RODO

Information clause (GDPR) for persons
declaring support for refugees

Data controller

The Controller of your personal data is The Open Dialogue Foundation – Poland with its registered seat in Warsaw (01-493) at ul. (hereinafter: the Foundation or the Controller). 

In order to respect the privacy rights of data subjects, the Foundation ensures that the processing of personal data complies with applicable laws, including the GDPR, i.e. the Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation). 

Obtaining information on the processing of personal data 

If you have any concerns about the processing of your data, please do not hesitate to contact the Foundation at the email address [email protected] or in writing to the Foundation’s registered address. 

Data acquisition and purpose of processing 

The Foundation processes the personal data of donors who wish to support refugees, including persons declaring their ability to accept/provide accommodation to refugees from Ukraine in order to provide assistance to Ukrainians on the basis of the donors’ consent expressed through an active action consisting in filling in the contact form or providing data via the hotline on the basis of Article 6(1)(a) of the GDPR. 

Depending on the form of assistance, data may also be processed: 

  • for the purpose of concluding and performing an agreement for the transfer of: recurring donations by direct debit or one-off donations or recurring charging of a payment card (on the basis of Article 6(1)(b) of the GDPR), 
  • for purposes related to the necessity to fulfil the legal obligation imposed on the Foundation in accordance with the applicable legal provisions, in particular those arising from tax and accounting regulations, including the issuance of certificates for tax purposes and maintenance of accounting books and tax documentation (on the basis of Article 6(1)(c) of the GDPR), 
  • for purposes resulting from the legally justified interests of the Foundation, such as, among others, establishing, defending and pursuing claims, as well as creating summaries, analyses and statistics for the internal needs of the Foundation, adjusting the content of the Foundation’s services (e.g. websites) to your needs, ensuring the security of these services as well as their continuous improvement, dealing with enquiries and complaints, direct marketing carried out in a traditional form (e.g. by letter) (on the basis of Article 6(1)(f) of the GDPR). 

The Foundation does not use profiling systems or systems that lead to automated decision-making related to personal data. Personal data will be processed until the consent to their processing is withdrawn by the data subjects or until the purpose for which the data was obtained ceases to exist. If you make a donation, data will be processed in accordance with the legal provisions that may oblige us to process your data for a certain period of time (e.g. evidence of accounting payments – 5 years from the end of the tax period) and until the statute of limitations for possible claims for no longer than 6 years. Providing data is voluntary, but necessary to help refugees through the Foundation. 

Data recipients 

On the basis of relevant agreements, data may be accessed by entities providing accounting ICT solutions, as well as entities providing postal, courier, legal, and audit services and entities handling electronic payments or card payments for the purpose of processing and handling donations. Personal data may be transferred to authorised bodies, including the tax office, for the purpose of fulfilling the Foundation’s obligations. 

Transfers of data outside the European Economic Area 

Personal data will be processed within the European Economic Area (hereinafter: EEA). 

Data processing rights 

The person whose data is processed by the Controller has the right to request access to data, its rectification, i.e. correction, erasure or restriction of processing, transfer and withdrawal of consent to its processing. More information on the rights of data subjects is available in Articles 12–23 of the GDPR, the text of which can be found at: https://eur-lex.europa.eu/ 

Furthermore, you have the right to lodge a complaint to the supervisory body, i.e. the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warszawa. Additional information: https://uodo.gov.pl/pl/p/skargi