Updated 11 Nov 2024
Privacy Policy
Your privacy is important to us. We respect your privacy regarding any information we may collect from you across our website.
* This Privacy Policy page applies to EU users only
Privacy Policy
Personal Data Protection
Overview information
At Syberry Corporation, we are committed to safeguarding the privacy and protecting the personal data of our website visitors, clients, and business partners. This Privacy Policy has been designed in accordance with the provisions of the General Data Protection Regulation (GDPR) to inform you about how we collect, use, disclose, and retain your personal information.
Any reference to “company”, “us”, “we” or “our” refers to Syberry Corporation.
Each member of Syberry Corporation is a separate legal entity that depending on the purposes of processing may act as controller of the personal data you submitted, including through this website.The list of Syberry Corporation companies as well as contact details you may find by clicking button Contact us in the upper right corner of our website. We strive to act in full compliance with the GDPR and other applicable data protection laws.
This Privacy Policy applies to all personal data that we collect through our website, interactions with our clients and potential employees, and any other means of data processing. It outlines your rights regarding your personal information and how you can exercise these rights.
The policy extends to:
- our website: https://www.syberry.com
- our email: contact@syberry.com
What data do we use and for what purposes and legal grounds it`s processed?
We only use your personal information for the following purposes and legal bases:
| Purpose | Legal Basis | Data Utilized | Storage Period |
|---|---|---|---|
| To respond to your inquiry, to organize the meeting/call or to perform other action regarding your inquiry | Legitimate Interest (based on art. 6 para 1 f GDPR) | First name, last name, company name, contact information, other personal data provided on your own initiative | 2 years after your last communication with our company, unless you have objected to such processing |
| To deliver the services defined in the contract | Contract (based on art. 6 para. 1 b GDPR) | Information about the service you ordered, contact information, other information that we got from you | 1 year after providing the services |
| To assist you with suitable roles and potential employment or internship | Consent (based on art. 6 para. 1 a GDPR) | Full name, personal email, phone number, links to social media, CV with the information regarding your work experience, trainings, education, etc. | 2 years (unless the consent isn`t revoked earlier) |
| For defense to potential claims for discrimination in recruitment | Legitimate interest (based on art. 6 para. 1 f GDPR in conjunction with art. 291 para. 1 of the EU Labor Code) | Full name, personal email, phone number, links to social media, CV with the information regarding your work experience, trainings, education, etc. | 3 years |
| To handle and boost client experience by enhancing our understanding of our clients and candidates | Legitimate interest (based on art. 6 para. 1 f GDPR) | Computer IP address, browser type, pages visited, time spent on the Website, etc. | 1 year |
| Mailing of advertising products | Legitimate interest related to your consent to send information (based on art. 6 para. 1 f GDPR in conjunction with art. 10 of the Polish Law on Provision of Electronic Services) | Until you withdraw consent |
Please be informed that you may withdraw your consent at any time.
Syberry does not intend to collect sensitive information through its website unless it is legally required to do so. Examples of sensitive information include race or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, physical or mental health, genetic data, biometric data, sexual life or sexual orientation, and criminal records. Syberry kindly asks you not to provide sensitive data of such nature when using our website.
Personal data we get from third parties
We receive personal data from third parties, e.g. if you publish your CV in the internet on career portals or professional networks, or if someone recommends you for potential employment with Syberry.
Retention period
We will only retain your personal information for as long as necessary to fulfil the purposes it was collected for or until the consent is revoked (for consent-based information), unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). To determine the appropriate retention period for personal information, Syberry considers the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which Syberry processes your personal information and whether it can achieve those purposes through other means, and the applicable legal requirements.
Who do we share your data with?
Syberry may disclose your personal information to the following categories of recipients:
- Group companies within the meaning of commercial law, within which the Controller operates for the purposes described in this Privacy Policy
- Entities authorized on the basis of generally applicable laws, in particular to institutions entitled to control the Controller's activity or institutions authorized to obtain personal data on the basis of legal provisions.
- Service providers processing personal data on behalf of Syberry, for example accountants, auditors, legal or tax advisors and IT service providers.
- Other third parties with your consent.
Syberry will not:
- sell your personal information.
- share, rent, release, disclose, disseminate, make available, transfer or otherwise communicate orally, in writing or by electronic or other means your data to a third party for cross-context behavioral advertising, whether or not for monetary or other valuable consideration, including transactions for cross-context behavioral advertising in which no money is exchanged.
- retain, use or disclose the Personal Data for any purpose other than for the business purposes specified in this Policy.
International transfers
As far as reasonably necessary for the purposes set out in this Privacy Policy and within the scope of the applicable laws, Syberry may transfer your personal data to other entities within the Syberry Corporation that can be located outside the European Union (EU) and/or the European Economic Area (EEA) (“Third Countries”). These countries may have data protection laws that are different to the laws of your country (and, in some cases, may not be as protective). However, Syberry has taken appropriate safeguards to require that your personal information will remain protected in accordance with this Privacy Policy, including, utilizing the European Commission's Standard Contractual Clauses for transfers of personal information between its group companies, which requires all group companies to protect personal information being processed from the European Economic Area to an equivalent standard to that required under European Union data protection law.
Voluntariness of data
The provision of personal data is voluntary, but necessary to use the Website and contact us. The consequence of not providing personal data will be that Syberry cannot be contacted, and some features of the Website might be affected.
Rights in relation to the processing of personal data
You, as the data subject, may exercise the following rights in relation to the personal information we hold about you:
- Right of access. You may at any time request from us information about your personal data that we store and process, as well as about the origin, recipients or categories of recipients to whom we transmitted it, the purpose of processing it as well as any other information as indicated in the applicable legal acts.
- Right to rectification. If your personal data processed by Syberry is incorrect or inaccurate, you can ask us to correct it at any time. You also have the right to ask us to complete information you think is incomplete.
- Right to erasure. You have the right to ask us to delete your personal information. Deletion can be done at any time by contacting us. Your data will be deleted without undue delay after exercising this right as a data subject. After deleting your data, it is no longer possible for us to recover it.
- Right to restriction of processing. You have the right to ask us to restrict the processing of your information.
- Right to data portability. You have the right to ask that we transfer the information you gave us to another organization, or to you.
- Right to object. You have the right at any time and without giving any reason to object to our processing of your data.
- The right to withdraw consent. Where we process personal data based on your consent, you have a right to withdraw your consent at any time. To withdraw your consent please contact us at privacy@syberry.com in writing.
- Right to lodge a complaint to the Supervisory Authority. In accordance with Art. 77 GDPR, you, as a data subject, have the right to lodge a complaint with a supervisory authority. The details are specified in the “Complaints to Supervisory Authority” section of this Privacy Policy.
You may contact us via DPO email specified at the bottom of the page if you wish to make a request/inquiry regarding your rights. If you make a request, we have one month to respond to you.
Data security
Syberry follows generally accepted standards to protect the personal data submitted to us, both during transmission and after it is received.
Syberry takes technical and organizational measures to ensure the information is handled in a manner that ensures appropriate security of information, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
Syberry carries out a risk analysis to ensure that personal data is processed in a secure manner, ensuring above all that only authorized persons have access to the data and only to the extent that is necessary for the performance of their tasks. We ensure that all operations on personal data are recorded and carried out only by authorized employees and associates.
Syberry regularly monitors its systems for possible vulnerabilities and attacks and regularly review our information collection, storage, and processing practices to update our physical, technical, and organizational security measures.
Syberry has put in place procedures to deal with any personal information breach and will notify you and any applicable regulator of a breach when legally required to do so.
Syberry takes all necessary measures to ensure that its subcontractors and other cooperating entities guarantee the application of appropriate security measures whenever they process personal data on its behalf. We also guide and train our personnel to process personal data securely according to our internal data protection policies.
Third-party links
Our website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.
Use of Syberry's website by children
We do not intend https://www.syberry.com website or online services to be used by anybody under the age of 16. If you are a parent or guardian and you think we may have collected information about a child, please contact us at privacy@syberry.com.
Automated decision-making, including profiling
We shall not make decisions based on automated processing, including profiling, on your personal data.
Cookies
You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies some parts of Syberry websites may become inaccessible or not function properly. For more information about the cookies that Syberry uses, please see Syberry's Cookies Policy
Amendments to this Privacy Policy
We may change this Privacy Policy from time to time. If we decide to make changes to this Privacy Policy, we will update the Privacy Policy date at the top of the policy and post the amended Privacy Policy. If we materially change the approach for processing your personal data, we will provide you with prior notice, or where legally required, request your consent prior to implementing such changes.
You are advised to consult this Privacy Policy regularly for any changes, as continued use is deemed approval of all changes.
Data Protection Officer
We have appointed a data protection officer (DPO) to oversee compliance with this privacy notice. If you have any questions about this privacy notice or how we handle your personal information, please contact the DPO:
Email: iod@syberry.pl
Complaints to Supervisory Authority
Pursuant to Art. 77 GDPR, you, as a data subject, have the right to file a complaint with a supervisory authority of the EU Member State in which your permanent place of residence, place of work or in which there was an alleged violation of your information privacy.
A current list of the supervisory authorities in the EU can be accessed here.