PRIVACY POLICY

Information clause

Pursuant to the Regulation (EU) No 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as the “GDPR”), we hereby inform you that:

  1. The Controller of your personal data is the Military Institute of Armament Technology, represented by Director colonel Paweł Sweklej. The Institute’s headquarters is located in Zielonka at ul. Prymasa Stefana Wyszyńskiego, 05-220 Zielonka, KRS (National Court Register): 0000159112) NIP (Tax Identification Number): 125-00-00-208, REGON (National Business Registry Number): 010153990.
  2. The Controller appointed Mr Piotr Kotowoda the Data Protection Officer, who can be contacted at the following e-mail address: iod@witu.mil.pl.
  3. Personal data shall be processed for the purpose of carrying out statutory tasks and entering them in the database of entities cooperating with the Institute. Your personal data shall be processed only to the extent necessary for the performance of the above-mentioned tasks and stored for the period resulting from the applicable provisions of law.
  4. The legal basis for the processing of personal data is: Article 6(1)(b) of the GDPR, where processing is necessary for the performance of a contract to which the data subject is a party, or in order to take steps at the data subject’s request prior to entering into a contract, Article 6(1)(c) of the GDPR, where processing is necessary for compliance with a legal obligation to which the controller is subject, Art. 6(1)(e) of the GDPR, where processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, or Article 6(1)(f) of the GDPR, where processing is necessary for the purposes of legitimate interests pursued by the controller or a third party.
  5. Your data shall only be transferred to the supervisory authorities of the Institute, to courts or other authorities (e.g. tax authorities or law enforcement agencies) and to independent external consultants carrying out official activities (e.g. auditors).
  6. The Institute has implemented security measures, both technical and organizational, to protect your personal data in accordance with the provisions of the GDPR.
  7. Personal data shall be stored for a period required under applicable laws and, in the case of video surveillance, up to 90 days. Data shall be erased automatically by overwriting thereof.
  8. Each data subject shall have the right to access their data, to rectify, complete, erase or restrict processing thereof, to object to the processing thereof, as well as the right to data portability and to lodge a complaint with the supervisory authority responsible for compliance with the provisions on personal data protection (i.e. the President of the Personal Data Protection Office.).
  9. Where the personal data are processed on the basis of the consent of the data subject (Article 6(1)(a) of the GDPR), your provision of personal data to the Controller shall be voluntary.
  10. Your data shall not be processed by any automated means nor shall be subject to profiling.

“Cookies” policy

The Web service shall not automatically collect any information except that contained in cookie files.
Cookie files (so-called “cookies”) are IT data, in particular text files, which are stored on the Web service User’s end device and are intended for use by the Web service pages. Cookies typically contain the name of the website from which they originate, the duration of their storage on the end device and a unique number. The entity placing cookie files on the Web service User’s end device and having access to them is the Web service Operator – Military Institute of Armament Technology with its headquarters at 05-220 Zielonka, ul. Wyszyńskiego 7.

Cookies are used for:

  1. adapting the content of the Web service sites to the User’s preferences and optimizing the use of websites; in particular, these files enable to recognize the Web service User’s device and appropriately display the website, adapted to his/her individual needs;
  2. generating statistics that help to understand how the Web service Users use the websites, thus improving the structure and content thereof;
  3. maintaining the Web service User’s session (after logging in), so that the User no longer has to re-enter their login and password on each sub-page of the Web service.
    The Web service uses two main types of cookies: session cookies and persistent cookies. “Session” cookies are temporary files that are stored on the User’s end device until logging out, leaving the website or closing the software (web browser). “Persistent” cookies are stored on the User’s end device for the time specified in the parameters of the cookies or until they are deleted by the User.

The Web service uses two main types of cookies: session cookies and persistent cookies. “Session” cookies are temporary files that are stored on the User’s end device until logging out, leaving the website or closing the software (web browser). “Persistent” cookies are stored on the User’s end device for the time specified in the parameters of the cookies or until they are deleted by the User.

The Web service uses the following types of cookie files:

  • cookie files used to ensure security, e.g. those used to detect possible abuse regarding Web service authentication;
  • “indispensable” cookies that enable the use of services available on the Web service such as authentication cookies used for services that require Web service authentication;
  • “performance” cookies that enable the collection of information about how the Web service pages are used;
  • “functional” cookies that enable “remembering” the User’s selected settings and personalizing the User’s interface, e.g. with regard to the chosen language or region of origin of the User, font size, website layout, etc;
  • “advertising” cookies that enable us to provide Users with advertising content tailored better to their interests.

In many cases, the software used to browse the Internet (web browser) enables the storage of cookies on the User’s end device by default. Web service Users may change cookie settings at any time. These settings may be changed in particular so as to disable the automated cookie files processing in the Internet browser settings or to inform the User each time they are placed on the Web service User’s device. Detailed information about the options and ways of processing cookies is available in the software settings (web browser).
The Web service operator informs that restrictions on the use of cookies may affect certain functionalities available on the Web service pages.

VIDEO SURVEILLANCE

  1. The Controller of personal data is the Military Technical Institute for Armaments in Zielonka, ul. Prymasa Stefana Wyszyńskiego 7, 05-220 Zielonka, represented by the Director of the Institute.
  2. The Personal Data Controller, hereinafter referred to as the: the “Controller” appointed a Data Protection Officer responsible for monitoring the correctness of the personal data processing, who can be contacted at the following e-mail address: iod@witu.mil.pl.
  3. The Controller shall process data lawfully where it is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller, and for compliance with a legal obligation incumbent on the Controller.
  4. The Controller shall process data while protecting the fundamental rights and freedoms of natural persons, in particular their right to the protection of personal data.
  5. The Controller shall exercise the right to information with respect to the data subjects whose data it processes.
  6. Individuals whose data is processed at MIAT shall have the right (under the conditions set out in the GDPR) to: protection of data pertaining to them, access to the content of their data, rectification, erasure, restriction of processing, data portability, to object to the processing, to withdraw consent at any time without affecting the legality of the processing carried out on the basis of consent given before its withdrawal, as well as to obtain all information about their rights. Should you consider that the processing of your personal data by the Controller infringes the provisions of the GDPR, you have the right to lodge a complaint with the President of the Personal Data Protection Office.
  7. The Controller shall operate a video surveillance system to ensure the broadly understood security and safety of persons and property, and in particular due to the need to:
    a) support access control;
    b) protect employees and associates and property;
    c) ensure the security of information processed at MIAT.
  8. Therefore, the target of video surveillance is not a person or a group of people, but a specific location – in order to detect early any undesired events and to be able to take appropriate preventive or emergency measures.
  9. MIAT informs individuals who may potentially find themselves in a surveillance area that entering such an area is tantamount to that individual’s consent to the processing of their image data.
  10. The data are fed from the video surveillance system cameras.
  11. The video-surveilled area is marked with appropriate pictographs. Surveillance footage shall be kept on recording hardware for 90 days.
  12. Only entities authorized by law to obtain personal data shall be recipients of recorded personal data.