Pursuant to Article 13(1) and 13(2) of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (“GDPR”), we would like to inform you that:
1. ORLEN Południe S.A. with its registered office in Trzebinia at St. Fabryczna 22, 32-540 Trzebinia, Poland, NIP: 628-00-977, REGON: 27269025, acting in accordance with Article 13(1) and 13(2) of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (OJ L 2016.119.1), hereinafter referred to as “GDPR”, hereby informs that it is the Controller of your personal data.
2. You may contact the Controller at the Controller’s correspondence data or at the following email address: email@example.com
3. The Controller informs that in order to properly protect personal data, it has appointed a Data Protection Officer who can be contacted at
the following email address: firstname.lastname@example.org
4. Your personal data shall be processed for the following purposes:
a) respond to the message sent by email to the contact addresses available at www.orlenpoludnie.pl – for our legitimate interest which
consists in ensuring communication with the website user and responding to inquiries addressed to ORLEN Południe S.A – pursuant to
Article 6(1)(f) of GDPR. In this case, your data shall be processed until you object to their processing;
b) determine, pursue or defend against any claims that may be related to the activities carried out by ORLEN Południe S.A. and the
provision of services – for our legitimate interest which consists in securing claims, i.e. pursuant to Article 6(1)(f) of GDPR, for the period
provided for in the provisions of law on limitation of claims.
5. The recipients of your personal data may be entities supplying and supporting IT systems used by the Controller and entities
providing services related to the day-to-day operations of the Controller – under concluded data processing agreements and with the
reservation that the aforementioned entities must apply adequate technical and organisational measures ensuring data protection – as well as
public authorities authorised to access such data, under applicable provisions of law.
6. You have the right to:
a) access your data, have your data rectified or erased and its processing restricted, the right to data portability and the right to object to
b) lodge a complaint with the supervisory authority – the President of the Personal Data Protection Office, if you decide that the
processing of your personal data violates the provisions of GDPR.
7. Your personal data shall not be transferred to third countries or international organisations.
8. Your personal data shall not be processed by automated means, including profiling.
9. The provision of your personal data is voluntary.