Privacy Policy Aleet

This Privacy Policy is for informational purposes and fulfills the information obligations imposed on the data controller by the GDPR, i.e., Regulation 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).

Everyone who uses the website at www.aleet.co and any Aleet application (in particular the Route2 Driver mobile application or the Route2 web application) should familiarize themselves with this Privacy Policy. The Privacy Policy sets out the rules for processing the personal data of individuals using the aforementioned website or Aleet applications, and the use of Cookies and other tracking technologies used in connection with the operation of the website.

1. The controller of personal data is ALEET Sp. Z O.O., with its registered office in Lublin (20-109) at Królewska 3, entered into the register of entrepreneurs of the National Court Register under KRS number: 0000720768, NIP: 7010805080, REGON: 369567896, with a share capital of PLN 49,600.00 (hereinafter referred to as “Aleet”).
2. Any data subject can contact Aleet, as the controller of their personal data, by sending an email to: gdpr@aleet.co or by sending a letter to the address indicated in section 1.b. above.

1. The purpose and scope of the processed personal data are determined by the scope of consent and the data provided by the data subject in an email, contact form, or otherwise. The processing of personal data by Aleet may specifically concern: name, surname, email address, phone number, computer IP address, and other voluntarily provided data.
2. The scope, purposes, and legal bases for the processing of personal data are presented in the table below:

1.  Aleet does not process personal data on this website for the purpose of automated decision-making, including profiling.
2.  To achieve some of the processing purposes indicated in the table above, Aleet may transfer personal data to third countries. In such cases, this will always occur based on standard contractual clauses compliant with the European Commission’s decision, where both Aleet and its contractors undertake to ensure an adequate level of security for the transferred personal data. Before signing the standard contractual clauses, Aleet verifies each of its contractors who will have access to personal data and assesses whether the country to which the personal data is sent allows for the enforcement of rights and ensures effective legal remedies for the data subjects.
3. If the European Commission issues a decision stating that a given third country ensures an adequate level of personal data protection, the transfer of personal data to that country may also occur based on that decision.
4. If standard contractual clauses cannot be used and there is no European Commission decision, the transfer of personal data will occur only in specific situations, understood as the necessity to perform a contract concluded between the data subject and Aleet, or the implementation of pre-contractual measures. In this situation, too, Aleet carries out a thorough verification of each of its contractors who will have access to the data subject’s personal data to ensure their maximum security.
5. In every case of transferring personal data to a third country, the data subject is entitled to obtain a copy of this data.

1. Aleet may entrust the processing of personal data to third parties for the purpose of performing specific activities. In such cases, the recipients of individual data may include: Aleet’s hosting provider, email operator, IT company, software provider, email service provider, law firm, accounting office, entities providing cloud solutions and other solutions used by Aleet in its current operations that involve the processing of personal data.

2. Personal data collected by Aleet may also be shared with: relevant state authorities at their request based on appropriate legal provisions, or other persons and entities—in cases provided for by law.

3. Any entity to which Aleet entrusts personal data for processing, based on a data processing agreement (hereinafter “Processing Agreement”), guarantees an appropriate level of security and confidentiality of personal data processing. A data processor processing the personal data of data subjects based on a Processing Agreement may process the personal data of these individuals through another entity only with Aleet’s prior consent.

4. The disclosure of personal data to unauthorized entities according to this Privacy Policy may occur only with the data subject’s prior express consent.

1. Every data subject has the right to: (a) request the deletion of personal data collected about them, both from the Aleet system and from the databases of entities with which Aleet cooperates or has cooperated, (b) restrict data processing, (c) data portability of personal data collected by Aleet, including receiving them in a structured form, (d) request access to their personal data and their rectification from Aleet, (e) object to processing, (f) withdraw consent to Aleet at any time without affecting the lawfulness of processing based on consent before its withdrawal; (g) lodge a complaint against Aleet with the supervisory authority (the President of the Office for Personal Data Protection in Poland).
2. The exercise of data subject rights may occur, in particular, using the communication channels referred to in section 1.b. of this Privacy Policy.

1. Aleet may store HTTP queries, and therefore some information may be saved in server log files, including the IP address of the computer from which the query originated, the name of the data subject’s workstation—identification implemented by the HTTP protocol, if possible, the date and time of registration on the Aleet website and the arrival of the query, the number of bytes sent by the server, the URL of the page previously visited by the data subject if they entered the Aleet website using a link, information about the browser, and information about errors that occurred during the HTTP transaction. Logs may be collected as material for the proper administration of Aleet. Only persons authorized to administer the IT system have access to the information. Log files may be analyzed to compile statistics on Aleet website traffic and occurring errors. The summary of such information does not allow for the identification of a natural person.
2. Aleet may use Google Analytics and other analytical tools, through which it has access to anonymized information about Users, including: information about the operating system and web browser, time spent on the website, age group, gender, approximate location, and interests, based on their activity on the Internet. The information referred to in the preceding sentence is not combined with personal data and does not allow for their identification, nor is it personal data within the meaning of GDPR provisions.
3. To ensure the proper functioning of the site and user convenience, the site may use LocalStorage (browser local storage) technology. Data stored in LocalStorage is not automatically sent to the server with every reference to the site. Only scripts operating within this site have access to them. This technology can be used to store interface settings, such as language preferences, or to temporarily save data entered in forms to facilitate navigation and prevent its loss in the event of accidental closing of the browser tab. Data in LocalStorage is stored indefinitely in the user’s browser until it is manually deleted by the user or Browse data is cleared. This information is not used to identify the user.

1. Aleet ensures the security of personal data. In particular, Aleet applies technical and organizational measures ensuring the protection of processed personal data appropriate to the risks and categories of data subject to protection, including technically and organizationally securing data against unauthorized access, unauthorized removal, processing in violation of the law, and alteration, loss, damage, or destruction. For example, SSL certificates are used. The collected personal data is stored on a secured server, and the data is also protected by Aleet’s internal procedures regarding personal data processing and information security policies.
2. Aleet has also implemented appropriate technical and organizational measures, such as pseudonymization, designed to effectively implement data protection principles, such as data minimization, and to provide necessary safeguards for processing, to meet the requirements of the GDPR and protect the rights of data subjects.
3. Notwithstanding the above, Aleet points out that the use of the Internet and electronically provided services may be threatened by harmful software (malware) entering the user’s ICT system and device, as well as unauthorized access to data, including personal data, by third parties. To minimize these threats, the data subject should use appropriate technical security measures, e.g., using current antivirus programs or programs protecting their identification on the Internet. To obtain detailed and professional information regarding Internet security, Aleet recommends seeking advice from entities specializing in such IT services.

1. To ensure the proper functioning of the website, Aleet uses Cookies technology. Cookies are text information saved on the user’s device (computer, tablet, smartphone) via Aleet, usually containing information consistent with the purpose of the given file, through which the user uses the Aleet website—these are usually: service address, placement date, expiration date, unique number, and additional information consistent with the purpose of the given file.
2. Aleet uses two types of Cookies: (a) session cookies, which are permanently deleted at the end of the browser session; (b) persistent cookies, which remain after the browser session ends until they are deleted.
3. Based on Cookies, both session and persistent, it is not possible to establish the identity of the user. The Cookies mechanism does not allow for the retrieval of any personal data.
4. Aleet’s Cookies are safe for the user’s device, in particular, they do not allow viruses or other software to enter the device.
5. Files generated directly by Aleet cannot be read by other services. Third-party Cookies (i.e., Cookies placed by entities cooperating with Aleet) can be read by an external server.
6. The user can independently change the settings regarding Cookies at any time, defining the conditions for their storage, through the settings of the internet browser or by configuring the service.
7. First of all, the user can disable the saving of Cookies on their device, according to the browser manufacturer’s instructions, but this may result in the unavailability of some or all of the functions of the Aleet website.
8. The user can also independently delete Cookies saved on their device at any time, according to the browser manufacturer’s instructions.
9. Aleet uses its own Cookies for the following purposes: website configuration and adapting the content of the pages to the preferences or behavior of the user; analysis and monitoring of viewership, number of clicks, and the navigation path on the site to improve the appearance and organization of content on the site, time spent on the site, and the number and frequency of visitors to the Aleet site.
10. Aleet uses third-party Cookies to create anonymous statistics allowing for website optimization, through analytical tools in the form of Google Analytics, referred to in section 5b) above.
11. Detailed information about handling Cookies is available in the settings of the internet browser used by the data subject.
12. The website www.aleet.co is built using specialized software that translates the website into a given language to facilitate website building. Simultaneously, the plugin retrieves the user’s language preferences saved in their internet browser. The program checks the last used language to match and remember the preferences of the last logged-in user to facilitate their access to the site. The WPML Translation Management plugin sends the email address, the name of each manager, the assigned translator, and the content itself to the Advanced Translation Editor and to the translation services used.

1. This Privacy Policy is effective as of 9.02.2022