The Polish Testing Board [Polish: Stowarzyszenie Jakości Systemów Informatycznych], hereinafter referred to as the „SJSI”, makes every effort to duly protect the personal data of its partners, customers and users of the website: https://sjsi.org/, hereinafter referred to as the „Website” and users of the website https://exam-rejestracja.sjsi.org/, hereinafter referred to as the „Examination Website”..
The SJSI regularly trains its staff in personal data protection, as well as conducts regular audits related to data processing insurance.
The SJSI ensures the security of personal data by protecting them from access by unauthorized persons and ensuring the exercise of all the rights resulting from:
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC, (hereinafter referred to as the „GDPR”),
- the Act of 18 July 2002 on providing services by electronic means (Journal of Laws No. 144, item 1204 as amended),
- the Act of 10 May 2018 on personal data protection (Journal of Laws No. 2018, item 1000 as amended).
Who is the personal data controller?
The controller of personal data of the partners, clients and users of the Website and the Examination Website is the Polish Testing Board based in Warsaw (00-680) at 16 Poznańska Street, apt. 4, entered in the register of associations, other social organizations, and public healthcare entities maintained the District Court for the capital city of Warsaw in Warsaw, Division XII Commercial of the National Court Register, under the number KRS 0000175199, with the tax identification number (NIP): 5272426649 and the statistical identification number (REGON): 015596805.
How can I contact the Controller?
In matters concerning the processing of personal data by the Controller, please contact us in writing by sending correspondence to the address of our office in Wrocław, located at 1 Kazimierza Wielkiego Str., 50-077 Wrocław.
It is also possible to contact us by e-mail; in such a case please send your message to the address: firstname.lastname@example.org.
What personal data may the SJSI process?
The personal data controller may process the following personal data:
- first and last names and/or company names,
- PESEL number [personal identification number],
- date of birth,
- information on bank accounts as well as payment and debit card numbers, etc.,
- address of residence, address for service,
- telephone number,
- e-mail address.
What is the legal basis for processing personal data?
The legal basis for processing personal data may be:
- fulfilling the legal obligation of the SJSI (Article 6 par. 1 letter c of the GDPR) – with regard to billing, data storage period and others,
- implementation of a contract (Article 6 par. 1 letter b of the GDPR),
- legitimate interest of the SJSI (Article 6 par. 1 letter f of the GDPR) – to comply with the obligations under personal data protection legislation, so as not to expose oneself to financial penalties and other liability,
- consent of the data subject (Article 6 par. 1 letter a of the GDPR) – if the use of personal data is not necessary for implementing a contract, fulfilling a legal obligation or does not constitute a legitimate interest of the Polish Testing Board, which may ask for consent to certain uses of personal data.
What are the purposes of personal data processing?
The purposes for which the SJSI processes personal data are:
- conducting an examination for software testers,
- organising conferences, events,
- fulfilling legal obligations,
- clearing of accounts.
What rights do you have with regard to the processing of personal data?
Every person has the right to:
- access the content of their personal data and receive a copy of such data,
- rectify (correct) their personal data,
- delete their personal data,
- restrict the processing of their personal data,
- transfer their personal data if the data are processed on the basis of a contract or consent. The SJSI shall transmit these data to the data subject on an appropriate medium or shall send the data to the indicated entity,
- object to the processing of personal data,
- withdraw their consent at any time, where such consent has been given by a counterparty,
- file a complaint with the President of the Office for Personal Data Protection as a Data Subject.
Processing of sensitive personal data
The SJSI does not process sensitive personal data.
To whom does the SJSI transfer personal data?
The SJSI may, where necessary, transmit personal data to the following recipients or categories of recipients:
- service providers rendering services to the SJSI; in the contract concluded with such a service provider, each time the SJSI shall impose, on such provider, the obligation to comply with personal data protection regulations,
- entities entitled to obtain personal data on the basis of legal regulations (police, prosecutor’s office, offices etc.).
Transfer of personal data to third countries
The SJSI does not transfer personal data to third countries.
How long do we keep personal data?
The SJSI makes every effort to process personal data in an adequate manner and as long as it is necessary for the purposes for which they were collected. Considering this, the SJSI keeps personal data for no longer than necessary to achieve the purposes for which such data have been collected or, if necessary, to comply with the applicable laws, in particular the period of implementing a contract and the limitation period for claims.
Automated decision making
The SJSI does not make automated decision making, including profiling based on any personal data provided.
- enabling identification of the session of the User logged into the Website,
- adjusting the content of the Website to the User’s preferences, so-called „session” files, which are temporarily stored on your terminal equipment to ensure that your browser can properly display the Website or the Examination Website; these types of files are stored on your terminal equipment only during your presence on the Website or the Examination Website. As soon as you leave the Website or the Examination Website, the „session” files are automatically deleted from your device,
- adapting the language in which the Website or the Examination Website are displayed to the user’s preferences,
- ensuring secure browsing on the Website or the Examination Website, including by using them as an „anti-forgery token” to protect against XSRF-type attacks and using a captcha service to protect against malware attempting to register,
- for statistical purposes.
If the Website or the Examination Website user does not want to receive cookies, it is necessary to change the settings of the Internet browser. Internet browsers enable blocking cookies. The procedure of changing the browser settings should be placed on the website of the manufacturer of such browser installed by the Internet user.
Removing, blocking, limiting the reception of cookies may cause disruption in the use of the Website or the Examination Website, and in some cases make it even completely impossible to use the Website or the Examination Website.
At the same time, we would like to inform you that at any time it is possible to change your preferences regarding cookies, and also that at any time these files can be removed from the device from which the Website or the Examination Website was browsed.