The information presented in the Policy will allow you to become familiar in detail with the rules on the processing of personal data when contacting Asseco and using the company’s websites.

The Policy applies to all Asseco websites, sites within the global domain of https://see.asseco.com/pl/owned by Asseco, and to other websites run by Asseco for the Asseco Group, hereinafter referred to as the Asseco websites.

Asseco declares that Asseco websites are run with utmost care, in compliance with the rules of technical know-how and professionalism, as well as in accordance with the applicable legal regulations, in particular those that protect privacy of Internet website Users:

1. Regulation No 2016/679 of the European Parliament and of the Council of the EU of April 27 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, Official Journal of the European Union L. 2016 No 119/1
2. Act of July 18 2002 on the provision of services by electronic means, Journal of Laws from 2013, item 1422, as amended
3. Act of July 16 2004 Telecommunication Law, Journal of Laws from 2014, item 243, as amended

Controller – the Controller of Personal Data, an entity that determines the purposes and means of the processing of personal data. The controller of personal data is Asseco.

Personal data – any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified directly or indirectly.

EEA – European Economic Area, free trade area and common market, including European Union and European Free Trade Association (EFTA) countries, except Switzerland. This is an area with free movement of personal data.

Recipient of the data – means a natural or legal person, organizational entity without legal personality (i.e. legal entity without corporate status), public authority, agency or other body to which the personal data are disclosed, regardless of whether it is a “third party” or not.

Third countries – countries not part of the EEA.

President of the Office – Prezes Urzędu Ochrony Danych Osobowych (President of the Office for Personal Data Protection), a supervisory authority according to the GDPR which supervises the observance of legal provisions on personal data protection in Poland.

Profiling – means any form of automated processing of personal data which involves the use of personal data that makes it possible to evaluate personal factors of a natural person, in particular to analyze or predict aspects relating to data subject’s work performance, economic situation, health, personal preferences, interests, reliability, behavior,  location or movement – provided that such action produces legal effects concerning this person or significantly affects this person in a similar manner.

SSL protocol – is a network protocol used for establishing secure internet connections, adopted as a standard for encryption on websites. The SSL certificate ensures the confidentiality of data transmission via the Internet.

Processing – means an operation or a set of operations performed on personal data or sets of personal data whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Policy – The privacy policy document (this document).

GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/WE.

Your personal data is controlled by ASSECO SOUTH EASTERN EUROPE S A  with its registered office in Rzeszów, mailing address 14 Olchowa Street, 35-322 Rzeszów. (hereinafter referred to as “Asseco”).

Asseco has appointed the Data Protection Officer (DPO) to ensure compliance with the rules related to the protection of personal data. 

You may contact the DPO via e-mail: asee.dpo@asseco-see.com 

The information about you that Asseco may collect, and process includes:

• name and address, e-mail address and telephone number;
• demographic data, when linked to personally identifiable information;
• photographs and opinions;
• transaction data, including products and services ordered, financial data and payment methods used;
• company data such as company name, size and location and your role in the company;
• survey data and publicly available information, such as posts from social networking sites;
• unique identifiers, such as mobile device identifiers or cookie identifiers in your browser;
• IP address and information that may be determined by the IP address, such as geographical location;
• information about the device you are using, such as your web browser, device type, operating system, presence or use of "applications", screen resolution and preferred language;
• data about the behavior of a computer connected to the Internet or a device used to access websites, such as clicks on ads or their display, sites and their content, dates and times of activity or searches to locate and visit websites.

Notwithstanding the above, there may be circumstances in which other information than that indicated above will be necessary to provide the service or process requested by you. In such cases, you will be informed of the need to provide certain information, including personal data, with an indication of the purpose of its use. You can make a voluntary decision on whether or not to provide access to your data. Nevertheless, providing personal data may be required in a situation where it is necessary to provide the service or process specified each time within the framework of the website, the regulations of Asseco (e.g., receiving information about the product, organized event, offer, demo download, launching an internship program, recruitment process). In such cases, you may be asked to fill in and send a form/ questionnaire, which will clearly indicate what kind of personal data will be collected and for what purpose.

The data provided will be processed for the time necessary to achieve the purpose of providing access, unless the law requires it to be kept for a longer period

We would like to inform you that with regard to the personal data processed in connection with Asseco's Facebook profile, your personal data processed on this portal is controlled both by Asseco and Facebook Ltd., therefore both entities are joint controllers. All information about the processing of personal data by Asseco and your rights against Asseco can be found in this privacy policy.

Please contact Facebook with regard to maintaining your Facebook profile, monitoring your behavior on Facebook, exercising your rights, etc. We would like to inform you that by clicking the “like” button, you agree to the processing of your personal data. For more information on the joint controllership and means of the processing of personal data, in particular by Facebook, please see the terms and policies on Facebook website.

Each person whose data is processed has a number of rights pursuant to GDPR.

Each person is entitled to obtain a confirmation from the controller whether the personal data being processed belong to them, and where this is the case, shall be entitled to obtain access to such data and a range of information.

We will provide the person with the first copy of the personal data being processed free of charge upon request. For any further copies, requested by the data subject, we may charge a reasonable fee based on administrative costs. Should you request a copy by electronic means and do not indicate otherwise, we will provide information in a commonly used electronic form.

You have the right to request us to rectify without delay your personal data that is incorrect. You also have the right to demand completion of your incomplete personal data, including by submitting an additional declaration.

You have the right to obtain from us the erasure of your personal data without undue delay and we are obliged to erase it without undue delay, where one of the following grounds applies:

• Your personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
• You withdraw your consent on which the processing is based and where there is no other legal ground for further processing;
• You object to the processing and there are no overriding legitimate grounds for the processing;
• Your personal data have been unlawfully processed;
• Your personal data have to be erased for compliance with a legal obligation under Union or Member State law to which the controller is subject;
• Your personal data have been collected in relation to the offer of information society services.

Pursuant to GDPR, despite your request and the fulfilment of the above-mentioned prerequisites, your personal data may not be erased if their processing is necessary:

• to exercise the right to freedom of expression and information;
• to comply with a legal obligation which requires the processing under Union law or the law of a Member State to which the controller is subject, or
• for the performance of a task carried out in the public interest or subject to the exercise of public authority vested in the controller;
• for reasons of public interest in the area of public health;
• for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes, insofar as the right to erasure is
• likely to render impossible or seriously impair the attainment of the objectives of that processing;
• for the establishment, exercise or defence of legal claims.

You have the right to obtain from the controller restriction of processing where one of the following applies:

• you contest the accuracy of the personal data – for a period enabling the controller to verify the accuracy of these data;
• the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
• the controller no longer needs the personal data for the purposes of the processing but you require them for the establishment, exercise or defence of legal claims;
• you object to processing – pending the verification whether the legitimate grounds of the controller override those of the data subject.

You have the right to object – on grounds relating to your particular situation – to the processing based on the collector’s legitimate interest or the processing is necessary for the performance of a task carried out in the public interest or subject to the exercise of public authority vested in the controller; including profiling based on these provisions.

In the event of an objection, we will no longer process the personal data, unless we can demonstrate compelling legitimate grounds for the processing which override interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.

You have the right to receive your personal data which you provided to us, in a structured, commonly used and machine-readable format, or have the right to transmit those data to another controller without hindrance from us provided that:

In exercising the right to data portability, you shall have the right to have the personal data transmitted directly from one controller to another, where technically feasible.

Pursuant to GDPR, the exercise of your rights shall not adversely affect the rights and freedoms of others.

If your data are processed on the basis of consent, you have the right to withdraw such consent at any time. Withdrawal of consent does not affect the lawfulness of the processing based on consent before its withdrawal.

If you withdraw your consent, we have the right to process your data where this is necessary:

• to exercise the right to freedom of expression and information;
• to comply with a legal obligation which requires the processing under Union law or the law of a Member State to which the controller is subject, or
• for the performance of a task carried out in the public interest or subject to the exercise of public authority vested in the controller;
• for reasons of public interest in the area of public health;
• for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes, insofar as the right to erasure is
• likely to render impossible or seriously impair the attainment of the objectives of that processing;
• for the establishment, exercise or defence of legal claims.

You have the right to lodge a complaint with the President of the Personal Data Protection Office. As the President of the Personal Data Protection Office points out, due to the fact that the President of the Office is the authority controlling the application of data protection rules by the controller, the complainant should first contact the controller to exercise his/her rights.

Direct link the website of the Office for Personal Data Protection for lodging a complaint: https://uodo.gov.pl/pl/p/skargi.

Regional DPO contact:

• Asseco SEE (Romania): dpo@asseco-see.com, phone: +40 21 206 45 00
• Asseco SEE (Croatia): e-mail: dpo@asseco-see.hr, phone: +385 1 3030 000, address: Asseco SEE, Ulica grada Vukovara 269d, 10000 Zagreb, Croatia
• Asseco SEE (Serbia): e-mail: dpo@asseco-see.rs, phone: +381 11 2013 111, address: Asseco SEE, Bulevar Milutina Milankovića 19g, 11070 Belgrade, Serbia

When using our websites cookies are processed. We use cookies for the following purposes:

• maintaining and correct operation of website services
• keeping statistics of users visiting website

You may configure your browser to receive information regarding the use of cookies and to be able to decide whether to accept or reject cookies in certain cases or not at all. In case you do not accept the use of certain cookies, the functionality of our website may not be displayed correctly.

Below you will find instructions for configuration of each browser:

• Internet Explorer
• Microsoft Edge
• Mozilla Firefox
• Chrome
• Opera
• Safari

A list of Internet Cookies:

The policy is reviewed and, if necessary, updated on an ongoing basis. The current version of the Policy has been adopted and is effective as of 04.03.2022.