Privacy Policy

PRIVACY POLICY

1. Akati Sp. z o.o. with its registered office at Reymonta 39, 45-072 Opole (Controller) is the controller of personal data collected through www.seeplaces.com (Website), i.e. the entity deciding how your personal data will be used. Contact with the Controller is possible via the e-mail address: [email protected].
The Controller is responsible for the security of the personal data transferred and for processing them in accordance with the law.
2. Personal data are processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC and other currently applicable (i.e. for the entire period of processing specified data) provisions of the law on personal data protection.
3. Each time the purpose and scope of data processed by the Controller results from the concluded agreement, consent of the Website user or legal regulations and are dependent on the result of actions taken by the user.

I RESERVATION AND PURCHASE OF FACULTATIVE EXCURSIONS (ELECTRONIC SERVICES)

1. The Controller processes personal data for the following purposes:
a) Conclusion of an agreement for the provision of electronic services (in accordance with the Act of 18 July 2002 on the provision of electronic services, Polish Journal of Laws of 2002, No. 33, item 659, as amended). No. 144, item 1204, as amended), including the possibility to book and purchase an excursion with the Service provider (legal basis - Article 6(1)(b) GDPR) - "performance of the contract". b) Recovery of contractual claims (legal basis - Article 6(1)(f) GDPR) - "legitimate interest". The deadlines for pursuing claims arising from the contract are specified in detail in the Civil Code. c) Sending marketing information (e.g. newsletter) when consent is given to the use of data for this purpose (legal basis - Article 6(1)(a) GDPR) - "consent". d) Direct marketing, including personalization of marketing content (legal basis - Article 6(1)(f) of the GDPR) - 'legitimate interest'. The Controller may process personal data in order to prepare and present a personalized offer for a tourist event. Such data will also be processed in an automated manner, but decisions taken will not have any legal effect on the customer. 3. The provision of personal data is voluntary but necessary for the conclusion of a contract, including the booking and purchase of an excursion with a Service provider (in accordance with the terms and conditions of the respective provider).
4. The Controller processes personal data in order to send commercial information (to e-mail address) and for the purposes of direct marketing (using a telephone number) on the basis of separate consents, in accordance with the provisions of the Telecommunications Law and the provisions of the Act on the provision of electronic services.
5. The Controller has the right to process personal data for the period necessary to achieve the purposes specified in point 1. above. Depending on the legal basis, this will be respectively:
a) the time needed to perform the contract, b) the time of performing legal duties and time when legal regulations require data to be stored, e.g. tax regulations, c) the time after which the statute of limitations for claims arising from the contract expires, d) the time until the objection is submitted e) the time until the withdrawal of consent. 5. Subject to all data security guarantees, the Controller may transfer the personal data of the user - in addition to persons authorized by the Controller - to other entities, including:
a) entities processing data on behalf of the Controller, e.g. technical service providers and entities providing consulting services; b) other Controllers to the extent necessary for the performance of services and legal requirements, e.g. electronic payment operators, providers of additional services, contractors performing services for the Controller on the basis of concluded agreements. 6. To the extent necessary for the proper performance of the contract, the Controller may transfer data to countries outside the European Economic Area (EEA) which do not provide an adequate level of protection. However, the controller shall ensure that the transfer is carried out in a secure and controlled manner with appropriate agreements in place with the recipients, meeting the conditions set out in Chapter V of GDPR. The controller may also transfer personal data to countries outside the EEA for which the European Commission has established that they offer an adequate level of protection.
7. In connection with the processing of personal data by the Controller, the user is entitled to:
a) access their personal data, b) rectify personal data, c) delete personal data (the right to be forgotten), d) limit the processing of personal data, e) transfer data to another controller, f) withdraw consent if the Controller processes personal data of the user based on consent at any time and in any way, without affecting the lawfulness of the processing performed on the basis of consent prior to its withdrawal, g) object to the processing of data if the basis for the processing is the legitimate interest of the Controller, h) lodge a complaint with the President of the Office for Personal Data Protection, if the user decides that the processing of personal data violates the provisions of the Regulation.8. In order to exercise the aforementioned rights, please contact the Controller via e-mail: [email protected].

II. CONTACT FORM / REGISTRATION

1. The Controller shall process personal data in order to answer questions asked using the contact form (or e-mail and telephone address) available at www.seeplaces.com, including questions asked by partners and affiliates (legal basis - Article 6(1)(f) GDPR) - 'legitimate interest'.
2. Providing the data indicated in the contact form is voluntary, but necessary to answer the question. The consequence of not providing the required personal data is that it is impossible to send the user a reply.
3. The Controller has the right to process personal data for the period necessary for the realization of the purpose indicated in point 1 above, i.e. until the moment of answering the inquiry sent by the user.
4. Subject to all data security guarantees, the Controller may transfer the personal data of the user - in addition to persons authorized by the Controller - to other entities, including:
a) entities processing data on behalf of the Controller, e.g. technical service providers and entities providing consulting services; b) other Controllers, to the extent necessary to answer the question asked. 5. The Controller may transfer data to countries outside the European Economic Area (EEA) which do not provide an adequate level of protection. However, the Controller shall ensure that the transfer is carried out in a secure and controlled manner with appropriate agreements in place with the recipients in place, meeting the conditions set out in Chapter V of GDPR. The controller may also transfer personal data to countries outside the EEA for which the European Commission has established that they offer an adequate level of protection.
6. In connection with the processing of personal data by the Controller, the user is entitled to:
a) access their personal data, b) rectify personal data, c) delete personal data (the right to be forgotten), d) limit the processing of personal data, e) transfer data to another controller where the basis for the processing is the given consent, f) withdraw consent if the Controller processes the personal data of the client based on consent at any time and in any way, without affecting the lawfulness of the processing carried out on the basis of consent prior to its withdrawal, g) object to the processing of data if the basis for the processing is the legitimate interest of the Controller, h) lodge a complaint with the President of the Office for Personal Data Protection, if the user decides that the processing of personal data violates the provisions of the Regulation. 7.In order to exercise the aforementioned rights, please contact the Controller via e-mail: [email protected]

III. NEWSLETTER

1. The Controller processes personal data in order to provide the persons interested in the Controller's offer with marketing information by means of a newsletter (legal basis - Article 6(1)(a) of the GDPR) - "consent".
2. The provision of data is voluntary, but is necessary to receive marketing communications. The consequence of not providing the required personal data is that it is impossible to send the user a newsletter.
3. A user using the newsletter may at any time and without giving any reason, resign from receiving it, in particular by clicking on the deactivation link contained in each e-mail sent to the user or by sending correspondence to the following address: [email protected].
4. The Controller has the right to process personal data until the withdrawal of consent by the user.
5. The Controller has the right to process personal data for the period necessary for the realization of the purpose indicated in point 1 above or until the moment of withdrawal of consent.
6. The Controller may transfer the personal data of the user - apart from persons authorized by the Controller - to other entities, including:
a) entities processing data on behalf of the Controller, e.g. technical service providers and entities providing consulting services; b) other Controllers to the extent necessary for the implementation of services and legal requirements, on the basis of concluded agreements. 7. The Controller may transfer data to countries outside the European Economic Area (EEA) which do not provide an adequate level of protection. However, the Controller shall ensure that the transfer is carried out in a secure and controlled manner with appropriate agreements in place with the recipients in place, meeting the conditions set out in Chapter V of GDPR. The controller may also transfer personal data to countries outside the EEA for which the European Commission has established that they offer an adequate level of protection.
8. In connection with the processing of personal data by the Controller, the user is entitled to:
a) access their personal data, b) rectify personal data, c) delete personal data (the right to be forgotten), d) limit the processing of personal data, e) transfer data to another controller, f) withdraw consent if the Controller processes personal data of the user based on consent at any time and in any way, without affecting the lawfulness of the processing performed on the basis of consent prior to its withdrawal, g) object to the processing of data if the basis for the processing is the legitimate interest of the Controller, h) lodge a complaint with the President of the Office for Personal Data Protection, if the user decides that the processing of personal data violates the provisions of the Regulation. 9. In order to exercise the aforementioned rights, please contact the Controller via e-mail: [email protected]

IV. FINAL PROVISIONS

1. The Controller shall secure the personal data processed by him/her in accordance with generally applicable regulations concerning personal data protection and information security.
2. This Privacy Policy is for informational purposes only and applies only to the Website www.seeplaces.com. The website may contain links to other websites. The Controller suggests that each user, after going to other websites, should familiarize themselves with with the privacy policy in force there.
3. The Controller reserves the right to introduce changes to the applicable Privacy Policy in case of technology development, changes in generally binding legal regulations, including personal data protection and in case of the development of the Website.