Privacy Policy

Administrator

Administrator
The administrator of your personal data is the International Mummy Research Center Foundation based in Warsaw, ul. Mordechaja Anielewicza 2 /78, 00-157 Warsaw, registered in the Register of Associations, Other Social and Professional Organizations, Foundations and Independent Public Health Care Facilities under KRS number 0001128021, NIP: 5253017648.

What is personal data:

personal data – means any information about an identified or identifiable natural person.

Personal data processed by the Foundation include, but are not limited to: name and surname, e-mail address, IP address, contact number, but also in special cases may concern date of birth, address of residence, ID card number, and other data necessary and justified by the concluded contract, e.g. account number in the case of a donation. When concluding a cooperation agreement, the Foundation may request data on education, diplomas and functions held.

Legal basis

The MRC Foundation processes your personal data based on:
a) Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC
(“GDPR”);
b) Act of May 10, 2018 on the protection of personal data (Journal of Laws of 2019, item 1781)

Basics of data processing:

The Foundation processes data based on:
a) applicable legal provisions in order to fulfill the legal obligation imposed on the Foundation (Article 6(1)(c) of the GDPR);
b) the statute of the Foundation in order to implement the tasks and objectives set out in the statute (Article 6(1)(f) of the GDPR);
c) concluded contracts (Article 6(1)(b) of the GDPR);
d) consent given by the data subject (Article 6(1)(a) of the GDPR).

What rights do you have in connection with the processing of your personal data by
the Foundation?

a) access to data, including receiving a copy of this data;
b) rectification (correction) of data;
c) deletion of data;
d) restrictions on data processing;
e) the right to transfer personal data – where possible
f) submit a complaint to the supervisory authority if data is processed inconsistently with legal requirements – https://uodo.gov.pl/pl/83/155, Personal Data Protection Office ul. Stawki 2, 00-193 Warsaw

submitting applications and complaints

Please send complaints or requests for information to the following e-mail address:
mummyresearchcenter@gmail.com

Sending an e-mail is deemed to constitute consent to the processing of data to the extent necessary to respond to a complaint or inquiry. In order to answer a question, the Foundation may ask for data enabling the identification of the person asking the question.

The Foundation will endeavor to respond within 1 month of obtaining complete data enabling
the response.

How to withdraw consent to data processing:

To withdraw your consent to data processing, simply send an e-mail to the following address
mummyresearchcenter@gmail.com

Withdrawal of consent to the processing of personal data processed on the basis of the user’s consent to the processing of personal data (Article 6(1)(a) of the GDPR) does not affect the compliance of the processing that was carried out on the basis of consent before its withdrawal.

transferring data abroad

As a rule, the Foundation does not transfer data abroad. If the Foundation concludes an agreement to jointly conduct a project with another entity under which your data will be collected, personal data may also be processed by another entity, which will then be disclosed to you in an appropriate form.

Applications such as Facebook used by the Foundation are foreign entities, so the processing of this data may take place abroad. Data processing then takes place on the terms specified in the regulations of such an application.

For analytical purposes, the Foundation uses the Google Analytics tool. Google uses the personal data of our website users when they consent to the use of appropriate cookies on our website.

To whom the Foundation may transfer data

The Foundation may also transfer data to entities that cooperate with the Foundation in achieving the Foundation’s objectives or provide technical and administrative support. The Foundation then transfers data for this purpose to entities operating on the basis of Art. 28 GDPR. These entities are, in particular, companies providing IT services and server maintenance, legal services, accounting services, and banking services.

In special cases specified by law, the Foundation may be obliged to provide personal data at the request of state authorities (e.g. police, prosecutor’s office, tax offices), as well as at the request of courts.

Data processing period.

The data is processed by the period necessary to achieve the purposes indicated above and until legal obligations are fulfilled. This period is usually 6 years, but due to the legal relationship between the Foundation and a given person, this period may be longer, as justified by the limitation period for civil and tax claims.

Processing data of people registering for events organized by the Foundation

If you want to participate in events organized by the Foundation, e.g. webinars, training or workshops, the Foundation will ask you to provide the necessary personal data in order to register the participant and conduct the event. Such data include: name and surname, e-mail address or telephone number. In special cases, it may also be the name of the company or university, position held, academic degree, preferred language – if the event is addressed to a specific group of participants and it is necessary to verify whether you belong to a given group – e.g. you are a researcher or a student. Purpose of processing personal data is the
implementation of a given event. Data processing then takes place on the basis of your consent (Article 6(1)(a) of the GDPR).

Newsletter

If the Foundation runs a newsletter or offers to send information about the Foundation’s activities, if you want to receive it, the Foundation will ask you to provide it with the necessary personal data in order to send information about the activities or the newsletter. Such data include: name and surname, e-mail address or telephone number. If a given offer is addressed to a limited group of recipients, e.g. researchers, donors, students, then the Foundation will ask for data enabling verification of your fulfillment of a given criterion, e.g. providing the name of the company or academic title.

In the newsletter or information about activities, the Foundation will inform about the Foundation’s activities, possibilities of supporting the Foundation, planned events and new initiatives. Data processing then takes place on the basis of your consent (Article 6(1)(a) of the GDPR).

Donations

If you make a donation to the Foundation or support the Foundation in another way, the Foundation processes the donor's personal data to the extent necessary to process such a donation, including recording it, submitting reports required by law, and also thanking you for your support. Processing is based on Art. 6 section 1 letter f GDPR, i.e. legitimate interest.


This privacy policy is valid from November 5, 2024.