This privacy policy describes the rules for processing the personal data of persons using the jeton.pl website and contacting us through the available forms. We process data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) and the applicable national provisions.

Data controller and contact to the Data Protection Officer

The controller of your personal data is:

  • Jeton Cloud Sp. z o.o. Sp.k.
  • ul. Domaniewska 37/2.43, 02-672 Warszawa
  • NIP: 5213901362, KRS: 0000850403, REGON: 386529721
  • E-mail: [email protected], telephone: +48 22 378 48 62

In all matters concerning the processing of personal data and the exercise of the rights available to you, you may contact the Data Protection Officer appointed by us at: [email protected].

What data we process and for what purposes

We collect personal data to the extent necessary to handle a specific enquiry or service. The table below describes what data, for what purpose and on what legal basis we process for each form available on the website.

Process / formPurpose of processingScope of dataLegal basis
Contact (lead)Responding to the enquiry, return contact and handling correspondenceFirst and last name, e-mail, telephone (optional), company name (optional), message contentArt. 6(1)(f) GDPR (legitimate interest: handling the enquiry)
QuotePreparing an offer and responding to a request for a quoteContact details, company name, information about the scope of the enquiry and requirementsArt. 6(1)(b) GDPR (steps taken at the request of the individual prior to entering into a contract)
Service / fault (ticket)Receiving and handling a service report, dealing with a faultContact details, data necessary to identify the report, description of the problemArt. 6(1)(b) GDPR (performance of a contract) or (f) (handling the report)
Downloading material (download)Providing Academy material and confirming the downloadE-mail, first name (optional), company name (optional)Art. 6(1)(a) GDPR (consent)
NewsletterSending information and marketing materials by electronic meansE-mail, first name (optional)Art. 6(1)(a) GDPR (consent)

Providing data is voluntary; however, to the extent marked as required, it is necessary to handle the given enquiry, prepare an offer, process a report or provide a service.

We process personal data on the following bases under Art. 6(1) GDPR:

  • Art. 6(1)(a) GDPR: the consent of the data subject, e.g. for the newsletter and downloading material. You may withdraw your consent at any time.
  • Art. 6(1)(b) GDPR: necessity for the performance of a contract or to take steps at the request of the individual prior to entering into it, e.g. a quote and handling a service report.
  • Art. 6(1)(c) GDPR: compliance with legal obligations, e.g. retaining accounting and settlement documents.
  • Art. 6(1)(f) GDPR: the legitimate interest of the controller, e.g. handling correspondence, pursuing and defending against claims and ensuring the security of the website.

Recipients of data

Access to the data is held by authorised employees and associates of the controller. We may entrust the data to trusted processors, who act on our behalf and on the basis of a data processing agreement:

  • the provider of the hosting and server infrastructure on which the website runs,
  • the provider of e-mail and correspondence handling,
  • the provider of the CRM system (Zoho) for handling enquiries and customer relations, after this integration is activated,
  • providers of tools supporting the provision of services and the handling of reports.

We store lead data locally as a backup and, after the integration is activated, it may be transferred to the CRM system. We do not sell data and do not share it for marketing purposes with other controllers.

Transfer of data outside the European Economic Area

As a rule, we process data within the European Economic Area (EEA). If, as a result of using external tools, e.g. a CRM system or an e-mail provider, data were to be transferred outside the EEA, we ensure the appropriate safeguards required by the GDPR. The basis for such a transfer is the standard contractual clauses approved by the European Commission or a decision confirming an adequate level of protection. On request, we will provide information about the safeguards applied.

Data retention periods

We retain data for the period necessary to achieve the purpose for which it was collected, and then for the period resulting from the law or justified by defence against claims.

ProcessRetention period
Quote and contact enquiries (lead, quote)Until the enquiry has been handled, and then for up to 12 months for contact and evidential purposes
Performance of a contract (service, quote concluded with a contract)For the duration of the contract, and then for the limitation period for claims and the period required for accounting documents
Service reports (ticket)For the duration of handling the report and the period necessary for evidential and warranty purposes
Downloading material (download)Until consent is withdrawn or the purpose of providing the material ceases
NewsletterUntil consent to receive the newsletter is withdrawn
Accounting and settlement documentsFor the period required by tax and accounting law

Rights of data subjects

In connection with the processing of data, you have the following rights:

  • the right to access your data and to obtain a copy of it,
  • the right to rectification (correction) of the data,
  • the right to erasure of the data (the right to be forgotten),
  • the right to restriction of processing,
  • the right to object to processing based on a legitimate interest,
  • the right to data portability,
  • the right to withdraw consent at any time, without affecting the lawfulness of the processing carried out before its withdrawal,
  • the right to lodge a complaint with the supervisory authority, which is the President of the Personal Data Protection Office (PUODO).

To exercise the above rights, write to us at [email protected] or [email protected]. We respond without undue delay, in accordance with the time limits set out in the GDPR.

Cookies and analytics

The jeton.pl website uses only the necessary cookies and technical mechanisms required for the correct operation of the site and the handling of forms. We do not use marketing or tracking cookies, we do not use Google Analytics, and we do not embed external chatbots or advertising widgets. Any analytics is cookieless in nature and is disabled by default. You will find the details in the cookie policy document.

Data security

As an IT company operating since 2017 and applying standards compliant with the ISO 27001 standard, we implement adequate technical and organisational measures to protect data against unauthorised access, loss, alteration or disclosure. Among other things, we apply access control, encryption of transmission, backups and the principle of minimising the scope of data and of limited access only to authorised persons.

Changes to the privacy policy

We may update the privacy policy, for example in connection with a change in the law, the launch of new website features or a change in the tools used. The current version is always available on the website, and we state the date of the last update at the beginning of the document. We encourage you to check the content of this page periodically.