Welcome to UA Miltech Startup Services!
The following information clause/privacy policy outlines the rules and regulations for the use of Chenope Polska Sp. z o.o.’s Website, located at https://miltechstartupservices.com/.
Having regard to the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) and in particular art. 13 GDPR, “Chenope Sp. z o.o.” (LLC) kindly inform you that:
The Controller of your personal data is “Chenope Polska Sp. z o.o.” (LLC), with its registered office in Warsaw, Plac Trzech Krzyży 3, 00-535 Warsaw (hereinafter: “The Controller”, “Chenope”), operating on the basis of an entry in the National Court Register kept by the District Court for the capital city of Warsaw, XIII Division Commercial under the number: KRS 0000960292, NIP number: 701-107-91-09, REGON number: 52149620700000. In matters related to the protection of personal data and your rights, you can contact The Controller by writing to the e-mail address: gdpr@chenope.com. Chenope is committed to responding promptly to incoming inquiries, requests, and complaints from data subjects.
II. Purpose, scope, legal basis, and period of processing
Your personal data collected in the form on the registration website will be processed only and exclusively for the proper implementation of the “UA Miltech Startup Services Registration” program (hereinafter: “Program”), providing training and mentoring materials related to the Program, as well as providing current information about activities carried out under the Program in cyclical newsletters. Your personal data provided in the form on the website are treated by the Controller as confidential information and are not visible to unauthorized persons – in accordance with the applicable provisions of European Union or Member State law. The basis for the processing of your personal data is, in turn, art. 6(1)(a) of the GDPR – the data subject has consented to the processing of his personal data for one or more specific purposes; art. 6(1)(f) of the GDPR – processing is necessary for the purposes of the legitimate interests pursued by the administrator or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, which require protection of personal data, in particular when the data subject is a child. Providing personal data is voluntary, but failure to do so will prevent you from participating in the Program. Your personal data will be stored for the duration of the Program until the date of withdrawal of consent, in a situation where the basis for the processing of personal data is the legitimate interest of the Controller or voluntary consent of the data subject.
If you give additional consents, your personal data will be processed for marketing purposes until they are withdrawn, unless there is a need to store data longer when such an obligation results from legal provisions or it will be necessary to establish, defend or pursue claims (e.g. to may keep proof of consent until the statute of limitations expires).
Your data may be transferred outside the European Economic Area (hereinafter: “EEA”) when it is necessary to achieve the objectives set out in point. 2 above. Your personal data may be transferred by the Controller only on the basis of binding corporate rules, standard data protection clauses adopted by the European Commission, standard data protection clauses adopted by the polish supervisory authority and approved by the European Commission, an approved code of conduct or an approved certification mechanism (based on art. 46 of the GDPR). In the absence of a decision from the European Commission stating the appropriate level of protection specified in art. 45(3) of the GDPR or lack of appropriate safeguards specified in art. 46 of the GDPR, including binding corporate rules, the Controller will request the data subjects to express their express consent to such transfer to a third country or international organization, informing about the prior risk associated with such transfer pursuant to art. 49(1)(a) of the GDPR. Due to the possibility of transferring personal data outside the EEA, you can request information from the Controller about appropriate safeguards in this regard, obtain a copy of these safeguards or information about the place where they are made available by contacting Chenope at the address indicated in point 1 above. In connection with the processing of your personal data for the purposes referred to in point 2 above, their recipients may be:
➢ authorized employees and associates of the Controller,
➢ public authorities and entities performing public tasks or acting on behalf of public authorities, to the extent and for purposes arising directly from the provisions of generally applicable law,
➢ other entities that, under relevant agreements signed with the Administrator, process personal data for which Chenope is the data administrator.
Your personal data will not be transferred to international organizations.
IV. Rights related to the processing of personal data
In connection with the processing of personal data, you have the following rights:
➢ the right to request the Controller to access your personal data, including obtaining a copy thereof, pursuant to art. 15 of the GDPR,
➢ the right to request the Controller to rectify data that is incorrect, as well as to supplement data that turns out to be incomplete, pursuant to art. 16 of the GDPR,
➢ the right to request the Controller to delete your data. The exercise of this right, however, does not affect the processing that took place until the consent was withdrawn, pursuant to art. 17 of the GDPR. Consent can be withdrawn by sending a message to the following address: gdpr@chenope.com,
➢ the right to request the Controller to limit the processing of your data, pursuant to art. 18 of the GDPR,
➢ the right to transfer your data (i.e. the right to receive data from the Controller and send it to another administrator without any obstacles from the Controller, as well as to request the Controller to send your data directly to another administrator), pursuant to art. 20 of the GDPR,
➢ the right to object to the processing of data for the purposes of direct marketing, as well as to object – for reasons related to your particular situation – against data processing based on the legitimate interest of the Controller, pursuant to art. 21 of the GDPR,
➢ the right to lodge a complaint with the supervisory body, i.e. the President of the Office for Personal Data Protection with its registered office in Warsaw, Stawki 2 Street, 00-193 Warsaw, if you believe that the processing of data by the Controller violates applicable law.
Your rights (except for the right to lodge a complaint) can be exercised by submitting appropriate applications/declarations to the Controller, using the contact details indicated in point I of this information.
V. Profiling
Your personal data are not and will not be used by the Controller to make automated decisions, and they are not and will not be subjected to profiling operations in the future.