§.1 Introductory provisions
All capitalized expressions and phrases shall have the meaning given to them in the Regulations for the provision of electronic services, available at joynt.works.
Before using the Website and the Platform, the User is obliged to read this Privacy Policy and accept its provisions. By using the Platform by the User, the User accepts the provisions of the Privacy Policy.
The Privacy Policy applies only to the processing of personal data, the controller of which is Joynt Sp. z o.o., with its registered office at Żurawia 71, entered into the register of entrepreneurs of the National Court Register under the number 0000854345, NIP 9662142152, share capital paid in full (hereinafter referred to as the Privacy Policy: the "Service Provider" or the "Controller").
The Controller shall not be liable for any links enabling the User to go directly to websites which are not administered by Joynt Sp. z o.o.
In the event that the Business Client uses the Platform to achieve their own goals (i.e. to implement their own events, meetings, training courses, teleconferences, etc.), then personal data of natural persons whose controller is the Business Client are processed through JOYNT. In connection with the above, the Service Provider has concluded an entrustment agreement with each Business Client, on the basis of which the Service Provider processes the personal data entrusted to it on behalf of the Business Client.
The Service Provider respects the right to privacy and ensures data security.
The Controller has implemented technical and organizational measures to protect the Users' personal data against unauthorized access, unauthorized use or disclosure.
The Controller does not offer services to persons who are under 18 years old.
The content of the Privacy Policy may change. After each change, a new version of the Privacy Policy shall be published at the Website.
§2. Personal Data Controller
The Service Provider is the administrator of Users' data, including its clients who are natural persons.
The Service Provider processes personal data in accordance with the applicable laws, including Regulation 2016/679 of the European Parliament and the Council of 27 April 2016. ("GDPR").
Any questions concerning the processing of personal data by the Service Provider should be sent by e-mail: info@joynt.works, or in writing to your registered address.
§3. General rules for using the Platform
The Controller provides the User with the possibility to use the Service in an anonymous manner, however, in order to gain access to the Platform and its functionality it is required to make a Registration.
The provision of personal data by the User is voluntary, with the proviso that failure to provide certain data may prevent Registration, and thus the use of the Platform or certain functionalities of the Platform, as well as the receipt of a newsletter, etc., from taking place.
The Controller processes data concerning Users' interactions with the Website, content and services, such as: device and login information, date, time of the visit and the IP number of the device from which the connection was made, data on the statistics of the Website audience, traffic to and from individual sites, number of clicks, time spent on individual sites, type and version of the operating system, device location data.
In connection with the use of the Platform, the Administrator processes the User's personal data such as: name, surname, pseudonym, login, address, e-mail address. The Controller also processes the User's image, voice, information on activities, meetings, etc.
The Controller receives personal data of Users from payment service providers, i.e. entities which enable the User to make online payments for services provided by the Controller. The Controller receives information identifying the User, information on the transaction (amount, account number, type of service).
The Controller may receive User's personal data from a Business Client. In such a case, the User's personal data shall be processed on the basis of an agreement of entrusting the processing of personal data to a Business Client.
The Controller may receive personal data from other entities operating platforms, services, social media, such as Facebook, Google or Twitter. If the User logs in through the platforms/services indicated above, the Controller receives personal data such as: e-mail address, gender, user ID, date of birth, login generated automatically.
In the event that the Business Client transfers the service and access to the Platform to another natural person, the administrator may process ordinary personal data of employees, associates, representatives, proxies of the Business Client who actually manage the Account on behalf of the Business Client.
§4. Objectives and legal grounds for processing personal data
The User may be asked to give his consent to the processing of his personal data or may make his personal data available on his own and voluntarily (e.g. filling in an optional field of the form). In this case, the legal basis for the processing of personal data is Article 6(1)(a) of the GDPR (i.e. the User's consent). In particular, consent may be given for the purpose of sending newsletters. The consent is always voluntary. The User may withdraw his consent at any time. Withdrawal of consent does not affect the lawfulness of personal data processing that took place prior to the withdrawal of consent.
The Controller processes personal data due to the need to perform and provide the Services, including enabling the use of the Website and the Platform. By accepting the Regulations for the provision of services, the User concludes an agreement for the provision of services by electronic means, therefore the User's personal data, to the extent necessary to provide the Services indicated in the Regulations, are processed pursuant to Article 6(1)(b) of the GDPR. Within the framework of the agreement, the User's personal data such as: name, surname, correspondence address, e-mail address are processed in particular; in addition, the User's image and voice (in the case of using the "camera", "microphone" functionality).
Personal data may be processed pursuant to Article 6(1)(c) of the GDPR, i.e. due to the need to fulfil legal obligations imposed on the administrator (e.g. tax and archiving obligations).
The Controller may process personal data on the basis of Article 6(1)(f) of the GDPR, i.e. when this is necessary for the purposes of legitimate interests pursued by the controller or by third parties. On the basis of legally justified interests, the controller processes User's data for marketing purposes, including profiling and displaying personalized offers, advertisements and other services on its own websites and on the Internet. The Controller's legitimate interest is also to adapt marketing content to the User's interests. Based on the legitimate interest, the Controller processes personal data in order to conduct analytics, market research and opinions, including research and analysis of traffic in the Website/Platform. A legitimate interest is also to improve content and services. On the basis of a legally justified interest, the administrator also processes personal data of persons actually managing the Account.
The Controller may also process personal data for the purposes of asserting rights and defending against claims and administrative or criminal liability, for evidential and archival purposes. On the basis of a legitimate interest, system logs and other personal data may be processed in order to ensure the security of the Services and IT systems provided, session security and detection of abuse on the Website and the Platform.
Within the framework of a legitimate interest, the Controller may also make available on its services the functions offered by social networking sites (e.g. "Like" buttons) and provide selected usage data to the operators of those sites. In this case, the legitimate interest is to increase the attractiveness of the Website and the Platform.
§5. Sharing of personal data
The Controller, to the extent necessary for the performance of the Agreement, the provision of Services, including the use of the functionalities of the Platform, may make the personal data of the User available to other Users of the Platform (in particular, this is the case when the User uses the function of participation in a conference, video chat). Certain information may also be made publicly available to Internet users (e.g. when publishing comments and opinions).
The User's personal data may be made available at the request of public authorities or other entities entitled to such access under the law.
Access to the User's personal data shall be available to entities providing services to the Controller, in particular IT service providers. The Controller has concluded appropriate agreements with these entities, the subject of which is to secure the User's data against unauthorised access.
Some of the entities providing services to the Controller may store User's data outside the European Economic Area. In such cases, the User's data may be stored in countries which provide an adequate level of personal data protection or in countries which do not provide such level. In the second case, the Controller secures personal data by concluding agreements with service providers containing the so-called Standard Contractual Clauses accepted by the European Commission, which guarantee adequate protection of Users' data in third countries.
Personal data may also be made available to other recipients, e.g. banks, law firms.
The Controller may disclose anonymous summary statements and statistical statements concerning e.g. the number of persons visiting the Service, using the Platform. These data, however, do not allow the identification of individual Users and do not constitute personal data.
§6. Rights of the User
The User has the following rights in connection with the processing of personal data:
the right to access the User's personal data;
the right to demand the correction of incorrect personal data to complete incomplete personal data;
the right to demand the restriction of personal data processing;
the right to demand the transfer of personal data;
the right to withdraw consent to the processing of personal data (which does not affect the processing of personal data before withdrawal of consent);
the right to demand the deletion of personal data;
the right to object to the processing of personal data.
The User has the right to lodge a complaint with the President of the Office for Personal Data Protection.
In order to exercise their rights, they should contact them via info@joynt.works.
§7. Retention period of personal data
The Controller stores personal data for the time necessary to achieve the purposes for which the personal data were collected. After this period, the data is deleted or anonymized in such a way that it is not possible to identify the User. Personal data may be stored longer if such an obligation results from the law or is necessary for the defense or claim or defence against claims, including administrative or criminal liability.
Personal data collected for the purpose of the contract will be processed for the duration of the contract and until the expiry of the statute of limitations for claims from the contract.
Personal data processed on the basis of consent, is stored until the withdrawal of this consent.
If personal data is processed in order to realize a legitimate interest, the data is stored until the realization of a legitimate interest or until the recognition of objections raised by the User.
The Controller shall not process the User's personal data for a period longer than it is necessary to achieve the specific purpose for which the personal data was obtained.
§8. Policy of using so-called "COOKIES" files
The Controller uses mechanisms such as "cookies". Cookies are text files stored on the User's end device, they are used to identify the User's browser. They are used to provide the Controller with statistical information about User traffic, User preferences and activity and the way of using the Website and the Platform.
Thanks to "cookies" files it is possible to adjust the content of the Website and services to the User's preferences. Through the use of "cookies" files, no information enabling direct identification of the User is collected, i.e. name and surname, address of residence, e-mail address or telephone number.
The majority of "cookies" are so-called session cookies, which are automatically deleted from the hard drive after the session is over (i.e. after logging out or closing the browser window). Some of the "cookies" files allow to recognize the User's end device during the next visit to the Website - they are not removed automatically, they save on the end device. In the case of mobile devices, analogously as in the case of stationary devices, the mechanism of accepting "cookies" has been applied, which enables remembering information connected with a given User.
The Controller uses "cookies" for the purpose:
authenticate the User and enable logging into the Account;
adjusting services to the User's preferences;
carry out analyses and studies of the performance of the Website/Platform and ways of using the Service;
ensure the security of the Website/Platform;
carry out marketing activities and provide the User with advertisements adjusted to preferences.
Some "cookies" placed in the browsers are used for marketing purposes. The Controller may use cookies for statistical purposes by measuring the display of advertisements appearing on the Website, the Platform and the number of clicks on the content.
The "cookies" files make it possible to profile Users, i.e. to create a profile, including the ability to understand what content a User may be interested in and to display advertisements based on those interests.
The Controller uses "cookies", plug-ins and other social tools provided by social networking sites as: Facebook, Twitter, Instagram and Google. By using the Website, the User's browser will establish a direct connection with the servers of social network administrators (service providers), so that they receive information that the User is using the Website, even if the User does not have a profile with a given service provider or is not just logged in to it. This information, together with the IP address of the User's device, is transmitted to the server of a given service provider and stored there. It should be noted that some servers are located outside the European Economic Area, e.g. in the USA. In such a case, personal data is transferred to third countries, where the possibilities of exercising the rights of data subjects and effective legal remedies are in place, whereby the controller and the service provider provide adequate safeguards for personal data by applying binding corporate rules or adopted standard data protection clauses.
The use of the "Like" or "Share" buttons by the User shall cause the relevant information to be sent directly to the service provider, which may lead to its publication on the social networking site.
In the scope of transferring personal data to service providers, the administrator and service providers jointly administer the User's personal data, however, the User should exercise their rights directly in relation to the relevant service provider. The purpose and scope of data collection and its further processing and use by the service providers, as well as the possibility of contact and User's rights in this respect and the possibility of making settings ensuring the protection of User's privacy are described in the privacy policy of individual service providers:
Facebook: https://www.facebook.com/legal/FB_Work_Privacy,
Instagram: https://help.instagram.com/519522125107875?helpref=page_content,
Twitter: https://twitter.com/en/privacy,
Google: https://policies.google.com/privacy?hl=pl
The User has the possibility to disable cookies in his browser. This may cause difficulties in the service of services provided through the Service. Saved cookies may be removed by using appropriate functions of the Internet browser, programs used for this purpose or tools available within the operating system used by the User.
Lack of changes in the browser settings will cause the "cookies" files to be placed automatically in the User's end device. Failure to make changes in browser settings resulting in switching off the acceptance of "cookies" and simultaneous use of the Website/Platform means User's consent to place and read cookies and the use of similar technologies by the administrator under the rules described in the Privacy Policy.
Due to the variety of browsers and applications used to operate the websites, the management of "cookies" may vary, depending on the browser you are using, so it is recommended that you familiarise yourself with how to manage your privacy/security functions before using the Website/Platform:
Internet Explorer
Chrome
Safari
Firefox
Opera
Mobile devices:
In order to clear data from mobile applications, depending on the system that is installed on the mobile device, it is necessary to
- In the case of the Android system: go to Settings, go to Applications, search for the application, select Memory and choose "Clear data".
- In the case of iOS: it is not possible to clean application data. The only solution is to delete and reinstall the application.