This website is for information purposes only and the materials presented here should be treated as illustrative. All information and materials contained on this website are not legally binding and do not constitute a commercial offer, including within the meaning of Article 66 § 1 of the Civil Code. bards.ai sp. z o.o., with its registered office in Wrocław, reserves the right to make changes to the above information and materials at any time.

Information clause regarding contact with the Controller

Personal data controller
The controller of your personal data is bards.ai sp. z o.o. with its registered office in Wrocław, address: ul. Wielka 67, 53-340 Wrocław, entered in the Register of Entrepreneurs of the National Court Register kept by the District Court for Wrocław-Fabryczna in Wrocław, 6th Commercial Division of the National Court Register, under KRS number: 0000939143, NIP: 8992913362, REGON: 520709530, with share capital of PLN 6,250.00 (the “Controller”).

Controller’s contact details
You can contact the Controller:

• by phone: 505 594 145;

• by email: michal.swedrowski@bards.ai;

• in writing: bards.ai sp. z o.o., ul. Wielka 67, 53-340 Wrocław, Poland.

Purposes and legal basis for processing
Your personal data will be processed in order to:

• pursue the Controller’s legitimate interests (Article 6(1)(f) GDPR), namely:

  • contact with the Controller in connection with its business activity and to provide information about the Controller’s activities, including communication and resolving matters covered by the contact (in particular handling inquiries, complaints, etc.), as well as contact with the Controller in other matters;

  • conduct direct marketing - sending information for the marketing of services offered by the Controller, including sending newsletters;

  • establish, exercise or defend legal claims;

• contact you regarding the conclusion or performance of a contract (Article 6(1)(b) GDPR);

• send commercial information via the communication channel for which you give your voluntary marketing consent, i.e. by electronic message to the indicated email address and/or by phone notifications (SMS/MMS/voice calls), for the purpose of presenting offers and commercial terms when you have given such consent - based on Article 6(1)(a) GDPR.

Categories of recipients
Your personal data may be disclosed to the following categories of entities:

• the Controller’s clients and contractors;

• entities authorized by law (courts, public authorities, etc.);

• subcontractors and other entities providing services to the Controller, in particular providers of accounting, IT, marketing, communications and analytics, legal and debt collection services;

• companies affiliated with the Controller.
  In each case, processing of your personal data by the above recipients will take place on the basis of appropriate authorization, a data processing agreement, or applicable legal provisions.

Transfers outside the European Economic Area
The Controller may transfer your personal data outside the European Economic Area, i.e. to a third country, on the basis of appropriate mechanisms including standard contractual clauses or other similar legal instruments provided for in the GDPR. You have the right at any time to obtain a copy of your personal data transferred to third countries.

Security measures
To ensure the integrity and confidentiality of personal data, the Controller has implemented procedures that allow access to personal data only to authorized persons and only to the extent necessary for the tasks they perform. The Controller applies organizational and technical measures to ensure that personal data are processed only by authorized persons.

Data retention period
The Controller will process your personal data:

• for establishing, pursuing or defending against claims related to the contact - until such claims become time-barred;

• for contact with the Controller - until the matters related to the contact are concluded;

• for contact related to a contract - until the contract expires or claims arising therefrom become time-barred;

• for direct marketing - until you object or for a period of 5 years.

Rights of data subjects
Under the GDPR, you have the right to:

• request access to your data and receive copies thereof;

• rectification of your data;

• erasure of data - where there is no legal basis for processing;

• restriction of processing - if the personal data processed by the Controller are inaccurate or processed without a legal basis, or if erasure is not possible due to an overriding legal basis for processing;

• data portability - to receive in a structured, commonly used and machine-readable format the personal data provided on the basis of consent or a contract, and to have those data transmitted directly to another entity;

• lodge a complaint with the supervisory authority - if the data are processed unlawfully, you may lodge a complaint with the President of the Personal Data Protection Office.
  To exercise your rights, you may contact the Controller using one of the methods indicated in section II.

Right to object
You may at any time object to the processing of your personal data by the Controller for the purpose of pursuing its legitimate interests (Article 6(1)(f) GDPR), via the means of communication indicated in section II.

Information on the requirement or voluntariness of providing data and the consequences of not providing them
Providing personal data is voluntary but necessary for the Controller to achieve the above purposes, as processed on the relevant legal basis in each case.