Privacy policy and use of cookies

Introduction

1. This Privacy Policy and the use of cookies (hereinafter: “Privacy Policy”) is a set of rules for the processing of Users’ personal data and the collection of cookies on the website of Vladyslav Muzhylivskyi Itentio with headquarters in Krakow https://tour.itentio.com (hereinafter: “Website”).
2. Before using the Website, the User should read this Privacy Policy. The purpose of the Privacy Policy is, among others, implementation of the information obligation referred to in art. 13 p. 1 and 2 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (General Data Protection Regulation), called “GDPR” or “RODO”.
3. This Privacy Policy is for informing and explain users on what we do with your personal data, how we collect, use and process your personal data,whether we are in the process of helping you find a tour, book a tour for your groups of tourists, contact you once we have found you a tour, providing you with a service, receiving a service from you, using your data to ask for your assistance in relation to our Tourists, or you are visiting our website, and how we comply with our legal obligations to you. Your privacy is important to us, and we are committed to protecting your data privacy rights.
4. This Privacy Policy applies to the personal data of our Website, Users, Clients, Tourists, Suppliers and other people, which was referred to be contacted by our Tourists and Clients.
5. It is important to point out that we may make some changes into this Privacy Policy from time to time. Please visit this webpage if you want to stay up to date, as all our changes will be posted here.

What kind of personal data do we collect?

Tourists data: In order to provide the best-tailored tour opportunities for you, we need to process certain information about you. We only ask for details that will help us to assist you, such as your name and surname, birth date, number and series of travel documents. You can choose to share other relevant information with us. Where appropriate and in accordance with local laws and requirements, we may also collect information related to your health or details of any criminal convictions.

Client data: If you are a customer of Vladyslav Muzhylivskyi Itentio, we need to collect and use information about you, or individuals at your organisation, in order to provide you excellent services, such as 1) finding hotels and booking trips which is a good fit for your company and your tourists, or 2) providing you with hotel/trips booking outsourcing services, or 3) providing you with dedicated travel market informational services.

Website Users: We collect a limited amount of data of our Website Users, which is used to help us improving your experience when using our website and to help us manage the services we provide. This includes information such as how you use our website, the frequency with which you access our website, and the times that our website is most popular.

Suppliers data: We need relevant information from the Suppliers in order to use their services properly. We need contact details of relevant individuals at Supplier’s company to communicate with them. Also, we need bank details in order to pay for the services Suppliers provide due to the existing agreements.

Other people, whose data we receive from Tourists or Clients:  We may ask for some contact details to those people, which you as a Tourist or Client may refer, who might be interested in cooperation with Vladyslav Muzhylivskyi Itentio.

How do we collect your personal data?

There are several ways, in which we can collect your personal data:

• directly from you – as a result of sending us requests, e-mails or messages sent via LinkedIn or other social media, as well as your activity on our Website and use of our Contact form;
• from third parties – your friends, partners or our current Clients which provide us following data: your name and surname, phone number, e-mail address, Skype ID.
• through publicly available internet portals such as LinkedIn, Facebook or your personal websites, on the basis of which we obtain your name and e-mail address in order to make contact.
• due to the use of cookies on our website, in line with cookies settings in your browser.

How do we use your personal data – what is the aim and legal basis?

1. searching for a new tour for you and your groups based on your request, in cooperation with our contractors and conducting correspondence in these matters. –  Art. 6 par. 1 lit. “A” GDPR – Your consent; Art. 6 par. 1 lit. “F” GDPR – Our legally legitimate interest, based on the need to maintain current contact and maintain relationships as part of our business operations.
2. implementation of contracts concluded: a) between Us and You; b) between us and the subject who is yours employer / co-worker or c) between us and the entity that you are representing, including ongoing contact and correspondence in connection with the above agreements. – Art. 6 par. 1 lit. “B” GDPR – indispensability of data processing to perform the contract to which you are a party or take action before concluding a contract with you.; Art. 6 par. 1 lit. “F” GDPR – Our legally legitimate interest, based on the need for proper implementation of contracts with our contractors and maintaining ongoing contact with them.
3. answering inquiries addressed by you and contacting you in matters that you addressed to us using, among others, our contact form or by sending a message to our e-mail address. –  Art. 6 par. 1 lit. “F” GDPR – Our legally legitimate interest, based on the need for ongoing contact and answering inquiries addressed to us.
4. contacting you in matters related to our business activities, including establishing cooperation with: a) You as a Tourist or b) the entity that is your friend/co-worker or c) an entity that you represent as potential Client – Art. 6 par. 1 lit. “F” GDPR – Our legally legitimate interest, based on the need for ongoing contact, initiating and maintaining relationships as part of our business activity.
5. fulfilling the legal obligations arising from us, resulting from tax law and accounting principles – Art. 6 par. 1 lit “C” GDPR – data processing is necessary to fulfill the legal obligation imposed on us.
6. determining, securing and investigating possible claims – Art. 6 par. 1 lit. “F” GDPR – Our legitimate interest, relies on the need to establish an investigation or defend against legal claims.
7. ensuring the safety of using websites, matching them to users’ needs, marketing own services and goods. –  Art. 6 par. 1 lit. “F” GDPR – Ours legitimate interest, based on the need for  security of using the Internet portal and ensuring the convenience of using it as well as the possibility of offering our own services and goods to customers.

Who do we share your personal data with?

Tourists data: It might be shared with hotels, bus transfer companies for bus trips and embassies to enable your trip and book a tour for you. Unless you specify otherwise, we may also share your information with associated third parties such as our service providers if that will help us to improve the level of service provided to you.

Client data: We will share your data primarily to ensure that we provide you with a suitable solution regarding booking hotels, bus transfer companies and contacting embassies to issue visas to your tourists and groups and/or to provide you with travel consulting services.

Supplier data:  We may share your information with associated third parties such as our service providers and organisations to whom we provide services, unless you specify otherwise.

Other people, whose data we receive from Tourist and Clients: We may share your information with associated third parties such as our service providers and organisations to whom we provide services, unless you specify otherwise.

Website users: We may share your information with providers of web analytics services, marketing automation platforms and social media services to make sure any advertising you receive is targeted to you, unless you specify otherwise.

Your personal data may be transferred to countries that are not members of the European Union, based on appropriate legal safeguards, which are standard clauses of personal data protection, approved by the European Commission.

How do we protect your personal data?

We really care about protecting your information. That’s why we put in place appropriate measures that are designed to prevent unauthorised access to, and misuse of, your personal data. We have in place a range of appropriate technical and organisational measures. For instance, we are using SSL certificates on our website, and several steps authorizing procedures.

How long do we keep your personal data for?

On the off chance that we have not had significant contact with you (or, where appropriate, the organization you are working for or with) for a time of two years, we will erase your own information from our Systems except if we have confidence in compliance with common decency that the law or other direction expects us to protect it (for instance, due to our obligations to tax authorities or in connection with any anticipated litigation).

How can you access, amend or take back the personal data that you have given to us?

In case we already hold your personal data, you still have various rights in relation to it. To get in touch about these, please contact us. We will work with your request without undue delay, and in any event in accordance with the requirements of any applicable laws. Please note that we may keep a record of your communications to help us resolve any issues which you raise.
Right to object: If we are using your personal data because we believe it is necessary for our legitimate interests to do so, and you do not agree, you have the right to object. We will respond to your request within 30 days (although we may be allowed to extend this period in certain cases). Generally, we will only disagree with you if certain limited conditions apply.
Right to withdraw consent: Where we have obtained your consent to process your personal data for certain activities (for example, for profiling your suitability for certain roles), or consent to market to you, you may withdraw your consent at any time.
Data Subject Access Requests (DSAR): You have the right to ask us to confirm what information we hold about you at any time, and you may ask us to modify, update or delete such information. At this point we may comply with your request or, additionally do one of the following: either we may ask you to verify your identity, or ask for more information about your request; and where we are legally permitted to do so, we may decline your request, but we will explain why if we do so.
Right to erasure: In certain situations (for example, where we have processed your data unlawfully), you have the right to request us to “erase” your personal data. We will respond to your request within 30 days (although we may be allowed to extend this period in certain cases) and will only disagree with you if certain limited conditions apply. If we do agree to your request, we will delete your data.
Right of data portability: If you wish, you have the right to transfer your data from us to another data controller. We will help with this – either by directly transferring your data for you, or by providing you with a copy in a commonly used machine-readable format.
Right to lodge a complaint with a supervisory authority: You also have the right to lodge a complaint with your local supervisory authority: Urząd Ochrony Danych Osobowych, adress: ul. Stawki 2, 00-193 Warszawa.
If your interests or requirements change, you can unsubscribe from part or all of our marketing content (for example job role emails or Itentio newsletters) by clicking the unsubscribe link in the email, or by updating your preferences through our preference centre on the Itentio website.

Consequences of not providing personal data:

Except for the cases where the provision of personal data is a legal requirement (processing in connection with the performance of obligations under tax law and accounting rules), providing personal data is entirely voluntary, however, failure to do so will hinder or prevent us from achieving the objectives set out above.
Your consent to the processing of your personal data may be withdrawn at any time. Withdrawal of consent does not affect the legality of the processing carried out prior to its withdrawal.

Who is an administrator of your personal data?

The administrator of your personal data is the entity that decides how personal data will be used, are we:

Vladyslav Muzhylivskyi Itentio, ul. Francesco Nullo 13/15, 31 – 543 Kraków, whose registration file is kept by CEIDG, NIP number: 6751522794, REGON number: 380162082 (hereinafter referred to as “APD”).
You can contact us in the following ways:

1. by mail to the following address: Vladyslav Muzhylivskyi Itentio, ul. Francesco Nullo 13/15, 31 – 543 Kraków;
2. via e-mail: [email protected];
3. by phone: + 48 531 381 201.

Data Protection Inspector/Officer

We have appointed a data protection officer (hereinafter: “DPO”). It is a person with whom you can contact in all matters regarding the processing of your personal data and the use of rights related to data processing. The DPO can be contacted as follows:

1. by mail to the following address: Vladyslav Muzhylivskyi Itentio, ul. Francesco Nullo 13/15, 31 – 543 Kraków;
2. via e-mail: [email protected];
3. by phone: + 48 531 381 201.

What are cookies and how do we use them?

A “cookie” is a bite-sized piece of data that is stored on your computer’s hard drive. They are used by almost all websites and do not harm your system. We use them to track your activity to help ensure you get the greatest possible user experience when visiting our website. We can use the information from cookies to ensure we present you with options tailored to your preferences on your next visit. We can also use cookies to analyse traffic and for advertising purposes.

If you want to check or change what types of cookies you accept, this can usually be altered within your browser settings. We also provide information about this in our preferences if you are subscribed to Itentio mailings.

How to reject cookies

• If you don’t want to receive cookies that are not strictly necessary to perform basic features of our site, you may choose to opt-out by changing your browser settings:
• in Internet Explorer [link https://support.microsoft.com/pl-pl/products/windows?os=windows-10]
• in Mozilla Firefox [link – https://support.mozilla.org/pl/kb/ciasteczka]
• in Google Chrome [link – https://support.google.com/chrome/answer/95647?hl=pl]
• in Safari browser [link – https://support.apple.com/pl-pl/HT201265]
• in Opera browser [link – http://help.opera.com/Linux/9.22/pl/cookies.html]

• Most web browsers will accept cookies but if you would rather we didn’t collect data in this way you can choose to accept all or some, or reject cookies in your browser’s privacy settings. However, rejecting all cookies means that you may not be able to take full advantage of all our website’s features. Each browser is different, so check the “Help” menu of your browser to learn how to change your cookie preferences.
• For more information generally on cookies, including how to disable them, please refer to aboutcookies.org. You will also find details on how to delete cookies from your computer.