eng

Wyceń projekt
eng
Choose language

GDPR

Collection and Use of Data

We collect the following personal data:

  • Contact details: Full name, position, role, company or organization name, phone number (including mobile number, if provided), as well as email and mailing address.
  • Business information: Data related to matters you have informed us about or are involved in.
  • Public sources information: For example, LinkedIn and similar professional social networks, directories, or online publications.
  • Attendance data: For registration of presence in our offices, for security purposes.
  • Subscriptions/preferences: When signing up for various communications, information, or newsletters to determine what type of information interests you.
  • Event data: Participation in events and feedback forms regarding our events.
  • Supplier data: Contact details and other information about you or your company/organization providing services to MBT.
  • Social media: Posts, likes, tweets, and other interactions regarding our presence on social media.

MBT does not collect personal data related to users’ online activities concerning external websites or the online services they provide.

Communication with Us

MBT may also collect information that you choose to share in communication with us.
We use your personal data for the following purposes:

  • Business relationships: Managing and administering our relationship with you, your company, or your organization, including maintaining records of activities, services, and payments to tailor our offerings, strengthen our relationship, and appropriately direct our marketing activities and promotional campaigns.
  • Communication: Sending emails, newsletters, and other information.
  • Events: Organizing meetings and other events.
  • Facility security: Ensuring the security of our offices and premises (which regularly collect data such as name and contact details upon entry).
  • Supplier management: Managing service providers working on our behalf.Legitimate interest: Pursuing needs arising from legitimate interests, as specified below under “Legitimate Interest.”

Legal Basis for Processing Your Data

Your data will be processed for the following reasons:

  • You have given your consent: For example, when you provide us with detailed information for a specific purpose.
  • It is necessary for legal or regulatory compliance: For example, for anti-money laundering purposes, mandatory verification checks, or disclosure to law enforcement authorities.
  • Processing is necessary for our legitimate interest or that of a third party: Provided it does not override your rights and interests as an individual. A list of our legitimate interests is detailed below.

Our Legitimate Interests Include:

  • Managing our relationship with clients, their company, or organization.
  • Understanding and responding to customer inquiries and feedback.
  • Understanding how clients use our services and websites.
  • Improving our services and solutions.
  • Ensuring the security of our systems and facilities.
  • Managing our supply chain.
  • Developing relationships with business partners.
  • Ensuring debt recovery.

That’s why we use special category data.

Processing Special Categories of Data

Special categories of data in the EU and certain other jurisdictions refer to sensitive data. We process such data only when:

  • You have given explicit consent for a specific purpose.
  • You have explicitly shared your data (e.g., by publishing information on social media).
  • It is necessary for important public interest reasons, such as preventing or detecting unlawful activities.

Sharing Your Data

We may share your information with:

  • Suppliers supporting our operations, including IT and communication service providers, outsourced business support, marketing and advertising agencies, and administrative service providers. Our suppliers must meet minimum information security standards and will only receive data relevant to their function.
  • Shared service centers operated by MBT or third parties for customer acquisition, IT services, marketing, risk management, and office administration.Law enforcement authorities or other competent authorities as required by law or best practices.
  • Relevant parties in emergencies, particularly for the health and safety of our clients, staff, and organization.
  • Your company or organization, in relation to the services we provide.
  • Verification service providers, to meet legal obligations related to crime prevention, anti-money laundering, sanction checks, and other required verifications.

Processing Personal Data of Third Parties

In some cases, you may provide us with personal data of other individuals (e.g., your clients, directors, officers, shareholders, or ultimate beneficial owners). You should ensure these individuals are informed beforehand and have given their consent for sharing such data.

Security

We store your data securely using physical, technical, and administrative security measures. However, transmitting information over the internet is not entirely secure. While we take reasonable measures to protect your personal data, we cannot guarantee the security of information you send to us, and you do so at your own risk.

Where Your Information is Stored

MBT has implemented Standard Contractual Clauses (SCCs) approved by the European Commission under Article 46(2)(C) of the General Data Protection Regulation (GDPR). Please contact us if you wish to receive copies of the applicable SCCs for European data.

How Long We Retain Your Data

In general, we retain your data as long as necessary for service provision and to process claims. The retention period depends on various factors, such as whether you or your company/organization are a current client. We retain necessary data to comply with legal, accounting, or regulatory obligations. The standard data retention period ranges from 3 to 15 years.

Your Rights

  • Access: You have the right to ask whether we process your data and, if so, request access to your personal data, allowing you to obtain a copy of the data we hold.
  • Correction: You have the right to request correction of incomplete or inaccurate personal data.
  • Deletion: You may request deletion of personal data under certain circumstances. Exceptions apply where legal obligations require us to retain the data.
  • Restriction: You can request suspension of processing your personal data in specific situations (e.g., if you wish to verify data accuracy).
  • Data portability: You may request assistance in transferring your personal data to another entity.
  • Objection: If we process your data based on legitimate interest, you may challenge such processing. However, we may still be entitled to continue processing your data. You also have the right to object to data processing for direct marketing purposes.
  • Consent withdrawal: If processing is based on your consent, you can withdraw it at any time.

To exercise these rights, please contact our data protection officers at the relevant email address. You also have the right to file a complaint with a data protection authority, particularly in an EU country where you reside, where we are located, or where a data protection law violation has allegedly occurred. In Poland, complaints can be submitted to the President of the Personal Data Protection Office (PUODO) via biuro@mbt.pl or https://www.biznes.gov.pl/pl/portal/ou889.

Cookies

We use cookies to identify your browser. These cookies collect and store information about when you visited our website and how you use it, allowing us to save visit information and enhance user experience. Personal data collected through these technologies may also be used to manage your session.

Contact Us

For more information on how we manage personal data, please contact us using the details provided at the beginning of this privacy policy.