Personal data protection is taken very seriously by Benefit Systems SA with its registered office in Warsaw, Pl. Europejski 2, 00-844 Warszawa (hereinafter referred to as "Benefit Systems", "we"). We make every effort to ensure that your personal data are processed in accordance with the applicable provisions of Polish and European Union law. This document sets out the legal grounds for the processing and the methods of collecting and using the personal data, the actions that we take as well as the purpose of which is to inform you about your rights in connection with our processing of your personal data. Benefit Systems uses the personal data for the purposes specified herein or for any other purpose indicated each time you share your personal data with us.
What is personal data security for us?
Benefit Systems takes the security of provided data very seriously. We have implemented policies and procedures. We provide training in data protection, confidentiality and security. We regularly check the implemented security models for their adequacy for the security of the provided data.
Personal data – what does this term mean?
Personal data mean information about an identified or identifiable natural person (e.g. first name and surname, e-mail address, card number, IP address). Benefit Systems processes personal data for various purposes. Depending on the purpose, different legal bases for the processing, collection methods and storage periods may be applied.
What is processing the data about?
Data processing is any action or operation performed on your personal data (e.g. collection, storage, deletion or analysis).
Our objective is to be transparent about the basis and the method of processing your personal data.
It is our policy to collect the personal data only when it is necessary to achieve specific purposes, and we ask our clients to provide their personal data only when absolutely necessary.
Who is the administrator of your personal data?
In the case of agreements concluded with Benefit Systems, Benefit Systems will be the data administrator of your personal information, within the meaning of the Regulation of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and on the repeal of Directive 95/46/EC (hereinafter referred to as GDPR).
What does this mean?
This means that Benefit Systems decides about the purposes and methods of processing your personal data, i.e. how your personal data will be used.
How to contact us in order to get more information about the processing of your personal data?
You can contact us in one of these ways:
or by emailing our data protection officer at email@example.com.
Where have we got your data from?
We received the data from you through various communication channels depending on the type of cooperation, e.g. through the MultiSport Programme application form, Internet platform for card orders, User Zone (in the case of sports card users), Partner Zone (in the case of sports facilities cooperating with Benefit Systems) and subsequently as part of your participation in marketing activities of Benefit Systems (e.g. competitions, surveys) based on a legally justified interest of the administrator or a consent that has been expressed separately.
What is the objective and the legal basis for processing of your personal data?
We process your data because:
We also process your data for tax and accounting purposes, as required by law.
If you have granted us a separate consent, we will process your personal data for the purposes of:
For how long do we keep your data?
Depending on the purpose, we store your data for a specific period of time:
Cookies, IP address and ID numbers of mobile devices
Who do we share your personal data with?
Benefit Systems may share your data with the entities processing them on our behalf provided that it is consistent with your consent or is based on the administrator’s justified interest: Partners (sports and recreation facilities), Clients (your employer), printing houses that print user cards, providers of additional services available within the framework of the MultiSport Programme, entities providing IT systems and maintenance of terminals as well as other maintenance services, entities supporting electronic payment services, entities providing services related to User service and supporting our marketing activities, auditors and public institutions.
What are your rights related to our processing of your personal data?
You have the following rights related to our processing of your personal data. All of these rights you can exercise by contacting us:
The right of access to data
You have got the right to access the data that we (i.e. the data administrator) store.
The right to demand corrections in your personal data
You may update the personal data you have provides us with. Depending on the purpose of processing, you can make the changes according to the terms and conditions of the service you use or in the manner described above.
As soon as the change is possible to make, after we have been informed that any personal piece of data we process is no longer valid, we will introduce corrections on the basis of the updated information.
Due to the set-up of our systems, it can take up to 48 hours for the information to be updated.
The right to withdraw your consent for processing of your personal data
If your personal data are processed on the basis of your consent, you have the right to withdraw your consent at any time. In order to withdraw your consent to the processing of your personal data, please contact us in the manner described above.
In order not to receive any further newsletters from us, please click on the unsubscribe link in the relevant e-mail we have sent to you.
The right to object the processing of your personal data. In what situations may you object the processing of your personal data?
You have the right to object to the processing of your personal data when:
The right to demand limitations in processing of your personal data
You have the right to limit the processing of your personal data at any time, unless the processing is required by law.
In such a case, we will not process your personal data further or we will restrict the processing as long as we are able to demonstrate legitimate grounds for processing or for establishing, exercising or defending our rights.
The right to transfer your personal data
You have the right to receive your personal data from us in a structured, commonly used and machine-readable computer format. You may transfer your data to another data administrator or request that we transfer your data to another data administrator. However, we will only do so if this transfer is technically feasible.
The right to demand deletion of your personal data
You may ask us to delete your data when they are no longer necessary for the purpose for which they have been collected by us; you cancel your consent to the processing of data; you object to the processing of your data; or your data are processed unlawfully. The data should be erased.
In order to exercise these rights, please contact us or our data protection officer in one of the methods described above.
Do we share your data with countries out of the European Economic Area?
Your personal data will not be transferred outside the European Economic Area (EEA).
If you use websites and/or mobile applications, your data will be transferred outside the European Economic Area to Google LLC under the appropriate legal safeguards, which are the standard contractual clauses for the protection of personal data approved by the European Commission. For more information, please visit https://cloud.google.com/security/compliance/eu-data-protection-directive/
Do we process your personal data automatically (including profiling) in a way that affects your rights?
On the basis of your personal data, we perform profiling, i.e. an automatic assessment of certain personal factors related to you. We perform profiling activities in order to prepare our offer appropriately. On the basis of your profile we will be able to adjust our products to your expectations and preferences. For the purposes of profiling, we use the data such as the size of the company you work in, the size of the town/city where you use the card, the use of sports facilities, types of activities. Moreover, when profiling we take into account the statistical data related to the same information.
We do not make automated decisions related to you on the basis of profiling information about you.
Amendments to this document
We will regularly review and update this document in the light of changes in the law as well as any new measures that we take to improve the security of your data.
The date of the latest revision of this document: 21 May 2018.
You can always contact us.
Please specify the subject of your correspondence in the contact form – this will enable us to handle your request more effectively.
The principles specified in this policy also apply to FitSport Polska sp. z o.o. with its registered office in Warsaw, address: Plac Europejski 2, 00-844 Warszawa, entered into the register of entrepreneurs of the National Court Register by the District Court for the capital city of Warsaw in Warsaw, 12th Commercial Division under the National Court Register (KRS) number: 0000422757, Tax Identification Number (NIP): 5252532584, REGON statistical number: 146231491, holding share capital of PLN 50,000.00, and being an active VAT payer.
All websites and pages of Benefit Systems S.A. with its registered office in Warsaw (Benefit Systems) may send and use cookie files (so-called “cookies”). This Policy is applicable to www.benefitsystems.pl.
What cookies are, any why we use them?
Cookies are small text files placed on your end device (computer, laptop, smartphone etc.) through your web browser. When you access www.benefitsystems.pl, your browser sends this file back and is identified. The site needs cookies to allow you to navigate it and access all www.benefitsystems.pl contents. Also, by gathering data on usage patterns, cookies help us make sure the site performance is correct and effective, and allow you to find the resources you need quicker.
Types of cookies we use?
Session cookies are temporary cookies sent when you load a site and removed when your browser session expires or when your browser closes. www.benefitsystems.pl uses one session cookie: ASP.NET_SessionId. This file encodes user authorisation information and is created when you access the site and deleted as soon as you close your browser.
Persistent cookies facilitate using a site and stay in your browser longer. www.benefitsystems.pl stores a cookie to remember if a cookie notice has been displayed yet. The file is stored for a year after it is placed on an end device.
These cookies come from various partnered external sites. www.benefitsystems.pl uses Google Analytics cookies to collect statistical data on the site. The cookies are saved as soon as you access the platform. To learn more about this type of cookies, read Google Analytics Cookie. To opt out of Google Analytics cookies, follow this link.
These are the files that are responsible for the display of ads tailored to your preferences. Our cookies and the cookies of third-party providers (such as Google Adwords) are used to conduct marketing and remarketing campaigns that reach you with our marketing communication (if you have previously visited our websites). These cookies remember that you have visited our websites and store the information about what activities you have performed on our websites. The details collected in this way are shared with external suppliers.
Management of analytical cookies
You can opt out of anonymous recording and storage of the activities performed on the website that is based on analytic cookie files. The privacy policies adopted by our service providers and information on how to opt out of their cookies are available at the following addresses:
Are cookies safe?
Yes. Cookies are not executable and cannot be used as code. As such, they cannot carry viruses. All users can freely edit cookie settings on their end device. What is more, cookie files do not contain personal details and cannot be retrieved to personally identify a user.
Since cookies are also used to remember your cookie preferences, please be aware the following can occur as a result of a settings change:
To find out more about managing cookie settings, please follow the instructions related to the browser you use:
On mobile devices: