Polish Society for Materials Science

Privacy policy

1. General Information

  1. This policy applies to the Website operating at the URL: ptm-materials.pl
  2. The service operator and the personal data administrator is: Polish Materials Engineering Society
  3. Operator's email contact address: kontakt@ptm-materials.pl
  4. The Operator is the Administrator of your personal data with respect to data voluntarily provided in the Service.
  5. The Service uses personal data for the following purposes:
    • Running a newsletter
    • Handling inquiries via form
  6. The Service performs functions of obtaining information about users and their behavior in the following ways:
    1. Through voluntarily entered data in forms, which are entered into the Operator's systems.
    2. By storing cookies (so-called "cookies") on end devices.

 

2. Selected Data Protection Methods Used by the Operator

  1. Login and personal data entry areas are protected in the transmission layer (SSL certificate). This ensures that personal data and login details entered on the site are encrypted on the user's computer and can only be read on the target server.
  2. Personal data stored in the database is encrypted in such a way that only the Operator holding the key can read it. This protects the data in case the database is stolen from the server.
  3. User passwords are stored in hashed form. The hashing function works one-way - it is not possible to reverse its operation, which is the current modern standard for storing user passwords.
  4. The service uses two-factor authentication, which provides an additional form of protection for logging into the Service.
  5. The Operator periodically changes its administrative passwords.
  6. To minimize the risk of unauthorized access to data, the Operator uses complex passwords containing lowercase and uppercase letters, numbers, and special characters, no shorter than 8 characters.

 

3. Hosting

  1. The service is hosted (technically maintained) on the operator's servers: another company
  2. The hosting company, to ensure technical reliability, maintains server-level logs. The following may be recorded:
    • resources specified by URL identifier (addresses of requested resources - pages, files),
    • time of request arrival,
    • time of sending response,
    • client station name - identification performed by HTTP protocol,
    • information about errors that occurred during HTTP transaction,
    • URL of the page previously visited by the user (referer link) - if the transition to the Service occurred via a link,
    • information about the user's browser,
    • information about IP address,
    • diagnostic information related to the process of self-ordering services through registrars on the site,
    • information related to handling email directed to the Operator and sent by the Operator.

 

4. Your Rights and Additional Information About Data Usage

  1. In certain situations, the Administrator has the right to transfer your personal data to other recipients if it is necessary to perform the contract concluded with you or to fulfill the obligations incumbent on the Administrator. This applies to such groups of recipients:
    • postal operators
  2. Your personal data processed by the Administrator no longer than necessary to perform related activities specified by separate regulations (e.g., on accounting). Regarding marketing data, the data will not be processed longer than 3 years.
  3. You have the right to request from the Administrator:
    • access to your personal data,
    • their rectification,
    • erasure,
    • processing restriction,
    • and data portability.
  4. You have the right to object to the processing indicated in point 3.2 to the processing of personal data for the purpose of carrying out the legally justified interests pursued by the Administrator, including profiling, with the proviso that the right to object cannot be exercised if there are valid legally justified grounds for processing, overriding your interests, rights and freedoms, in particular establishing, investigating or defending claims.
  5. Actions by the Administrator may be appealed to the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw.
  6. Providing personal data is voluntary but necessary to operate the Service.
  7. Actions may be taken against you involving automated decision making, including profiling, to provide services under the concluded contract and for the Administrator's direct marketing.
  8. Personal data is not transferred to third countries within the meaning of personal data protection regulations. This means we do not send them outside the European Union.

 

5. Information in Forms

  1. The Service collects information voluntarily provided by the user, including personal data, if provided.
  2. The Service may save information about connection parameters (timestamp, IP address).
  3. The Service, in some cases, may save information facilitating the linking of data in the form with the email address of the user filling in the form. In such a case, the user's email address appears inside the URL of the page containing the form.
  4. Data provided in the form is processed for the purpose resulting from the function of the specific form, e.g., to complete the service request process or commercial contact, service registration, etc. Each time the context and description of the form clearly informs what it is used for.

 

6. Administrator's Logs

  1. Information about user behavior on the site may be logged. This data is used to administer the site.

 

7. Important Marketing Techniques

  1. The Operator uses statistical traffic analysis on the site via Google Analytics (Google Inc. based in the USA). The Operator does not provide personal data to this service, only anonymized information. The service is based on the use of cookies on the user's end device. Regarding information about user preferences collected by Google's advertising network, the user can view and edit information derived from cookies using the tool: https://www.google.com/ads/preferences/
  2. The Operator uses remarketing techniques that allow matching advertising messages to user behavior on the site, which may give the illusion that the user's personal data is being used to track them, but in practice, no personal data is transferred from the Operator to advertising operators. The technological condition for such activities is the enabled support of cookies.
  3. The Operator uses Facebook Pixel. This technology causes the Facebook service (Facebook Inc. based in the USA) to know that a person registered there uses the Service. In this case, it is based on data for which it is the administrator itself; the Operator does not provide any additional personal data to Facebook. The service is based on the use of cookies on the user's end device.
  4. The Operator uses a solution that examines user behavior by creating heat maps and recording behavior on the site. This information is anonymized before being sent to the service operator so that it does not know which individual it concerns. In particular, entered passwords and other personal data are not recorded.
  5. The Operator uses a solution that automates the operation of the Service in relation to users, e.g., which can send an email to the user after visiting a specific subpage, provided they have agreed to receive commercial correspondence from the Operator.
  6. The Operator may use profiling within the meaning of personal data protection regulations.

 

8. Information About Cookies

  1. The Service uses cookies.
  2. Cookies (so-called "cookies") are IT data, in particular text files, which are stored on the Service User's end device and are intended for use on the Service's websites. Cookies usually contain the name of the website they come from, the time they are stored on the end device, and a unique number.
  3. The entity placing cookies on the Service User's end device and accessing them is the Service operator.
  4. Cookies are used for the following purposes:
    1. maintaining the Service user's session (after logging in), thanks to which the user does not have to re-enter their login and password on every subpage of the Service;
    2. achieving the purposes specified above in "Important Marketing Techniques";
  5. Within the Service, two main types of cookies are used: "session" (session cookies) and "persistent" (persistent cookies). "Session" cookies are temporary files that are stored on the User's end device until logging out, leaving the website, or turning off the software (web browser). "Persistent" cookies are stored on the User's end device for the time specified in the cookie parameters or until they are deleted by the User.
  6. Web browsing software (web browser) usually allows storing cookies on the User's end device by default. Service Users can change settings in this regard. The web browser allows deleting cookies. It is also possible to automatically block cookies. Detailed information on this subject is provided in the help or documentation of the web browser.
  7. Restrictions on the use of cookies may affect some functionalities available on the Service's websites.
  8. Cookies placed on the Service User's end device may also be used by entities cooperating with the Service operator, in particular, this concerns companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).

 

9. Managing Cookies - How to Give and Withdraw Consent in Practice?

  1. If the user does not want to receive cookies, they can change their browser settings. We reserve that disabling cookies necessary for authentication processes, security, maintaining user preferences may hinder, and in extreme cases may prevent the use of websites.
  2. To manage cookie settings, select the web browser you use from the list below and follow the instructions: Mobile devices: