We invite you to read the following document on how we process personal data and what cookies.
The data controller within the meaning of the provisions on the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (hereinafter referred to as “GDPR”) is Scramjet sp. z o. o. with its registered office in Suwałki (postal code 16 – 400) at Innowacyjna 1 Street, entered into the register of entrepreneurs of the National Court Register kept by the District Court for the city of Białystok, 12th Commercial Division of the National Court Register under KRS number: 0000841090, NIP number: 844-236-91-08, fully paid-up share capital: PLN 34 750.00.
If you have any questions please contact us by e-mail address: [email protected]
How do we process your personal data
We collect personal data directly from you. The scope of the data varies depending on the purpose of the processing and is always indicated when you provide us with specific personal data. If the legal basis for processing is to give consent, its granting is always voluntary. If it is necessary, we always inform you about it when it is given. You can withdraw your consent at any time. It’s free. If you withdraw your consent, we have the right to ask you about the reason for the withdrawal of consent, but you do not have to provide an answer.
|The purpose of processing||Legal basis||Processing time||Recipients of data|
|Processing is necessary for the performance of a contract to which the data subject is party or to take steps at the request of the data subject prior to entering into a contract||Art. 6 sec. 1 pt. b GDPR||Processing time depends on the duration of activities leading to the conclusion of the contract or the duration of the contract (original purpose), and after its termination or if it was not concluded, the processing is only continued for the purpose of establishing, investigating or defending legal claims ( secondary purpose).||Recipients may only be authorized employees or our associates who provide services related to customer service or IT support.|
|Handling related queries with the implementation of services||Art. 6 sec. 1 pt. f GDPR||Processing time depends on the time of handling queries (original purpose), and after their completion, processing is carried out only for the purpose of storing information in the scope of establishing, investigating or defending legal claims (secondary purpose).||Recipients may only be authorized employees or our associates who provide services related to customer service or IT support.|
|Complaint handling||Art. 6 sec. 1 pt. b GDPR||Processing time depends on the time of handling complaints and complaints (original purpose), and after their completion, processing is carried out only for the purpose of storing information regarding the establishment, investigation or defense of legal claims (secondary purpose).||Recipients may only be authorized employees or our associates who provide services related to customer service or IT support.|
|Archive documentation for the establishment, exercise or defence of legal claims||Art. 6 sec. 1 pt. f GDPR||We store data for the period provided for by law in the scope of pursuing claims. After this period, the data is deleted unless the proceedings are conducted and the period is extended until the end of the final court judgment.||Recipients may only be authorized employees or our associates who provide services related to legal services or IT support.|
|Archive documentation for the purposes of tax settlements and fulfillment of the legal obligation||Art. 6 sec. 1 pt. f GDPR||We store data for the period provided for by law in the scope of the implementation of tax obligations or other specific provisions, if they are imposed on us, and require a specific method of data processing and retention (in this case, we inform you at the stage of obtaining data which regulations oblige us to specific processing and in what time).||Recipients may only be authorized employees or our associates who provide services related to customer service and accounting or IT support.|
|Actions based on granted consent||Art. 6 sec. 1 pt. a GDPR||The data is processed until the consent is withdrawn. However, after you withdraw your consent, we have the right to only store information about when the consent was granted, by whom, what actions were based on this consent and when the consent was revoked (this information is processed for the purpose of establishing, investigating or defending legal claims).|
|Recruitment||Art. 6 sec. 1 pt. a GDPR||The processing time depends on two factors. First of all, you can withdraw your consent during the recruitment process – in this case, we will remove all information about the application immediately. Secondly, if you do not withdraw your consent and recruitment is finished, we process information about who applied, at what position and at what time, and what were the results of recruitment for the period necessary to establish, investigate or defend legal claims (especially regarding the possibility of suspecting possible discrimination ).||Recipients may only be authorized employees or our associates who provide services related to the employment processes or IT support.|
Every data subject has the right to access personal data, rectify, delete, or limit their processing, the right to objection, the right to transfer data, the right to lodge a complaint with a supervisory authority. If you have any questions please contact us.
Is the data transferred outside the European Economic Area?
Some of the services we use process data outside the EEA:
MailChimp We use IT services provided by the MailChimp service, which is provided by an entity based in the USA. Via MailChimp, we can send system notifications and newsletters, which is why your personal data (e-mail address) is transferred to another country, i.e. the USA. Due to the fact that the European regulations on the protection of personal data do not apply in the USA, we have concluded an agreement with our partner, thanks to which your data will be protected in the same way as if it were processed in Poland. You can read the contract at the URL: Mailchimp: Controller to Processor Clauses
Auth0 We use IT services provided by the Auth0 service, which is provided by an entity based in the USA. Through Auth0, registration and login are carried out, which is why your personal data (e-mail address) is transferred to another country, ie the USA. Due to the fact that the European regulations on the protection of personal data do not apply in the USA, we have concluded an agreement with our partner, thanks to which your data will be protected in the same way as if it were processed in Poland. You can read the contract at the URL: AUTH0, INC. DATA PROCESSING ADDENDUM.
We use cookie files. Cookies are small text files that are stored on your end device and that store certain settings and data regarding your interaction with our sites via your browser.
Cookies allow us to recognize your end device and immediately provide certain settings or preferences (such as font size and contrast) or register your activity on our sites (clicking certain options, keeping track of pages visited). Whenever possible, the cookies we use are first-party cookies. However, we also use third party cookies.
For further details, please see the ‘about Hotjar’ section of Hotjar’s support site at https://help.hotjar.com/hc/en-us/categories/115001323967-About-Hotjar
You can give your consent to all cookies, or selected cookies, or not. You can also change your consent settings at any time. Just click on the graphic icon with the cookie. In addition, after clicking, you can see exactly what cookies we process so that your consent is informed.
How do we keep your data safe?
We store your data on specially protected servers in the European Union, as well as on the servers of our service providers, including the United States. They are protected by technical and organizational measures to prevent loss, destruction, access, modification or distribution of your data by unauthorized entities.
Your personal data is transmitted encrypted via the Internet. We use TLS (Transport Layer Security) encryption for data transmission.
In order to protect the integrity, confidentiality and availability of data, we also use other safeguards defined in accordance with our internal risk analysis.
We love hearing from you and are always looking to improve our Services. When you share comments, ideas, or feedback with us, you agree that we're free to use them without any restriction or compensation to you. Please join our community at our Discord channel – https://scr.je/discord. We’re looking forward to your contributions.