Privacy Policy

APCOA PARKING POLSKA SP. Z O.O.

PRE-BOOKING SYSTEM PRIVACY AND COOKIES POLICY

 

This Privacy Policy describes how Apcoa PARKING POLSKA Sp. z o.o. of Warsaw, Rondo ONZ 1 (hereinafter, "Apcoa" or "Controller") will be processing personal data collected via the online service at https://parking-lotniskowarszawa-radom.pl.

As required by Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation; "GDPR"), this is to inform you how we, as the Controller, process the personal data we have gathered via our website.

At Apcoa, we make every effort to take any possible measures, whether physical, technical or organisational, to protect your personal data, including against their accidental or intentional destruction, accidental loss, alteration or unauthorised disclosure, use or access. In doing so, we comply with all the applicable laws.

I.  Definitions:

“Controller/we/us” means Apcoa PARKING POLSKA Sp. z o.o. whose registered office is in Warsaw (Rondo ONZ 1, 00-124 Warsaw), and which is registered in the Register of Businesses with the Warsaw District Court for the Capital City of Warsaw, 12th Division – Commercial, registered KRS number 0000129400.

“Cookies” means certain computer data, including, without limitation, small text files which are saved and stored on whatever devices Users might use to access the Service.

“First-Party Cookies” means the Cookies which the Controller sets in connection with the electronic services it provides via the Service.

“Third-Part Cookies” means the Cookies set by the Controller's partners via the Service website.

“Device” means an electronic device used by the User to access the Service.

“User” means a person to whom electronic services may be provided or with whom a contract may be executed for electronic services as per the Terms and Conditions and in accordance with applicable laws.

“Service” means a website or an application which the Controller uses to provide its online service, featuring among other things a parking space pre-booking for Users and hosted at parking-lotniskowarszawa-radom.

“Device” means an electronic device that a User uses to access the Service.

“User” means a person to whom electronic services may be provided or with whom a contract may be executed for electronic services as per the Policy and in accordance with applicable laws.

II.   Personal data we collect on the website

  1. Apcoa may process the following personal data of Service users:
    1. name and surname;
    2. phone number;
    3. e-mail address;
    4. vehicle registration number.
  2. Personal data will be processed by our employees and associates, based on the authority we grant them. Each person with authority to process personal data has been made aware of the principles of personal data protection and has agreed to keep confidential whatever information is provided to them.
  3. Personal data may be contracted out for processing based on an agreement between Apcoa as the Controller and the external providers who support us in fulfilling our processing objectives, including in external debt recovery processes, claim enforcement, marketing services, e-mail handling, hosting, IT, and administrative, legal or consulting services.
  4. As the Controller, we only work with professional entities that guarantee the highest level of service and ensure that the information they are entrusted with is secure.
  5. Users may be redirected from our website to websites operated by other controllers. As the Controller, we are not responsible for how personal data are processed by such other websites. Users should read the Privacy Policy on each new visit to the website.
  6. Once you have given us your additional consent, we may forward your e-mail data to our partner for them to send you marketing information relating to the services we provide.

Currently, our partner for this is Polskie Porty Lotnicze S.A. as the operator of the Warsaw Radom Airport. For more details on our partner and its role as the controller of such data and how it processes them, please read its Privacy Policy at: https://www.lotniskowarszawa-radom.pl/polityka-prywatnosci. Your consent is voluntary and you may withdraw it at any time.

III.   How we use your personal data

  1. Your personal data are processed for the following purposes:
    1. for us to enter into a parking space booking contract;
    2. for accounting purposes (such as invoicing);
    3. for in-house and external debt recovery processes, and in complaint-handling processes;
    4. to compile data, statistics and analyses for the Controller's and the Warsaw Radom Airport's internal purposes;
    5. to respond to messages from Service users.
  2. In terms of law, we will process your personal data based on the following:
    1. pursuant to your consent for us to process your personal data (Article 6(1)(a)GDPR);
    2. to perform a contract or take steps at your request prior to entering into that contract (Article 6(1)(b) GDPR);
    3. to comply with a legal obligation to which we are subject as the Controller (Article 6(1)(c)GDPR);
    4. to pursue our legitimate interests as the Controller (Article 6(1)(f)GDPR).

IV.  How and for how long we process your personal data

  1. The User's personal data will be processed until the User withdraws their consent for it or in connection with the Controller's business until such time as is provided by law or as needed to achieve the purpose of the processing.
  2. As the User, you have the right to access your personal data; the right to rectify, erase or restrict the processing of your data; the right to data portability, the right to object to processing; and the right to withdraw consent where processing is based on consent.
  3. As the User, you have the right to lodge a complaint with the Polish supervisory authority (Prezes Urzędu Ochrony Danych Osobowych) if you consider that the processing of your data is in breach of the General Data Protection Regulation of 27 April 2016.

V.  Disclosing your personal data to others

  1. The User's personal data will not be transferred to third parties unless this is necessary for us to supply our services or perform the agreement.
  2. Personal data may be transferred to online payment operators such as t-pay (a necessary part of the booking process) and to the Controller's related parties, including other members of its corporate group.
  3. The User's personal data may be transferred to the Controller's associates for marketing purposes but only if the User has given their separate consent to their transfer.
  4. Your data may also be disclosed to public authorities and bodies which have the right to access them, or to comply with our legal obligation to disclose them, or where we are required to disclose such data pursuant to a court order.

VI.   Data transfers outside the EU

At APCOA, we exercise due care to ensure that personal data are processed within the EEA (i.e. Member States of the European Union plus Norway, Liechtenstein and Iceland). Where they are transferred outside the EEA,  we make sure as the Controller to use all legally available safeguards to secure their transfer in accordance with Article 49 of the GDPR and as provided in the European Commission's guidance on data transfers outside of the EEA.

VII.  Profiling

Users' personal data will not be processed by automated means, including profiling. This means that no decisions that produce legal effects for individuals or otherwise significantly affect them will be made based on automated data processing or involving such an automated decisions.

VIII.  Data Protection Officer

To ensure the highest level of security in our data processing operations, we have appointed a Data Protection Officer at Apcoa who may be contacted via e-mail at daneosobowe@apcoa.pl or by writing to our company’s address as stated above.

 

COOKIES

The types of Cookies we use are safe for Users' devices. In particular, they involve no risk of viruses or other unwanted software or malware finding their way onto User Devices. Cookies identify Users' software and help us customise our Service for each individual User. Typically, Cookies contain the name of their originating domain, their “lifetime” (how long they stay on your Device) and their assigned attributes.

As the Controller, we use two types of Cookies:

  • Session cookies: these are stored on a User's Device and expire when the browser session ends. Whatever information they have stored will then be permanently deleted from the Device. The way they work, session cookies cannot retrieve any personal data or confidential information from the User's Device.
  • Persistent cookies: these are stored on a User's Device and will remain there until they are deleted. Persistent cookies are not deleted from a User's Device once a browsing session ends or the Device is switched off. The way they work, persistent cookies cannot retrieve any personal data or confidential information from the User's Device.

Our Service uses the following types of Cookies:

  • "Strictly necessary" cookies. These are required for you to use the Service and its individual services. Examples include authentication cookies for any services requiring authentication on our Service.
  • “Security cookies”. We use those for security purposes, e.g. to detect any authentication irregularities on our Service.
  • “Performance cookies”. These cookies allow the Service to collect information about how you use it.
  • "Functional" or "preference" cookies. These cookies allow us to “remember” the settings you have chosen as a User, e.g. for your language or region, font size, website appearance, etc.

In many cases web browsing programs (web browsers) allow cookies to be placed on the User’s device by default. Service Users may change their cookie file settings at any time, in particular by disabling automatic cookie handling in their web browser settings or by having the software notify them each time a cookie is set on a Service User’s device. Please refer to the settings of your software (web browser) for details on how cookie files can be processed.

I.   How we use Cookies

As the Controller, we use Cookies for the following purposes:

  • to configure our Service, to tailor the content on the Service website to your preferences as a User, and to enhance your experience while viewing those pages;
  • to recognise a Service User's device and where it is located so as to display the website in a way that is tailored to the User's individual needs;
  • to remember the settings you have chosen as a User, e.g. for your language or region, etc.
  • to remember your viewing history on our Service so as to recommend specific content, font sizes or how website appearance;
  • to make sure your selected Service functionalities are properly configured and, in particular, to authenticate your browsing session;
  • to optimise and enhance the performance of the services we provide as the Controller;
  • to implement whatever processes are necessary to ensure that the website is fully functional, to tailor the content of our Service website to your preferences as a User, and to enhance your experience while viewing those pages; In particular, cookie files help us recognise a User's Device and its basic parameters so as to display the pages in a way that is tailored to the User's individual needs;
  • to make sure our affiliate programme works as intended, and in particular to verify the sources of User redirects to our Service;
  • To remember the User's location and properly configure the selected Service functionalities and, in particular, to tailor the information we provide to our Users based on their specific location.
  • To conduct research, analyses and audience audits, and to generate anonymous statistics to help us understand how Service Users use our Service pages and thus improve their structure and content;
  • To make sure our Service is secure and operates reliably.

II.  How you can control which Cookies to accept and store

As a User, you may change cookie settings at any time by yourself, specifying how you wish for them to be stored or when to accept them on your Device. To do so, Users may either alter the relevant settings in their browsers or re-configure the service. In particular, you may change those settings by disabling automatic cookie handling in your web browser settings or by having the browser notify you each time a cookie is set on your device. Please refer to the settings of your software (web browser) for details on how cookie files can be processed.

Cookies which are placed on Service Users' devices and may also be used by the operator's affiliated partners.

Users can delete Cookies at any time using their web browser functionalities.

Note that restricting cookies may have an adverse effect on some of our Service functionalities.

Read here to see how to disable Cookies on:

Chrome
Firefox
Opera
Internet Explorer
Safari

 

III.   Final provisions

  1. As the Controller, we reserve the right to make updates to this Privacy Policy.
  2. As the Controller, we reserve the right to withdraw or amend without prior notice any content that is displayed on its website. The Controller shall not be liable if the website is unavailable at any time or for any period for reasons beyond its control.
  3. As the Controller, we reserve the right, from time to time, to restrict access to certain parts of the Website due to maintenance work or Website updates.
  4. Where this Privacy Policy has no provision for any matters it deals with, or if any part of this Policy is inconsistent with applicable law, the relevant provisions of Polish law will apply to any contested provision in this Policy, including but not limited to:
    1. the Civil Code Act of 23 April 1964;
    2. the Protection of Certain Consumer Rights and Liability for Damages Caused by Dangerous Products Act of 2 March 2000;
    3. the Consumer Sales (Specific Conditions) and Amendments to the Civil Code Act of 27 July 2002;
    4. the Electronic Services Act of 18 July 2002 (“ESA”);
    5. the Data Protection Act of 10 May 2018;
    6. the GDPR.