• Home
  • Personal Data Protection at Balton Sp. z o. o
  • Information Clause for Partners

    Personal Data Protection under the General Data Protection Regulation (GDPR) at Balton Sp. z o. o.

    Fulfilling the legal duty regulated by art. 13 of the Regulation of the European Parliament and of the Council (EU) no. 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Official Journal of the EU, 04.05.2016 item 119/1), hereinafter “GDPR”, Balton Sp. z o. o., hereinafter “the Company”, hereby informs you that the Company gathers and uses personal data in order to conduct its business, including information about the Company’s Partners.

    1. Personal Data Administrator

    The administrator of the personal data is Balton Sp. z o. o., ul. Nowy Świat 7/14, 00-496 Warszawa

    1. Contact for Personal Data Protection purposes

    Contact for Personal Data Protection purposes is possible via email at This email address is being protected from spambots. You need JavaScript enabled to view it.

    1. Scope of information

    The Company informs that it processes the personal data of natural persons who are:

    1. partners of the Company, including potential partners and/or
    2. shareholders, employees, statutory representatives, attorneys or representatives of such partners and /or
    3. other persons whose data the Company processes in order to execute an agreement concluded between the Company and Partners, including with regard to issuing invoices and/or bill, and making deliveries and/or fulfilling orders under agreements with Partners

    hereinafter jointly “Partners” or “You”.

    1. Types of personal data

    1. Data supplied by Partners

    in connection with the collaboration between Partners and the Company, the Company processes the data provided by them, such as:

    1. full name, company name, business and/or correspondence address(es) and/or
    2. numbers possessed in appropriate registers (e.g. tax number NIP or company statistical register number REGON) and/or
    3. social security number PESEL and/or
    4. contact details, including email address and/or telephone number and/or fax and/or
    5. position held within the Partners’ organisation and/or
    6. bank accounts number,

    The information stipulated above is provided optionally, but is necessary for the purposes of executing the contractual relations and collaboration between the Partner and the Company.

    Refusal to provide the data renders it impossible for the Company to implement the provisions of the contract for example, refusal to provide the data may result in invoices being impossible to settle).

    1. Data from other sources

    Your personal data may be gathered from other publicly available sources, such as the company registers Central Register and Information on Economic Activity (CEIDG) and National Court Register (KRS). In this case, the scope of the data processed will be limited to the data available publicly in those registers.

    We may also acquire personal data from entities where You are employed, or which You represent. The scope of the data processed in this case will cover the information necessary to execute a contract between the Company and such an entity, e.g. information about the cessation of an employment relation of such an entity, change of contact details or change in professional position.

    1. Legal basis for processing personal data

    The Company only processes personal data if:

    1. the processing is necessary to execute contracts concluded with Partners and/or
    2. the processing is necessary in order to fulfil legal duties to which the Company is subject, including the obligation to issue an invoice or other document requiring signatures and/or
    3. the processing is necessary as it is required by law (at the request of the relevant bodies or courts) and/or
    4. the processing is necessary to realise the justified interests of the Company or a third party.

    The Company’s justified interests include:

    1. concluding and executing contracts with Partners and/or
    2. the Company establishing or seeking civil law claims as part of the business conducted or defence against such claims and/or
    3. verification of Partners in the public registers and/or
    4. contact with Partners, including keeping internal registers of Partners;
    1. Purposes and periods of data processing

    Personal data will only be processed during the period necessary to realise the purposes of the personal data processing and arising from the generally applicable legislation, such as the Accountancy Act and the Tax Ordinance Act:

    1. Completing contractual obligations - Validity period of a contract between the Partner and the Company
    2. Archiving data pursuant to the generally applicable legislation - Period stipulated in the relevant regulations, in principle 6 years from the end of the calendar year in which an invoice was issued, contract terminated, etc.
    3. Partners’ personal data may be processed by the Company for the purposes of establishing or seeking civil law claims as part of the business conducted or defence against such claims - for the relevant expiry periods of those claims, i.e. in principle no longer than 10 years from the event resulting in the claim or receipt of information about the event occurring
    1. Measures protecting personal data

    In order to protect the personal data being processed in accordance with art. 32 of GDPR, the Company has implemented the appropriate technical and organisational measures to safeguard the personal data against accidental or illegal destruction, loss, modification of personal data, unauthorised disclosure of personal data or unauthorised access to personal data.

    The safety measures mentioned above have been introduced taking into account the technical condition, implementation costs, dangers connected with the processing and the nature of the personal data, with particular attention to sensitive data.

    1. Passing on personal data

    Personal data may be passed on to recipients and other legal entities for the purposes listed in para. 6 insofar as the are necessary to realise the tasks commissioned by the Company or if this is required by the applicable legislation.

    Recipients of personal data may be:

    1. entities processing personal data on behalf of the Company, such as IT system providers, IT maintenance service providers, entities providing document archiving services and other entities carrying out tasks on behalf of the Company in connection with maintaining continuity of its business.
      Processing of personal data by the aforementioned entities is limited to the scope in which it is necessary for the Company to operate its business. The Company has control over the operations of the aforementioned entities with the help of the appropriate contractual provisions protecting personal data and/or
    2. state bodies, law enforcement bodies (Police, Prosecution Service, Courts), or local authority bodies in connection with procedures in progress and/or
    3. providers of courier or postal services;
    1. Passing on personal data beyond the European Economic Area

    Personal data may be provided to third countries and international organisations which ensure the appropriate level of personal data protection for the purposes and within the scope arising from legislation.

    1. Automated processes making decisions in the scope of personal data protection

    Personal data processing will not be subjected to automated decision-making processes by the Company, including profiling when fulfilling a contract connecting the Company with the Partner.

    1. Partners’ rights

    You are entitled to access the content of your personal data, and to correct, delete or limit processing, or the right to object to processing. In order to benefit from these rights, contact DPO appointed by the Company by email to This email address is being protected from spambots. You need JavaScript enabled to view it. or traditional mail to the Company’s address: Balton Sp. z o. o., ul. Nowy Świat 7/14, 00-496 Warszawa, marking the envelope “Personal Data Protection”. Requests, demands or objections will be verified by the company in accordance with the applicable data protection regulations. The Company may respond to your demand by verifying your identity or requesting further information.

    You are entitled to submit a complaint to the relevant personal data protection body.

    1. Updates to the information clause

    The present clause was drawn up on 25.05.2018 and may be subject to further updates

  • Information Clause for contact purposes

    Personal Data Protection under the General Data Protection Regulation (GDPR) at Balton Sp. z o. o.

    Pursuant to Article 13 of the General Data Protection Regulation of 27 April 2016 (EU Official Journal L 119 of 04 May 2016), I hereby announce that:

    • the administrator of your personal data is Balton Sp. z o.o., Nowy Świat 7/14, 00-496 Warsaw
    • Contact for Personal Data Protection purposes is possible via email at This email address is being protected from spambots. You need JavaScript enabled to view it.,
    • Your personal data shall be processed for contact purposes pursuant to Article 6 paragraph 1(f) of the General Data Protection Regulation of 27 April 2016, as a justified Administrator's interest
    • the recipients of your personal data shall only be entities authorised to receive personal data pursuant to regulations, and entities involved in contact
    • Your personal data shall be kept for the period of 2 years
    • you have the right to request the Administrator to give access to your personal data, the right to amend, delete or restrict the processing of your personal data
    • You are entitled to submit a complaint to the relevant personal data protection body.
    • giving your personal data is voluntary, however, not giving your personal data may result in an inability to contact you

    The present clause was drawn up on 25.05.2018 and may be subject to further updates

Information Clause for Partners

Personal Data Protection under the General Data Protection Regulation (GDPR) at Balton Sp. z o. o.

Fulfilling the legal duty regulated by art. 13 of the Regulation of the European Parliament and of the Council (EU) no. 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Official Journal of the EU, 04.05.2016 item 119/1), hereinafter “GDPR”, Balton Sp. z o. o., hereinafter “the Company”, hereby informs you that the Company gathers and uses personal data in order to conduct its business, including information about the Company’s Partners.

  1. Personal Data Administrator

The administrator of the personal data is Balton Sp. z o. o., ul. Nowy Świat 7/14, 00-496 Warszawa

  1. Data Protection Officer

The Company has appointed a Data Protection Officer (DPO). The DPO can be contacted by email at This email address is being protected from spambots. You need JavaScript enabled to view it.

  1. Scope of information

The Company informs that it processes  the personal data of natural persons who are:

  1. partners of the Company, including potential partners and/or
  2. shareholders, employees, statutory representatives, attorneys or representatives of such partners and /or
  3. other persons whose data the Company processes in order to execute an agreement concluded between the Company and Partners, including with regard to issuing invoices and/or bill, and making deliveries and/or fulfilling orders under agreements with Partners

hereinafter jointly “Partners” or “You”.

  1. Types of personal data

 

  1. Data supplied by Partners

in connection with the collaboration between Partners and the Company, the Company processes the data provided by them, such as:

  1. full name, company name, business and/or correspondence address(es) and/or
  2. numbers possessed in appropriate registers (e.g. tax number NIP or company statistical register number REGON) and/or
  3. social security number PESEL and/or
  4. contact details, including email address and/or telephone number and/or fax and/or
  5. position held within the Partners’ organisation and/or
  6. bank accounts number,

The information stipulated above is provided optionally, but is necessary for the purposes of executing the contractual relations and collaboration between the Partner and the Company.

Refusal to provide the data renders it impossible for the Company to implement the provisions of the contract for example, refusal to provide the data may result in invoices being impossible to settle).

  1. Data from other sources

 Your personal data may be gathered from other publicly available sources, such as the company registers Central Register and Information on Economic Activity (CEIDG) and National Court Register (KRS). In this case, the scope of the data processed will be limited to the data available publicly in those registers.

We may also acquire personal data from entities where You are employed, or which You represent. The scope of the data processed in this case will cover the information necessary to execute a contract between the Company and such an entity, e.g. information about the cessation of an employment relation of such an entity, change of contact details or change in professional position.

  1. Legal basis for processing personal data

 The Company only processes personal data if:

  1. the processing is necessary to execute contracts concluded with Partners and/or
  2. the processing is necessary in order to fulfil legal duties to which the Company is subject, including the obligation to issue an invoice or other document requiring signatures and/or
  3. the processing is necessary as it is required by law (at the request of the relevant bodies or courts) and/or
  4. the processing is necessary to realise the justified interests of the Company or a third party.

 The Company’s justified interests include:

  1. concluding and executing contracts with Partners and/or
  2. the Company establishing or seeking civil law claims as part of the business conducted or defence against such claims and/or
  3. verification of Partners in the public registers and/or
  4. contact with Partners, including keeping internal registers of Partners;
  1. Purposes and periods of data processing

Personal data will only be processed during the period necessary to realise the purposes of the personal data processing and arising from the generally applicable legislation, such as the Accountancy Act and the Tax Ordinance Act:

  1. Completing contractual obligations - Validity period of a contract between the Partner and the Company
  2. Archiving data pursuant to the generally applicable legislation - Period stipulated in the relevant regulations, in principle 6 years from the end of the calendar year in which an invoice was issued, contract terminated, etc.
  3. Partners’ personal data may be processed by the Company for the purposes of establishing or seeking civil law claims as part of the business conducted or defence against such claims - for the relevant expiry periods of those claims, i.e. in principle no longer than 10 years from the event resulting in the claim or receipt of information about the event occurring
  1. Measures protecting personal data

In order to protect the personal data being processed in accordance with art. 32 of GDPR, the Company has implemented the appropriate technical and organisational measures to safeguard the personal data against accidental or illegal destruction, loss, modification of personal data, unauthorised disclosure of personal data or unauthorised access to personal data.  

The safety measures mentioned above have been introduced taking into account the technical condition, implementation costs, dangers connected with the processing and the nature of the personal data, with particular attention to sensitive data.

  1. Passing on personal data

Personal data may be passed on to recipients and other legal entities for the purposes listed in para. 6 insofar as the are necessary to realise the tasks commissioned by the Company or if this is required by the applicable legislation.

Recipients of personal data may be:

  1. entities processing personal data on behalf of the Company, such as IT system providers, IT maintenance service providers, entities providing document archiving services and other entities carrying out tasks on behalf of the Company in connection with maintaining continuity of its business.
    Processing of personal data by the aforementioned entities is limited to the scope in which it is necessary for  the Company to operate its business. The Company has control over the operations of the aforementioned entities with the help of the appropriate contractual provisions protecting personal data and/or
  2. state bodies, law enforcement bodies (Police, Prosecution Service, Courts), or local authority bodies in connection with procedures in progress and/or
  3. providers of courier or postal services;
  1. Passing on personal data beyond the European Economic Area

Personal data may be provided to third countries and international organisations which ensure the appropriate level of personal data protection for the purposes and within the scope arising from legislation.

  1. Automated processes making decisions in the scope of personal data protection

Personal data processing will not be subjected to automated decision-making processes by the Company, including profiling when fulfilling a contract connecting the Company with the Partner.

  1. Partners’ rights

You are entitled to access the content of your personal data, and to correct, delete or limit processing, or the right to object to processing. In order to benefit from these rights, contact DPO appointed by the Company by email to This email address is being protected from spambots. You need JavaScript enabled to view it. or traditional mail to the Company’s address: Balton Sp. z o. o., ul. Nowy Świat 7/14, 00-496 Warszawa, marking the envelope “Personal Data Protection”.  Requests, demands or objections will be verified by the company in accordance with the applicable data protection regulations. The Company may respond to your demand by verifying your identity or requesting further information.

You are entitled to submit a complaint to the relevant personal data protection body.

  1. Updates to the information clause

The present clause was drawn up on 21.05.2018 and may be subject to further updates

Zadzwoń: (+48) 22 597-44-00 lub napisz This email address is being protected from spambots. You need JavaScript enabled to view it.


Ochrona Danych Osobowych w Firmie Balton Sp. z o. o.

Nasza strona internetowa wykorzystuje pliki cookie. Przechowywany jest w nich identyfikator Twojej sesji, dzięki czemu strona wie jakie treści ma Ci wyświetlić. Z plików cookie korzystają też różne skrypty w celach statystycznych, dzięki czemu możemy dopasować zawartość strony do oczekiwań użytkowników. Jeśli nie chcesz aby ta strona zapisywała pliki cookies na Twoim komputerze możesz je wyłączyć (może się to jednak wiązać z niemożliwością korzystania ze strony)

Copyright © Balton Sp. z o. o. 2018

Projekt i wykonanie: