Data Protection Policy

Our principle is to collect personal data and then to process it only to the extent necessary to achieve the purposes for which it was collected (in particular, fulfillment of the contract) and resulting from the law.

The scope of the data will vary depending on whether the data will be processed to provide services in our offer, whether in connection with employment or other - specific purposes.

We will process personal data primarily for the purposes of:

• conclusion and execution of the contract,
• performance of legal obligations binding on us,
• detecting and preventing fraud,
• determination, defense and redress,
• direct marketing,
• creating statements, analyzes, statistics,
• service support.

If personal data were to be processed for other purposes - this will be determined in an appropriate manner in each case.

The fundamental basis for the processing of personal data by us is the consent given by our clients.

The data subject shall have the right to withdraw his or her consent at any time.

The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

We will process, in particular, the following categories of personal data:

• customers who are subscribers or users of our services
• employees and co-workers performing activities for the controller and the entire supporting environment,
• people connected with us with lease agreements, purchase or sale of real estate,
• people ordering the XOPERO Newsletter service,
• people participation in the cycle of webinars made by XOPERO.

We also process personal data of other controllers that have been entrusted to us to provide services provided by us.

The data is processed in accordance with the requirements of applicable law and contractually agreed terms.

In order to maintain the highest standards of personal data protection, XOPERO implemented the XOPERO Personal Data Protection Policy as an integral part of its internal organization.

Everyone can read it here.

The XOPERO Personal Data Protection Policy defines in detail the duties of XOPERO as a controller and a processor, and also indicates the exact means by which each person concerned can exercise their rights in connection with the protection of personal data.

In connection with the protection of personal data, every interested party has the right to:

• access the personal data (including information about data processed by us and a copy of data),
• rectify your data,
• erasure of data ("the right to be forgotten"),
• restriction of data processing,
• portability of data to another controller.

You can object at any time:

• to data processing (including profiling) for marketing purposes,
• to the processing of personal data (including profiling), if the basis for the use of the data is our legitimate interest.

XOPERO appointed the Data Protection Officer, whose task is to deal with personal data protection matters on an ongoing basis.

Everyone can contact our Data Protection Officer using the e-mail address:
DPofficer@xopero.com

XOPERO does not transfer any personal data outside of the European Economic Area (including the European Union, Norway, Liechtenstein and Iceland).

All data processed in electronic form are stored on servers located in Poland.