Menu

US Region

Grandmetric LLC
Brookfield Place Office
200 Vesey Street
New York, NY 10281
EIN: 98-1615498
+1 302 691 94 10
info@grandmetric.com

EMEA Region

GRANDMETRIC Sp. z o.o.
ul. Metalowa 5, 60-118 Poznań, Poland
NIP 7792433527
+48 61 271 04 43
info@grandmetric.com

  • en
  • pl

    • Privacy Policy Grandmetric

    Home Privacy Policy Grandmetric

    Privacy Policy Grandmetric

    Since you have found this document, it means that the security of your data is important to you. Know that we care about the proper treatment of your personal data. 

    Respecting your time, we have prepared for you a shortened version of the most important principles related to the protection of privacy. If the basic information turns out to be insufficient for you, below you will find a broader description in which we explain how we handle the personal data entrusted to me by you. 

    This document was updated on 4th July 2023.

    I. Basic information

    1. The administrator of personal data is Grandmetric Sp. z o.o., ul. Metalowa 5, 60-118 Poznań, NIP 7792433527. 
    2. We process data in accordance with the General Data Protection Regulation 2016/679 (“GDPR”); 
    3. Remember that, for the most part, the provision of personal data, including consent to their processing, is completely voluntary, but necessary for us to achieve the purpose for which it is made available. All personal data provided are processed only to the extent and for the purpose for which they were made available. 
    4. You have the right to update your personal data at any time. 
    5. We take care of the proper protection of your personal data, guaranteeing that it will be processed only for the purpose for which it was made available, stored in a safe manner and not disclosed to unauthorized entities. 
    6. By contacting us or placing an order, you provide your personal data, and we guarantee that your data will remain safe. 
    7. As is the case on almost every website, we also use cookies. 

    II. Administrator

    The administrator of personal data responsible for their security is: 

    Grandmetric Sp. z o.o.,  

    ul. Metalowa 5,  

    60-118 Poznań,  

    NIP 7792433527 

    +48 61 271 04 43 

    info@grandmetric.com 

    Contact is also possible via the form on the website. 

    III. Your permissions

    Current legal provisions grant you a number of rights related to the processing of your personal data: 

    1. Access to personal data. You have the right to access your data that we store as an administrator. You can exercise this right by contacting us using the contact details provided. 
    2. Change of personal data, rectification or deletion. You can make changes, including updating, rectifying or deleting your personal data that we process, by contacting us at the contact details provided. You can exercise the right to delete data when your data is no longer necessary for the purposes for which it was collected by us or when you withdraw your consent to data processing. 
    3. Withdrawal of consent. In the case of processing personal data on the basis of consent, you can withdraw this consent at any time. We inform about it almost at any time of collecting consent and make it possible to withdraw consent as easily as it was given. In order to withdraw your consent, please contact us using the contact details provided. 
    4. The right to limit processing or object to the processing of personal data. You have the right to limit the processing or object to the processing of your personal data at any time, due to a special situation, unless the processing is required by law. 

    You can object to the processing of your personal data when: 

    1. the processing of personal data is based on a legitimate interest or for statistical purposes, and the objection is justified by a particular situation; 
    2. personal data is processed for the purposes of direct marketing, including profiling for this purpose. 

    In turn, with regard to the request to limit data processing, we inform you that it is due when: 

    1. you question the correctness of the personal data – for a period allowing us to check the correctness of this data; 
    2. the processing is unlawful, and you oppose the removal of personal data, requesting the restriction of their use instead; 
    3. we no longer need personal data for the purposes of processing, but you need them to establish, pursue or defend claims; 
    4. you have objected pursuant to Art. 21 sec. 1 of the GDPR regarding data processing by us until it is determined whether the legitimate grounds on our side override your grounds for objection. 

    5. Right to data portability. You have the right to transfer data concerning you and you have the right to send this data through us to another administrator, if: 

    1. the processing is based on consent, pursuant to art. 6 sec. 1 lit. a GDPR or art. 9 sec. 2 lit. a GDPR; or 
    2. the processing takes place on the basis of a contract, pursuant to art. 6 sec. 1 lit. b GDPR; and 
    3. the processing is carried out in an automated manner. 

    When exercising the right to transfer data, you can request that we send your personal data directly to another administrator, if it is technically possible. The right to data portability must not adversely affect the rights and freedoms of others. If you wish to exercise these rights, please contact us using the contact details provided. 

    6. Any other questions, concerns or complaints.

    Should you have any questions, objections or doubts regarding the content of this Privacy Policy or the manner in which personal data is processed, as well as complaints regarding these matters, please contact us at the contact details provided with details of the complaint. Any complaints received will be investigated and responded to. 

    You also have the right to lodge a complaint with the supervisory body, which is the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw. 

    Remember that you can always ask us to provide you with more information, what data we have about you and for what purposes we process it. All you have to do is send a message to the e-mail address provided above. 

    IV. Purposes for which we process your personal data 

    1. Orders and issuing billing documents 

    When ordering a product or service from us, you provide the data necessary to complete the order (e.g. identifying data or contact details). Providing data is voluntary, but necessary to place an order. 

    The data provided in connection with the order are processed in order to perform the order, issue billing documents, ensure contact, and may also be used for archival and statistical purposes. 

    The data will be processed for the time necessary to complete the order, and then until the expiry of the limitation period for claims under the concluded contract. In addition, we are obliged to store settlement documents with data for a period of 5 years from the end of the tax year in which the document was issued. 

    In the case of the data provided for the purpose of order fulfilment, you cannot object to the processing of data and demand the deletion of data until the expiry of the limitation period for claims under the concluded contract. 

    Personal data is processed on the basis of several legal grounds expressed under art. 6 of the GDPR, including the need to perform the contract (delivery of the subject of the contract, communication) or to take action before concluding the contract, i.e. pursuant to art. 6 sec. 1 lit. b GDPR; due to the necessity to fulfil the legal obligation incumbent on the administrator (settlement of transactions, issuance of a settlement document), i.e. pursuant to art. 6 sec. 1 lit. c GDPR; due to the legitimate interest pursued by the administrator (defence against claims, archiving, direct marketing), i.e. pursuant to art. 6 sec. 1 lit. f GDPR. 

    2. Direct contact or using the form

    When contacting via the data provided on the website or the contact form, you provide at least the data that is mandatory. It is up to you whether you provide additional data in the content of the message sent to us. Providing data is voluntary, but necessary to make contact and provide an answer. 

    Your data is processed in this case in order to contact you. The basis for data processing is your consent, which you can withdraw at any time. 

    3. Social media

    On our website, you can find links to social networks where information about us and our activities is posted. 

    The administrator of data within the social network, i.e. your personal data provided as part of your individual account, is both us as the owner of the social account and the owner of the social network. 

    Personal data is processed on the basis of consent, i.e. pursuant to art. 6 sec. 1 lit. a GDPR expressed through your actions on our profile (e.g. writing a message, publishing a post on our profile, leaving a comment, rating on the profile). Consent is voluntary and free and may be withdrawn at any time. 

    4. Website integration with Google Maps 

    As part of the website, we also use Google Maps. This allows us to provide you with the ability to display an interactive map directly on the website and to provide you with the convenience of using the map function and the location of your business. 

    Thus, by using Google Maps, you allow Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland to access your data. In this area, I refer to the information on data processing by Google available at: https://policies.google.com/privacy?hl=en-US#intro

    5. Opinions 

    We give you the opportunity to express your opinion about us and the services we provide, which, if you agree, will be made available on our website, with reference to your personal data. 

    Personal data is processed on the basis of consent, i.e. pursuant to art. 6 sec. 1 lit. and the GDPR. Consent is voluntary and free and may be withdrawn at any time. 

    6. Newsletter 

    By subscribing to the newsletter, you provide us with your e-mail address and your name via the newsletter subscription form. Providing data is voluntary, but necessary to subscribe to the newsletter. 

    These data are used to send you educational emails, information about the life of our company, invitations to events, sending commercial proposals, and the legal basis for their processing is your consent. The data will be processed for the duration of the newsletter unless you unsubscribe earlier, which will remove your data from the database. 

    You can correct your data stored in my newsletter database at any time, as well as request their removal by unsubscribing from the newsletter. 

    Personal data is processed on the basis of consent, i.e. pursuant to art. 6 sec. 1 lit. and the GDPR. Consent is voluntary and free and may be withdrawn at any time. 

    7. Signing up for events organized by Grandmetric

    By signing up for events such as webinars or face-to-face meetings, you provide us with your e-mail address, your name and telephone number and the position you work in via the registration form. Providing data is voluntary, but necessary to register for the event.

    These data are used to register you for the event and to enable contact to collect feedback, and the legal basis for their processing is your consent.

    You can correct your data stored in our newsletter database at any time, as well as request their removal.

    Personal data is processed on the basis of consent, i.e. pursuant to art. 6 sec. 1 lit. and the GDPR. Consent is voluntary and free and may be withdrawn at any time.

    8. Apply to Grandmetric 

    On our website, we also give you the opportunity to apply for vacancies or internships. By using the application form, you provide us with your personal data in accordance with your choice, which is an indication of your consent. 

    In our case, it is necessary to provide your identification data (name and surname), contact details (e-mail or telephone number or mailing address), and information about your knowledge and experience in order to consider your application. 

    All data except the above minimum are voluntary. Know that your data included in the application will be stored for up to 6 months from their receipt, unless you withdraw your consent earlier and request their removal. These 6 months is the optimal period of time when your application can actually be recognized and used for recruitment. 

    Personal data is processed on the basis of consent, i.e. pursuant to art. 6 sec. 1 lit. and the GDPR. Consent is voluntary and free and may be withdrawn at any time. 

    9. Grandmetric Watch 

    By taking an online course with us, you also use the Grandmetric Watch services and at the same time share your personal data with our partner Teachable, Inc based in New York, United States (16 W. 22nd Street, 6th Floor, New York, New York 10010, USA). Information on how Teachable uses Personal Data can be found at: https://teachable.com/privacy-policy If you have any questions, you can contact Teachable at the email address: accounts@teachable.com 

    10. Grandmetric LLC 

    Grandmetric LLC is our second business to serve clients separately and independently. Due to the relationship between our two companies, personal data may be processed to a limited extent by both our companies within the group of companies for internal administrative purposes, which is a legitimate interest. 

    When processing data, Grandmetric LLC implements: 

    California Online Privacy Protection Act 

    CalOPPA is the first state law to require commercial websites and online services to include privacy policies on their pages. This law extends beyond California, requiring individuals or companies in the United States (and ultimately worldwide) that operate websites collecting Personal Information from California consumers to post a clear (conspicuous) privacy policy on their websites, clearly informing about the information that is collected and about third parties or companies with whom this information is exchanged. For more information, please visit: http:/consumer cal.org/California-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpuf 

    Consistent with CalOPPA, we agree to the following: 

    Users can use our site anonymously. Since the creation of the Privacy Policy, we have added a link to it on our home page, or at least on the page that appears to the User as one of the first. Our Privacy Policy includes the word “Privacy” and is easily found on the page described above. 

    You will be notified of any changes to our Privacy Policy Page. 

    You have full access to your Personal Data and can change your personal information electronically by sending a message to the following email address: info@grandmetric.com 

    How does our Website deal with Do Not Track signals? 

    We recognize Do Not Track and Do Not Track signals, plant cookies, or use advertising when the Do Not Track (DTN) browser mechanism is enabled.  

    Does our site allow third parties to track online behavior? 

    We allow third parties to track your online behavior. 

    COPPA (Children Online Privacy Protection Act) 

    When it comes to collecting Personal Information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, U.S. Consumer Protection Agency enforces COPPA rules that clearly state what operators of websites and online services must do to protect children’s privacy and safety online. 

    Do we allow third parties, including through advertising networks or plug-ins, to collect Personal Data from children under the age of 13? 

    We do not sell services to children under the age of 13. 

    Fair Information Practices 

    The Fair Information Practices Principles form the basis of privacy laws in the United States, and the ideas they contain play a key role in the development of privacy laws around the world. Understanding the Fair Information Practices Principles and how they should be implemented in the company is important in order to be able to comply with the various privacy laws that protect Personal Data. 

    In the event of a Personal Data breach, we have adopted the following flexible measures that are in line with Fair Information Practices: 

    We will inform you about this by e-mail within 7 working days. 

    We also adopt the Principle of Individual Claims, which allows individuals to pursue their rights in court against those who do not comply with applicable law when collecting data. This principle implies not only that individuals have enforceable rights in relation to data users, but also that individuals may use the assistance of courts and administrative authorities to investigate and/or prosecute violations by entities processing Personal Data. 

    V. Entrusting the processing of personal data and making it available 

    Your data may be processed by third parties to whom we commission the performance of individual activities related to ensuring the proper functioning of our business. The entities to which we commission the processing of personal data guarantee the use of appropriate measures for the protection and security of personal data required by law. The entities to which we entrust data processing are: 

    1. Companies supporting our IT area; 
    2. A company that handles accounting and accounting matters; 
    3. Marketing support companies; 
    4. Other companies with whom we have concluded an agreement to entrust the processing of personal data. 

    The data is also made available: 

    1. Companies handling legal matters; 
    2. Companies that support transport and postal transfer. 

    VI. Data processing period 

    The time for which we will process personal data depends on the legal basis for their processing. We inform you that: 

    1. if we process personal data on the basis of consent (Article 6(1)(a) of the GDPR), the processing period lasts until the intended purpose is achieved or consent is withdrawn; 
    2. in the event that we process personal data for the purpose of performance of the contract or taking action before the performance of the contract (Article 6(1)(b) of the GDPR), for the period of service provision, and after its completion for the period of limitation of claims and archiving accounting documentation (5 years ), in accordance with applicable law; 
    3. in the event that we process personal data on the basis of a legitimate interest (Article 6(1)(f) of the GDPR), the processing period lasts until the termination of the above-mentioned interest (including the limitation period for civil law claims) or until the moment of objecting to further such processing – in situations where such an objection is due in accordance with the law; 
    4. in the event that we process personal data because it is necessary due to applicable law (Article 6(1)(c) of the GDPR), the periods of data processing for this purpose are determined by these provisions. 

    VII. Server logs 

    By using our website, you send queries using your device to the server where our website is stored. Logs include e.g. IP address, server date and time, information about the web browser and operating system you are using. The logs are saved and stored on the server. Server logs are only auxiliary material used to administer the website. Their content is not disclosed to anyone. 

    The data stored in the server logs are not associated with specific people using the website and are not used to identify specific people. 

    VIII. Cookie files 

    Cookie files (so-called “cookies”) are IT data that are stored on your end device. The website uses two basic types of cookies: session and permanent. Session cookies are temporary files that are stored on the user’s end device until logging out, leaving the website or turning off the software (web browser). Permanent cookies are stored on your end device for the time specified in the cookie file parameters or until you delete them. 

    Cookie settings can be changed, in particular, in such a way as to block the automatic handling of cookies in the web browser settings or to inform you about each time they are placed on your device. Detailed information on the possibilities and ways of handling cookies is available in the web browser software settings. Remember that disabling or limiting the use of cookies may cause difficulties in using the website. 

    We use our own cookies to: 

    1. ensure the proper functioning of the website, 
    2. proper functioning of the forms. 

    We also use third-party cookies: 

    1. Google Analytics  – to create statistics and analyze them for website optimization, 
    2. Google Adwords – to promote the website, 
    3. Google Maps – in order to use the map and location of our business, 

    Owned by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. In this area, we refer to the information on data processing by Google available at:: https://policies.google.com/privacy?hl=en-US#intro.  

    1. Pixel Meta – to advertise a website on Facebook, 

    owned by Meta Platforms Ireland Limited, 4 Grand Canal Square Grand Canal Harbour Dublin 2Dublin 662881. In this area, we refer to the information on data processing by Meta available at: https://www.facebook.com/privacy/center/.  

    1. Pixel LinkedIn – to advertise a website on LinkedIn, 

    owned by LinkedIn Ireland Unlimited Company, Wilton Pl, Dublin, Irleland. In this area, we refer to the information on data processing by Meta available at: https://www.linkedin.com/legal/privacy-policy.

    IX. Changing the privacy policy and cookies 

    We reserve the right to make changes to the privacy policy. Changes will be made if required by applicable law or if the technological conditions of the website operation change. The current text of the privacy policy will always be on the website. 

    Grandmetric