Accessibility Tools

Web Accessibility plugin by DJ-Extensions.com

Privacy Policy

§ 1. Definitions

1) Controller – Information Society Development Foundation (Fundacja Rozwoju Społeczeństwa Informacyjnego), with its registered office at: ul. Kopernika 17, 00-359 Warsaw, entered in the register of associations, other social and professional organizations, foundations, and independent public healthcare institutions of the National Court Register maintained by the District Court for the capital city of Warsaw, 12th Commercial Division of the National Court Register, under KRS number: 0000303048, with tax identification number NIP: 525-242-41-91;

2) Personal Data – personal data obtained from Users, i.e. name, surname, email address, phone number, name of the organization;

3) Cookies – IT data, in particular text files, stored on the User’s Device and intended to optimize the User’s use of the Portal and E-learning platforms, as described in detail in § 4;

4) Processing of Personal Data – any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, erasure or destruction;

5) Portal – the website available at: https://sektor3-0.pl/;

6) Sektor 3.0 E-learning – the website available under the subdomain https://elearning.sektor3-0.pl/, hereinafter referred to as the E-learning platform;

7) Device – a device through which the User gains access to the Portal and the E-learning platform, in particular: desktop computers, laptops, tablets, smartphones;

8) Events – meetings, training sessions, or conferences organized by the Controller in on-site, hybrid, or online formats, including, among others, Breakfasts with AI, the Sektor 3.0 Festival, and others.

§ 2. General Provisions

1) This Privacy Policy sets out the rules for processing and protecting personal data provided by Users in connection with the use of materials available on the Portal and the E-learning platform. This document contains information on what personal data is collected, how it is processed, and what rights data subjects have.

2) Sektor 3.0 is an initiative that supports digital transformation and the use of new technologies for socially beneficial activities. The program was initiated by the Polish-American Freedom Foundation. Its implementation was entrusted to the Information Society Development Foundation.

3) The Controller ensures that all efforts are made to process personal data with respect for the privacy of the data subjects and with the utmost care for the security of processed data, in particular by implementing appropriate legal measures to ensure the security of personal data.

§ 3. Processing of Personal Data

1) Users’ personal data will be processed for the purpose of enabling access to materials on the Portal and E-learning platform, providing the newsletter service, direct marketing of the Controller’s own services, using contact forms made available by the Controller on the Portal, managing comments, creating recipient groups, pursuing potential claims, and for statistical purposes within the Sektor 3.0 Program.

The legal bases for data processing are:

a) Article 6(1)(b) GDPR – necessity for the performance of a contract or to take steps prior to entering into a contract – providing access to materials on the Portal and the E-learning platform;
b) Article 6(1)(a) GDPR – consent – for the purpose of sending newsletters;
c) Article 6(1)(f) GDPR – legitimate interest of the Controller – using contact forms provided on the Portal, and for direct marketing of the Controller’s own services.

2) Personal data is processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter: GDPR) (OJ EU L119/1).

3) The provision of Personal Data is voluntary. However, providing data is necessary to use the E-learning platform. Failure to provide data will make it impossible to register and use the E-learning platform and to participate in Events.

4) The Controller processes or may process the following personal data voluntarily provided by the User:

a) when subscribing to the Newsletter: surname, name, email address;
b) when registering for the E-learning platform: surname, name, email address;
c) when registering for Events: surname, name, email address, phone number.

5) Personal data will be stored until consent is withdrawn, and no longer than for the duration of the purposes specified above, i.e. for the operational period of the E-learning platform and the Portal, sending newsletters, enabling participation in Events, direct marketing based on the Controller’s legitimate interest, and also for the period necessary to secure potential claims in accordance with the limitation periods provided for in the Civil Code.

6) We undertake to continuously monitor and periodically review the data retention period and to delete or anonymize personal data in accordance with the designated retention period.

7) Recipients of personal data – access to Users’ personal data may be granted to persons authorized by the Controller to process personal data in the course of fulfilling their duties for the Controller:
a) entities entrusted with activities involving the processing of data (processors), such as IT service providers;
b) entities entrusted with other services ensuring the proper functioning of the Portal;

These entities process data exclusively in accordance with the Controller’s instructions.

8) Due to the use of IT solutions such as Caltha CIVI CRM, Microsoft 365, Google Suite, Google Analytics, Google Tag Manager, Google Ads, Meta Pixel, Meta Ads, LinkedIn Ads & Insights, Ring Central Inc., Mailer Lite, whose providers may be located outside the European Union, e.g. in the United Kingdom or Canada, the Controller may transfer personal data to Canada based on the Standard Contractual Clauses adopted by the European Commission pursuant to Article 46(2) of the GDPR. Although these clauses provide appropriate safeguards for data transferred to third countries, such transfers may still involve certain risks.

9) The Controller declares that it uses tools for analyzing traffic on the Portal, such as Google Analytics and other similar tools. The data is used only anonymously for market research and traffic analysis purposes, especially to assess interest in the content posted on the Portal and to improve its content.

10) No decisions concerning individuals are made based on automated processing, including profiling.

§ 4. Cookies

1) The Controller uses Cookies on the Portal.

2) The Portal uses two types of Cookies:
a) Session cookies – temporary files stored on the User’s Device until logout, leaving the Portal, or closing the software;
b) Persistent cookies – files stored on the User’s Device for the time specified in the cookie parameters or until deleted by the User.

3) The Portal may use all or some of the following types of Cookies:
a) “Necessary” – enabling the use of services available through the Portal;
b) “Performance” – enabling the collection of information on how Users use the Portal;
c) “Functional” – allowing the Portal to remember settings selected by the User and personalize the User interface (e.g. language, font size, page layout);
d) “Advertising” – enabling the delivery of advertising content more tailored to the User’s interests.

4) The Cookies described in points 2 and 3 of this paragraph are used to:
a) adapt the Portal’s content to the User’s preferences and optimize its use; in particular, this allows the Portal to be displayed appropriately on the User’s Device according to their individual preferences;
b) create statistics to monitor the use of the Portal by Users and improve its structure and content;
c) maintain the User’s session (after logging in), so the User does not have to enter their login and password again on each subpage, and previously added products remain in the shopping cart.

5) The solutions used on the Portal are safe for Users’ Devices.

§ 5. User Rights

1) When the Processing of Personal Data is based on consent, the data subject has the right to withdraw consent at any time by submitting a written statement to the Controller’s registered address or via email to: kontakt@sektor3-0.pl. Consent for receiving the Newsletter can be withdrawn by sending an email to kontakt@sektor3-0.pl or by clicking the unsubscribe link in the email footer. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

2) The User has the right to object to the Processing of personal data if they believe the processing violates data protection laws. Objections should be submitted to the President of the Personal Data Protection Office.

3) The User has the right to correct, complete, update, rectify, and request the deletion of their personal data. Requests should be sent to the following email address: kontakt@sektor3-0.pl.

4) The User may change Cookie settings at any time. These settings can be adjusted, in particular, to block the automatic handling of Cookies in the web browser settings or to inform about each placement of Cookies on the User’s Device. Detailed information about handling Cookies is available in the software settings.

5) The User may delete Cookies at any time using the relevant features of their web browser.

§ 6. Final Provisions

1) The Portal and E-learning platform may contain links to other websites. These websites operate independently of the Controller and are not supervised by the Controller in any way. They may have their own privacy policies and terms of service, which we recommend reviewing.

2) Questions or concerns regarding the contents of this Privacy Policy can be submitted via email to: kontakt@sektor3-0.pl.

3) The Controller reserves the right to amend this Privacy Policy at any time, particularly to ensure compliance with current legal requirements. We will notify users of any changes by posting information prominently on the website and in the newsletter.

4) Each change will include the date on which the new version of the Privacy Policy becomes effective.

5) The current version of the Privacy Policy is effective as of September 17, 2025.