(this document is available online at opentangerine.com)

PRIVACY POLICY

PERSONAL DATA PROCESSED BY CONTROLLER

OPEN TANGERINE seriously treats the security of your personal information. It is crucial for us to be compliant with the privacy requirements of GDPR (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation - the "GDPR") and as required by the Polish Personal Data Protection Act (Ustawa z dnia 10 maja 2018 roku o ochronie danych osobowych Dz. U. 2018 poz. 1000). We’re doing our best to make sure that our related Companies and subcontractors are compliant, as well. The present document is the summary of our practices related to processing of the personal data. Feel free to contact us, if you have any questions regarding these subjects. We will be happy to help you out with your questions and remarks.

CONTROLLER OF YOUR PERSONAL DATA

OPEN TANGERINE, according to the GDPR is the controller (Polish: administrator) of your data. The full registered name:

OPEN TANGERINE SPÓŁKA CYWILNA GRZEGORZ GAJOS, PAWEŁ PAPKALA NIP 548-26-59-058, Skoczów, ul. Zawiśle, 43-430, Poland.

COLLECTING PERSONAL DATA

The ways OPEN TANGERINE company collects your personal data:

We are using cookies - files stored on your device - used to provide you a personalized experience by tailoring some of the website's features to your preferences, as well as remembering some of your choices for future visits. They are also necessary to properly run some of the websites’ features. Cookies are used to help us improve our services as well. They help us to collect anonymised information about your activity on the website - for example, which parts of the screen are most often "visited" by your mouse pointer. Collected information about your hardware and software (operating system, web browser, time spent on our webpage, your activity there and your IP address) are automatically logged so we can improve our services.

USAGE OF PERSONAL DATA

We use your personal information in many different ways depending on the type of information. We use your information for the following reasons:

SHARING YOUR PERSONAL DATA

When you contact Open Tangerine, personal information might be shared with us. For example by using our online contact form you might share your email address and name. Depending on the context (recruitment or business venture), you may have to provide other information. When we collect your data in this way, you will be informed of it and asked for consent. You do not have to agree, but we may not be able to interact with you if you choose so.

We keep sharing your information to minimum and upon your consent. When such consent is required we will inform you and ask for your approval. In such cases you are always free to disagree.

Your personal data may be also shared in situations when our company is a subject of business transactions such as merge, acquisition, bankruptcy transaction or proceedings. Furthermore we may share your data when we are legally bound to do so including responding to lawful requests and legal processes, protection of rights and property of OPEN TANGERINE, our agents, customers and others.

In case of vital interests, we can share it with our employees, subcontractors, agents, customers or any persons we may also share your data.

Your personal data may be shared internally with people who work with us in particular administration stuff, lawyers, accountants, IT subcontractors.

Please note that whenever you are contacting us via our website www.opentangerine.com or via our e-mail address office@opentangerine.com, the information included in such correspondence may be accessed by any of our Team members (incl. the IT developers who are our subcontractors/ sub processors as well as by our administration staff).

We’re using cloud-base solutions such as G-Suite (operated by Google group) and Slack, which are listed in the Privacy Shield register (a platform operated by the government of the USA that contains information about companies compliant with the GDPR based on European Council's decision).

By contacting us via email or website form you agree that information shared through those channels will be processed using these services.

If you’re contacting us to join our Team as a subcontractor or employee please note that your personal data will be processed as a part of our recruitment process. The process falls into restrictions described in this document.

We make sure your data is safe whenever we share it and inform you whenever we need to share it further.

YOUR RIGHTS

Our Company would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

The right to access – You have the right to request Our Company for copies of your personal data. We may charge you a small fee for this service.

The right to rectification – You have the right to request that Our Company correct any information you believe is inaccurate. You also have the right to request Our Company to complete the information you believe is incomplete.

The right to erasure – You have the right to request that Our Company erase your personal data, under certain conditions.

The right to restrict processing – You have the right to request that Our Company restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to Our Company’s processing of your personal data, under certain conditions.

The right to data portability – You have the right to request that Our Company transfer the data that we have collected to another organization, or directly to you, under certain conditions.

DATA PROCESSING OPTIONS

You can directly influence the processing of your data by contacting us or by changing your devices settings.

You can disable cookies in your browser settings. Please note that this may cause some parts of our website to not load properly and otherwise change how the website works for you.

PERSONAL DATA SECURITY

We are minimizing potential attack surface by limiting data access. Only people who require access to data, will gain it. We also ensure that applications which are processing personal data are protected by two factor authentication.

MAIN COMPANY CONTACT

All questions regarding this document, personal data processing or other can be sent to office@opentangerine.com.

MAIN VIOLATIONS REPORT CONTACT

Rights violations or security breaches can be reported directly to the Personal Data Protection Office located in ul. Stawki 2, 00-193 Warszawa, via phone 606-950-000 or email kancelaria@uodo.gov.pl. This information has been taken from the official website https://uodo.gov.pl/en/484 and we are recommending to reach out there for the latest up to date contact information.