Privacy Policy

"Controller" means a natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; if the purposes and means of such processing are determined by Union law or Member State law, the controller or the specific criteria for its nomination may also be determined by Union law or Member State law.
"Personal data" means any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
"Processing" means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adapting or altering, retrieving, consulting, using, disclosing by transmission, dissemination or otherwise making available, aligning or combining, restricting, erasing or destroying.
"Data recipient" means a natural or legal person, public authority, agency or another body to which the personal data are disclosed, whether a third party or not
"Consent of the data subject" means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
"Cookies" means IT data, in particular small text files, saved and stored on devices through which the User uses the Website.
"Website" means the website at which the Controller operates the website, operating in the domain www.softwaremill.com
"Device" - means an electronic device through which the User accesses the Website.
"User" - means an entity to whom, in accordance with the Terms and Conditions and the provisions of law, services may be provided electronically or with whom an Agreement for the provision of electronic services may be concluded.
"GDPR" - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).

At SoftwareMill we place a large emphasis on the security of your personal information. There is nothing more important to us than our relationship with our customers thus we care about securing any personal data that we process.

It is important for us to be compliant with the privacy requirements of GDPR (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation - the "GDPR") and as required by the Polish Personal Data Protection Act (Ustawa z dnia 10 maja 2018 roku o ochronie danych osobowych Dz. U. 2018 poz. 1000). We make sure that our related Companies and subcontractors are compliant, as well. Stated below is the summary of our practices related to processing personal data. Should you have any questions regarding this subject please feel free to contact us and we will be happy to help you out with your inquiries.

The controller of your personal data is:

• Softwaremill sp. z o. o. with its registered office in Warsaw, 02-791 at Na Uboczu Street no 8/87, National Court Register (KRS) 0000957051, Tax Identification Number (NIP) 7010217058, Company registration number (REGON) 142195210 acting as the owner of the brand and website www.softwaremill.com, abbreviated as SML.
• The Controller can be contacted via email at:hello@softwaremill.com or in writing at the address of the Data Controller's registered office.
• The Controller has appointed Mr Mariusz Zajkiewicz as the Data Protection Officer, who can be contacted by email at:privacy@softwaremill.com or by post at the Company's address given above.

Your personal data will be processed for the purpose of:

Recruitment and employment:

• Article 6(1)(a) of the GDPR (consent to the processing of personal data) - in the case of other, additional personal data, the provision of which is not required, or in the case of separate consent to participate in future recruitment processes,
• Article 6(1)(b) of the GDPR (necessary for the conclusion or performance of a contract) – in the case of personal data whose provision is required by law – the Labour Code,
• Article 6(1)(c) of the GDPR (processing necessary for compliance with a legal obligation to which the controller is subject) – in the case of personal data required by law,
• Article 6(1)(f) of the GDPR (legitimate interest pursued by the Controller) – in the event of any claims on your part, personal data will also be processed for the purpose of defending/pursuing such claims, as well as for the purpose of demonstrating the fulfilment of the legal obligation’s incumbent on the Controller.

Cooperation under civil law contracts:

• Article 6(1)(b) of the GDPR (necessary for the conclusion or performance of a contract) – in the case of personal data whose provision is required,
• Article 6(1)(c) of the GDPR (processing necessary for compliance with a legal obligation to which the controller is subject) – in the case of personal data within the scope specified by the provisions of the Civil Code, required by law,
• Article 6(1)(f) of the GDPR (legitimate interest pursued by the Controller) – in the event of any claims on your part, personal data will also be processed for the purpose of defending/pursuing such claims, as well as for the purpose of demonstrating the fulfilment of the legal obligation’s incumbent on the Controller.

Cooperation and service within the scope of the company's activities:

• Article 6(1)(a) of the GDPR (consent to the processing of personal data) – marketing of products and services,
• Article 6(1)(b) of the GDPR (necessary prior to entering into a contract or for the performance of a contract) – preparation of an offer or performance of a contract,
• Article 6(1)(c) of the GDPR (processing necessary for compliance with a legal obligation to which the controller is subject) – handling complaints, claims and requests and responding to them as part of these activities,
• Article 6(1)(f) of the GDPR (legitimate interest pursued by the Controller) of possible determination, investigation, enforcement of claims or defence against claims, which are the pursuit of the legitimate interest of the Controller (such as debt collection, conducting court and enforcement proceedings),
• Article 6(1)(f) of the GDPR (legitimate interest pursued by the Controller) to prevent abuse and fraud – in order to ensure the security of the Services provided,
• Article 6(1)(f) of the GDPR (legitimate interest pursued by the Controller) remembering your preferences and settings such as: login, password, IP address, date and time of login – in which case the basis for processing will be Article 398 of the Electronic Communications Law.

In the process of communication and further use of the website, we will ask you to provide your personal data in order to perform the services provided through our website.
In order to provide services, establish cooperation or employment, we need your personal data specified in the individual sections of the website.
The website user acknowledges that providing personal data means that the Controller will start processing it and is voluntary, but failure to consent to its processing may result in the non-performance of the service, the conclusion of an electronic contract via the website by the Controller for the benefit of the User.

The User's personal data will be stored for:

• the duration of the contract until its completion, and after the completion of the services in connection with the obligations arising from generally applicable legal regulations (e.g. tax regulations) for a period of 5 years from the end of the financial year in which the cooperation was terminated,
• as necessary for the Controller to pursue claims in connection with its business activities or to defend against claims, on the basis of generally applicable laws, taking into account the limitation periods for claims specified in generally applicable laws,
• in the case of consent to data processing for a specific purpose – until the consent is withdrawn, but without consequences for the Controller for processing prior to the withdrawal of consent.
• for the purpose of accountability, i.e. to prove compliance with the provisions on the processing of personal data, they will be stored for the period during which the Controller is obliged to retain the data or documents containing them in order to document compliance with legal requirements and enable control by public authorities.
• in the case of an employment contract, the data will be processed for a period of 10 years from the end of the cooperation.
• In the case of a civil law contract, the data will be processed for a period of 5 years from the end of the financial year in which the cooperation ended.

During the recruitment process on the website, the User provides:

• Name and surname,
• Email address,
• CV
  When registering an enquiry or other request on the website, the User provides:
• Name,
• Email address.
  If you wish to subscribe to the newsletter:
• Name,
• Email address,
• Company name,
• Position.

A User who has provided the Controller with their personal data has the right to:

• access their data and receive a copy of it,
• rectify (correct) their data,
• delete their data (the so-called right to be forgotten),
• restrict the processing of their personal data,
• transfer their data to another controller,
• object to the processing of data, as well as processing for direct marketing purposes,
• withdraw consent if the Controller processes the User's data on the basis of consent, at any time and in any manner, without affecting the lawfulness of the processing carried out on the basis of consent prior to its withdrawal,
• lodge a complaint with the President of the Personal Data Protection Office if the User considers that the processing of personal data violates the provisions of the GDPR.
  Complaints may be lodged with the President of the Personal Data Protection Office:
• ul. Stawki 2, 00-193 Warsaw,
• kancelaria@uodo.gov.pl.

As part of exercising the rights referred to in section 1, the User may request the Controller to perform specific actions. The request should be sent via the e-mail address provided in §2 above.
In the event of permanent deletion by the User of personal data necessary for the Controller to provide services via the website, the User will lose the ability to use these services.

The recipients of your processed personal data will be entities providing and supporting the Controller's ICT systems.
To the extent justified by the purpose of processing, we will also transfer personal data to entities acting on our behalf, in particular:

• IT service and solution providers,
• accounting service providers,
• entities providing legal, financial, insurance and administrative services, and
• auditors

A cookie is a small text file that a website saves on your computer or mobile device when you visit that website.

What are cookies?

Our website uses cookies – small data files (mainly text files) that are stored on the user's end device. Cookies usually contain the name of the website they come from, the storage time on the end device and a unique number.

They are not used to process or store your personal data.

They cannot be used to directly identify you or any other user. They also do not cause any configuration changes to your browser or telecommunications devices.

Why do we use cookies?

We use cookies for the following purposes:

• to collect analytical data that helps us ensure the functioning of the website and understand how you and other users use our website – this allows us to improve the structure and content of the website and ultimately better meet your expectations,
• to maintain your and other users' sessions, to store your preferences, consents, etc., so that you do not have to re-enter the same information each time you visit our website,
• to determine your and other users' profiles in order to display customised content on advertising networks, in particular on Google, Facebook and other partners.

Types of cookies we use

Our website uses two basic types of cookies: "session" cookies and "persistent" cookies.

• Session cookies are temporary files that are stored on the user's end device until they log out, leave the website or switch off the software (= web browser).
• Persistent cookies are stored on the user's end device for the time specified in the cookie parameters or until they are deleted by the user.

Web browsers usually allow cookies to be stored on the user's end device by default, but if you do not want to receive cookies, you can change these settings. Your web browser allows you to delete cookies, and it is also possible to block them automatically by default.

Please note that disabling cookies necessary for authentication, security and maintaining user preferences may make it difficult to use our website and, in extreme cases, may even prevent its use.

How do we use cookies?

We use cookies for various external services. Below is a list of cookies used by our website, along with information about their purpose.
Click to see details on this page.

How to manage cookies?

Open your browser.

• Check where cookies are stored.
• Each browser manages cookies in a different place.

In Chrome, select 'Preferences' from the Chrome menu in the navigation bar to display the settings. Then use the 'Advanced' option to display 'Privacy and security'. From there, open 'Content settings' and 'Cookies'.

In Safari, simply select Show Network Inspector from the Develop menu. Then click the Memory tab in the network panel that appears and click Cookies on the left.

If you use Internet Explorer, you can find cookies by clicking on 'Tools' and then 'Internet Options'. Then select 'General', 'Browsing History' and 'Settings'.

Manage cookies.

Each browser offers a range of options for enabling or deleting cookies. For example, Internet Explorer allows you to manage cookies in the "Privacy" and "Advanced" sections. In Chrome, locate the cookie storage location as described above, then select management options under "Cookies". In Safari, manage cookies under "Preferences" and then "Privacy". Please note that disabling all browser cookies may make it difficult to navigate some websites. However, settings that control or restrict third-party and tracking cookies can help protect your privacy.

For more detailed instructions, click this link or contact your browser's technical support!

In matters not covered by this Privacy Policy, the relevant provisions of Polish law shall apply.
The Controller reserves the right to make changes to the privacy policy as a result of changes in legal regulations.
The Controller reserves the right to change the website's privacy policy, which may result from advances in internet technology, possible changes in the law regarding the protection of personal data, and the development of the Website. We will inform users of any changes in a visible and understandable manner.