Introduction
We have prepared this cookie policy to explain, among other things:
- What are cookies?
- What types of cookies do we use and why?
- How do they affect your privacy?
- What rights you have under the GDPR (Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)) and under the Telecommunications Law (the Act of 16 July 2004 on Telecommunications Law (Dz.U. /Journal of Laws/ 2004 No 171, item 1800, as amended).
What are cookies
- Cookies are small text files that are stored on your computer or smartphone when you view our website. There are different types of cookies. We have divided them into two groups:
- cookies essential for the use of our website;
- other cookies.
- The cookies that are essential for the use of our website are used, among other things, to ensure the stability of the website (they measure traffic, protecting us against traffic congestion), to remember your selected privacy preferences, to fill in online forms we provide, to save the content of your shopping cart and to monitor your login status. We use these cookies by default, i.e. we store them on your computer or smartphone when you access our website (pursuant to Art. 173 sec. 3 of the Telecommunications Act).
- We only use other cookies if you have given your consent to them. You will read more about them in the next section of our Policy.
- We have implemented the reCAPTCHA v3 feature, which is subject to Google Privacy Policy & Terms of Use. reCAPTCHA is used exclusively to combat spam and abuse of the website.
What cookies do we use
Consent to the installation of cookies
- When you visit our website, you will be shown a banner informing you that it uses cookies. If you select the "Allow all" option, this will mean that you accept all cookies on our website and confirm that you have read the information about cookies and the purposes for which they are used, as well as the cases in which data collected with the help of cookies is transferred to our partners.
- Please note that your consent is not required for essential cookies, as cookies of this type ensure the full and uninterrupted functioning of our website. These cookies are exempt from the requirement to obtain your consent pursuant to Art. 173 sec. 3 of the Telecommunications Act.
No consent for the installation of cookies
If you do not want our cookies to be stored on your device, you can select the "Reject all" option. By selecting this option you will reject all the cookies we use on our website, except for the technically necessary ones.
Consent to selected cookies
You can manage your cookie preferences in detail by selecting the "Allow selected" box on the cookie banner displayed to you.
Personal data
Some of the cookies we use constitute personal data and therefore you have the right to:
- The controller of your personal data, i.e. the entity that decides on the purposes and means of processing, is the POLIN Museum of the History of Polish Jews with its registered office in (00-157) Warsaw, 6 Anielewicza Street. You can contact the Controller by sending a letter by post to our registered office address.
- A Data Protection Officer appointed by the Controller supervises the correctness of the processing of personal data. The Data Protection Officer may be contacted in writing, by post, using the address: ul. Anielewicza 6, 00-157 Warszawa, via an e-mail: [email protected] or over the phone: 22 471 03 41.
- Your personal data will be processed to provide the basic functions of our website. If you have given the relevant (voluntary) consent, your data will also be processed in order to provide you with services, offers and communications tailored to your preferences and to analyse website traffic and provide social media functions (depending on the preferences you have indicated).
- The recipients of your personal data are the entities to which the Controller subcontracts the performance of activities that require data processing (processors). Pursuant to applicable law, the Administrator may transfer data to entities processing them on behalf of the Administrator on the basis of contracts for the outsourcing of personal data processing (e.g. consultants, auditors, IT service providers) and to other entities authorised on the basis of applicable regulations (e.g. courts, law enforcement agencies) – upon a legally binding request.
- As a rule, personal data will not be transferred outside the European Economic Area (hereinafter: "EEA"). However, given the provision of services by our subcontractors in the delivery of support for ICT services and IT infrastructure, the Museum may outsource certain activities or IT tasks to recognised subcontractors operating outside the EEA, which may result in the transfer of your data outside the EEA. According to the European Commission's decision, recipient countries outside the EEA shall ensure an adequate level of protection of personal data in accordance with EEA standards. For recipients in the territory of countries not covered by the European Commission's decision, in order to ensure an adequate level of this protection, the data exporter (controller or processor acting on the controller's instructions) shall conclude contracts with the recipients of the personal data, which shall be based on the standard contractual clauses issued by the European Commission in accordance with Art. 46 sec. 2 letter c of the GDPR.
- The data will be stored for the period necessary to fulfil the purposes specified above or, in the case of consent, no longer than until the withdrawal of the consent given, and thereafter until the statute of limitations for possible claims or until the expiry of data retention obligations under the law.
- You have the right of access to the content of your data and, unless otherwise provided by law, the right to rectification, erasure, restriction of processing, the right to data portability and the right to object to data processing.
- If your personal data is processed on the basis of your consent, you have the right to withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent prior to its withdrawal.
- As your personal data is processed on the basis of the controller's legitimate interest, the controller will no longer process it for the indicated purpose if you object to such processing. You have the right to object at any time, free of charge, to the processing of personal data concerning you where the processing of your personal data is carried out on the basis of a legitimate interest and the objection is based on your particular situation.
- You have the right to lodge a complaint with the data protection supervisory authority, i.e. the President of the Personal Data Protection Office.
- The provision of data is voluntary, but necessary for the provision of services.
- Your personal data will not be used for the purpose of automated decision-making (including in the form of profiling) in such a way that such automated processing could result in any decision that would produce legal effects or similarly have any effect on you.
- You can obtain more information on how to exercise your rights, as set out above, by contacting the Controller or the Data Protection Officer as set out in sections 1 and 2.
- The controller shall make every effort to ensure that all physical, technical and organisational measures are in place to protect personal data against accidental or intentional damage, loss, alteration, unauthorised disclosure, use or access, in accordance with all applicable regulations.
Withdrawal of consent
You can change your consent at any time by clicking on the "paper clip" icon in the bottom left-hand corner of our website.
Changes to the cookie policy
We shall have the right to change this cookie policy at any time. Any changes to the cookie policy will be published on sprawiedliwi.org.pl.