Policy last update: 25.05.2018
By using the Connected Boat Services, you entrust us personal information. As part of the Services we provide, you entrust this information to our trusted partners, that is third parties, that exist in our Service environment, with whom we work directly or indirectly, primarily to provide you with the highest level of service as well as marketing activities.
Rights related to the personal data processing
You have the right to request the administrator to access your personal data, including obtaining a copy of the data, correcting it, removing (in certain situations) or processing restrictions, the right to transfer the data and the right to file a complaint with the body dealing with personal data protection. These rights also apply if the data are processed correctly by the administrator and do not affect the lawfulness of the processing, which was made on the basis of consent before its withdrawal.
Personal data administrator
Range of persona data to be processed
We process data that you provide or leave as during using Connected Boat services. Above all, these are the data necessary to provide you with accounts or profiles in services (authentication), e.g. e-mail address, your name, telephone number, as well as data that you leave when you use our services, i.e. the ones you leave in cookie files, IP address, geolocation data or the type of internet browser on which the service is running. Whenever possible, the information is anonymized. The scope of data processed in individual Connected Boat services may vary – for a detailed scope of data in individual services, you can always ask by contacting us at email@example.com.
Purpose of the processing, legal basis and period of personal data processing
We primarily use personal data to authenticate you in our services and to continuously improve the range of services. Connected Boat also uses your personal data to create, process and maintain relationships with you and to process payments. In addition, we may use your personal data to inform you about new products, services or events that may interest you. You can receive emails from us from the following addresses: firstname.lastname@example.org, email@example.com, firstname.lastname@example.org i email@example.com.
The legal grounds for lawful processing of personal data:
|Objectives of data processing||Law basics||Processing period|
|1||performance of a contract on the Connected Boat – User (these agreements are usually the regulations that the User accepts before using the given Service), including matching the Services to the needs of Users, analysing and improving the Services and ensuring the security of the Services||Article 6(1)(b) GDPR – necessary for the performance of a contract to which the User is a party||until the agreement expires between you and Connected Boat, with the proviso that sometimes such data may be processed even after the expiration of this contract, but only if it is permitted or required under applicable law, e.g. processing for statistical purposes, billing or to pursue claims|
|2||statistical measurements, marketing (including data analysing and profiling for marketing purposes) of the administrator’s products and services||Article 6(1)(f) GDPR – necessary for the purposes of legitimate interests||until effective objections are made|
|3||marketing (including data analysing and profiling for marketing purposes) regarding products and services of third parties||Article 6(1)(a) GDPR – consent of the data subject||until the consent is withdrawn|
Forwarding of personal information
Connected Boat transfers personal data to trusted partners – entities processing personal data at the request of the administrator, including suppliers of IT services and solutions (e.g. data centres, hosts, backup services, database services, maps and map tools).
Service providers only have access to their data to the extent that is necessary to carry out their tasks. Your data may in certain cases be transferred to recipients from third countries, e.g. from countries outside the European Economic Area, e.g. if it is necessary to provide Services to you or if it will be conditioned by a different, valid legal basis.
The user may publish his content on external websites (e.g. provide a route for a trip on social media) only after authorization and he decides about the extent to which they are to be made available.
Security of your personal data
We process information collected from you in accordance with the UE data protection law. All employees are obliged and have been informed about the confidentiality of data and obligations related to the protection of privacy. The transfer of personal data, as well as the authorization process (login) to our services is carried out using the secure SSL protocol, which significantly increases the protection of data transmission in the Internet.
The right to access, correct and erase personal data
Connected Boat provides each User with a profile page available after authorization. This page allows you to view, modify and delete your personal information about Connections. In the event that the User deems such a solution insufficient, he may contact Connected t (firstname.lastname@example.org) by e-mail.
Freedom of choice
Providing personal data is voluntary, but failure to provide data marked as necessary to provide services to you will make it impossible to provide them.
Information about cookies
Cookies are IT data, in particular text files, which are stored on the terminal equipment of the User of Connected Boat websites and applications. Cookies usually contain the domain name of the website they come from, the time they are stored on the end device and a unique number. Cookie files are not used to identify the User and their identity is not determined based on them.
- provision of services;
- customizing the content of websites and applications to the User’s preferences and optimizing the use of websites; e.g. cookies allow in particular to identify the User’s device and properly display a website tailored to his individual needs;
- creating statistics that help to understand how Users use the websites and applications, which allows improving their structure and content;
- maintaining the User’s session (after logging in), thanks to which the User does not have to re-enter their login and password on every subpage of the given website and application;
Types of cookies that we use
Due to the lifetime of cookies and other similar technologies, we use two basic types of these files:
- session – temporary files stored on the User’s end device until logging out, leaving the website and application or turning off the software (web browser);
- permanent – stored in the User’s terminal device for the time specified in the cookie file parameters or until they are deleted by the User.
Due to the purpose of cookies and other similar technologies, we use the following types:
- services and applications necessary to operate – enabling the use of our services, e.g. authentication cookies used for services requiring authentication;
- files used to ensure security, e.g. used to detect fraud in the field of authentication;
- performance – enabling the collection of information on the use of websites and applications;
- functional – allowing “remembering” the settings selected by the User and personalizing the User’s interface, e.g. in the scope of the selected language or region of the User’s origin, font size, the appearance of the website and applications, etc.;
- statistical – used for counting statistics on websites and applications.
For the convenience of using our services, we use Local Storage (LS) technology, similar to the principle of operation for cookies, but having slightly different properties. LS is a separate part of browser memory used to store data saved by websites. Access to it can only be obtained from a website operating on the same website from which the data was saved, but unlike cookies, they are not sent by the browser every time you refer to the server. The data in LS is permanently stored by the browser and is not deleted when the browser is closed or has a validity period. We emphasize that we do not use this technology to “track” or identify Users, and only for convenience and to provide services at the highest level.