Privacy policy

1. Definitions

1.1. Administrator – Innovations for Heart and Vessels Spółka z ograniczoną odpowiedzialnością, based in Katowice, ul. Ligocka 103, 40-568, NIP: 9542733146, REGON: 242757218, entered into the register of entrepreneurs of the National Court Register kept by the District Court Katowice-Wschód in Katowice, 8th Commercial Division of the National Court Register under KRS number 0000399063.

1.2. Personal data – information about a natural person identified or identifiable by one or more specific factors determining the physical, physiological, genetic, mental, economic, cultural or social identity, including device IP, online identifier and information collected via cookies and other similar technology.

1.3. Policy – ​​this Privacy Policy.

1.4. GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27/04/2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.

1.5. Website – website run by the Administrator at www.i4hv.com.

1.6. User – any natural person visiting the Website or using one or more services or functionalities described in the Policy.

2. Processing of Personal Data in connection with the use of the Website

2.1. In connection with the User’s use of the Website, the Administrator collects data to the extent necessary to provide the individual services offered. Detailed principles and purposes of processing Personal Data collected while using the Website by the User are described below.

3. Purposes and legal basis for the processing of Personal Data on the Website

A) Use of the Website

3.1. Personal data of all people using the Website are processed by the Administrator:

3.1.1. in order to provide services electronically in the scope of providing Users with content collected on the Website – then the legal basis for processing is the necessity of processing to perform the contract (Article 6(1)(b) of the GDPR);

3.1.2. in order to establish and pursue claims or defend against claims – the legal basis for processing is the legitimate interest of the Administrator (Article 6(1)(f) of the GDPR), consisting in the protection of his rights.

B) Contact form

3.2. The administrator provides the opportunity to contact him using an electronic contact form. Using the form requires providing Personal Data necessary to contact the User and answer the inquiry. The user may also provide other data to facilitate contact or handling of the inquiry. Providing data marked as mandatory is required to accept and handle the inquiry, and failure to provide it results in the inability to process it. Providing other data is voluntary.

3.3. Personal data are processed in order to identify the sender and handle his inquiry sent via the form provided – the legal basis for processing is the necessity of processing to perform the service provision contract (Article 6(1)(b) of the GDPR); in the scope of optional data, the legal basis for processing is consent (Article 6(1)(a) of the GDPR).

C) Marketing

3.4. The User’s personal data may also be used by the Administrator to send marketing content to him through various channels, i.e. via e-mail, MMS/SMS. Such actions are taken by the Administrator only if the User has given their consent, which may be withdrawn at any time.

3.5. Personal data is processed:

3.5.1. in order to send the ordered commercial information – the legal basis for processing, including the use of profiling, is the legitimate interest of the Administrator (Article 6(1)(f) of the GDPR) in connection with the expressed consent;

3.5.2. for analytical and statistical purposes – the legal basis for processing is the legitimate interest of the Administrator (Article 6(1)(f) of the GDPR), consisting in conducting analyzes of Users’ activity on the Website in order to improve the functionalities used.

4. Cookies

4.1. The Administrator uses cookies on the Website. The purposes and rules regarding the use of cookies can be found in the Cookie Policy.

5. Personal Data processing period

5.1. The period of data processing by the Administrator depends on the type of service provided and the purpose of processing. As a rule, data is processed for the duration of the service provision, until the consent is withdrawn or an effective objection to data processing is raised in cases where the legal basis for data processing is the legitimate interest of the Administrator.

5.2. The data processing period may be extended if processing is necessary to establish and pursue possible claims or defend against claims, and after that time only if and to the extent required by law. After the processing period, the data is irreversibly deleted or anonymized.

6. User Rights

6.1. The User has the right to access the data and request its rectification, deletion, restriction of processing, the right to transfer data and the right to lodge a complaint with the supervisory authority responsible for the protection of Personal Data.

6.2. The User also has the right to object to data processing based on the legitimate interest of the Administrator.

6.3. To the extent that the User’s data is processed on the basis of consent, this consent can be withdrawn at any time by contacting the Administrator via e-mail: info@i4hv.com.

7. Recipients of Personal Data

7.1. In connection with the provision of services, Personal Data will be disclosed to external entities, in particular IT service providers enabling the proper use of the Website.

7.2. If the User consents, his or her data may also be made available to other entities for their own purposes, including marketing purposes.

7.3. The Administrator reserves the right to disclose selected information about the User to competent authorities or third parties who request such information, based on an appropriate legal basis and in accordance with the provisions of applicable law.

8. Transfer of Personal Data outside the EEA

8.1. The level of protection for Personal Data outside the European Economic Area (EEA) differs from that provided by European law. For this reason, the Administrator transfers Personal Data outside the EEA only when necessary and ensuring an adequate level of protection, primarily through:

8.1.1. cooperation with entities processing Personal Data in countries for which an appropriate decision of the European Commission has been issued regarding the assurance of an adequate level of protection of Personal Data;

8.1.2. application of standard contractual clauses issued by the European Commission;

8.1.3. application of binding corporate rules approved by the competent supervisory authority.

8.2. The Administrator always informs about the intention to transfer Personal Data outside the EEA at the stage of their collection.

9. Security of Personal Data

9.1. The Administrator conducts risk analysis on an ongoing basis to ensure that Personal Data is processed in a safe manner – ensuring, above all, that only authorized persons have access to the data and only to the extent necessary for the tasks they perform. . The Administrator ensures that all operations on Personal Data are recorded and performed only by authorized employees and collaborators.

9.2. The Administrator takes all necessary actions to ensure that its subcontractors and other cooperating entities guarantee the use of appropriate security measures whenever they process Personal Data on behalf of the Administrator.

10. Contact details

10.1. Contact with the Administrator is possible via info@i4hv.com.

11. Changes to the Privacy Policy

11.1. The policy is verified on an ongoing basis and updated, if necessary.

11.2. The current version of the Policy has been adopted and is valid from June 1, 2024.