Application users, applying appropriate technical and organizational measures. They secure all information and personal data against unauthorized access, disclosure, loss, destruction, unauthorized modification, as well as processing in violation of applicable legal provisions.

4.       Core Logic sp. z o.o. does not transfer personal data outside the European Union.

5.       The legal act referred to in the policy is Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (Official Journal of the EU L2016 No. 119, p. 1) (hereinafter referred to as "GDPR").

     II.            Data Controller

The personal data controller for Application users is Core Logic sp. z o.o.

Contact details:
- E-mail: hello@core-logic.com
- Phone: +48 606 524 052
- Correspondence address: Feliksa Radwańskiego 15/1, 30-065 Cracow, Poland

  III.            Purposes, Legal Basis, and Period of Data Processing

Personal data provided by Application users is processed for the purpose of:

  1. Concluding and performing the contract related to the services provided within the Application — based on Art. 6(1)(b) GDPR (and for data subjects not being parties to such a contract — based on Art. 6(1)(f) GDPR) for the period necessary to conclude and perform the contract.
  2. Fulfilling legal obligations incumbent on the controller, arising from applicable legal provisions — especially accounting, tax, reporting regulations, and obligations to handle complaints — based on Art. 6(1)(c) GDPR, for the period necessary to fulfill these obligations, as specified in the regulations.
  3. Pursuing the legitimate interests of each controller, such as statistical and analytical purposes (e.g., ensuring the security of activities and improving operations), establishing, pursuing, or defending claims — based on Art. 6(1)(f) GDPR, as long as the controller's interest remains valid or until a justified objection is raised.

IV. Voluntary Nature of Providing Data

Providing personal data is voluntary but necessary for using the Application.

V. Rights of Data Subjects

You are entitled to the following rights, which you may exercise against the controller:

 

  1. Access to personal data (Art. 15 GDPR) — You may request information on data processing and a copy of the data.
  2. Rectification of data (Art. 16 GDPR) — You may request correction or updating of your data.
  3. Erasure (Art. 17 GDPR) — You may request the deletion of data processed without a legal basis.
  4. Restriction of data processing (Art. 18 GDPR) — You may request suspension of operations on your personal data in cases specified in this provision.
  5. Data portability (Art. 20 GDPR) — You may request the transfer of your data to another controller when processing is based on your consent or a contract and is conducted automatically.
  6. Objection to processing (Art. 21 GDPR) — You may object to processing based on the necessity for legitimate interests pursued by the controller.
  7. Withdrawal of consent (Art. 6(1)(a) GDPR) — Withdrawal does not affect the legality of processing prior to the withdrawal.
  8. Filing a complaint with the President of the Personal Data Protection Office if you believe your personal data processing violates GDPR provisions.

 

To exercise your rights, contact the controller and inform them of the rights you wish to exercise and to what extent.

VI. Recipients of Personal Data

Your personal data may be shared with other entities if required by law, when it is a legitimate interest of Core Logic or a third party, or with your consent. Based on existing grounds and purposes of processing, Core Logic may entrust the processing of your personal data to entities supporting their ongoing operations, such as IT service providers, management and advisory services, debt collection, postal and courier services, data archiving and destruction, etc. These entities process your data solely on behalf of and under the instructions of the controller.

VII. Source of Personal Data

Personal data processed within the Application is obtained solely from the individuals concerned (users) or their representatives.