IC Project Privacy Policy

  1. The Personal Data Administrator on the website at: icproject.com and www.icproject.pl is nGroup System Sp. z o.o., ul. Malików 150d; 25-639 Kielce, NIP: 9591926129, REGON: 260468463, entered in the National Court Register by the District Court in Kielce, 10th Commercial Division of the National Court Register, under KRS number: 0000385149, share capital PLN 30,000 (fully paid), email: support@icproject.com.
  2. Respecting your rights as data subjects and complying with applicable legal provisions, including in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter referred to as GDPR), the Act of 10 May 2018 on the protection of personal data (Journal of Laws 2018, item 1000, hereinafter referred to as the Act), and other relevant personal data protection provisions, we are committed to maintaining the security and confidentiality of personal data obtained from you.
  3. All employees have been properly trained in the processing of personal data, and as the Personal Data Controller, we have implemented appropriate safeguards and technical and organizational measures to ensure the highest level of personal data protection. We have established procedures and policies for the protection of personal data in accordance with the GDPR, which ensure the lawfulness and reliability of data processing processes, as well as the enforceability of any rights you have as a data subject. Additionally, if necessary, we cooperate with the supervisory authority in the territory of the Republic of Poland, i.e., with the President of the Office for Personal Data Protection (hereinafter referred to as PUODO).
  4. We collect the following personal data on our Website:
    a) First and last name – may be processed when, as users of our Website, you provide them to us via email, the contact form or chat available on our Website, traditional mail, or during telephone contact, in order to use our offer;
    b) Phone number – may be processed in the case of telephone contact initiated by you, as well as when you provide it via email, contact form or chat available on our Website, or traditional mail, to allow us to contact you if necessary in connection with providing services for you and to respond to questions regarding our offer;
    c) Email address – may be processed when, as users of our Website, you provide it during contact via email, contact form, or chat available on our Website, as well as via traditional mail or telephone; through the email address, we send training materials, contact you if necessary in connection with service provision, and respond to questions related to our offer; if you consented to receiving marketing content and subscribed to our newsletter, we will also send you commercial information several times a month;
    d) NIP – Tax Identification Number – collected from entrepreneurs and individuals requesting an invoice and having a NIP number;
    e) Device IP address or browser identifier – information resulting from general Internet connection rules, such as IP address (and other information contained in system logs), used for technical and statistical purposes;
    f) Other data – may be collected in connection with handling specific matters or may be provided by you as users of our Website via email, the contact form, chat, traditional mail, or telephone.
  5. Providing the data indicated above is necessary in the cases specified, including in particular:
    a) to perform a contract concluded with the Administrator and to use the services offered on our Website;
    b) to respond to your inquiries and allow contact via email, contact form, chat, traditional mail, or telephone;
    c) for marketing of products or services provided by the Administrator and/or the Administrator’s business partners;
    d) to provide the newsletter service (subscription) – if you wish to be informed about interesting events and commercial offers; subscription is voluntary and you can unsubscribe at any time.
  6. Our Website uses Cookies technology to adapt its functioning to your individual needs. You can consent to having the data and information you enter remembered, so it can be used on subsequent visits without re-entering. If you do not agree to personalize the Website, you can disable the use of Cookies in your web browser settings.
  7. Each user of our Website has the opportunity to choose whether and to what extent they wish to use our services and share information and data about themselves, as specified in this Privacy Policy.
  8. In accordance with the principle of minimization, we process only those categories of personal data that are necessary to achieve the purposes referred to above.
  9. We process personal data for the period necessary to achieve these purposes. Personal data may be processed for a longer period if such a right or obligation arises from legal provisions, from the legitimate interest of the Controller (e.g., for the limitation period of claims or completion of relevant proceedings), or if the service (e.g., newsletter subscription) is ongoing.
  10. The source of the personal data processed by the Administrator is the data subject.
  11. The legal basis for processing your personal data is:
    a) Art. 6(1)(b) GDPR – necessary for the performance of a contract to which you are a party or to take action at your request before entering into a contract;
    b) Art. 6(1)(c) GDPR – necessary to comply with legal obligations imposed on the Administrator;
    c) Art. 6(1)(f) GDPR – legitimate interest of the Administrator, such as establishing, pursuing, or defending claims until limitation, or completion of relevant proceedings if initiated during that period;
    d) Art. 6(1)(a) GDPR – your consent for processing personal data for specific purposes when no other legal basis applies, e.g., for newsletter service; in such cases, personal data will be processed until the Administrator ends marketing activities, but not longer than 3 years from the last contact or until consent is withdrawn.
  12. Personal data are not transferred to a third country or international organization under GDPR. If such a transfer occurs, you will be informed in advance and the Controller will apply the safeguards referred to in GDPR Chapter V.
  13. We do not share personal data with third parties without your explicit consent. With your consent, we may share data with our business partners for marketing their products and services. For marketing purposes, we may use data obtained directly from the user, e.g., data provided in the contact form, and data obtained automatically during the user’s visit, including device information, internet connection, OS and platform, date and time of visit, pages visited, IP address, or location.
  14. Without your consent, personal data may only be disclosed to public law entities, i.e., authorities and administrations (tax authorities, law enforcement, or other entities authorized by law).
  15. If the Application contains links to the Administrator’s social media accounts, data such as IP or browser identifiers may be processed in co-administration with:
    a) Facebook (Facebook, Messenger, Instagram) – co-administered with Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland;
    b) Google (YouTube, Maps) – co-administered with Google Ireland Ltd., 4 Barrow St, D04 E5W5, Dublin, Ireland (Google Building Gordon House);
    c) LinkedIn – co-administered with LinkedIn Ireland Unlimited Company, Gardner House, 2 Wilton Place, Dublin 2, Ireland;
    d) X (Twitter) – co-administered with Twitter International Company, The Academy, 42 Pearse Street, Dublin 2, Ireland.
  16. If in these cases personal data are transferred to third countries, it will comply with the rules in point 11.
  17. Personal data may be entrusted for processing to entities acting on our behalf. In such cases, the Administrator signs an agreement with the processor to ensure processing only for the purposes and scope specified. Without entrusting your personal data, we could not operate the Website. Processors include:
    a) entities providing hosting services for our Website;
    b) entities providing other services necessary for the ongoing operation of the Website.
  18. Personal data are not subject to profiling by the Administrator.
  19. Under GDPR, data subjects have the right to:
    a) be informed about data processing (Art. 12 GDPR);
    b) access personal data (Art. 15 GDPR);
    c) correct, update, supplement, or rectify data (Art. 16 GDPR);
    d) request deletion (“right to be forgotten”) (Art. 17 GDPR);
    e) restrict processing (Art. 18 GDPR);
    f) data portability (Art. 20 GDPR);
    g) object to processing (Art. 21 GDPR);
    h) withdraw consent at any time when processing is based on consent, without affecting lawfulness before withdrawal;
    i) not be subject to automated profiling (Art. 22 GDPR in connection with Art. 4(4));
    j) file a complaint with the supervisory authority (President of PUODO) (Art. 77 GDPR).
  20. To exercise these rights, send a request by email to support@icproject.com or in writing to: nGroup System Sp. z o.o., ul. Malików 150d; 25-639 Kielce.
  21. The request should include:
    a) the person(s) concerned;
    b) the event triggering the request;
    c) your demands and their legal basis;
    d) the expected way of handling the matter.
  22. All security breaches are documented. In cases specified by GDPR or the Act, data subjects and PUODO are notified.
  23. This Privacy Policy applies to all persons with whom we have legal relations and for whom we are the data controller, including customers, contractors, and newsletter subscribers.
  24. For matters not governed by this Policy, generally applicable law applies. If any provisions of this Policy conflict with the law, the law prevails.