Let’s get started.
GDPR is a buzzword today. What does it mean? It’s the acronym for Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals concerning the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation). Since when will the GDPR apply? The GDPR applies in all EU Member States from May 25, 2018. What are personal data? Any information regarding an identified or identifiable natural person is considered to be personal data. Personal data are, for example, name, surname, e-mail address, bank details, payment card number, or the IP address of the computer. The Personal Data Administrator is Deviniti Sp. z o.o., headquartered at ul. Sudecka 153, 53-128 Wrocław. When writing a Service or Services, we mean websites that we manage, i.e., Deviniti.com
How do we acquire your data?
We receive your data directly from you when you fill out a contact form, send a question to the investor relations department, or apply for a job. We receive your data also when you download our software, especially apps to Atlassian products, such as Jira, Confluence and others.
Which data do we process?
The principle of minimization guides us, that is, we process only the data required to achieve the purpose of processing. These are name and surname, e-mail address, optional telephone number. We process more data only if you send a resume, but then you get to decide what data you send us. In case of apps downloaded from Atlassian Maketplace, we receive from you also: company name, country of residence, job title.
What are the purpose and legal basis for processing of your data by us?
We also process your data for the purposes set out below, based on the legitimate interest of doing business, which is:
– replying to a question/message you submitted;
– statistical analysis;
If you agree, we process your personal information to:
contact you, including for purposes related to authorized marketing activities through available communication channels, in particular via e-mail and telephone; sending commercial information via electronic means of communication; conducting the recruitment process. You may withdraw your consent to the processing of personal data at any time, in the same way you have expressed it. We will process your personal information until you withdraw your consent.
Do you need to provide us with your data?
Of course, not. As we have already mentioned, the use of our website does not require any personal data, but without entering your data, we are unable to answer your question or conduct the recruitment process. Do we pass your data to countries outside the European Economic Area? Your data will be transferred outside the European Economic Area, i.e., to Microsoft, Google, Facebook, but our provider guarantees a high level of personal data protection. These guarantees arise in particular from the obligation to use standard contractual clauses adopted by the EU Commission or participation in the ‘Privacy Shield’ program established by Commission Implementing Decision (EU) 2016/1250 of July 12, 2016, on the adequacy of protection provided by the EU-US Privacy Shield.
Do we process your personal data automatically (including profiling) in a way that affects your rights?
Your personal data will be processed in automatically (including profiling), however, it will not cause any legal effects to you or substantially impact your situation. Profiling of personal data by Google, Microsoft, and Facebook involve the processing of your data (also automatically) by using them to assess specific information about you, in particular, to analyze or forecast your personal preferences and interests.
What are your rights to Deviniti Sp. z o. o. in the scope of processed data?
We want you to know that you have the right to:
- access to data and receive a copy. You have the right to obtain confirmation from us whether we process your personal data, and if this is the case, you have the right to:
- access your personal data,
- obtain information about the purposes of processing, the categories of personal data being processed, the recipients or categories of recipients of this data, the planned period of storage of your data or the criteria for determining this period, about your rights granted to you by the GDPR, and the right to lodge a complaint to the supervisory authority data on automated decision-making, including profiling and safeguards applied in connection with the transfer of these data outside the European Union,
- get a copy of your personal data.
- to correct data. You have the right to rectify and supplement your personal data. You can do it yourself in the Settings (Privacy) tab. Concerning other personal data, you have the right to ask us to correct this data (if it is incorrect) and to supplement it (if it is incomplete);
- to delete data (the right to be forgotten) – if in your opinion there is no reason for us to process your data, you can request that we remove them. You have the right to request deletion of personal data if:
- you withdrew your specific consent to the extent to which personal data were processed based on your permission;
- your personal data have ceased to be necessary for the purposes for which they were collected or processed;
- you objected to the use of your data for marketing purposes;
- you opposed to the use of your data to maintain website usage statistics and satisfaction surveys, and the opposition was considered justified;
- your personal information is being processed unlawfully.
Despite the request to delete personal data, in connection with opposition or withdrawal of consent, we may retain specific personal data to the extent necessary to establish, assert or defend claims. This applies in particular to personal data including name, surname, e-mail address, and history of the application, which we retain for purposes of handling complaints and claims related to the use of our services.
- limitations on data processing – you can request that we limit the processing of your personal data only to store or perform actions agreed upon with you, if in your opinion we have incorrect data about you or process it unjustifiably, or you do not want us to remove it because you need it for determine, investigate or defend claims, or for the time of opposition to data processing. You have the right to request restrictions on the use of your personal data in the following cases:
- when you question the correctness of your personal data – then we will limit their use for the time needed to verify the accuracy of your data;
- if the processing of your data is against the law, and instead of removing the data, you will demand to restrict their use;
- when your personal information has ceased to be necessary for the purposes for which we have collected or used it, but it is required for you to establish, assert or defend claims;
- when you object to the use of your data – then the restriction occurs for the time needed to consider whether, due to your individual situation, the protection of your interests, rights, and freedoms outweigh the interests that we process when processing your personal data.
- to object to the processing of your data in order to conduct direct marketing. If you exercise this right – we will stop processing data for this purpose. If your objection turns out to be well founded and we have no other legal basis to process your personal data, we will delete your information for which you objected;
- to transfer data – you have the right to receive from us in a structured, commonly used machine-readable format, e.g., CSV, personal information about you that you provided to us based on your consent. You can also ask us to send this data directly to another entity;
- complaining about the supervisory body. You can complain to us about complaints, requests, and requests regarding the processing of your personal data and the exercise of your rights. If you feel that we are processing your data unlawfully, you can submit a complaint to the supervisory body with its registered office at ul. Stawki 2 in Warsaw.
Who do we share your personal information with?
We may disclose your data only if you give your consent to it or to authorized entities, if necessary. Also, our employees will have access to your data as it is required for them to perform their daily duties and subcontractors, that is entities that we use.
How long do we keep your personal data?
Your data such as your name and e-mail address that we process for the purposes of direct marketing of our products will be kept until you object to their processing. To this end, you should withdraw your consent. Otherwise, we may decide to terminate the processing of this data if we determine that the permission received from you have become obsolete.
How can you contact us
If you want to contact us and ask us a question, you can do it using the contact form on the website or by writing to the following address: info (at) deviniti.com
- The website does not automatically collect any information, except for information contained in cookie files.
- Cookie files (so-called “cookies”) are IT data, in particular, text files, which are stored in the Service’s user’s end device and are intended for using the Service’s websites. Cookies usually contain the name of the site from which they originate, their storage time on the end device, and a unique number.
- The entity placing cookies on the user’s end device and obtaining access to them is Deviniti Sp. z o.o., headquartered at ul. Sudecka 153, 53-128 Wrocław, and tools used by our company to improve the quality of services we provide.
- Cookies are used to: adjust the content of the Service pages to the user’s preferences and optimize the use of websites; in particular, these files allow to recognize the Service users’ devices and correctly display the website, tailored to individual needs. They also allow creating statistics that help to understand how Service users use sites, which helps to improve their structure and content.
- The Service may use two basic types of cookies: “session” and “persistent” cookies. Session cookies are temporary files that are stored on the user’s end device until they log out, leave the website or turn off the software (web browser). Persistent cookies are stored in the user’s end device for the time specified in the cookie file parameters or until the user removes them.
The Service may use the following types of cookies:
- “Necessary” cookies, enabling the use of services available on the Service, e.g., authentication cookies used for services that require authentication on the Service;
- cookies used to ensure security e.g., used to detect fraud in the field of authentication in the Service;
- “Performance” cookies, enabling the collection of information on the use of Service pages;
- “Functional” cookies, allowing “remembering” the settings selected by the user and personalizing the user’s interface, e.g., regarding the language or region of the user’s origin, size of the font, appearance of the website, etc.;
- In many cases, software used for browsing websites (web browser) allows cookies to be stored in the user’s end device by default. Service users can change their cookie settings at any time. These settings can be changed in particular to block the automatic handling of cookies in the web browser’s settings or to inform them of each entry in the device of the Service user. Detailed information about the possibilities and ways of handling cookies are available in the software (web browser) settings.
- Cookies placed on the Service user’s end device may also be used by advertisers and partners cooperating with the Service Operator.
- More information about cookies is available in the “Settings” or “Help” section in the menu of your web browser.
Trademarks and copyrights
- Unless otherwise stated, the copyright for the pages, information, materials, and their distribution within the Service belong to Deviniti Sp. z o.o. or have been transferred by an appropriate license to Deviniti Sp. z o.o.
- The website also contains trademarks, trade names, logos reserved by both Deviniti Sp. z o.o., as well as companies and third parties. They have been used only to identify them. By making them available in the Service, Deviniti Sp. z o.o. does not grant a license to use them in any way.
- Users may print, copy, copy or temporarily store parts of the Service for their own purposes or in connection with the use of products and services of Deviniti Sp. z o.o.
- Users are not allowed to make any changes to content from the Service.
- The detailed scope of permitted and unlawful use of content from the Service is specified by the law, in particular, the Act of February 4, 1994, on copyright and related rights (Journal of Laws of 1994, No. 24, item 83, as amended). Violation of these rights is threatened by civil and criminal sanctions.