GDPR information obligation

The following information is a concise, understandable and transparent abbreviation of information in the Privacy Policy regarding the data administrator, purpose and method of processing personal data and your rights in connection with this processing, in the form required to meet the information obligation of the GDPR. Details of the method of processing and entities participating in this process are available in the indicated policy.

Who is the data administrator?

The administrator of personal data (hereinafter the administrator) is the company “Truck Data Ltd”, operating at: 20 Highbury Place, Bramley, Leeds, England, LS13 4PW, with the tax identification number (Company number): 16369695, providing electronic services through the service

How can you contact the Data Administrator?

You can contact the Administrator in one of the following ways

• Postal address – Truck Data Ltd, 20 Highbury Place, Bramley, Leeds, England, LS13 4PW

• E-mail address office@truck.pandahost.pl

• Contact form – available at: /Contact

Did the administrator appoint a personal data inspector?

Pursuant to Article 37 of the GDPR, the Administrator did not appoint the Data Protection Inspector.

In matters related to data processing, including personal data, you should contact the Administrator directly.

Where do we obtain personal data and what are their sources?

The data is obtained from the following sources:

• from data subjects
• In the case of registration using social networks, with the conscious consent of these people from these social networks

What is the scope of personal data we process?

Normal personal data, provided voluntarily by the persons to whom they relate, are processed on the website (E.g. name and surname, login, e-mail address, telephone, IP address, etc.)

The detailed range of processed data is available in the Privacy Policy.

What are the purposes of processing the data?

Personal data voluntarily provided by Users are processed in one of the following goals:

• Implementation of electronic services:
  • Registration and maintenance services of the User’s Account on the Website and Functionality related to it
  • Newsletter services (including transmission with the consent of advertising content)
  • Commenting / Living Service of Entries on the Website without having to register
• The Administrator’s communication with Users on matters related to the Website and data protection
• Ensuring the legally justified interest of the Administrator

What are the legal basis for data processing?

The website collects and processes Users’ data on the basis of:

• Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
  • art. 6 section 1 letter and
    the data subject has consented to the processing of his or her personal data for one or more specific purposes
  • art. 6 section 1 letter b
    processing is necessary for the performance of a contract to which the data subject is party or to take action at the request of the data subject before concluding the contract
  • art. 6 section 1 letter c
    processing is necessary to fulfill the legal obligation imposed on the administrator
  • art. 6 section 1 letter f
    processing is necessary for the purposes of the legitimate interests pursued by the administrator or a third party
• Act of 10 May 2018 on the protection of personal data (Journal of Laws 2018, item 1000)
• Act of July 16, 2004, Telecommunications Law (Journal of Laws 2004, No. 171, item 1800)
• Act of February 4, 1994 on copyright and related rights (Journal of Laws 1994, No. 24, item 83)

What is the legally justified interest pursued by the Administrator?

• In order to possibly establish, pursue or defend against claims – the legal basis for processing is our legitimate interest (Article 6(1)(f) of the GDPR) consisting in the protection of our rights, including, among others;
• To assess the risk of potential customers
• To evaluate planned marketing campaigns
• In order to carry out direct marketing

For how long do we process personal data?

As a rule, the indicated personal data are stored only for the period of service provision as part of the website run by the Administrator. They are deleted or anonymized within a period of up to 30 days from the end of the provision of services (e.g. deletion of a registered user account, unsubscription from the Newsletter list, etc.)

In exceptional situations, in order to secure the legally justified interest pursued by the Administrator, this period may be extended. In such a situation, the Administrator will store the indicated data from the time the User requests their deletion, no longer than for a period of 3 years in the event of a violation or suspected violation of the provisions of the website regulations by the data subject.

Who is the recipient of the data, including personal data?

As a rule, the only recipient of data is the Administrator.

However, data processing may be entrusted to other entities providing services to the Administrator in order to maintain the operation of the Website.

Such entities include, among others:

• Hosting companies providing hosting or related services to the Administrator
• Companies through which the Newsletter service is provided
• IT service and support companies performing or responsible for maintaining IT infrastructure
• Companies intermediating in online payments for goods or services offered on the Website (in the case of purchase transactions on the Website)
• Companies intermediating in mobile payments for goods or services offered on the Website (in the case of purchase transactions on the Website)

Will your personal data be transferred outside the European Union?

Personal data is transferred outside the European Union. The transfer of data outside the EU is caused by the use of the services of entities located outside the EU, or as a result of publication as a result of an individual action of the User (e.g. entering a comment or entry), which will make the data available to every person visiting the website. In the event of transferring or entrusting the processing of personal data outside the EU, these data are processed on the basis of an agreement concluded between the Administrator and the Service Provider.

Will personal data be the basis for automated decision-making?

Personal data will not be used for automated decision-making (profiling).

What rights do you have regarding the processing of personal data?

• The right to access personal data Users have the right to access their personal data upon request submitted to the Administrator

• The right to rectify personal data Users have the right to request from the Administrator to immediately correct personal data that is incorrect and/or complete incomplete personal data, upon request submitted to the Administrator.

• The right to delete personal data Users have the right to request the Administrator to immediately delete personal data, which is implemented upon request submitted to the Administrator. In the case of user accounts, deletion of data involves anonymization of data enabling the User’s identification. In the case of the Newsletter service, the User has the option of deleting his/her personal data on his/her own using the link included in each e-mail message sent.

• The right to restrict the processing of personal data Users have the right to limit the processing of personal data in the cases indicated in Art. 18 GDPR, among others questioning the accuracy of personal data, carried out upon request submitted to the Administrator

• The right to transfer personal data Users have the right to obtain from the Administrator personal data regarding the User in a structured, commonly used, machine-readable format, carried out upon request submitted to the Administrator.

• The right to object to the processing of personal data Users have the right to object to the processing of their personal data in the cases specified in Art. 21 GDPR, carried out upon request submitted to the Administrator

• Right to lodge a complaint Users have the right to lodge a complaint with the supervisory authority responsible for the protection of personal data.