Back
The personal data Controller is Medapp S.A with its seat in Kraków, 30-150 Kraków, ul. Armii Krajowej 25, NIP [tax ID]: 7010264750, REGON [company register ID]: 142641690, with KRS [National Court Register] number 00000365157, whose registration documents are held by the District Court for Kraków-Śródmieście in Kraków, 11th Economic Division of the National Court Register, with the share capital of PLN 25,003,220.40 paid in full, hereinafter referred to as Medapp.
Medapp, as a controller of personal data within the meaning of the GDPR*, processes in particular the following personal data:
GDPR* – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) ** – Data of companies are treated as personal data only if they allow the identification of data subjects. Share-holding company data are not treated as personal data. In addition to the data listed above, Medapp may also obtain and process other personal data, e.g., when providing access to the Carnalife System platform. In such situations, the principles of the processing of such data are described in the relevant sections of the website www.medapp.pl/RODO and/or information clauses placed in the forms/other places where personal data are collected. In addition to the data listed above, Medapp may also obtain and process other personal data, e.g., when providing access to the Carnalife System platform. In such situations, the principles of the processing of such data are described in the relevant sections of the website www.medapp.pl/RODO and/or information clauses placed in the forms/other places where personal data are collected.
In addition to the data described in the above paragraph, Medapp processes the data of visitors to the www.medapp.pl website for the purposes of behavioral advertising, in the meaning of displaying ads that are tailored to the users’ preferences (on the basis of Article 6(1)(f) of the GDPR – the data Controller’s legitimate interest in direct marketing – if consent to the use of cookies is given). This process is described in detail in the “Cookie Information” section below.
The principles of processing your personal data are presented below (in particular, it is explained who has access to them, how long they are stored and for what purposes and on what basis they are processed).
Purposes and basis of processing: Your personal data will be processed for the purposes of the recruitment process or also for the purposes of future recruitment processes in the event that you express an appropriate consent (the basis for the processing of such data is the applicable legal regulations (in particular the Labor Code) and your consent).
Data recipients: These data may be made available to entities authorized by law. Entities providing Medapp with IT services and infrastructure may also have access to the data under appropriate agreements.
Retention peroid: The personal data processed by the controller will be stored until the end of the recruitment process or until you revoke the consent you have given in the case of processing for future recruitment processes.
Automated decision making / profiling: Medapp does not make decisions based on automated processing, including profiling (in relation to the purposes of processing described above).
Data provided on a voluntary/obligatory basis: Providing personal data to the extent required by law, in particular the Labor Code, is obligatory, otherwise it is voluntary.
Purposes and basis of processing: Personal data of contractors and their representatives (including in particular employees and associates of contractors) will be processed for the purposes of:
Source of data | Data provided on a voluntary/obligatory basis: Your personal data were obtained directly from you or from your employer/principal. In the case where data are collected directly from you, providing these data is voluntary, but necessary to conclude/execute a contract between your employer/principal and MEDAPP. Your personal data may also have been obtained from Medapp’s partners if you have given your consent.
Data recipients: These data may be made available to entities authorized by law. Medapp’s IT service providers (in particular, web hosts) and other entities supporting Medapp in connection with the purposes described in the paragraph “Purposes and basis of processing” may also have access to the data on the basis of relevant contracts (in particular couriers and external auditors).
Automated decision making / profiling: Medapp does not make decisions based on automated processing, including profiling (in relation to the purposes of processing described above).
Retention period: Personal data of contractor representatives will be stored until the purposes specified in the paragraph “Purposes and basis of data processing” are fulfilled and then for the period required by law/until the claims expire.
Purposes and basis of processing: Your personal data will be processed for the following purposes:
Data recipients: The data may be shared with:
Retention period: Your personal data will be stored until you revoke your consent and then for the time necessary to demonstrate compliance with applicable laws / pursue or defend claims.
Automated decision making / profiling: Medapp does not make decisions based on automated processing, including profiling (in relation to the purposes of processing described above).
Data provided on a voluntary/obligatory basis: Providing personal data is voluntary, however it is necessary to subscribe to the Newsletter.
Purposes and basis of processing: Personal data will be processed for the following purposes:
Data recipients: These data may be made available to entities authorized by law. Infrastructure and IT service providers who process data on behalf of Medapp may also have access to the data under appropriate contracts.
Retention period
Automated decision making / profiling: Medapp does not make decisions based on automated processing, including profiling (in relation to the purposes of processing described above).
Data provided on a voluntary/obligatory basis: Providing personal data is voluntary, but necessary in order to exchange electronic correspondence or to take actions upon your request. Granting consent to be contacted for commercial information is voluntary.
You have the right, as applicable, to:
All inquiries and statements regarding the above rights should be directed to the contact information below:
Data controller contact information: Medapp Spółka Akcyjna with its registered office in Kraków, 30-150 Kraków, ul. Armii Krajowej 25, E-mail address:biuro@medapp.pl
Data protection officer contact information: E-mail address: iodo@medapp.pl
Cookies:
The www.medapp.pl website uses cookies. Cookies are small files stored in your web browser used for the following purposes:
If you do not consent to cookies being stored on your device, please change the setting of your web browser and/or block external cookies as described in the “External Cookies” paragraph below. Restricting the use of Cookies may affect some functionalities available at www.medapp.pl External Cookies: Medapp uses cookies/analogous technological solutions from the following third parties:
The solutions mentioned above are used to tailor advertising to users’ preferences and for analytical purposes. These solutions allow us to track Users’ actions within the website (e.g., viewing a particular subpage within the website). On this basis, the User may be shown Medapp advertisements within the Google / Facebook advertising network. You can find more information about cookies in the “Help” section of your web browser menu.
design by fluostudio