This Privacy Policy (hereinafter: "Policy") contains information about the processing of your personal data in connection with the use of the CV to blind website, operating at the Internet address https://cvtoblind.com (hereinafter: "Website").
Your personal data controller is MLNATIVE sp.z o.o. (limited liability company) with its registered office in Gdańsk (registered office address: ul. Stefana Batorego 33/19, 80-251 Gdańsk) in the Register of Entrepreneurs of the National Court Register kept by the District Court for Gdańsk-Północ w Gdańsku, VII Commercial Division of the National Court Register under KRS number: 0001026089, holding NIP: 9571155976, REGON: 524788382, with share capital: PLN 5.000,00
In all matters related to the processing ofpersonal data, you may contact the Controller by e-mail at: hello@cvtoblind.com.
The Controller applies modern organizational and technical safeguards to ensure the best possible protection of your personal data and ensures that it processes it in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of theCouncil of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter:"GDPR"), the Data Protection Act of 10 May 2018 and other data protection legislation.
The use of the Website requires the processing of your personal data. Below you will find detailed information about the purposes and legal grounds for the processing, as well as the duration of the processing and the obligation or voluntariness to provide it.
Provision of the above-indicated personal data is voluntary, but necessary in order to receive the Newsletter (failure to provide such data will make it impossible to subscribe to the Newsletter).
The Controller will process the above-indicated personal data until an effective objection is raised or the purpose of the processing is achieved, or until the claims resulting from the Newsletter Provision Agreement become time-barred (which ever occurs first).
Provision of the above-indicated personal data is a condition for receiving a response to the complaint or exercising your rights under the Controller's liability provisions (provision of such data is voluntary, but failure to provide it will prevent you from receiving a response to the complaint and exercising the said rights).
The Controller will process the above-indicated personal data for the duration of the complaint procedure and in the case of exercising the aforementioned rights of yours - until they expire.
The provision of the above-indicated personal data is voluntary, but necessary in order to receive a response to an enquiry(failure to provide such data will prevent you from receiving a response).
The Controller will process the above-indicated personal data until an objection is successfully raised or the purpose of the processing is achieved (whichever occurs first).
The provision of the above-indicated personal data is voluntary, but necessary in order for the Controller to obtain information about your activity on the Website (failure to provide such data will result in the Controller's inability to obtain the said information).
The Controller will process the above-indicated personal data until you successfully raise an objection or the purpose of the processing is achieved.
The provision of the above-indicated personal data is voluntary, but necessary in order to ensure the proper functioning of the Website (failure to provide such data will prevent proper functioning of the Website).
The Controller will process the above personal data until an objection is successfully raised or the purpose of the processing is achieved.
Provision of the above-indicated personal data is voluntary, but necessary for the Controller to properly perform its duties under data protection legislation, including the exercise of rights granted to you by the GDPR (failure to provide such data will result in the inability to properly exercise the said rights).
The Controller will process the above-indicated personal data until the expiry of the statute of limitations for claims for breach of data protection regulations.
Provision of the above-indicated personal data is voluntary, but necessary in order to establish, assert or defend against claims that may arise in connection with the performance of Agreements concluded with the Controller (failure to provide such data will result in the Controller's inability to undertake the said activities).
The Controller will process the above-indicated personal data until the expiry of the statute of limitations for claims which may arise in connection with the performance of Agreements concluded with the Controller.
The following third parties working with the Controller will be the recipients of the personal data:
a) the hosting company;
b) newsletter service provider;
c) companies providing tools to analyze activity on the Website (including Google Analytics, Apollo);
d) providers of solutions based on LLM language models (including Microsoft offering Azure Open AI Service).
In addition, personal data may also be transferred to public or private entities if such an obligation arises from generally applicable law, a final and non-appealable court judgment, or a final and non-appealable administrative decision.
In connection with the Controller's use of services provided by Google LLC, your personal data may be transferred to the following third countries: UK, Canada, USA, Chile, Brazil, Israel, Saudi Arabia, Qatar, India, China, South Korea, Japan, Singapore, Taiwan (Republic of China), Indonesia and Australia. The basis for the transfer of data to the aforementioned third countries is:
- in the case of the UK, Canada, Israel, Japan and South Korea, decisions of the European Commission finding an adequate level of protection for personal data in each of the aforementioned third countries;
- in the case of the USA, CommissionImplementing Decision (EU) 2023/1795 of 10 July 2023 pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council, finding an adequate level of protection for personal data provided under the EU-US data protection framework;
- in the case of Chile, Brazil, Saudi Arabia, Qatar, India, China, Singapore, Taiwan (Republic of China), Indonesia and Australia, contractual clauses providing an adequate level of protection, in line with the standard contractual clauses set out in Commission Implementing Decision (EU)2021/914 of 4 June 2021 on standard contractual clauses for the transfer of personal data to third countries under Regulation (EU) 2016/679 of the EuropeanParliament and of the Council.
You may obtain a copy of data transferred toa third country from the Controller.
In relation to the processing of personal data, you have the following rights:
1) the right to be informed which personal data pertaining to you are processed by the Controller and to receive a copy of such data (the so-called right of access). The issue of the first copy of the data is free of charge, for subsequent copies the Controller may charge a fee;
2) if the data processed become outdated or incomplete (or otherwise incorrect) you have the right to request rectification;
3) in certain situations you may request the Controller to delete your personal data, e.g. when:
a) the Controller no longer needs the data for the purposes communicated by it;
b) you have effectively withdrawn your consent to data processing - unless the Controller is entitled to process the data on another legal basis;
c) the processing is unlawful;
d) the need to delete the data arises from a legal obligation on the Controller;
4) where your personal data is processed by the Controller on the basis of your consent to the processing or for the purpose of performing an Agreement with the Controller, you have the right to transfer your data to another controller;
5) where your personal data is processed by the Controller on the basis of your consent to the processing, you have the right to withdraw that consent at any time (withdrawal of the consent does not affect the lawfulness of the processing carried out on the basis of the consent before its withdrawal);
6) if you consider that the processed personal data is incorrect, its processing is unlawful, or the Controller no longer needs certain data, you may request that for a certain, necessary period of time (e.g. to verify the correctness of the data or to assert claims) the Controller refrain from performing any operations on the data, but only store them;
7) you have the right to object to the processing of your personal databased on the Controller's legitimate interests. If you successfully lodge an objection, the Controller will stop processing your personal data for the aforementioned purpose;
8) you have the right to lodge a complaint with the President of thePersonal Data Protection Office if you consider that the processing of yourpersonal data violates the provisions of the GDPR.
1) The Controller hereby informs that the Website uses "cookies"installed on your terminal device. These are small text files that can be read by the Controller's system as well as by systems belonging to other entities whose services are used by the Controller (e.g. Facebook, Google);
2) The Controller uses cookies for the following purposes:
a) to ensure the proper functioning of the Website – using cookies, the Website may function efficiently, it is possible use its functions and move conveniently between the various subpages;
b) to enhance the user experience of the Website - thanks to cookies, it is possible to detect errors on certain subpages and continuously improve them;
c) to keep statistics - cookies are used to analyze how users use the Website. This makes it possible to constantly improve the Website and adaptits operation to the preferences of its users.
3) The Controller may place both permanent and temporary (session) files on your device. Session files are usually deleted when you close your browser, whereas closing your browser does not delete permanent files;
4) Information about the cookies used by the Controller is displayed in the panel at the bottom of the Website. Depending on your decision, you can enable or disable cookies of each category (except for essential cookies) and change these settings at any time;
5) The data collected through cookies do not allow the Controller to identify you.
6) The Controller uses the following cookies or tools that use them:
7) Through most commonly used browsers, you can check whether cookies have been installed on your terminal device, as well as delete installed cookies and block the Website from installing them in the future. However, disabling or restricting the use of cookies may cause quite serious difficulties in the use of the Website, e.g. in the form of having to log in to every subpage, longer loading time of the Website website, restrictions in the use of certain functions.
To the extent not covered by the Policy, the generally applicable data protection regulations shall apply.
The Policy shall be effective as of 18.08.2024
This Privacy Policy(hereinafter: "Policy") contains information about the processing of your personal data in connection with the use of the “CVtoBlind” Application (hereinafter: "Application").
All capitalized terms not otherwise defined in the Policy shall have the meaning given to them in the Terms and Conditions, available at: www.cvtoblind.com/terms
Your personal data controller is MLNATIVE sp. z o.o. (limited liability company) with its registered office in Gdańsk (registered office address: ul.Stefana Batorego 33/19, 80-251 Gdańsk) in the Register of Entrepreneurs of theNational Court Register kept by the District Court for Gdańsk-Północ w Gdańsku, VII Commercial Division of the National Court Register under KRS number:0001026089, holding NIP: 9571155976, REGON: 524788382, with share capital: PLN5.000,00 (hereinafter: the "Controller").
In all matters related to the processing ofpersonal data, you may contact the Controller by e-mail at: hello@cvtoblind.com.
The Controller applies modern organizational and technical safeguards to ensure the best possible protection of your personal data and ensures that it processes it in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation)(hereinafter: "GDPR"), the Data Protection Act of 10 May 2018and other data protection legislation.
The use of the Application requires the processing of your personal data. Below you will find detailed information about the purposes and legal grounds for the processing, as well as the duration of the processing and the obligation or voluntariness to provide it.
The provision of the above-indicated personal data is a condition for the conclusion and performance of the agreement for the provision of Services (the provision of such data is voluntary, yet failure to do so will result in the inability to conclude and perform the said agreement, including the creation of an Account).
The Controller will process the above-indicated personal data until claims arising from the Service Agreement for the provision of Services become time-barred.
Provision of the above-indicated personal data is voluntary, but necessary in order to receive the Newsletter (failure to provide such data will make it impossible to subscribe to the Newsletter).
The Controller will process the above-indicated personal data until an effective objection is raised or the purpose of the processing is achieved, or until the claims resulting from the Newsletter Provision Agreement become time-barred (whichever occurs first).
Provision of the above-indicated personal data is a condition for receiving a response to the complaint or exercising the Service Recipient/User's rights under the Controller's liability provisions (provision of such data is voluntary, but failure to provide it will prevent the Service Recipient/User from receiving a response to the complaint and exercising the said rights).
The Controller will process the above-indicated personal data for the duration of the complaint procedure and in the case of exercising the aforementioned rights of the Service Recipient/User - until they expire.
Provision of the above-indicated personal data is voluntary, but necessary in order to receive information on activities related to the performance of the Agreements concluded with the Service Recipients (failure to provide such data will prevent the receipt of the said information).
The Controller will process the above-indicated personal data until an effective objection is raised or the purpose of the processing is achieved (whichever occurs first).
The provision of the above-indicated personal data is voluntary, but necessary in order to receive a response to an enquiry (failure to provide such data will prevent you from receiving a response).
The Controller will process the above-indicated personal data until an objection is successfully raised or the purpose of the processing is achieved (whichever occurs first).
Providing the above-mentioned personal data is voluntary, but necessary to add a Review (the consequence of not providing them will be the inability to add a Review).
The Controller will process the above-mentioned personal data until the objection is effectively raised or the purpose of processing is achieved (whichever occurs first).
The provision of the above-indicated personal data is voluntary, but necessary in order for the Controller to fulfill its tax obligations (failure to provide such data will result in the Controller's inability to fulfill the said obligations).
The Controller will process the above personal data for a period of 5 years from the end of the year in which the deadline for payment of tax for the previous year expired.
Provision of the above-indicated personal data is voluntary, but necessary for the Controller to properly perform its duties under data protection legislation, including the exercise of rights granted to you by the GDPR (failure to provide such data will result in the inability to properly exercise the said rights).
The Controller will process the above-indicated personal data until the expiry of the statute of limitations for claims for breach of data protection regulations
Provision of the above-indicated personal data is voluntary, but necessary in order to establish, assert or defend against claims that may arise in connection with the performance of Agreements concluded with the Controller (failure to provide such data will result in the Controller's inability to undertake the said activities).
The Controller will process the above-indicated personal data until the expiry of the statute of limitations for claims which may arise in connection with the performance of Agreements concluded with the Controller.
The provision of the above-indicated personal data is voluntary, but necessary in order for the Controller to obtain information about your activity in the Application (failure to provide such data will result in the Controller's inability to obtain the said information).
The Controller will process the above-indicated personal data until you successfully raise an objection or the purpose of the processing is achieved.
The provision of the above-indicated personal data is voluntary, but necessary in order to ensure the proper functioning of the Application (failure to provide such data will prevent proper functioning of the Application).
The Controller will process the above personal data until an objection is successfully raised or the purpose of the processing is achieved.
In order to create your profile for marketing purposes and to target you with direct marketing tailored to your preferences, the Controller will process your personal data by automated means, including profiling - however, this will have no legal effect on you or similarly materially affect you.
The extent of the personal data profiled corresponds to that indicated above in relation to the analysis of your activity in the Application and the data you save in your Account.
The legal basis for the processing of personal data for the above purpose is Article 6(1)(f) of theGDPR, pursuant to which the Controller may process personal data in order to pursue its legitimate interest, in this case to conduct marketing activities tailored to the recipients' preferences. The provision of the above-indicated personal data is voluntary, but necessary for the fulfillment of the said purpose (the consequence of failing to do so will be the Controller's inability to conduct marketing activities tailored to the recipients' preferences).
The Controller will process personal data for the purpose of profiling until an objection is successfully raised or the purpose of the processing is achieved.
The following third parties working with the Controller will be the recipients of the personal data:
1) the hosting companies;
2) online payment system providers;
3) newsletter service provider;
4) companies providing tools to analyze activity in the Application in order to develop it and detect any irregularities;
5) companies providing tools to analyze activity in the Application and to target direct marketing to its users(including Google Analytics);
6) company providing accounting services;
7) providers of intermediary services for logging into the Application (Google, LinkedIn, Microsoft);
8) database providers
In addition, personal data may also be transferred to public or private entities if such an obligation arises from generally applicable law, a final and non-appealable court judgment or a final and non-appealable administrative decision.
In connection with the Controller's use of services provided by Google LLC, your personal data may be transferred to the following third countries: UK, Canada, USA, Chile, Brazil,Israel, Saudi Arabia, Qatar, India, China, South Korea, Japan, Singapore, Taiwan (Republic of China), Indonesia and Australia. The basis for the transfer of data to the aforementioned third countries is:
- in the case of the UK, Canada, Israel, Japan and South Korea, decisions of the European Commission finding an adequate level of protection for personal data in each of the aforementioned third countries;
- in the case of the USA, CommissionImplementing Decision (EU) 2023/1795 of 10 July 2023 pursuant to Regulation(EU) 2016/679 of the European Parliament and of the Council, finding an adequate level of protection for personal data provided under the EU-US data protection framework;
- in the case of Chile, Brazil, Saudi Arabia, Qatar, India, China, Singapore, Taiwan (Republic of China), Indonesia and Australia ,contractual clauses providing an adequate level of protection, in line with the standard contractual clauses set out in Commission Implementing Decision (EU)2021/914 of 4 June 2021 on standard contractual clauses for the transfer of personal data to third countries under Regulation (EU) 2016/679 of the European Parliament and of the Council.
You may obtain a copy of data transferred to a third country from the Controller.
In relation to the processing of personal data, you have the following rights:
1) the right to be informed which personal data pertaining to you are processed by the Controller and to receive a copy of such data (the so-called right of access). The issue of the first copy of the data is free of charge, for subsequent copies the Controller may charge a fee;
2) if the data processed become outdated or incomplete (or otherwise incorrect) you have the right to request rectification;
3) in certain situations you may request the Controller to delete your personal data, e.g. when:
a) the Controller no longer needs the data for the purposes communicated by it;
b) you have effectively with drawn your consent to data processing - unless the Controller is entitled to process the data on another legal basis;
c) the processing is unlawful;
d) the need to delete the data arises from a legal obligation on the Controller;
4) where your personal data is processed by the Controller on the basis of your consent to the processing or for the purpose of performing an Agreement with the Controller, you have the right to transfer your data to another controller;
5) where your personal data is processed by the Controller on the basis of your consent to the processing, you have the right to withdraw that consent at any time (withdrawal of the consent does not affect the lawfulness of the processing carried out on the basis of the consent before its withdrawal);
6) if you consider that the processed personal data is incorrect, its processing is unlawful, or the Controller no longer needs certain data, you may request that for a certain, necessary period of time (e.g. to verify the correctness of the data or to assert claims) the Controller refrain from performing any operations on the data, but only store them;
7) you have the right to object to the processing of your personal data based on the Controller's legitimate interests. If you successfully lodge an objection, the Controller will stop processing your personal data for the aforementioned purpose;
8) you have the right to lodge a complaint with the President of the Personal Data Protection Office if you consider that the processing of your personal data violates the provisions of the GDPR.
1. The Controller hereby informs that the Application uses "cookies" installed on your terminal device. These are small text files that can be read by the Controller's system as well as by systems belonging to other entities whose services are used by the Controller (e.g. Facebook, Google).
2. The Controller uses cookies for the following purposes:
a) to ensure the proper functioning of the Application – using cookies, the Application may function efficiently, it is possible use its functions and move conveniently between the various subpages;
b) to enhance the user experience of the Application - thanks to cookies, it is possible to detect errors on certain subpages and continuously improve them;
c) to keep statistics - cookies are used to analyze how users use the Application. This makes it possible to constantly improve the Application and adapt its operation to the preferences of its users;
d) to carry out marketing activities – with cookies, the advertising directed to users by the Controller may be tailored to their preferences.
3. The Controller may place both permanent and temporary (session) files on your device. Session files are usually deleted when you close your browser, whereas closing your browser does not delete permanent files.
4. Information about the cookies used by the Controller is displayed in the panel at the bottom of the Application website. Depending on your decision, you can enable or disable cookies of each category (except for essential cookies) and change these settings at any time.
5. The data collected through cookies do not allow the Controller to identify you.
6. The Controller uses the following cookies or tools that use them:
FUNCTIONSAND SCOPE OF DATA COLLECTION
7. Through most commonly used browsers, you can check whether cookies have been installed on your terminal device, as well as delete installed cookies and block the Application from installing them in the future. However, disabling or restricting the use of cookies may cause quite serious difficulties in the use of the Application, e.g. in the form of having to log in to every subpage, longer loading time of the Application website, restrictions in the use of certain functions.
To the extent not covered by the Policy, the generally applicable data protection regulations shall apply.
The Policy shall be effective as of 18.08.2024