выберыце рэгіён

Privacy Policy

Introduction

Technology for business, solutions for people.

Our mission is to improve the quality of life by providing solutions for people and technology for business.

Asseco is everywhere where technology and business combine with everyday life. The sum of experience from all market sectors enables us to create reliable, advanced products. We operate globally, however, we never lose sight of human and social dimension of our work. We know that someone’s life or financial future may depend on our solutions. We take full responsibility for the projects we execute. In this way, we have been building trust and our brand prestige for years.

Asseco strives to comply with the highest standards of management, communication, and transparency. Foundations of our business include observing the applicable laws and regulations on privacy and personal data protection. We particularly value respecting privacy of Users visiting our websites (hereinafter referred to as the "Users").

Purpose of the Policy

Please be informed that the principles contained in this Policy shall apply whenever you use the websites of Asseco Poland S.A. (e.g. websites in the www.asseco.com global domain owned by Asseco Poland S.A. and other websites, hereinafter referred to as "Asseco Websites") as well as in any other case when you contact our Company, including the framework of activities conducted by Asseco Poland S.A. for the Asseco Group, hereinafter referred to as "Processes" .

Asseco Poland S.A. declares that both the websites and other tools used by the Company in its day-to-day operations are developed and selected with the utmost care, according to the latest technical knowledge and the principles of professionalism, and that they comply with the applicable laws, in particular those that protect privacy of natural persons, including website Users:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC. Official Journal of the European Union 2016 No. 119/1 (FYROM).
  • Act of July 18, 2002 on the provision of electronic services, i.e. Journal of Laws of 2013, item 1422, as amended.
  • Act of July 16, 2004, Telecommunications Law, i.e. Journal of Laws of 2014, item 243 with later amendments.

Data Collection - Security

The right to respect personal data and control information is an important element of Asseco’s everyday work, therefore security is crucial. Asseco selects security measures based on a continuous process of risk and threat assessment and an analysis of the latest market solutions.

Tools - sites, applications, programs and devices - are equipped with both technical and organizational security measures to protect the information under our control from loss, misuse or modification. We protect any information disclosed to us in accordance with the law, standards, norms and practices concerning security and confidentiality. Asseco has implemented the Information Security Management System based on the ISO/IEC 27001:2014 international standard.

Asseco has appointed a Data Protection Inspector (DPI) to ensure compliance with the rules related to personal data protection.

Contact us about privacy or data protection issues: Data Protection Inspector of Asseco Poland S.A., 14 Olchowa St, 35-322, Rzeszów, e-mail: [email protected], phone: +48 17 888 55 55

Collection of Information - Personal Data Protection:

The information concerning you, which Asseco may process and collect, includes:

  • name and address, e-mail address and telephone number;
  • demographic data, when linked to personally identifiable information;
  • photographs and opinions;
  • transaction data, including products and services ordered, financial data and payment methods used;
  • company data, such as the name, size and location of the company and your role in the company;
  • survey data and publicly available information, such as posts from social networking sites;
  • unique identifiers, such as mobile device identifiers or cookie identifiers in your browser;
  • IP address and information that may be determined by the IP address, such as geographical location;
  • information about the device you are using, such as your web browser, device type, operating system, presence or use of "applications", screen resolution and preferred language;
  • data about the behavior of a computer connected to the Internet or the device used to access websites, such as clicks on ads or their display, sites and their content, dates and times of activity or searches to locate and visit websites.

Notwithstanding the above, there may be circumstances in which other information than that indicated above will be necessary to provide the requested service or Process. In such cases, you will be informed of the need to provide certain information, including personal data, with an indication of the purpose of its use. You have an option to make a voluntary decision on whether or not to provide access to your data. However, providing personal data may be required when it is necessary to provide the service or process specified in each case on the website and in the regulations of Asseco (e.g. when receiving information about the product, organized event, offer, demo download, launching an internship program, recruitment process). In such cases, you may be asked to fill in and send a form/questionnaire which will clearly indicate what kind of personal data will be collected and for what purpose.

The data provided will be processed for the period necessary to achieve the purpose of the data provision, unless otherwise provided by law.

If you disclose the personal data of a third party in a form/questionnaire or direct relations, you are deemed to have the consent of the person whose data You have disclosed.

You have the right to view as well as the right to correct and complete any incorrect or incomplete personal data. You also have the right at any time to request that the processing of your personal data be discontinued or deleted. The form of this request is given when collecting the data or, if not given, you can submit your request to the following e-mail address: [email protected]

We reserve that Asseco’s Websites do not collect, monitor or verify information about the age of the Users who visit the Websites, or other information the collection of which would make it possible to determine whether the User (including the recipient and user of e-mailing lists, survey participant and person participating in contests organized through them) has legal capacity.

Persons who do not have full legal capacity should not order or subscribe to services provided under the Asseco Websites, unless their legal representatives give their consent, if such consent is sufficient under applicable law.

 

Principles of personal data processing by Asseco in pursuit of the objective related to the area of Asseco's business activities indicated below. Please be informed that Asseco may process data as a controller or processor on behalf of another controller.

Public Relations and Marketing

Any information, including personal data provided by you through the Asseco Websites and provided on the occasion of your participation in various types of meetings organized by the Asseco Group companies, may be used for marketing and public relations purposes in the undertakings conducted by the Asseco Group companies, if you give your consent. Your consent shall be tantamount to accepting receipt of information by electronic means of communication (in particular commercial information).

 

Information clause for persons who have relations with Asseco as part of their public relations and marketing activities. 

Data controller:

The controller of your data shall be Asseco Poland S.A. with the seat at 14 Olchowa St, 35-322, Rzeszów, Poland (controller).

Objectives and legal basis of data processing, legitimate interests of the controller:

Your personal data shall be processed for marketing and public relations purposes and, to the extent of the controller's legitimate interest, for the purpose of establishing, investigating or defending against the claims, pursuant to Article 6(1)(a) and Article 6(1)(f) of the GDPR respectively. The processing of your personal data shall be based on your consent.

The period for which the data will be processed:

Your personal data will be processed for the time necessary to fulfil the purpose and for the time necessary to ensure that any civil law claims that might arise in relation to the subject of your consent can be processed.

Recipients of data:

 Your data may be transferred to:

  •  state authorities or other entities authorized by law,
  • persons authorized by the controller,
  • entities processing personal data at the request of the controller in order to perform the obligations incumbent on the controller, among others:

    • subcontractors,
    • providers of external systems supporting the activities of the controller,

  • to the Asseco Group companies - https://pl.asseco.com/o-asseco/grupa-kapitalowa/

Transfers of personal data outside the EEA:

 Personal data will be stored on servers located in the European Union (EU) and may be transferred under the standard data protection clauses to a third country in connection with the controller's use of the cloud computing solutions provided by Microsoft. Microsoft's standard contractual clauses in line with the templates approved by the European Commission are available at: www.microsoft.com/en-us/licensing/product-licensing/products.aspx under Online Services Terms (OST).

Data subject rights:

 You have the following rights:

  •  right to withdraw consent at any time, without affecting the lawfulness of the processing that was carried out on the basis of consent before withdrawal
  • right of access to your data
  • right to request their rectification, removal or restriction of their processing
  • right to object to the processing of your personal data

To exercise these rights, please contact the controller or the Data Protection Officer. You also have the right to lodge a complaint with the data protection supervisory authority.

 Profiling: Please note that we do not make automated decisions and your data is not profiled.

Recruitment

The recruitment of new employees, trainees, apprentices, partners of Asseco Poland S.A. or other Asseco Group entities may be carried out both via Asseco's websites, social networking sites, as well as in direct contact. Personal data obtained in this way shall be used solely for the purposes of recruitment, both as part of the ongoing and future recruitment processes (after the consent of a person involved in such a recruitment process is given). Such consent applies to all documents submitted during the recruitment processes.

Information clause for persons participating in the recruitment processes.

Data controller:

The controller of your data shall be Asseco Poland S.A. with the seat at 14 Olchowa St, 35-322, Rzeszów (controller).

Objectives and legal basis of data processing, legitimate interests of the controller:

 Your personal data shall be processed for the purposes of carrying out the recruitment processes and, to the extent of the controller's legally justified interest, for the purpose of determining, investigating or defending against the claims, pursuant to Article 6(1)(a) and 6(1)(f) of the GDPR, respectively. The processing of your personal data shall be based on your consent.

The period for which the data will be processed:

 Your personal data will be processed for 12 months from the date of application as well as for the period necessary to ensure that any civil law claims that might arise in relation to the subject of your consent can be processed.

Recipients of data:

 Your data may be transferred to:

  •  state authorities or other entities authorized by law,
  • persons authorized by the controller,
  • entities supporting the recruitment process
  • entities processing personal data at the request of the controller in order to perform the obligations incumbent on the controller, among others:

    • subcontractors,
    • providers of external systems supporting the activities of the controller,

  • the Asseco Group companies - pl.asseco.com/o-asseco/grupa-kapitalowa/

Transfers of personal data outside the EEA:

 Personal data will be stored on servers located in the European Union (EU) and may, under the standard data protection clauses, be transferred to a third country in connection with the controller's use of the cloud computing solutions provided by Microsoft. Microsoft's standard contractual clauses in line with the templates approved by the European Commission are available at: www.microsoft.com/en-us/licensing/product-licensing/products.aspx under Online Services Terms (OST).

Data subject rights:

You have the following rights:

  • right to withdraw consent at any time, without affecting the lawfulness of the processing that was carried out on the basis of consent before withdrawal
  • right of access to your data
  • right to request their rectification, removal or restriction of their processing
  • right to object to the processing of your personal data

To exercise these rights, please contact the controller or the Data Protection Officer. You also have the right to lodge a complaint with the data protection supervisory authority.

Profiling: Please note that we do not make automated decisions and your data is not profiled.

Recruitment process - Asseco Personnel

The "Asseco Personnel" consists of Asseco staff employed under employment contracts as well as Asseco employees with whom civil law contracts have been concluded.

Personal data of the Asseco Personnel is disclosed in business relations with contractors and the Asseco Group companies for the purposes and to the extent necessary to fulfil their obligations and comply with the provisions of law. The scope of personal data processed by the Asseco Personnel in business relations shall not exceed the information necessary to identify them and the information related to their qualifications, especially those related to the documentation of their competence within the offers submitted by the Asseco Group companies.

Information clause for the Asseco Staff

Data controller:

The controller of your data is Asseco Poland S.A. with the seat at 14 Olchowa St, 35-322, Rzeszów, (controller).

Objectives and legal basis of data processing, legitimate interests of the controller:

Your personal data shall be processed for the purposes of performing the obligations arising from the concluded employment contract or civil law contract, as well as - to the extent the controller's legitimate interest is legally justified - for the purpose of determining, pursuing or defending against the claims, pursuant to art. 6 sec. 1 letter a and art. 6 sec. 1 letter f of the Polish Labor Inspectorate, in particular the Act of June 26, 1974 Labor Code and the Act of April 23, 1964 Civil Code. The basis for processing your personal data is also your consent in justified cases.

Period for which the data will be processed:

Your personal data will be processed for the period indicated by law as well as for the period necessary to ensure that any civil law claims that may arise in connection with the subject of your consent can be processed.

Recipients of data:

Your data may be transferred to:

  • state authorities or other entities authorized by law,
  • persons authorized by the controller,
  • banks, in case of necessity of settlements,
  • entities enabling us to carry out remote payment operations
  • to the entities, partners (Contractors) of our business implementations
  • entities processing personal data at the request of the controller in order to perform the obligations incumbent on the controller, among others:

    • subcontractors,
    • providers of external systems supporting the activities of the controller,
    • entities carrying out postal or courier activities,

  • to the Asseco Group companies - pl.asseco.com/o-asseco/grupa-kapitalowa/

Transfers of personal data outside the EEA:

Personal data will be stored on servers located in the European Union (EU) and may, under the standard data protection clauses, be transferred to a third country in connection with the controller's use of the cloud computing solutions provided by Microsoft. Microsoft's standard contractual clauses in line with the templates approved by the European Commission are available at: www.microsoft.com/en-us/licensing/product-licensing/products.aspx under Online Services Terms (OST).

Data subject rights:

You have the following rights:

  • right to withdraw consent at any time, without affecting the lawfulness of the processing that was carried out on the basis of consent before withdrawal
  • right of access to your data
  • right to request their rectification, removal or restriction of their processing.
  • right to object to the processing of your personal data

To exercise these rights, please contact the controller or the Data Protection Officer. You also have the right to lodge a complaint with the data protection supervisory authority.

Profiling: Please note that we do not make automated decisions and your data is not profiled.

Business relations - Contractors (Partners, Customers, Suppliers)

Personal data and information provided through the Asseco websites may be used in business relations of the Asseco Group companies.

In particular, the following processing activities may be carried out: sharing, transfer of commercial, product and marketing information or information on partner programs as well as communication within the framework of the obligations of the Parties.

The Asseco Group companies reserve the right to disclose such information and personal data of a person representing a Contracting Party to other related parties in order to provide services or Processes, provided such disclosure is legally permissible.

 

Information clause for persons representing the Contracting Parties

Data controller:

The controller of your data is Asseco Poland S.A. with the seat at 14 Olchowa St, 35-322, Rzeszów, (controller).

Objectives and legal basis of data processing, legitimate interests of the controller:

Your personal data shall be processed for the purposes of fulfilling the obligations of the Parties, and in particular those resulting from the concluded contract, order, agreement, as well as - within the scope of the controller's legally justified interest - for the purpose of determining, investigating or defending against the claims, pursuant to art. 6 section 1 letter a and art. 6 section 1 letter f of the Polish Labor Inspectorate, in particular the Act of June 26,1974 Labor Code and the Act of April 23, 1964 Civil Code. The controller has obtained your personal data such as: name, surname, position, company name and address, telephone number, e-mail address, ID to work in IT systems from the Contractor.

Period for which the data will be processed:

Your personal data will be processed for the period indicated by the law as well as for the period necessary to guarantee the possibility of considering possible civil law claims, which could arise in connection with the subject of the consent.

Recipients of data:

Your data may be transferred to:

  • state authorities or other entities authorized by law,
  • persons authorized by the controller,
  • banks, in case of necessity of settlements,
  • entities enabling us to carry out remote payment operations
  • entities, partners (Contractors) of our business implementations
  • entities processing personal data at the request of the controller in order to perform the obligations incumbent on the controller, among others:

    • subcontractors,
    • providers of external systems supporting the activities of the controller,
    •  entities carrying out postal or courier activities,

  • to the Asseco Group companies - pl.asseco.com/o-asseco/grupa-kapitalowa/

Transfers of personal data outside the EEA:

Personal data will be stored on servers located in the European Union and may be transferred under the standard data protection clauses to a third country in connection with the controller's use of the cloud computing solutions provided by Microsoft. Microsoft's standard contractual clauses in line with the templates approved by the European Commission are available at: www.microsoft.com/en-us/licensing/product-licensing/products.aspx under Online Services Terms (OST).

Data subject rights:

You have the following rights:

  • right to withdraw consent at any time, without affecting the lawfulness of the processing that was carried out on the basis of consent before withdrawal
  • right of access to your data
  • right to request their rectification, removal or restriction of their processing.
  • right to object to the processing of your personal data.

To exercise these rights, please contact the controller or the Data Protection Officer. You also have the right to lodge a complaint with the data protection supervisory authority.

Profiling: Please note that we do not make automated decisions and your data is not profiled.

Portals/Social Media

Asseco’s social media are conducted for image and recruitment purposes. They are used to promote the company, including its experts, products, events and business successes. They constitute one of Asseco’s external communication channels.

Asseco uses such portals as Twitter, LinkedIn, Facebook, Instagram, YouTube.

The use of our profiles, pages, social media channels also provides an opportunity to connect to websites, social networks, applications and other features which are not supported by Asseco. The use of our profiles, pages, channels and these functions will cause your personal data to be processed by entities independent of Asseco, in particular the operators of the aforementioned portals. Asseco does not exercise any control over these functions of other entities or over the operators of the above-mentioned portals. We make every possible effort to properly secure your personal data, therefore, we recommend that you carefully use unknown functionalities and applications and, before using them, we encourage you to read the privacy policy of those entities.

 

Information clause for people visiting our social media channels.

Data controller:

The controller of your data shall be Asseco Poland S.A. with the seat at 14 Olchowa St, 35-322, Rzeszów, (controller).

Objectives and legal basis of data processing, legitimate interests of the controller:

Your personal data shall be processed for the purpose of maintaining profiles, websites, and channels, in particular for the purpose of advertising, market research, as well as research of users' behaviors and preferences, and to establish possible cooperation, promotion and presentation of Asseco on social networking sites. The undertaken cooperation shall be based on the terms and conditions determined by the operators. Based on this cooperation, we inform about our activities and promote the events we organize, our brand, products and services. The activity on profiles serves the purpose of building and maintaining the community connected with us through the available functionalities of social networking sites (comments, chat, messages, likes, etc.) - within the scope of the legally justified interest of the controller and in order to establish, pursue or defend against claims, pursuant to Article 6(1)(a) and Article 6(1)(f) of the GDPR, respectively. The basis for the processing of your personal data is your consent, in most cases expressed in an implicit form by attaching to your profile, the Asseco website on social networking sites.

Period for which the data will be processed:

Your personal data will be processed for the time necessary to achieve the purpose and for the period necessary to ensure that any civil law claims that might arise in connection with the subject of your consent can be processed.

Recipients of data:

Your data may be transferred to:

  • state authorities or other entities authorized by law,
  • persons authorized by the controller,
  • entities processing personal data at the request of the controller in order to perform the obligations incumbent on the controller, among others”

    • subcontractors,
    • external suppliers supporting the activities of the administrator,

  • social network operators in accordance with the terms and conditions set by them;
  • Asseco Group entities - pl.asseco.com/o-asseco/grupa-kapitalowa/

Transfers of personal data outside the EEA:

Personal data will be stored on servers located in the European Union (EU) and may be transferred by the controller - on the basis of standard data protection clauses, decisions issued by the European Commission - to a third country, in particular in relation to the controller's use of cloud solutions provided by Microsoft. The standard contractual clauses applied by Microsoft, consistent with the templates approved by the European Commission, are available at: www.microsoft.com/en-us/licensing/product-licensing/products.aspx in the Online Services Terms (OST) section.

Data subject rights:
You have the following rights:

  • right to withdraw consent at any time, without affecting the lawfulness of the processing that was carried out on the basis of consent before withdrawal,
  • right to access your data,
  • right to request their rectification, removal or restriction of their processing,
  • right to object to the processing of your personal data.

To exercise these rights, please contact the data controller or the data protection officer. You also have the right to lodge a complaint with the data protection supervisory authority.

Profiling: Please be informed that we do not make decisions by automated means. Your data may be profiled in accordance with the rules of the social profile operators.

Asseco Group

Protection of information, including personal data and its technical, organizational, and legal security is of key importance for each and every entity of the Asseco Group. Each of the Asseco Group companies is an independent controller. The transfer of personal data between Asseco and the Asseco Group companies that may be processed outside the EEA shall be governed by the signed agreement, an integral part of which are the standard contractual clauses approved by the European Commission.

Collection of Information - Cookie Policy

According to the established practice of most websites, we store HTTP queries addressed to our server. This means that we know the public IP addresses from which you view the information content of our service. The resources you are viewing are identified by their URLs. We also know:

  • time of the inquiry’s arrival,
  • time of the answer’s sending,
  • client’s workstation name - identification handled by the HTTP protocol,
  • information on errors that occurred during the handling of HTTP transactions,
  • the URL of the page previously visited by the user (referer link) - if the page was accessed via a link, information about the user's browser.

The above information is stored in so-called "cookies".

We use "cookies" for the following purposes:

  • adjusting the content of the Service's websites to the User's preferences and optimizing the use of websites; in particular, these files allow to recognize the Service User's device and properly display the website, adjusted to his/her individual needs
  • create statistics that help to understand how the Service Users use the web pages to improve their structure and content
  • maintaining the Service User session (after logging in), thanks to which the User does not have to re-enter his/her login and password on each subpage of the Service.
  • improving security by controlling misuse of the Websites,
  • obtaining aggregate, anonymous statistical data to improve the functionality of the Websites,
  • maintaining the User’s session (applies to Sites with login options) so that the User does not have to re-enter his/her login and password on each page of the Site,
  • enabling the basic functionality of the Websites (e.g., remembering the pages the User visits to restore them on his/her "request")
  • for advertising and marketing purposes in order to adjust the content of advertisements and texts displayed on the Asseco Websites as well as outside them to the User's preferences.

 

We use the following types of cookies on the Asseco Websites:

Session cookies (temporary) - stored on the User’s device only while he/she is using the Websites, i.e., until logging out, turning off the Website or turning off browser,

Permanent cookies – they remain on the User's device until the end of their useful life (operating time parametrized for the cookie) or until their removal by the User.

The cookie settings are individual for each web browser. The default option is to allow cookies.  However, the User can disable this option completely or restrict the reception of cookies on his/her device to some extent. Please be informed that this may affect the convenience of pages and may cause most websites to be missing or incorrectly displayed. In some cases it is possible to set the User’s browser to ask for his/her consent to cookies in each case. This gives the User the ability to control his/her cookies, but may slow down his/her browser.

To easily manage cookies, select your preferred browser and follow the instructions:

If you are using a browser other than the above mentioned, please refer to the cookie documentation on the website of the solution provider.

If you do not change your cookie settings, it means that they will be placed in your device and thus the Asseco Group will store information in your device and be able to access it.

 

Cookies of independent companies used on Asseco websites

Google Analytics - web analytics cookies collect information about your use of our website, the type of website from which you have been redirected, the number of visitors and the duration of your visit on the website. This information does not record any specific personal data about the user, but is used to compile statistics about the use of the website on an aggregate basis.

YouTube - the operator’s websites include YouTube videos and links. As a result, when browsing a page with embedded content from or linked to YouTube, the User may be exposed to cookies from these sites. More information: youtube.com

Adobe Flash Player - the website uses animations in Flash technology. Flash Player software uses local shared objects or Flash cookies to enable the user to use features such as auto restore or save user preferences. Flash cookies are stored on your device in the same way as normal cookies, but are managed differently from your browser. For more information, see www.adobe.com.

Chatbot - Virtual Advisor placed on the website that talks to users in natural language, providing them with general information about the company and working conditions in Asseco Poland, as well as searching for job offers based on criteria selected by the User. The Virtual Advisor processes the IP address and collects cookies. This information is used to create statistics that help to understand what kind of information about the company and work in Asseco Poland is sought by the Users, how many people are interested in this form of conversation and how long each conversation with the advisor lasts.

Websites sharing

The Asseco websites may contain links to websites of other entities. Asseco Poland S.A. has no influence on the privacy policy pursued by such entities and is not responsible for such policy.

Changes to the Privacy Policy

The policy is reviewed and, if necessary, updated on an ongoing basis. The current version of the Policy was adopted and is effective as of December 24, 2019.