Personal data protection


Personal Data Regulation


In compliance with the European Privacy Regulation 379/2016 (GDPR, which stands for General Data Protection Regulation), Gantlé intends to inform you of what has been adopted regarding the processing and protection of your data.

Data Controller

The data controller is Lucyna Cichocka Gantle, with registered office in ul. Uniwersytecka 1/115, 02-036 in Warsaw.

Any requests for information and/or clarifications regarding the processing of data may be requested by sending an email to the following address:

Treatments Carried out and Purposes

Gantlé would like to inform you that personal data and identifications will be collected and processed for the following purposes:

  • Execution of the purchase procedure.
  • Implementation of administrative/accounting obligations: execution of the sales contract, fulfilment of accounting and legal obligations, after-sales services.

Legal Basis of Processing

The data processing is carried out based on the existence of legitimate interest, which means the execution of a contract of which you are a part.

Provision of Data

Providing data is optional, but necessary for the achievement of the above mentioned purposes and for the administrative and accounting obligations of the contract.

Data Communication and Scope of Diffusion

The data may be communicated to the following categories of subjects of which Gantlé uses for the performance of certain activities functional to the provision of its services: accounting firms for accounting / tax requirements; Public Administration for mandatory communications by law; service companies (including IT) that are entrusted with specific tasks regarding contractual obligations.

Data Retention Time

The Data collected for this purpose will be kept for the entire duration of the contractual relationship and for 10 years after the termination of the same.

Your Rights

According to Chapter III of Regulation (EU) 2016/679, you can at any time request information on personal data collected, used, disclosed or processed by the Data Controllers (right of access), as well as request for integration, rectification or erasure and object to their processing. Furthermore, starting from 25th of May 2018 (when Regulation (EU) 2016/679 shall apply), you will be able to exercise also the following rights: restriction of processing, data portability and lodge a complaint with a supervisory authority.

These rights can be exercised by sending an email to Furthermore, the Data Controller will interrupt the processing as soon as the communication of withdrawal of the previously expressed consent will be received from you.

Complaint to the Supervisory Authorities

The interested party has the right to place a complaint to his National Data Protection Authority in the event that his requests addressed to the Data Controller have not given satisfactory answers.