GDPR - Kliikstream

1. Information about the Data Controller

1.1. The controller of personal data is Kliikstream Ltd. with its registered office in Warsaw.

1.2. Contact with the Controller is possible via email: privacy@kliikstream.com.

2. Data Protection Officer

2.1. The Controller has appointed a Data Protection Officer who can be contacted on matters related to the processing of personal data.

2.2. Contact with the Data Protection Officer is possible via email: dpo@kliikstream.com.

3. Rights of Data Subjects

3.1. Right of access to data - the right to obtain information about the processing of personal data and a copy of this data.

3.2. Right to rectification - the right to request the rectification of incorrect or completion of incomplete personal data.

3.3. Right to erasure - the right to request the erasure of personal data when they are no longer necessary for the purposes for which they were collected.

3.4. Right to restriction of processing - the right to request the restriction of processing of data in certain cases.

3.5. Right to data portability - the right to receive personal data in a structured, commonly used, machine-readable format and to transmit those data to another controller.

3.6. Right to object - the right to object to the processing of personal data in certain cases.

3.7. Right to withdraw consent - the right to withdraw consent to the processing of personal data at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

4. Procedure for Exercising Rights

4.1. To exercise your rights, please contact the Controller or the Data Protection Officer.

4.2. The Controller shall provide information on action taken on a request without undue delay and in any event within one month of receipt of the request.

4.3. If necessary, this period may be extended by two further months, taking into account the complexity and number of the requests.

5. Transfers of Data to Third Countries

5.1. The Controller may transfer personal data to third countries (outside the European Economic Area) only when an adequate level of protection of this data is ensured.

5.2. Data transfers are based on:

European Commission adequacy decisions
Standard contractual clauses
Binding corporate rules
Other appropriate safeguards

6. Automated Decision-Making and Profiling

6.1. The Controller may use automated decision-making, including profiling, to customize services to User needs.

6.2. The User has the right not to be subject to a decision based solely on automated processing and which produces legal effects concerning him or her or similarly significantly affects him or her.

6.3. The User has the right to express his or her point of view, to contest such a decision, and to obtain human intervention.