Privacy policy

• 1

1. The administrator of personal data provided by you is Nomad Capital sp. z o.o. with headquarters in Warsaw, ul. Marszałkowska 9/15, 00-626 Warsaw with NIP 7252219026, hereinafter referred to as the Administrator; The administrator conducts the processing of your personal data.
   • The Administrator can be contacted in writing via traditional mail at the following address: Marszałkowska 9/15, 00-626 Warsaw or by e-mail at the following e-mail address: info@nomadcapital.eu
2. The basis for the processing of your personal data is:
   • Your consent to the processing of personal data and receipt of marketing communication, in particular expressed via the form available on the websites used by the Administrator to conduct business,
   • necessity resulting from the legitimate interests pursued by the Administrator, such as providing information about the economic activity conducted by the Administrator and the products offered, reliable performance of the obligations undertaken by the Administrator, in particular the implementation of contracts, offering products / services of the highest standard, as well as providing information about Administrator. The processing of personal data in the aforementioned scope is part of the economic activity conducted by the Administrator and is necessary to provide customers with information, products and services.
   • in the case of concluding a contract – the need for reliable performance of the obligations arising therefrom.
3. Your personal data will be processed for the purpose of:

• presenting an offer regarding the services or products offered by the Administrator, as well as information about new solutions being introduced,
• providing information and marketing messages,
• providing information about meetings, promotions and other activities related to the activity conducted by the Administrator,
• in the case of concluding a contract with the Administrator for the provision of services, your data will be used for purposes related to the reliable implementation of such a contract, including accounting and complaint processing,

5. Your personal data may be made available to recipients who directly perform activities as part of the services provided (including subcontractors) or recipients through which the Administrator performs marketing or information activities.
6. Your personal data may also be transferred to the entity providing hosting services to the Administrator, having appropriate security measures against third party access to the stored data.
7. Your personal data will not be transferred to recipients based in a third country, i.e. outside the European Economic Area, unless it is necessary for the proper performance of the contract concluded with you.
8. You have the right to:

• requests from the Administrator to access their personal data, rectify them, delete or limit the processing of personal data,
• object to such processing,
• data portability,
• lodge a complaint with the supervisory authority.

You can exercise the above rights by submitting the application via the data referred to in paragraph 3 above.

9. Your personal data will not be subject to automated decision making, including profiling,
10. Your personal data will be processed:

• on the basis of the consent granted – until it is withdrawn or the purpose for which the data was collected ceases to exist. The consent granted may be withdrawn at any time without affecting the lawfulness of the processing which was carried out on the basis of consent before its withdrawal.
• in connection with the performance of the contract concluded with the Administrator – until the expiry of the period in which the Administrator or you may pursue claims related to the concluded contract, or until the expiry of the period in which proceedings may be initiated by public administration authorities in connection with the performance of the contract,
• in connection with conducting marketing and information activities – until the Administrator completes the activities consisting in offering products and services and conducting marketing campaigns.

• 2

1. The website you use, available at: com (Website), does not automatically collect any information, except for information contained in cookies.
2. Cookie files (so-called “cookies”) are IT data, in particular text files, which are stored on the end device used by you to use the Website and enable its use. Cookies usually contain the name of the website they come from, the storage time on the end device and a unique number.
3. The entity that places cookies on your end device and accesses them is the Administrator.
4. Cookies are used for the following purposes:
5. adjusting the content of the Website pages to the user’s preferences and optimizing the use of websites; in particular, these files allow to recognize the Website user’s device and properly display the website, tailored to his individual needs;
6. creating statistics that help to understand how Website users use websites, which allows improving their structure and content;
7. maintaining the Website user’s session (after logging in), thanks to which the user does not have to re-enter the login and password on every subpage of the Website;
8. The following types of cookies are used as part of the Website:
9. “Necessary” cookies, enabling the use of services available on the Website, eg authentication cookies used for services that require authentication on the Website;
10. cookies used to ensure security, e.g. used to detect fraud in the field of authentication on the Website;
11. “Performance” cookies, enabling the collection of information on the use of the website pages;
12. “Functional” cookies, enabling “remembering” the settings selected by the user and personalization of the user interface, eg in terms of the language or region the user comes from, font size, website appearance, etc .;
13. “Advertising” cookies, enabling users to provide advertising content more tailored to their interests.
14. In many cases, the software used for browsing websites (web browser) allows cookies to be stored on the user’s end device by default. Website users can change their cookie settings at any time. These settings can be changed in particular in such a way as to block the automatic handling of cookies in the web browser settings or to inform about their every posting on the Website user’s device. Detailed information on the possibilities and methods of handling cookies is available in the software (web browser) settings.
15. The administrator informs that restricting the use of cookies may affect some of the functionalities available on the Website’s pages.
16. Cookies placed on the Website user’s end device may also be used by advertisers and partners cooperating with the Website operator.
17. More information on cookies can be found at http://wszystkoociasteczkach.pl/ or in the “Help” section in the browser’s menu.

• 3

1. The administrator formulated individual goals in the field of personal data security and took the actions necessary for their occurrence in the enterprise he runs:
   • ensuring the processing of personal data lawfully, fairly and transparently for the data subject (“lawfulness, fairness and transparency”);
   • ensuring the collection of personal data for specific, explicit and legitimate purposes and not further processing in a manner inconsistent with these purposes; (“purpose limitation”);
   • ensuring the collection of personal data adequate, relevant and limited to what is necessary for the purposes for which they are processed (“data minimization”);
   • The administrator takes steps to ensure that personal data is correct and, if necessary, updated, as well as all reasonable steps to ensure that personal data that is incorrect in view of the purposes of their processing are immediately removed or rectified (“correctness”);
   • The administrator takes steps to store personal data in a form that permits the identification of the data subject for no longer than is necessary for the purposes for which the data are processed (“storage limitation”);
   • The administrator takes steps to ensure that personal data is processed in a manner that ensures their appropriate security, including protection against unauthorized or unlawful processing and accidental loss, destruction or damage, using appropriate technical or organizational measures (“integrity and confidentiality”).
2. The goals set out in sec. 1 are implemented by taking appropriate actions and applying effective security measures, which include in particular:
   • adequate security of IT systems in which personal data are processed,
   • constant raising awareness and knowledge of employees / associates in the field of personal data security,
   • informing employees / associates of the consequences, including disciplinary ones, in the event of a breach of personal data security,
   • granting access to documents, materials or systems containing personal data only to authorized persons,
   • securing documents, materials or systems against the loss or destruction of personal data contained therein,
   • implementation of detailed rules defining the method of managing user rights and authentication rules in all systems operated by the Administrator,
   • conducting thorough tests in the process of preparing new software,
   • reporting incidents related to information security,
   • regular risk analysis in the area of information security and designing activities to minimize potential risks,
   • entrusting personal data only to third parties that provide sufficient guarantees to implement appropriate technical and organizational measures so that the processing meets the requirements of generally applicable law, this document and protects the rights of data subjects.
3. Taking into account the state of technical knowledge, the cost of implementation and the nature, scope, context and purposes of processing as well as the risk of violating the rights or freedoms of natural persons with a different probability of occurrence and the severity of the threat resulting from processing, the Administrator has implemented – both when determining the methods of processing and during the processing itself – appropriate technical and organizational measures, designed to effectively implement data protection principles so as to meet the requirements of generally applicable law and protect the rights of data subjects.