PRIVACY POLICY

This document explains how we process personal data and provides the information required under Article 13 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (hereinafter “GDPR”).

DATA CONTROLLER – CONTACT

The controller of your data is VIZACADEMY SP. Z O. O. with its registered office in Chełmiec, ul. Rolna 23A, 33-395 Chełmiec, entered into the Register of Entrepreneurs of the National Court Register under KRS number 0000725092, REGON: 369803210, NIP: 7343557295, e-mail: biuro@3dvizacademy.com.

For matters related to the processing of personal data, including exercising your rights in connection with such processing, you can contact us at: rodo@3dvizacademy.com.

YOUR RIGHTS

Under applicable law, individuals whose data we process have the right to:

  • access their personal data,

  • request rectification, erasure, or restriction of processing,

  • object to processing,

  • data portability,

  • lodge a complaint with the supervisory authority, which in Poland is the President of the Personal Data Protection Office (Urząd Ochrony Danych Osobowych, ul. Stawki 2, 00-193 Warsaw).

If the processing of personal data is based on consent, you have the right to withdraw it at any time, without affecting the lawfulness of processing carried out on the basis of consent before its withdrawal.

PURPOSE AND DURATION OF DATA PROCESSING

Personal data is processed in accordance with the purpose for which it was collected, as detailed below:

USE OF THE WEBSITES https://www.3dvizacademy.com/, https://archiacademy.co.uk/, 

In some cases, cookies may be linked to personal data, such as name, surname, or email address; we therefore treat cookies as personal data. More information about cookies used can be found in our Cookie Policy.

We process your personal data for analytical, marketing, and service improvement purposes based on your consent (Article 6(1)(a) GDPR) until such consent is withdrawn. Consent can be granted via the banner displayed upon entering our website.

Providing personal data is voluntary and does not affect your use of our website, except for necessary cookies, whose deactivation may cause difficulties in using the site.

CONTACT VIA EMAIL OR CONTACT FORM

We process your personal data to handle inquiries submitted via email to the addresses provided on the Controller’s websites, directly to an employee of the Controller, or via the contact form available on the website, for as long as necessary to process the message and subsequently until any claims are time-barred.

We process your personal data based on the Controller’s legitimate interest (Article 6(1)(f) GDPR) – namely, handling received inquiries and ensuring legal protection enabling us to establish, exercise, or defend claims.

Providing personal data is voluntary; however, without it, we may be unable to respond to inquiries requiring identification of the individual, e.g., exercising rights requests.

TRAINING DELIVERY

We process your personal data to perform actions leading to the conclusion of an agreement at the request of the data subject and subsequently to execute the agreement (training delivery), as well as to fulfill legal obligations imposed on us, particularly under tax and accounting laws for settlement purposes, or civil law in relation to complaints (based on Article 6(1)(b) GDPR and Article 6(1)(c) GDPR), for the duration of the agreement and subsequently for the retention period required by applicable law.

We may also process your personal data based on the Controller’s legitimate interest (Article 6(1)(f) GDPR):

  • for communication regarding the training, where our interest is in managing and organizing the training – limited to contact details;

  • to determine the country from which you connect to our training platform, where our interest is to ensure we do not provide services to individuals from countries subject to international sanctions – limited to IP data;

  • to establish, exercise, or defend legal claims, where our interest is the legal protection of the Controller – to the extent necessary to achieve the purpose.

We provide online payment options for training and cooperate with external payment providers. If you use this option, the provider through which you make payment will act as an independent controller of your personal data for the purpose of processing the payment, and their privacy policy will apply:

Providing personal data is voluntary but necessary to conclude the agreement.

SOCIAL MEDIA PROFILES

The Controller maintains profiles on Facebook and Instagram. If you follow our profile, click “Like,” comment on a post, or send a private message, we will process your personal data.

The controller of your data in such cases is also Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Their privacy policy can be found on their website.

We process the personal data of Facebook or Instagram users to inform about our activities based on Article 6(1)(f) GDPR – the Controller’s legitimate interest in promoting our activities – and to respond to inquiries you send us through these channels based on Article 6(1)(f) GDPR – the Controller’s legitimate interest in handling inquiries submitted this way.

Your personal data will be stored as long as you follow our profile, and in the case of inquiries submitted via this channel, for the time needed to respond, and subsequently until claims are time-barred.

Providing personal data is voluntary; if you do not follow our profile or communicate with us via these channels, we will not process your personal data.

MARKETING

We process your personal data to conduct marketing activities, e.g., sending newsletters.

If we have an agreement (e.g., for training delivery), processing is based on the Controller’s legitimate interest (Article 6(1)(f) GDPR) – direct marketing. In other cases, processing is based on consent (Article 6(1)(a) GDPR) if such consent has been provided.

You can withdraw consent at any time, e.g., by clicking the link in a marketing email or by changing the settings in your student profile.

Providing personal data is voluntary and not providing it does not affect our relationship.

RECIPIENTS OF YOUR DATA

Your personal data may be shared with external entities providing services to the Controller only to the extent necessary for such purposes. Depending on the purpose of data collection, this may include service providers (e.g., accounting, IT support, auditors) and IT tool providers (including Google Ireland Ltd. – email and registration forms; Amazon EMEA SARL and Zenbox sp. z o.o. – hosting; Stripe Inc., PayPal Inc., PayU S.A. – online payment processing).

Your personal data may also be shared with authorized public authorities.

We process your personal data within the European Economic Area or in countries deemed to provide an adequate level of protection by the European Commission.

This Privacy Policy version entered into force on: 22 March 2024