1. [Data Controller] The controller of personal data is Narmox Sp. z o.o., KRS: 0000449823, NIP: 8943044268 (hereinafter referred to as the “Controller”).
2. [Contact details] All inquiries and information regarding personal data may be directed via email to: contact@leanshaman.com.
3. [Categories of processed data] We process data of our Clients or contractors, as well as their employees / collaborators, and data of other individuals provided to us in connection with the performance of contracts or persons who contact us via telephone, email, or the contact form on our website – in particular before entering into a contract or in connection with the performance of an already concluded contract.
4. [Type of data processed] In connection with the above relationships, we may process the following personal data: identification data, contact details (address, telephone, email), data concerning job position and professional qualifications, as well as other data provided to us in connection with cooperation or initiated contact.
5. [Source of data] The above data is obtained directly from you or from other persons, e.g. from your employers or clients, in particular when persons responsible for contact regarding the performance of a given contract are designated.
6. [Purposes of data processing] In connection with our relationships, we process personal data for the following purposes:
7. [Legal basis] The legal basis for the processing of data by the Controller is:
8. [Voluntary provision of data] Providing data is generally voluntary, however it may be necessary in order to conclude or perform the contract, to respond to an inquiry, or to conduct correspondence, including return contact.
9. [Data storage period] Data collected for the purpose of concluding and performing the contract will be processed for the duration of the contract or until you object to the processing – if the processing is based on our legitimate interest – unless legal provisions (e.g. concerning archiving, tax, accounting) require us to process the data for a longer period, or we retain it longer in case of potential claims, for the period of their limitation as provided by law – whichever of these periods is longer.
10. [Recipients of data] Recipients of your data may include, in particular: providers of IT services including email services, companies that provide support and operation of our IT tools and systems, including our website (e.g. software maintenance companies, hosting providers, Workspace-type business service providers), companies providing accounting services to us, professional advisors (e.g. law firms). The data processed by us may also be transferred to banks – in the case of financial settlements.
11. [Transfer of data outside the EU] Personal data will not be transferred to a third country (outside the EU) or to an international organization and will not be processed by the Controller in an automated manner, including profiling.
12. [Rights of data subjects] In any case, you have the right to: