The Data Processing Agreement is a an agreement which describes how we handle personal data and is a part of the Terms and Conditions. Please read it carefully.
The Controller (Customer) and the Processor (Operator) are hereinafter collectively referred to as “Parties” or each individually as a “Party”.
Whereas the Parties concluded an Agreement, the subject of which is the provision by electronic means, via the Application, of a service enabling desk and parking spot management (hereinafter: the Agreement), in connection with the execution of which the Controller – as a personal data controller – will entrust the Processor with the processing of personal data in the scope specified in this Agreement (hereinafter: DPA);
The parties have agreed to conclude a DPA as follows:
with the proviso that if – and to the extent – in which – the above-mentioned information cannot be provided at the same time, the Processor may provide it successively without undue delay.
The notification will be sent to the e-mail address provided by the Administrator in electronic correspondence. In the event of circumstances that may result in the liability of either Party regarding incorrect processing of Personal Data by the Processor, the Processor undertakes to take immediate action to remove these circumstances and prevent their occurrence in the future, and is obliged to immediately (no later than within 24 hours) notify the Controller in writing about this fact and provide the Controller with the necessary, legally permissible assistance in order to release the Controller from this liability.
The Processor is responsible for damages that arise to the Controller, persons to whom the Personal Data relates, or other third parties as a result of the processing of Personal Data by the Processor that is inconsistent with the Agreement or the provisions of the law, in particular in connection with the disclosure of Personal Data to unauthorized persons.
a) Nature and purposes of processing:
Data processing in connection with the provision of a service enabling the desk and parking spot management accordance with the Agreement.
b) Categories of persons whose data is entrusted:
Employees and associates, regardless of the legal form of employment
c) Type of entrusted personal data:
Name and surname, e-mail address, vehicle registration numbers.
Name | Address | Data Processing Locations | Service | Purpose | Legal basis | Entrusted data | Data transfer mechanism |
Auth0, Inc. | 10800 NE 8th St #700, Bellevue, WA 98004, USA
| AWS (Frankfurt data center, failover to Dublin) | Authentication and authorization of application users | Providing access to the application | Legitimate interest | Name and surname E-mail address
| SCC |
Microsoft Ireland Operations Ltd | Microsoft Ireland Operations Ltd, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521, Ireland
| West Europe (Amsterdam), North Europe (Dublin) | Infrastructure and data hosting Authentication and authorization of application users
| Providing access to the application | Legitimate interest | Name and surname E-mail address License Plate Number | SCC |
Sendinblue
| SENDINBLUE SAS 7 rue de Madrid, 75008 Paris, France | GCP (Brussels), AWS (Dublin) | E-mail delivery | Sending e-mail messages to users | Legitimate interest | Name and surname E-mail address
| – |
Freshworks, Inc. | Freshworks Inc. San Mateo, CA 94403, USA
| AWS (Frankfurt) | Processing of customer and user requests | Resolving user and customer requests sent as part of support | Legitimate interest | Name and surname E-mail address
| SCC |
LMTS Sp. z o.o. | LMTS Sp. z o.o. ul. Partyzantów 17 75-900 Koszalin | Poland | – | Providing uninterrupted access to the Service in connection with the planned transfer of intellectual property | Legitimate interest | Name and surname E-mail address License Plate Number | – |