PRIVACY AND COOKIE POLICY OF THE WEBSITE WWW.FTC.PL

Introduction The Transparent Company Foundation (hereinafter: the “Foundation”) attaches particular importance to respecting the privacy of users visiting the ftc.pl website. This document defines the rules for processing personal data and the use of cookies, ensuring full compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR).

§ 1. Personal Data Controller

The controller of the personal data is: Transparent Company Foundation with its registered office in Warsaw, ul. Czerniakowska 145 lok. 1, 00-453 Warsaw, entered into the register of associations, other social and professional organizations, foundations, and independent public health care facilities under KRS: 0000152792, NIP: 5213232731, REGON: 015449381. Contact regarding data protection: ftc@ftc.pl.

§ 2. Purposes and Legal Grounds for Processing

Personal data are processed for the following purposes:

  • Communication: Handling inquiries via the contact form or e-mail (Art. 6(1)(f) GDPR – legitimate interest of the Controller).
  • Statutory Implementation: Providing services and activities available on the website (Art. 6(1)(b) GDPR – performance of a contract or actions prior to entering into a contract).
  • Legal Obligations: Fulfilling tax, accounting, and reporting obligations (Art. 6(1)(c) GDPR).
  • Analytics and Security: Monitoring website traffic and protection against abuse (Art. 6(1)(f) GDPR).

§ 3. Scope of Processed Data

The Foundation limits data collection to the necessary minimum:

  • Identification data (e.g., name and surname).
  • Contact details (e.g., e-mail address, telephone number).
  • Technical data (IP address, system logs, browser type).

§ 4. Rights of Data Subjects

Every user has the right to:

  • Access the content of their data and receive a copy thereof.
  • Rectification (correction) of data.
  • Erasure of data (“the right to be forgotten”) if there are no grounds for its processing.
  • Restriction of processing of data.
  • Object to processing based on a legitimate interest.
  • Data portability in a structured format.
  • Lodge a complaint with a supervisory authority (President of the Personal Data Protection Office, ul. Stawki 2, Warsaw).

§ 5. Data Retention Period

Data will be stored for the period:

  • Necessary to handle the inquiry or provide the service.
  • Required by law (e.g., 5 years for accounting documentation).
  • Until consent is withdrawn or an effective objection is lodged (regarding marketing/analytics).

§ 6. Data Recipients and Transfer to Third Countries

Data may be shared with entities supporting the Foundation (hosting, IT services, legal advice) based on data processing agreements. The Controller does not sell or share data with third parties for commercial purposes. When using analytical tools (e.g., Google Analytics), data may be transferred to third countries (USA) while maintaining appropriate safeguards (Standard Contractual Clauses).

§ 7. Cookie Mechanism and Operational Data

The ftc.pl website uses cookies (small text files) to ensure the correct operation of the service and for analytical purposes. The user may change cookie settings in their browser at any time. Restricting the use of cookies may affect certain website functionalities.

§ 8. Security Measures

The Foundation employs advanced technical and organizational measures (including SSL connection encryption, access control) to protect data against unauthorized access, loss, or destruction.

§ 9. Final Provisions

The policy is reviewed on an ongoing basis and updated as necessary. The current version is effective as of February 15, 2026.