IN ACCORDANCE WITH THE LAW
PRIVACY POLICY
The Privacy Policy of the Tolerado Association for LGBT+ Individuals
Personal Data Processing Policy
In accordance with Article 13 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the “Regulation,” the Tolerado Association for LGBT+ Individuals informs:
The controller of your personal data is the Tolerado Association for LGBT+ Individuals, located in Gdańsk (80-239) at Miszewskiego 17/105, registered under the KRS number: 0000429382, hereinafter referred to as the “Association.”
Contact with the Data Protection Officer: tolerado@tolerado.org with the subject line “Data Protection Officer”.
The Association may process your personal data for the following purposes:
- Execution of ordered or reported services resulting from the statutory activities of the Association in accordance with Article 6(1)(f) of the Regulation;
- Administration and management of the Association’s activities, particularly for the purpose of managing ordinary, supporting, and honorary members, as well as for the purpose of meeting the requirements arising from the provisions of the Act on Associations of 7 April 1989, as amended (Journal of Laws of 1989, No. 20, item 104), in accordance with Article 6(1)(f) of the Regulation;
- Statistical or analytical purposes, if this is based on a legitimate interest stemming from the statutory purposes of the activities or for the purpose of measuring traffic on the website and social media associated with the Association, in accordance with Article 6(1)(f) of the Regulation;
- To conduct statutory informational activities and send free, ordered marketing materials (newsletter) in accordance with Article 6(1)(f) of the Regulation;
- To carry out specific projects, where the legal basis for data processing arises from agreements with other entities, statutory obligations, or other documents, in accordance with Article 6(1)(f) of the Regulation;
- Arising from concluded service provision agreements, volunteer agreements, mandate agreements, work contracts, or any other legally permissible form of contract, for the purpose of fulfilling that contract, based on Article 6(1)(b) of the Regulation;
- Arising from the legal obligations of the Association based on accounting and tax regulations, under Article 6(1)(c) of the Regulation;
- To assert or defend against legal claims, in accordance with Article 6(1)(f) of the Regulation;
- Related to the management and administration of personnel or individuals carrying out tasks for the Association in an organized manner, in accordance with Article 6(1)(f) of the Regulation.
In connection with the purposes of processing indicated in point 3, your data may be made available to other entities, such as:
- Entities authorized to receive data under the law (including the Social Insurance Institution, the Tax Office, judicial authorities, and other related entities);
- Entities providing postal services;
- Entities providing legal services;
- Entities providing auditing services, or entities authorized based on separate agreements with the Association to control the Association’s activities, especially those performed by the Association’s public services financed from public funds, European Union funds, or funds from the European Economic Area, to the extent that providing data is necessary to carry out a correct control and such disclosure results from concluded agreements, applicable regulations, and is legally justified;
- Entities processing data on behalf of the Association based on personal data processing agreements.
In connection with the processing of personal data, you have the following rights:
- Under Article 15 of the Regulation – the right to access your data;
- Under Article 16 of the Regulation – the right to rectify your data;
- Under Article 17 of the Regulation – the right to erasure of data, provided that personal data are no longer necessary for the purposes for which they were collected and there is no legal basis for further processing of data;
- Under Article 18 of the Regulation – the right to restriction of processing;
- Under Article 21 of the Regulation – the right to object to the processing of data.
Personal data are generally processed within the European Economic Area, however, the Association may assign some activities to subcontractors outside the EEA. This applies in particular to subcontractors operating within the framework of teleinformatics services support and IT infrastructure. According to the decision of the European Commission, the condition for the provision of such services must be to ensure by the subcontractor a level of protection of personal data consistent with the requirements of the European Economic Area.
Image Processing Policy
- In connection with participation in certain events, meetings, and other services resulting from statutory activities, the Association may process your biometric data in the form of image and voice, in accordance with recital 51 and Article 4(14) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
- Consent to the processing of biometric personal data may entail consent to the free dissemination of your image in external media, in accordance with Article 81(1) of the Act on Copyright and Related Rights of 4 February 1994 (Journal of Laws of 2019, item 1231).
- In accordance with Article 81(2) of the Act on Copyright and Related Rights of 4 February 1994 (Journal of Laws of 1994 No. 24, item 83), consent to the processing and dissemination of the image is not required in the case where the person whose image is disseminated is a well-known person, performing political, social, or professional duties, or in the case where the person’s image constitutes only a detail of a whole such as a gathering, landscape, or public event.
- In connection with the processing of biometric data indicated in point 1, you have the same rights as specified in point 5 of the Privacy Policy of the Tolerado Association for LGBT+ Individuals.
Cookie Usage Policy
- This policy concerns the use of cookies by the Tolerado Association for LGBT+ Individuals website (www.tolerado.org and related subpages) hereinafter referred to as the “Tolerado Website”.
- The Tolerado Website uses cookies to tailor the content of the site to your preferences. They are also used to create anonymous statistics.
- Cookies are computer data typically in text format saved on an end device, containing data (including the name) related to the website.
- The entity responsible for automatically placing cookie files on your device is the operator of the Tolerado Website.
- The Tolerado Website uses two types of cookies:
- Session cookies, which allow you to remember choices made. They remain on the end device until the end of the website/application session or until the browser is turned off.
- Persistent cookies, which are stored on the device for a time defined in the parameters of the file.
- The Tolerado Website uses the Google Analytics internet analysis functionality, which also uses cookies.
- Cookies can be cleared, disabled, or their storage limited in the settings of the internet browser. This may affect some functionalities of the Tolerado Website.
- Cookies may be used by partners cooperating with the Association.