Privacy Policy

Data controller per data protection law:
wezi-tec Sp. z o.o.
ul. Jaworzyńska 299
PL-59-220 Legnica

Phone: +48 76 85 51 800
Fax: +48 76 85 51 810
E-Mail: info(at)wezi-tec.pl

Data Protection Officer’s contact information:
wezi-tec Sp. z o.o.
Płaza Ewa Jaworzyńska 299
59-220 Legnica

Phone: +48 76 855 18 14
Fax: +48 76 855 18 10
E-Mail: ochronadanych(at)wezi-tec.pl

We process personal data in accordance with the provisions of the General Data Protection Regulation (GDPR), the German Data Protection Act (BDSG) and other applicable data protection regulations (details as follows). Exactly what data is processed and how it is used depends to a large extent on the services requested or agreed upon in each case. Further details or complementary information on the purposes of data processing can be found in the contract documents, forms, declarations of consent and/or other information provided to you (e.g. via use of our website or in our terms and conditions). Our privacy policy may change from time to time. All changes will be published on this page. Older versions can be viewed in an archive.

We process your personal data so that we can honour contracts with you, to fulfil your orders, and for pre-contractual activities, e.g. with potential customers. The data is processed as part of the work required to fulfil your orders and wishes and includes the necessary services, measures and activities. Broadly speaking, this includes contract-related communication with you, the traceability of transactions, orders and other agreements, quality control through appropriate documentation, measures of goodwill, measures for the control and optimisation of business processes and the fulfilment of general duties of care, control and audits by affiliated companies (e.g. the parent company); statistical evaluations for corporate management, cost recording and controlling, reporting, internal and external communication, emergency management, accounting and tax assessment of operational services, risk management, assertion of legal claims and defence in legal disputes; ensuring IT security (e.g. system and plausibility tests) and general security, including building and facility security, safeguarding and exercising domestic rights (e.g. through physical access control); ensuring the integrity, authenticity and availability of data, preventing and investigating criminal offences; audits by supervisory committees or testing bodies (e.g. revisions).

Beyond the actual fulfilment of the contract or preliminary contract, we process your data if doing so is necessary to protect our legitimate interests or those of third parties, in particular for these purposes:

• advertising or market and opinion research, insofar as you have not objected to the use of your data;
• obtaining information and exchanging data with credit agencies, insofar as this goes beyond our economic risk;
• testing and optimising procedures for needs analysis;
• disclosing personal data as part of due diligence in company sales negotiations;
• for comparison with European and international anti-terror lists, as far as this goes beyond the legal obligations;
• the enrichment of our data, including through the use or research of publicly available data;
• statistical evaluations and market analysis;
• benchmarking;
• the assertion of legal claims and defence in legal disputes which are not directly attributable to the contractual relationship;
• if deletion is not possible or only with disproportionately high expenditure due to a special kind of storage;
• the prevention and investigation of criminal offences, unless exclusively for the fulfilment of legal requirements;
• building and plant security (e.g. through physical access controls and video surveillance), insofar as this goes beyond the general duty of care;
• internal and external investigations, safety reviews;
• the preservation and maintenance of certifications, both per civil law and with respect to the authorities;
• securing and exercising domestic rights through appropriate measures including video surveillance in order to protect our customers and employees and to secure evidence in the event of criminal offences, to prevent such offences, and to prove compliance with contractual obligations. 

Processing of your personal data for certain purposes (e.g. use of your e-mail address for marketing purposes) can also take place on the basis of your consent. As a rule, you can revoke your consent at any time. This also applies to the revocation of declarations of consent which were communicated to us before GDPR came into force, i.e.

before 25 May 2018. You will be informed explicitly about the purposes and consequences of a revocation or the non-granting of consent in the text of the consent form.

The revocation of a consent is only effective for the future. Processing operations that took place before the revocation are not affected and remain lawful.

Like everyone who participates in economic activities, we are also subject to a large number of legal obligations. These are primarily legal requirements (e.g. trade and tax laws), but may also include regulatory or other official requirements. The purposes of the processing may include identity and age verification, fraud and money laundering prevention, the prevention, combating and investigation of terrorist financing and property-threatening crimes, comparisons with European and international anti-terror lists, the fulfilment of fiscal control and notification obligations and the archiving of data for the purposes of data protection and data security, as well as auditing by tax and other authorities. In addition, the disclosure of personal data may become necessary in the course of governmental/judicial activities for the purposes of gathering evidence, prosecuting crimes or enforcing civil claims. 

Insofar as is necessary for the provision of our services, we process personal data permissibly obtained from other companies or other third parties (e.g. credit agencies, credit insurers, address publishers). We also process personal data that we have taken, received or acquired from publicly accessible sources and which we are permitted to process (such as telephone directories, commercial and association registers, population registers, debtor directories, land registers, press, the internet and other media).

Relevant categories of personal data include:

• Personal data (name, date of birth, place of birth, nationality, marital status, occupation/industry and comparable data)
• Contact data (address, e-mail address, telephone number and similar data)
• Address data (reporting data and comparable data)
• Information about your financial situation (creditworthiness data including scoring, i.e. data required to assess economic risk)
• Customer history
• Data about your use of the broadcast media offered by us (e.g. time of accessing our web pages, apps or newsletters, our pages/links that have been clicked on, or entries and comparable data)

Within our company, the internal departments and organisational units that need your data to fulfil our contractual and legal obligations or to process and assertion of our legitimate interest will receive it. Forwarding of your data to third parties takes place exclusively

• in connection with the execution of a contract;
• for purposes of fulfilling legal requirements according to which we are obliged to provide information, report or pass on data, or when the passing on of data is in the public interest (see Point 2.4); 
• insofar as external service providers are contracted to process data on our behalf or as bodies assuming responsibilities for us (e.g. external computer centres, support/maintenance of electronic data processing/IT applications, archiving, document processing, call centre services, compliance services, controlling, data screening for anti money-laundering purposes, data validation or plausibility checks, data destruction, purchasing/procurement, customer administration, letter shops, marketing, media technology, research, risk controlling, billing, telephony, website management, auditing services, credit institutions, printers or data disposal companies, courier services, logistics);
• on the basis of our legitimate interest or the legitimate interest of the third party for the purposes specified under Point 2.2 (e.g. to authorities, credit agencies, debt collection agencies, solicitors, courts, consultants, group companies and committees, and supervisory bodies);
• if you have given us consent to transfer data to third parties.

We will not pass on your data to third parties. If we commission service providers to process orders, your data will be subject to the same security standards we ensure within our company. In other cases, recipients may use the data only for the purposes for which they were forwarded.

We process and store your data for the duration of our business relationship. This also includes the initiation of a contract (pre-contractual legal relationship) and the execution of a contract.

In addition, we are subject to various storage and documentation obligations, including those arising from the German Commercial Code (HGB) and the Fiscal Code (AO), which specify periods for storage and documentation of up to ten years beyond the end of the business relationship or the pre-contractual legal relationship.

Furthermore, special statutory provisions, e.g. the preservation of evidence per the statutory statute of limitations, may require a longer storage period. According to Article 195 et seq. of the German Civil Code (Bürgerliches Gesetzbuch), the regular limitation period is three years; however, limitation periods of up to 30 years may also apply.

If the data is no longer necessary for the fulfilment of contractual or legal obligations and rights, they will be deleted regularly unless their further processing – for a limited period – is necessary for the fulfilment of the purposes listed under Point 2.2 for an overriding legitimate interest. Such an overriding legitimate interest also exists, for example, if deletion is not possible or only possible with disproportionately high effort due to the special type of storage and if processing for other purposes is prevented by suitable technical and organisational measures.

Data transfer to locations in states outside the European Union (EU) or the European Economic Area (EEA) (so-called third countries) takes place when it is necessary for the execution of an order/contract by or with you, when it is required by law (e.g. tax reporting obligations), in the context of our legitimate interest or that of a third party, or when you have given us consent.

The processing of your data in a third country may also take place in connection with the involvement of service providers with whom we have agreed a data processing contract. If the EU Commission has not determined that the country in question provides an appropriate level of data protection, we will ensure by means of appropriate contracts that your rights and freedoms are adequately protected and guaranteed in accordance with EU data protection regulations. We will provide you with the relevant detailed information on request.

Information on appropriate or reasonable guarantees and options for obtaining a copy may be requested from our data protection officer upon request.

Under certain conditions you can assert your data protection rights against us

• You thus have the right to receive information about data of yours which we store per Article 15 of GDPR (if necessary with restrictions per Article 34 of the German Data Protection Act).
• At your request, we will correct the data stored about you in accordance with Article 16 of GDPR if said data is inaccurate or erroneous.
• If you wish, we will delete your data per Article 17 of GDPR, provided that other statutory provisions (e.g. statutory storage obligations or the restrictions per Article 35 of the German Data Protection Act) or an overriding interest on our part (e.g. to defend our rights and claims) do not prevent this.
• In observation of the requirements of Article 18 of GDPR, you may request that we restrict the processing of your data.
• You may also object to the processing of your data per Article 21 of GDPR, on the basis of which we must terminate the processing of your data. However, this right of objection only applies in the case of extraordinary personal circumstances on your part, whereby the rights of our company may conflict with your right of objection.
• You also have the right, per Article 20 of GDPR, to receive your data in a structured, common and machine-readable format or to have it forwarded to a third party. 
• In addition, you have the right to revoke your consent to the processing of personal data at any time with effect for the future (see Point 2.3). 
• You also have the right to appeal to a supervisory data protection authority (Article 77 of GDPR). However, we recommend that you always first address a complaint to our data protection officer.

Your requests concerning the exercise of your rights should, if possible, be addressed in writing to the above address or directly to our data protection officer.

You only need to provide data which is necessary for the establishment and execution of a business relationship or for a pre-contractual relationship with us, or that we are legally obliged to collect. Without this data, we will usually not be able to conclude or execute the contract. This may also apply to data required later within the framework of the business relationship. If we request further data from you, you will be informed explicitly that providing said information is voluntary.

We do not use purely automated decision-making procedures per Article 22 of GDPR. Should we use such a procedure in individual cases in the future, we will inform you of this explicitly if this is required by law

We may process some of your data with the aim of evaluating certain personal information (profiling). We may use evaluation tools so that we can provide you with targeted information and advice on products. These allow for demand-oriented product design, communication and advertising, including market and opinion research. Such procedures can also be used to assess your creditworthiness and to combat money laundering and fraud. So-called “score values” can be used to assess your creditworthiness. Scoring calculates the probability that a customer will meet her or his contractual payment obligations using mathematical methods. Such values support us, for example, when assessing creditworthiness or decision-making in the context of product transactions. They are also included in our risk management. The calculation is based on mathematically and statistically recognised and proven methods.

Information on nationality and special categories of personal data per Article 9 of GDPR are not processed.

Data controller per data protection law:
wezi-tec Sp. z o.o.
Human Resources Management
ul. Jaworzyńska 299
PL-59-220 Legnica

Phone: +48 (0) 76 85 51 800
Fax: +48 (0) 76 85 51 810
E-mail: kariera(at)wezi-tec.pl

Data Protection Officer’s contact information:
wezi-tec Sp. z o.o.
Płaza Ewa Jaworzyńska 299
59-220 Legnica
E-Mail: ochronadanych(at)wezi-tec.pl

We process personal data in accordance with the provisions of Regulation (EU) 2016/679 of the Eu-ropean Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, hereinafter ‘GDPR’. Details are as follows. Further details or additions regarding the purposes of data processing can be found in the contract documents, forms, declarations of consent and other information provided to you.

If you apply for an advertised job position or if you send us an unsolicited application, your personal data will be processed in particular for the following reasons: Examination and assessment of your suitability for the vacant position, performance and behaviour assessment to the extent permitted by law, registration and authentication of the application via our website, drawing up employment contracts, verifiability of transactions, orders and other agreements, quality control through appropriate documentation, measures for fulfilling general duties of care, statistical evaluations for company management, travel and event management, travel booking and travel expense accounting, authorisation and ID card administration, cost recording and controlling, reporting, internal and external communication, accounting and tax evaluation of operational services, invoicing via company credit card, occupational safety and health protection, contract-related communication (including appointment agreements, assertion of legal claims and defence in legal disputes; guarantee of IT security (including system and plausibility tests) and general security including building and plant security, safeguarding and exercising domestic rights through appropriate measures and, if necessary, video surveillance to protect third parties and our employees and to prevent and secure evidence in the event of criminal offences; guaranteeing the integrity, prevention and investigation of criminal offences; authenticity and availability of data; audits by supervisory bodies or supervisory bodies (e.g. audit).

Beyond the actual fulfilment of the (pre) contract, we may process your data if it is necessary to protect our legitimate interests or those of third parties. Processing of your data will only take place if and to the extent that no overriding interests on your part mitigate against such processing, in particular for the following purposes: Measures for the further development of existing systems, processes and services; comparison with European and international anti-terror lists if required beyond general legal obligations; enrichment of our data, e.g. by using or researching publicly accessible data as far as necessary; benchmarking; design of scoring systems or automated decision-making processes; building and plant security (e.g. through physical access control and video surveillance) if this goes beyond the general duties of care; internal and external investigations, security audits.

Your personal data may also be processed for certain purposes (e.g. obtaining references from previous employers or using your data for later vacancies) on the basis of your consent. As a rule, you can revoke your consent at any time. You will be informed explicitly about the purposes and consequences of any revocation or refusal of consent.

The revocation of consent is only effective for the future. Processing operations that took place before the revocation are not affected and remain lawful.

Like everyone who participates in economic activities, we are also subject to a large number of legal obligations. These are primarily legal requirements (e.g. Labour Management Relations Act [Kodeks Pracy], Social Code, commercial and tax laws), but also regulatory and otherwise official (e.g. the employer’s liability insurance associations). Purposes of the processing may include identity and age verification, fraud and money laundering prevention (e.g. comparison with European and international anti-terror lists), occupational health management, occupational safety and security, compliance with fiscal control and notification obligations and archiving of data for data protection and data security purposes and for purposes of auditing by tax consultants/auditors, tax authorities and other authorities. Moreover, the disclosure of personal data may become necessary in the course of governmental/judicial action for the purpose of gathering evidence, criminal prosecutions or the enforcement of civil claims.

To the extent necessary for the contractual relationship with you and the application you have submitted, we may process data obtained from other sources or from other third parties. In addition, we process personal data that we have obtained, received or acquired from publicly accessible sources (e.g. trade and association registers, civil registers, press, the internet and other media) as far as this is necessary. We may process this data in accordance with the statutory provisions.

These categories of personal data may include:

• Address and contact data (reporting and comparable data, e.g. e-mail address and telephone number)
• Information about you on the internet or social networks
• Information on previous employers, previous jobs and qualifications
• Video data

Within our company, internal staff or organisational units (such as the company doctor, the occupational safety department, employee representative bodies, managers and specialist managers who are looking for a new employee or who are involved in decision making regarding the appointment of new staff, bookkeeping staff, etc.) will receive personal data regarding you that they need to fulfil our contractual and legal obligations, or within the framework of processing and implementing our legitimate interest. Forwarding of your data to third parties takes place exclusively

• for purposes for which we are obliged or entitled to comply with statutory requirements for the disclosure, reporting or transfer of data (e.g. to tax authorities) or for which the transfer of data is in the public interest (see Point 2.4);
• insofar as external service providers are contracted to process data on our behalf or as bodies assuming responsibilities for us (e.g. credit institutions, external computer centres, travel agencies/travel management, printing or data disposal companies, courier services, postal services, logistics);
• on the basis of our legitimate interest or the legitimate interest of the third party for the purposes specified under Point 2.2 (e.g. to authorities, credit agencies, lawyers, courts of law, experts, group companies and committees, and supervisory bodies);
• if you have given us consent to transfer data to third parties.

Furthermore, we will not pass on your data to third parties unless we have explicitly informed you we will do so. If we commission service providers to process data, your data will be subject to the security standards specified by us to ensure the reasonable protection of your data. In other cases, recipients may use the data only for the purposes for which they were forwarded.

We process and store your data for the duration of your recruitment and for three months after completion of the recruitment process – if wezi-tec Sp. z o.o. does not hire you. This also includes the initiation of a contract (pre-contractual legal relationship).

In addition, we are subject to various storage and documentation obligations, including those arising from the German Commercial Code (HGB) and the German Tax Code (AO). Specified periods for storage or documentation are up to ten years beyond the end of the contractual relationship or the pre-contractual legal relationship. Your application documents will be destroyed after six months at the latest if you are not hired. Electronic data will be deleted after six months. If we wish to store your data for a longer period for subsequent vacancies or if you have entered your data in an applicant pool, the data will be deleted at a later date; details will be provided to you in connection with each process.

If the data are no longer necessary for the fulfilment of contractual or legal obligations and rights, they will be deleted regularly unless their further processing – for a limited period – is necessary for the fulfilment of the purposes listed under Point 2.2 regarding an overriding legitimate interest of our company. An example of an overriding legitimate interest would be, for example, deletion not being possible due to the special type of storage, or only being possible with disproportionate exertion. In these cases we can also store your data after termination of our contractual relationship for a period based on the purposes of data processing, and we may if necessary use the data to a limited extent. In these cases, restriction of the processing takes the place of deletion; in other words, appropriate measures will be taken to block the data from their typical use.

Data is transferred to locations in countries outside the European Economic Area EU/EEA (so-called third countries) if it is necessary for the execution of a contractual obligation towards you (e.g. application for a job abroad), or if it is in the context of a legitimate interest on our part or on the part of a third party, or if you have given us your consent.

The processing of your data in a third country may also take place in connection with the involvement of service providers with whom we have agreed a data processing contract. If the EU Commission has not determined that the country in question provides an appropriate level of data protection, we will ensure by means of appropriate contracts that your rights and freedoms are adequately protected and guaranteed in accordance with EU data protection regulations. Information about suitable or appropriate safeguards and how and where to obtain a copy of them can be obtained upon request from the Company’s Data Protection Officer or your human resources department.

You have the following rights in connection with the processing of personal data:

• The right to access your personal data.
• The right to request the correction of your personal data.
• The right to lodge a complaint with the supervisory body responsible for the protection of personal data, i.e. the president of the Personal Data Protection Office.
• The right to withdraw consent to the processing of your personal data.
• The right to request the deletion of your personal data – if there is no legal obligation to process your data.
• The right to request that restrictions be imposed on the processing of your personal data.
• The right to object to the processing of your data owing to your particular situation – in cases where we process your data based on our legally justified interest.
• The right to transfer your personal data, i.e. the right to receive your personal data from us in a structured, commonly used format that can be read on a computer.

Requests concerning the exercise of your rights should, if possible, be addressed in writing to the above address or directly to our data protection officer.

You only need to provide the data that is necessary for processing your application; for a pre-contractual relationship with us; or that we are legally obliged to collect. Without this data, we will usually not be able to continue the application and selection process. If we request further data from you, you will be informed explicitly that providing said information is voluntary.

We do not use purely automated decision-making procedures per Article 22 of GDPR. Should we use such a procedure in individual cases in the future, we will inform you of this explicitly if this is required by law