Rules of processing personal data of Project Participants

The TDJ Foundation for Education and Development (hereinafter referred to as the “TDJ Foundation”), for the sake of security, respect and observance of the rights of Project Participants, with particular regard to the right to privacy, presents a policy explaining the principles of application, collection and processing of personal data.

The TDJ Foundation follows the following guidelines when processing personal data, fulfilling at least one condition for the processing of personal data.

1. Principles for the processing of personal data:

1. “processed lawfully fairly and transparently”,
2. “collected for specific, explicit and legitimate purposes and not further processed in a way incompatible with those purposes”,
3. “adequate, relevant and limited to what is necessary for the purposes, i.e. data minimisation”,
4. “correct and updated as necessary”,
5. “kept in a form which permits identification of the data subject for no longer than is necessary for the purposes for which the data are processed”,
6. “processed in a manner that ensures adequate security of personal data: protection against unauthorised or unlawful processing and against accidental loss, destruction or damage by means of appropriate technical and
   and organisational measures”.

1. Lawfulness of processing:

1. the data subject has consented to the processing of their personal data for one or more specified purposes;
2. the processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
3. processing is necessary for compliance with a legal obligation incumbent on the controller;
4. processing is necessary to protect the vital interests of the data subject or of another natural person;
5. processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
6. processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.

What data we collect about you

• Data collected during recruitment for the programmes we offer.
• Data of contractors and collaborators with whose help we run programmes.
• Data of participants in Educare Institute training courses.

In order for you to be able to take advantage of the offer the TDJ Foundation has prepared for you, you will have to provide the necessary data: name, surname, telephone number, email, date of birth. In some projects we will ask you to provide the names and dates of birth of your siblings and the names of your legal guardians. You will also be asked to give your consent for the TDJ Foundation to process the above personal data as well as your image. If you are under 16, we will ask your legal guardian for such consent.

Data obtained in the course of recruitment, during the implementation of programmes and the use of other TDJ Foundation services will be collected and managed in a CRM database.

Rules for the processing of personal data in connection with the sending of newsletters

1. We make it possible for you to subscribe to the list of recipients of our newsletter. If you have used this functionality, we process your personal data precisely for the purpose of sending the newsletter. The newsletter may contain advertising, commercial, marketing, educational content.
2. If you subscribe to the list of recipients of our newsletter, you agree that we can provide you with information about our programmes, actions and current activities.
3. The processing of this data is based on your consent and thus Article 6(1)(a) RODO.
4. You have the right to withdraw the consent you have given at any time. However, the withdrawal of consent does not affect the lawfulness of the previous processing.
5. We will store your data until you withdraw the consent you have given. In the event that you never withdraw it, we will process your data until we stop sending the newsletter.
6. You have the right of access, rectification, erasure, restriction of processing, the right to data portability, as well as the right to lodge a complaint with a supervisory authority.
7. The provision of this data is voluntary; however, failure to provide this data will prevent the sending of the newsletter.
8. The recipients of this data are our web host, IT service provider, email service provider and newsletter sending service provider.

Data administrator

The administrator of your personal data is TDJ Foundation for Education and Development with its registered office in Katowice at Al. Roździeńskiego 1A, KRS: 0000294837, NIP: 9542619605, REGON: 240798176.

Data Protection Officer

Can be contacted by e-mail at: iod@tdj.pl and in writing by sending correspondence to the address of our registered office: Al. Walentego Roździeńskiego 1 A, 40-202 Katowice with the note “Data Protection Inspector”.

The Data Protection Inspector can be contacted on all matters related to the processing of your personal data.

Purpose of data processing

Your personal data obtained in connection with the use of our proposed projects will be processed for the following purposes:

1. recruitment for the projects,
2. the performance of tasks related to the organisation of trips, participation in projects,
3. direct marketing or services,
4. researching your satisfaction with us or your satisfaction with our services,
5. researching preferences regarding the demand for services,
6. responding to letters and requests,
7. carrying out security-related activities,
8. archiving,
9. to comply with our legal obligations,
10. sending newsletters.

Legal basis for data processing

1. consent given,
2. necessity for the purposes of the legitimate interests pursued by the controller, e.g. assessing the level of satisfaction with the proposed projects,
3. necessity to fulfil a legal obligation incumbent on the controller.

Automated decision-making

Your personal data will not be processed by automated means, including profiling.

Period of storage of your personal data

The period for which your personal data is processed depends on the purpose for which the data is processed. The period for which your personal data will be stored is calculated based on the following criteria:

1. legal provisions that may oblige the TDJ Foundation to process the data for a certain period of time,
2. the period that is necessary to protect the interests of the data controller,
3. the period that is necessary for the TDJ Foundation to provide its services and to provide the necessary service to Project Participants,
4. the period for which consent has been granted.

Recipients of your data

Your data may be passed on to:

1. to law firms contracted by the TDJ Foundation, e.g. to conduct proceedings,
2. entities cooperating with the TDJ Foundation, e.g. providing IT services.
3. entities or authorities authorised by law.

Transfer of data outside the European Economic Area

Your personal data will not be transferred to a third country or international organisation.

Your rights in relation to data processing

You have the right to:

1. access to the content of your personal data,
2. their rectification (amendment, completion),
3. restriction of their processing or erasure,
4. to portability of the personal data you have provided to us, i.e. to receive this personal data in a structured, commonly used, machine-readable format, and you have the right to have this data sent to another controller; if technically possible you have the right to request that your personal data be sent by us directly to another controller,
5. to object to further processing of your personal data.

You have the right to withdraw your consent at any time. The withdrawal of consent does not affect the lawfulness of the processing of your data carried out on the basis of the consent given before its withdrawal.

If you have doubts about the correctness of the processing of your personal data by the TDJ Foundation, you have the right to lodge a complaint with the President of the Office for Personal Data Protection.

What will be the consequences of not providing the data

The provision of data is voluntary but necessary for the recruitment process and the implementation of projects. Failure to provide data will result in not being able to participate in the proposed project.

Lack of consent for the use of your image for the indicated purpose does not entail any negative consequences, as it is entirely voluntary.

Cookies our privacy policy

General information.

1. TDJ S.A. is the operator of the Website.
2. Service performs the functions of obtaining information about users and their behaviour in the following ways:
   1. Through the voluntary information entered in the forms.
   2. By storing cookies (so-called “cookies”) in the end devices.
   3. Through the collection of web server logs.

2. Information in forms.

1. The service collects information voluntarily entered by the user.
2. The service may also record information about connection parameters (time stamp, IP address).
3. The data in the form are not made available to third parties otherwise.
4. Data given in the form may constitute a collection of potential clients, registered by the Operator of the Service in the register kept by the General Inspector for Personal Data Protection.
5. Data provided in the form is processed for the purpose resulting from the function of a specific form, e.g.
   in order to perform the process of service request or commercial contact.

3. Information about cookies.

1. The website uses cookies.
2. Cookies are IT data, in particular text files, which are stored in the Service User’s terminal equipment and are intended for use on the Website. Cookies usually contain the name of the website they come from, the time they are stored on the terminal equipment and a unique number.
3. The Service operator is the entity placing and accessing cookies on the Service User’s terminal equipment.
4. Cookies are used for the following purposes:
   1. creating statistics which help to understand how Service Users use websites, which enables improving their structure and content;
   2. maintaining a session of the Website User (after logging in), thanks to which the User does not have to re-enter his/her login and password on each sub-page of the Website;
   3. determining a profile of a User in order to display him/her customised materials in advertising networks, in particular the Google network.
5. The Website uses two main types of cookies: session cookies and persistent cookies. Session cookies are temporary files, which are stored in the User’s terminal equipment until they log out, leave the website or switch off the software (web browser). Persistent cookies are stored on the User’s terminal equipment for the time specified in the parameters of the cookies or until they are deleted by the User.
6. Web browsing software (Internet browser) usually allows the storage of cookies on the User’s terminal equipment by default. Users of the Website may change their settings in this respect. The Internet browser makes it possible to delete cookies. It is also possible to automatically block cookies Detailed information on this subject is contained in the help or documentation of the Internet browser.
7. Restrictions on the use of cookies may affect some of the functionalities available on the Website.
8. Cookies placed in the Service User’s terminal equipment and used may also be used by advertisers and partners cooperating with the Service Operator.
9. We recommend reading the privacy policies of these companies to learn about the use of cookies used in statistics: Google Analytics Privacy Policy
10. Cookies may be used by advertising networks, in particular the Google network, to display advertisements tailored to the way you use the Website. For this purpose, they may retain information about the user’s navigation path or the length of time they stay on a particular page.
11. With regard to the information on user preferences collected by the Google advertising network, the user can view and edit the information resulting from the cookies using the tool: https://www.google.com/ads/preferences/.

4. Server logs.

1. Information about certain user behaviour is subject to logging at the server layer. This data is used exclusively for the administration of the website and to ensure the most efficient operation of the hosting services provided.
2. The resources viewed are identified by URLs. In addition, the following may be recorded:
   1. time of arrival of the request,
   2. time of sending a response,
   3. the name of the client station identification via the HTTP protocol,
   4. information about errors which occurred during the HTTP transaction,
   5. the URL of a page previously visited by the user (referer link), if the website has been accessed via a link,
   6. information about your browser,
   7. IP address information.
3. The above data are not associated with specific visitors.
4. The above data is used only for the purpose of server administration.

5. Managing cookies – how to give and withdraw consent in practice?

1. If you do not wish to receive cookies, you can change your browser settings. We stipulate that disabling cookies necessary for authentication processes, security, maintenance of user preferences may make it difficult, and in extreme cases may make it impossible, to use the websites.
2. In order to manage your cookie settings, please select your browser/system from the list below
   and follow the instructions:
   1. Internet Explorer
   2. Chrome
   3. Safari
   4. Firefox
   5. Opera
   6. Android
   7. Safari (iOS)
   8. Windows Phone
   9. Blackberry.