Privacy Policy
Last updated: [insert date]
Rehab Play operates the website [website URL] and processes personal data provided by the Client for a period specified by law for the purpose of fulfilling and confirming the Terms and Conditions, processing quotation requests, and carrying out the necessary communications.
GENERAL PROVISIONS
The data controller, in accordance with Regulation (EU) 2016/679 on the protection of personal data (GDPR), is [Company Name], registered with the Trade Register under no. [registration number], with its registered office at [address], hereinafter referred to as the "Controller".
The Controller's contact details are:
Email: [email]
Phone: [telephone number]
Personal data means any information through which a natural person can be identified.
SOURCE OF PERSONAL DATA
The Controller processes personal data obtained through the Client's consent, collected via the forms available on the website [website URL], for the purpose of sending offers and facilitating communication.
The Controller processes only the Client's identification and contact data necessary for providing the requested services.
The Controller processes personal data for the purposes of contacting the Client, sending offers, and ensuring the necessary communication between the parties. Personal data will not be made public and will not be transferred to other countries, except where required by law.
PURPOSE OF DATA PROCESSING
The Controller processes the Client's personal data for the following purposes:
- Registering requests submitted through the website [website URL], in accordance with GDPR provisions;
- Contacting the Client and providing personalized offers (name, email address, telephone number);
- Complying with legal obligations and maintaining the relationship between the Client and the Controller.
Personal data is necessary for the provision of services. Without such data, requests cannot be processed.
RETENTION PERIOD OF PERSONAL DATA
The Controller stores personal data for the period necessary to fulfill the purposes for which it was collected and no longer than the period required by law.
The Controller will delete personal data after the applicable retention period has expired.
RECIPIENTS OF PERSONAL DATA AND AUTHORIZED PROCESSORS
Personal data may be disclosed to third parties who support the operation of the website and related services, to the extent necessary.
The Controller's subcontractors may include IT service providers, hosting providers, traffic analytics providers, and other related service providers necessary for the operation of the website.
CLIENT RIGHTS
In accordance with the GDPR, the Client has the following rights:
- The right to access personal data;
- The right to rectify inaccurate or incomplete data;
- The right to erasure ("right to be forgotten");
- The right to restrict processing;
- The right to object to processing;
- The right to data portability;
- The right to withdraw consent at any time by sending a request to [email];
- The right to lodge a complaint with the competent supervisory authority.
PERSONAL DATA SECURITY
The Controller declares that all necessary technical and organizational measures have been implemented to protect personal data.
The Controller uses security measures such as password protection, security software, and regular system maintenance to safeguard its information systems.
FINAL PROVISIONS
By submitting a request through the website [website URL], the Client confirms that they have been informed about the processing of their personal data and accept this Privacy Policy.
The Client expresses consent by ticking the appropriate checkbox in the website form.
The Controller reserves the right to update this Privacy Policy at any time, and the updated version will be published on the website.
This Privacy Policy enters into force on [date].