Your privacy is important to us. This Privacy Policy covers what we collect and how we use, disclose, transfer and store your information.

I. RESPONSIBLE PERSON

The person responsible within the meaning of the GDPR and other national data protection laws of the member states as well as other data protection regulations is the
LexAvenue Sp.z o.o.

al. Zwycięstwa 241/13
81-521 Gdynia
Poland
Email: info@lexavenue.eu

E-delivery address: AE:PL-68032-34695-FEEVG-14

Company registration number 0001095151
You may submit inquiries regarding personal data protection, privacy and security matters to info@lexavenue.eu.

II. GENERAL INFORMATION ABOUT THE COLLECTION AND PROCESSING OF YOUR DATA

1. Scope
We process personal data only as necessary to provide a functioning website, content and our services. The processing of personal data takes place with consent, except for the cases where the consent cannot be collected for reasons of fact and the processing of the data is permitted by law.

2. Legal basis
The legal basis for processing of your data is either your consent or in case the processing is necessary for the performance of a contract to which you are a party, or in order to take steps at your request prior to entering into a contract, or based on legitimate interest, cf. GDPR art. 6(1)(a)-(b), (f).
You may at any time withdraw your given consent by contacting us using the contact information in section I – Responsible Person.

3. Storage and deletion of your data
Your data are stored only for as long as it is necessary to fulfil contractual or legal obligations for which the data is collected. The data is immediately deleted after that, unless a statutory limitation period applies for evidence purposes for claims under civil law or due to statutory retention obligations.
We delete or block the personal data as soon as the purpose of the storage is fulfilled. It may also be stored if provided for by the European or national legislator in EU regulations, laws or regulations to which our company is subject. Blocking or deletion of the data also takes place when a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for conclusion of a contract or fulfilment of the contract.

III. PROVISION OF THE WEBSITE AND CREATION OF LOG FILES

1. Scope of data processing for the website
Any of the information we collect from you may be used for one or more of the following purposes:
1.1. To personalize your experience
1.2. To improve our website
1.3. To establish a primary channel of communication with you;
1.4. To enable you to talk to an expert.

2. Data processed
2.1 Each time our website is accessed, our system automatically collects data and information from the computer system of the calling computer. E.g. this is information like
– Information about the type and version of your internet browser,
– The operating system of your computer or smartphone,
– Your internet service provider,
– Your IP address,
– Date and time of your access,
– Geographic location,
– Websites from which you came to us,
– Websites that you visit from our site;

These so-called “log files” helps to display our website correctly and we can identify the causes of any technical problems, for the technical optimization of our websites and for the purpose of the security of our computer systems and networks. For these purposes, the legal basis is legitimate interest in the processing of data according to GDPR art.
6(1)(f).
The data will be deleted as soon as it is no longer necessary.
The collection of data for the provision of the website and the storage of the data in log files is essential for the operation of the website.

IV. CONTACT REQUESTS FOR SERVICE INFORMATION OR OTHER CONCERNS

1. Description and scope of data processing
On our website you can contact us via chat: e.g. to request a quote, request service information. If you make use of this option, the data entered in the input mask will be transmitted to us and saved. In addition to the specific input macro data, the IP address and the date and time of the request are collected and stored.
Alternatively, a contact via email address is possible. In this case, your personal data transmitted by email will be stored.
In this context, there will be no disclosure of the data to third parties, unless this is necessary for the processing of the query. In any case, the data will be used exclusively for processing the conversation, unless agreed upon otherwise.

2. Legal basis for processing
Legal basis for the processing of the data is in general the consent of the user, GDPR art. 6(1)(a).

3. Purpose of the data processing
The processing of personal data from the input mask is solely for the processing of your request.

4. Duration of storage
We reserve the right to store the data for two years to measure the profitability of our sales and marketing. Otherwise, we will delete the data as soon as it is no longer necessary to achieve the purpose of its collection. For the personal data entered in the contact form and those sent by email, this is the case when the respective conversation with you has ended. The conversation is ended when it can be inferred from the circumstances that the relevant facts have been finally clarified.

5. Revoking consent and removal possibility
You have the possibility at any time to revoke your consent to the processing of the personal data. If you contact us by email, you may object to the storage of your personal data at any time. In such a case, the conversation cannot continue. All personal data stored in the course of contacting will be deleted in this case

V. IF YOU BECOME A CUSTOMER

1. Scope of data processing
You can become a Customer of LexAvenue. Any of the information we collect from you may be used for one or more of the following purposes:
1.1 To identify you as a contracting party;
1.2 To establish a primary channel of communication with you;
1.3 To enable to issue valid VAT invoices and to process transactions (your information will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without your consent, other than for the express purpose of delivering the service requested);
1.4 To enable handling of services you requested;

2. Data processed
If you choose to become a Customer, four categories of data to and on behalf of you will be processed:

“Customer Data”
Basic contact details are collected, such as the email address and name of your contact person, company name, address, phone number, VAT number, preferred language and currency, any service order number, any email address of invoice recipients.

“Configuration Data”
We collect your direct input for configuration of the content, looks and behaviour towards website.

“System Generated Data”
The Service automatically creates and stores metadata on the basis of the other types of data, e.g.:
• In case you become a customer, subscription data, like start date, latest invoice date etc.
• Aggregated statistical data

3. Legal basis for processing

4. Purpose of the data processing
Registration is required to fulfil the customer contract or to carry out pre-contractual measures.

5. Opposition and removal possibility
You can change the data stored about you at any time. If the data is required to fulfill a contract or to carry out pre-contractual measures, premature deletion of the data is only possible, unless contractual or legal obligations preclude deletion.

VI. COOKIES AND TRACKING TECHNOLOGIES

This website uses cookies. We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services.

Cookies are small text files that can be used by websites to make a user’s experience more efficient.

The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission. This means that cookies which are categorized as necessary, are processed based on GDPR Art. 6 (1) (f). All other cookies, meaning those from the categories preferences and marketing, are processed based on GDPR Art. 6 (1) (a) GDPR.

6.1 How to delete cookies?
If you want to restrict or block the cookies that are set by our website, you can do so through your browser setting. You can visit www.internetcookies.org, which contains comprehensive information on how to do this on a wide variety of browsers and devices.

You will find there general information about cookies and details on how to delete cookies from your device.

If you have any questions about this policy or our use of cookies, please contact us using the contact information in section I – Responsible Person.

VII. RECIPIENTS OF DATA AND DATA TRANSFER TO THIRD COUNTRIES

7.1 Recipients of Data
LexAveue does not sell, trade or otherwise transfer to outside parties any personally identifiable information.

This does not include trusted third parties or processors who assist us in operating our website, conducting our business, or servicing you. Such trusted parties may have access to personally identifiable information on a need-to-know basis and will be contractually obliged to keep your information confidential.

We may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect our rights or the rights of others, property, or safety. Furthermore, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

We only pass on the data we have collected if this is necessary for the fulfilment of the contract or for the provision of the technical functionality of the website, or if there is another legal basis for passing on the data.

In principle, we process your data ourselves. In some cases, however, we also use service providers. In addition to the processors mentioned in this privacy policy, these may include, in particular, data centers that store our website and databases, IT service providers that maintain our systems, and consulting companies. If we pass on data to processors, they may only use the data to fulfill their tasks. The processors would have been carefully selected and commissioned by us. They would always be contractually bound to our instructions, have suitable technical and organizational measures in place to protect the rights of the data subjects and regularly monitored by us.

In addition, disclosure may take place in connection with official enquiries, court orders and legal proceedings if it is necessary for legal prosecution or enforcement.

If compelled to disclose your data, we will promptly notify you and provide a copy of the demand unless legally prohibited from doing so.

7.2 Data Transfer to third Countries
We may occasionally use services whose providers are partly located in so-called third countries (outside the European Union or the European Economic Area) or process personal data there, i.e. countries whose level of data protection does not correspond to that of the European Union. Where this is the case and the European Commission has not issued an adequacy decision (Art. 45 GDPR) for these countries, we would take appropriate precautions to ensure an adequate level of data protection for any data transfers. These include, among others, the standard contractual clauses of the European Union or binding internal data protection regulations.

If a third country transfer is provided for and no adequacy decision or appropriate safeguards are in place, it is possible and there is a risk that authorities in the respective third country (e.g. intelligence services) may gain access to the transferred data in order to collect and analyse it, and that enforceability of your data subject rights cannot be guaranteed.

7.3 Processors /Trusted Third Parties
The list of trusted processors is available upon request using the contact information in section I – Responsible Person.

VIII. YOUR RIGHTS

If we process your personal data you have – after successful identification – the following rights towards us:
• Right to information (Article 15 GDPR)
• Right to deletion (Article 17 GDPR)
• Right to rectification (Article 16 GDPR)
• Right to restriction of processing (Article 18 GDPR)
• Right to withdraw consent (Article 7(3) GDPR)
• Right to object to certain data processing activities (Article 21 GDPR).

In order to exercise your rights described here, you can contact us at any time using the contact details listed in section I – Responsible Person.

You may at any time lodge a complaint with a supervisory authority regarding LexAvenue collection and processing of your personal data. In Poland, you can lodge a complaint with the Polish Data Protection Agency.

IX. SECURITY AND INTEGRITY OF THE DATA

Protecting the information you give us or that we receive about you is our priority. We take appropriate security measures to protect your information from loss, misuse, and unauthorized access, alteration, disclosure, or destruction. LexAvenue has taken measures to ensure the ongoing confidentiality, integrity, availability and resiliency of systems and services that process personal information, and will restore the availability and access to information in the event of a physical or technical incident in a timely manner.

X. UPDATES

We reserve the right to update this privacy policy from time to time. In the event that we make material changes that restrict LexAvenue’ rights or obligations under this Privacy Policy, we will publish a clear notice in this section of this Privacy Policy that informs users when they are updated.

This Privacy Policy was last modified on August 24, 2024.