We respect your right to privacy and guarantee the security of your data

Beyond.pl Sp. z o.o. guarantees the security of data, including personal data, of users visiting the beyond.pl website. The information below ensures the confidentiality and proper use of personal data.

In order to better understand the Privacy Policy, the term “User” has been replaced by “you/your”, “Administrator” – “we/us”. The term ”GDPR” refers to the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.

This Privacy Policy is in effect on the beyond.pl website and all pages that belong to Beyond.pl Sp. z o.o.

 

Privacy policy and cookies

Personal data administrator

The administrator of personal data collected via Beyond.pl’s web pages is Beyond.pl Sp. z o.o. with its registered office in Poznań, address: ul. Kręglewskiego 11, 61-248 Poznań (hereafter referred to as “Beyond.pl”), Tax Identification Number (NIP): 782-23-24-152, National Court Registry (KRS) number: 0000237620, District Court for Poznań-Nowe Miasto and Wilda in Poznań, VIII Commercial Division of the National Court Register.

Beyond.pl, as a data center, is obliged to comply with separate requirements that apply to data processors or data administrators. As a processor, we guarantee that the persons authorized for the processing of customer data maintain confidentiality, and that we continue to improve security by implementing proper technical and organizational measures to ensure the protection of personal data. Additionally, as a data administrator, we maintain the security of data and decide about the purposes of and means used in the processing of such data. Therefore, we understand our customers’ needs.

 

What data is processed?

On our website, we collect and process personal data, such as name, surname, e-mail address, phone number, or a company’s registry data.

 

Purposes of personal data processing

At Beyond.pl, personal data is processed for the following purposes:

  1. Concluding and performing the agreement for providing services by electronic means, if such a service is provided to the User,
  2. Providing services and processing payments,
  3. Processing of your submissions and providing technical support for the service. In this case, access to the data that we administer is restricted and is provided according to our internal personal data security procedures,
  4. Responding to messages sent using the form available on the Page,
  5. Sending marketing information and offers, surveys, and invitations, and exchanging correspondence via e-mail,
  6. Managing contacts with you to improve the quality of services and efficiency,
  7. Sending marketing and commercial information (requires separate consent).

 

What can you expect when you are a Beyond.pl customer?

As a processor, we agree to:

  1. Process data only for the purposes related to properly providing our services; in no case do we process your data for other purposes (e.g. marketing, etc.),
  2. Refrain from transferring your data outside of the EU or outside of the countries regarded by the European Commission as ensuring sufficient safeguards for the protection of data: all of your data is stored in Poland, except for the local Azure Stack hybrid cloud configuration that you selected individually, complemented with services available in the global Microsoft Azure cloud,
  3. Use suitable technical and organizational measures corresponding to the type of service and your needs to ensure the security of personal data processed,
  4. Notify you as soon as possible of any infringements of personal data security,
  5. Providing you with support in terms of meeting the obligations pursuant to GDPR by providing the necessary information.

 

Who is the owner of the personal data processed and stored by you as part of Beyond.pl services?

Your data as part of the Beyond.pl services remains your property.

Beyond.pl manages only the environment where your data is located but does not have access to such data and will not use it, except when it is necessary to provide you with IT Administration services.

We will not sell or use your data for our own purposes, such as data mining, customer profiling, or direct marketing.

 

What is the legal basis for the processing of your data?

The legal basis for the processing of your personal data is:

  1. The necessity of data processing for concluding and performing the agreement for providing the service by electronic means,
  2. The legitimate interests of the Administrator consisting in the processing of correspondence and responding to messages,
  3. Providing electronic services in order to share information about the content published on the Website or other websites, especially in reference to the Administrator’s marketing content.
  4. The Administrator will not transfer personal data to any third country.

 

Your rights as a user

As a user, you have the right to decide to what extent your data can be used by Beyond.pl. You have the following rights:

  1. To request access to your personal data,
  2. To request correction of such data,
  3. To request erasure of such data or restriction of processing,
  4. To transfer data,
  5. To file an objection against the processing of your personal data, including profiling and direct marketing,
  6. To withdraw your consent to the processing of personal data at any moment, if your personal data is processed on the basis of the consent; withdrawing your consent does not impact the legal conformity of the processing that is performed on the basis of this consent before the consent is withdrawn,
  7. To file a complaint with the regulatory authority, i.e. President of the Office of Personal Data Protection.

You can withdraw your consent for sending you marketing content at any time.

 

Infrastructure security

We guarantee the highest level of infrastructure security, especially through implementing our IT security policy and meeting the requirements of particular standards and certificates. At both Beyond.pl data centers, the security management system conforms to the ISO/IEC 27001 standard. Beyond.pl’s Data Center 2 is the first data center in Poland and Central and Eastern Europe with the Rated 4 certificate according to ANSI/TIA 942. The audit was based on the verification of more than 2,600 elements in four areas: architecture, mechanical design, power, and telecommunication.

At Beyond.pl, we provide the following physical security measures:

  • Anti-theft security systems that fully prevent unauthorized persons from gaining access to the infrastructures where your data is stored,
  • Clearance management system that restricts access to premises and data only to those persons that need it to perform their functions and duties,
  • Security systems, including burglar alarms and CCTV,
  • Security employees that physically protect the Beyond.pl premises are on duty 24 hours a day.

When choosing cloud services from Beyond.pl, you can count on the following security measures:

  • Two autonomous data centers connected using their own fiber-optic ring running through the key access points in Poznań (our own IT infrastructure),
  • Support from our own IT administrator team with more than 10 years of experience,
  • Access to two redundant virtualized environments,
  • Network security, including VPN access, firewalls, redundant LAN,
  • Separate redundant SAN only for the purposes of VMware,
  • Multi-level data encryption, including transmission encryption, backup encryption, and virtual machine/hard drive encryption.

 

Who has access to your personal data?

When collecting your personal data, we provide direct access to it only to the persons that we authorize, i.e. employees, subcontractors, and entities that provide services to us (i.e. accounting, legal, audit, and technical support services) and only to the extent necessary for the provision of services ordered by Beyond.pl.

Moreover, your personal data can be transferred to entities authorized to receive it pursuant to legal regulations in force, especially to relevant judicial or law enforcement authorities.

 

User data retention period

The data transferred by you is stored only for the period needed to fulfill the specific purposes for which it was sent or in order to stay in compliance with the law.

Personal data is stored for the period when you use our services. After you stop using our services, your personal data, including name, surname, e-mail address, and phone number, will be stored for the period necessary for the purposes of processing complaints and claims related to the use of these services.

If you agree that your data can be used for marketing purposes, we will communicate such information to you until you withdraw your consent. You have the right to withdraw your consent at any time.

 

How to contact us with questions about personal data

If you have any questions or requests related to personal data processing, please send them to us using the following contact data:

Beyond sp. z o.o.

ul. Kręglewskiego 11

61-248 Poznań

+48 61 667 48 90

iod@beyond.pl

 

Personal Data Protection Officer

Beyond.pl has appointed the Personal Data Protection Officer, whom you can contact about any issues concerning the processing of your personal data at the following address:

iod@beyond.pl

 

Cookies

In order to make browsing our website easier, we use cookies. Cookies are small pieces of data that a website stores on the user’s hard drive or in a web browser. A cookie typically contains the name of the domain from which it comes, the expiration date, and a unique, randomly generated number used to identify the browser that connects to the website.

 

What are cookies used for?

Beyond.pl uses cookies for different purposes:

  • To make the Beyond.pl website load faster and improve user experience,
  • To tailor the content and ads on the Beyond.pl website to the user’s expectations and interests,
  • To collect anonymous aggregated statistics that help us understand how people use our pages and enhance their functionality and content.

Our cookies are not intended to store any personal data or gather any other information that identifies a given person.

 

Types of cookies

Beyond.pl uses the following types of cookies:

  • Session cookies – stored on the user’s telecommunication end device only until the user leaves the Beyond.pl website, closes the browser, or logs out of the page,
  • Persistent cookies – stored on the user’s telecommunication end device for a specific period or until the user manually deletes them.

 

Third party cookies

While using the Beyond.pl website, the user can receive cookies from third parties that cooperate with Beyond.pl, such as:

  • Google Analytics, Google AdWords, Google DoubleClick, HotJar, Albacross – services that help us evaluate how the website is used, analyze conversion paths, and deliver targeted ads,
  • Facebook, Twitter, YouTube, LinkedIn – social media plugins integrated with Beyond.pl’s pages.

 

Albacross

We obtain your consent to the processing of personal data on behalf of Albacross Nordic AB (“Albacross”).

Information collected from cookies set in your device that qualify as personal data will be processed by Albacross, a company offering lead identification and ad targeting services with offices in Stockholm and Krakow. Please see below for full contact details.

The purpose for the processing of the personal data is that it enables Albacross to improve a service rendered to us and our website (e.g. “Lead Generation” service), by adding data to their database about companies.

The data that is collected and used by Albacross to achieve this purpose comprises information about the IP address from which you visited our website and technical information that enables Albacross to tell apart different visitors from the same IP address. Albacross stores domain information from form input in order to correlate the IP address with your employer. For the full information about our processing of personal information, please see our full Privacy Policy.

You may at any time withdraw your consent to this processing. Such withdrawal may be made either by contacting us or by contacting Albacross directly.

Albacross Nordic AB Companyreg. no 556942-7338 Kungsgatan 26 111 35 Stockholm Sweden albacross.com – contact@albacross.com


Chatbot

Our website contains a special feature which allows you to contact Beyond.pl online using a chatbot service. The chatbot application allows you to get answers to your questions, including about our products and services, and to contact our representatives. To do this, we collect the communication/interaction data you provide. This gives us the opportunity to analyze and evaluate the data for statistical purposes.

We transfer the collected data to external service providers who process the data on the basis of an agreement concluded with us (e.g. chatbot service providers), according to the required purposes (to operate the chatbot and to provide the required service). The main provider is Stanusch Technologies S.A., based in Ruda Śląska.

Chatbot dialogs will be automatically deleted after 15 minutes of inactivity. The user can delete the data in the chatbot menu earlier and can exercise their other privacy rights. Your data will be processed for the period necessary to fulfil our purposes, but no longer than for the period of limitation of possible claims referred to in generally applicable law.

The legal basis for the processing of your personal data in the performance of the provisions of the chatbot service is Article 6(1)(b)(f) of the GDPR.

 

Modifying cookie settings and deleting cookies

The majority of web browsers are set to automatically enable cookies by default. Moreover, they are allowed only if the browser is set to accept them and not to delete them from the hard drive. However, you can change the settings of the browser so that the cookies will be blocked – entirely or partly. For example, only cookies from third parties will be erased, or you will receive a message each time cookies are sent to your device.

Nevertheless, you need to remember that if you block the cookies that we use, it can have a negative impact on user experience when browsing Beyond.pl’s pages. In this way, you will prevent us from gathering anonymous website usage statistics that we use to continually improve our content.

 

Legal basis for personal data processing

Beyond.pl’s Privacy Policy is based on the following regulations:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, also known as “General Data Protection Regulation”, or “GDPR”;
  • Act of 10 May 2018 – on the protection of personal data (consolidated text, Journal of Laws of 2019, item 1781);
  • Act of 16 July 2004 – Telecommunication Law (consolidated text, Journal of Laws of 2019 item 2460);
  • Act of 18 July 2002 – on providing services by electronic means (consolidated text, Journal of Laws of 2020 item 344).

 

Revisions and updates to our Privacy Policy

We reserve the right to revise and update our Privacy Policy. We will notify you of such changes in advance. All Policy revisions will be published on this website in the Privacy Policy section.

The latest updated version of our Privacy Policy is effective from: 08.06.2021.