Dorada project logoEuropean Union

High contrast

A

EN|PL
Colorful pieces to play

Read the privacy policy

Privacy policy

This privacy policy sets out the rules for processing personal data collected when using the dorada.uj.edu.pl website, hereinafter referred to as the ‘Website’, and the rules for the use of cookies. The Website includes a website together with a mobile application for Android and iOS, hereinafter referred to as the ‘Dorada Portal’.

The Dorada Portal is owned by the Jagiellonian University with its registered office at ul. Gołębia 24, 31-007 Kraków, Poland, Tax Identification Number: 675-000-22-36 (hereinafter referred to as ‘JU’).
JU attaches particular importance to respecting the privacy of the Dorada Portal users and therefore JU implements the following Privacy Policy.
The Dorada Portal uses cookies in order to provide high quality services and to ensure optimal and efficient functioning of the portal.

Part 1: Personal data processed by the Dorada Portal

When processing data, JU complies with data protection legislation, including Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (‘GDPR’).

  1. When offering the functionalities of the Dorada Portal, the Jagiellonian University collects personal data provided by the User in the Dorada Portal forms:
    a) In connection with the use of the contact form: the User’s name/nickname and e-mail address,
    b) In connection with the use of the chat - a conversation with an educational advisor: an e-mail address and, depending on the User’s indication, the User’s name and surname or nickname,
    c) In connection with the use of the newsletter service: an e-mail address.
  2. The User’s personal data referred to in Clause 1 above are processed in order to provide the relevant service (e.g. chats, self-tests and contact forms or the newsletter) on the basis of the consent granted by the User (Article 6 (1) (a) of GDPR).
  3. The forms available on the Dorada Portal include ‘self-tests’. The information provided in the process of the completion of self-tests does not have the characteristics of personal data and does not allow for the identification of the User. If the User would like to complete a self-test including open and semi-open questions and indicates an e-mail address for this purpose, the User’s personal data included in the e-mail address will be processed on the basis of the consent expressed by the User (Article 6(1)(a) of GDPR), under the rules set out in this Privacy Policy.
  4. If the User uses the Dorada Portal in a way that results in infringements, the personal data provided by the User may be processed by JU in order to establish, pursue and enforce claims as well as to defend JU against claims (Article 6 (1) (f) of GDPR) - under the rules set out in this Privacy Policy.
  5. JU makes every effort to protect the Dorada Portal together with the data processed in it, among others, against unauthorised access by third parties. To this end, JU uses physical security measures, security systems safeguarding access to servers and the service, and cryptographic solutions. Personal data are made available only to those employees and entities for whom they are necessary in order to perform their tasks, and the data are processed only for the purpose described in this Privacy Policy and for the period justifying data processing.

Part 2: Cookie files

  1. Information on the Dorada Portal, in addition to the submission of data in the forms, may also be collected automatically as a result of the use of the Dorada Portal, i.e.:

    a) information is automatically recorded in server logs and the Dorada Portal, e.g. an IP address, page request sent by the User, the date and time of the request, a browser type, browser language, device data or operating system type,
    b) cookie files - small text files sent by the Dorada Portal to the device of the User visiting the Dorada Portal (e.g. a computer or smartphone).

  2. The information referred to in Clause 1(a) above is collected automatically and used for the following purposes:
    a) to administer the servers and the Dorada Portal,
    b) to ensure the security and protection of the data and the Dorada Portal,
    c) to ensure the provision of certain services to the User,
    d) to adapt the Dorada Portal to the User’s needs,
    e) to create the viewing statistics of the Dorada Portal subpages,
    f) to operate a chat room and a newsletter.
  3. The cookies referred to in Clause 1(b) above are used for the following purposes:
    a) to ensure that the Dorada Portal sites work well in the User’s browser,
    b) to facilitate the use of the Dorada Portal for the User and to adapt it to the User’s needs,
    c) to remember the User’s individual settings and preferences,
    d) to create statistics of the Dorada Portal in order to learn about the expectations of users and develop the Dorada Portal so as to facilitate access to the most sought-after information (e.g. by analysing queries from search engines).
  4. Web browsers usually allow the storage of cookies on the User’s device by default.
    The User has the possibility to configure the User’s web browser so as to completely or partially disable the storage of cookies on the device. If the storage of cookies is disabled, some features of the Dorada Portal may not work properly.
    How to disable cookies: the User can determine whether or not to store cookies in the browser settings:
    - in Firefox: Options > Privacy
    - in Chrome: Settings > Advanced settings > Privacy > Content settings
    - in Internet Explorer: Tools > Internet options > Privacy (you may select different levels of protection) > Advanced
    - in Opera: Preferences > Advanced > Cookies
    - in MS Edge: Settings > Site permissions > Cookies and site data >
    At the top of the screen displayed, you can completely disable the option of saving cookies in your Microsoft Edge cache.
    Cookies must be set separately in each browser used by the User.
  5. The Dorada Portal uses the following cookie types (categories):
    1. Strictly necessary cookies:
      This type of cookies is necessary for the Dorada Portal to function. Browser settings can be changed to disable them but then the website will not function properly. The necessary files used on the Dorada portal include:
      - contrast-uj - used to remember your contrast preferences,
      - cookie - used to remember that you have accepted cookies,
      - roomID - room ID for the chat room,
      - roomToken - a token used for proper chat room handling.
    2. Analytics cookies:

      This type of cookies is necessary to maintain statistics on the page popularity, the number of visits and the distribution of visits over time.
      Within the Dorada Portal, the Google Analytics tool is used. Information about the cookies used for Google Analytics can be found on the subpage: https://developers.google.com/analytics/devguides/collection/gtagjs/cookie-usage

    3. Functionality cookies:

      This type of cookies is necessary in order to remember the User’s preferences (in localStorage and sessionStorage), i.e.:
      - contrast-uj - used to remember your contrast preferences,
      - cookie - used to remember that you have accepted cookies,
      - roomID - room ID for the chat room,
      - roomToken - a token used for proper chat room handling.

    4. Session cookies:

      This is temporary information stored in the browser’s memory until the session is terminated, i.e. closed. In session storage, the following information is stored:
      - roomID (chat room ID)
      - roomToken (chat room token)

    5. Persistent cookies:

      This information remains in the memory of the User’s browser for an extended period of time. The period depends on the option chosen in the browser settings. This type of cookies makes it possible to transfer information to a server each time a page is visited. In localStorage the following information is stored:
      - contrast-uj - information about the enabled contrast,
      - cookie - information about the cookies accepted.

  6. When using the Dorada Portal, some User’s data may be automatically collected and processed by tools of external entities used by JU. In such a situation, the data are used not only by JU, but also by the tool provider.
    For statistical purposes, JU uses the Google Analytics tool, which operates on the basis of its own cookies. To find out more about how it works, read the Google Analytics Privacy Policy:
    https://support.google.com/analytics/answer/6004245?hl=pl.

    In addition, the Dorada Portal uses: plug-ins, buttons or other tools to share content on social networks such as: Facebook, Twitter, LinkedIN, Google Maps, OpenStreetMaps and YouTube videos.

  7. The use of external websites, the rules for the processing of personal data, privacy regulations and the use of cookies are governed by the privacy policies and regulations of the websites of these entities.
    Third-party websites, to which the Dorada Portal sometimes refers it Users, may also use cookies other than those mentioned above, including in particular files that enable logging into the User's account and the display of advertisements corresponding to the User's preferences and behaviour.
    The User should read the rules of these entities.

Part 3: The User’s rights

    1. The Administrator of the User’s personal data is the Jagiellonian University with its seat at ul. Gołębia 24, 31-007 Kraków, Poland. In matters concerning the processing of personal data, please contact the Data Protection Officer appointed by the Administrator:

      Data Protection Officer
      Jagiellonian University
      ul. Gołębia 24, 31-007 Kraków
      e-mail: iod@uj.edu.pl
      iod.uj.edu.pl

    2. The User’s personal data will be processed for the period necessary to achieve a given aim set out in Part 1 of the Privacy Policy and until the consent for the processing of the data is withdrawn, with the exception of the situation when further data storage is a legal obligation of JU. After the User’s consent is revoked, JU may store the data for the period corresponding to the statute of limitations for claims that may arise from the use of the Dorada Portal - i.e. 6 years for consumer claims (pursuant to generally applicable regulations).
    3. Providing personal data by the User is voluntary, but it is required to use some selected functionalities of the Dorada Portal. A failure to provide personal data disables access to certain functionalities of the Dorada Portal.
    4. The User has a right to:
      a) be informed about the processing of the User’s personal data and the User’s rights under GDPR,
      b) have access to the content of the User’s data
      c) rectify the content of the User’s data,
      d) have the User’s personal data erased from the Controller’s files (unless further processing is necessary to comply with a legal obligation or in order to establish, assert or defend claims),
      e) the limitation of the data processing,
      f) the data transfer,
      g) object to the data processing.
      – in the situations and under the conditions defined in GDPR.
    5. The User also has a right to withdraw the User’s consent at any time without affecting the lawfulness of the data processing carried out on the basis of the User’s consent before its withdrawal.
      The withdrawal of consent for the processing of personal data can be sent by e-mail to: przelamuj@uj.edu.pl or by post to the address of the ‘Responsible Support and Sustainable Development’ Project Office, ul. Czapskich 4, pok. 202, Kraków, or it can be withdrawn in person by visiting the Project Office, ul. Czapskich 4, 31-110 Kraków.
      As a consequence of the withdrawal of the User’s consent for the processing of personal data the User will not be able to use the functionalities of the Dorada Portal specified in Part 1 of the Privacy Policy – subject to the extent of the consent withdrawal.
    6. The User’s personal data will not be subject to automated decision-making or profiling.
    7. The recipients of the User's personal data are entities processing the data on behalf of the Administrator and on the basis of an appropriate agreement on personal data processing, including in particular entities providing services to JU and providing IT solutions necessary to use the functionalities of the Dorada Portal.
      Should JU be requested to do so by state bodies, services or the authorities authorised under generally applicable legislation, JU shall make the User’s personal data available to these entities.
    8. The User has a right to lodge a complaint with the President of the Personal Data Protection Office if the User considers that the processing of the User’s personal data violates the GDPR provisions.
    9. The User’s personal data provided in order to use the newsletter may be transferred to third countries (outside the European Economic Area) on the basis of:
      a) decisions of the European Commission which confirm the adequate level and standards of personal data protection in a country which does not belong to the European Economic Area. A list of countries with regard to which the EC has taken the above mentioned decisions is available on the website of the European Commission.
      https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en
      or

      b) Commission Implementing Decision (EU) 2021/914 of 4 June 2021 on standard contractual clauses for the transfer of personal data to third countries under Regulation (EU) 2016/67 of the European Parliament and of the Council. The text of the decision is available at:
      https://eur-lex.europa.eu/legal-content/PL/TXT/PDF/?uri=CELEX:32021D0914&from=PL
      or

      (c) if the conditions described in Clause 9(a) and 9(b) above are not fulfilled, the data transfer may take place on the basis of the User’s consent. Pursuant to Article 49(1) (a) of GDPR, in the absence of a decision confirming an adequate protection level as referred to in Article 45(3) of GDPR or the absence of adequate safeguards as referred to in Article 46 of GDPR, including binding corporate rules, one or more transfers of personal data to a third country or an international organisation may only take place provided that the data subject, informed of the possible risks, has explicitly consented to the transfer of the subject’s data.

Part 4: Final provisions

      1. This Privacy Policy shall be updated on an ongoing basis in order to provide the Dorada Portal users with adequate information about its application.
      2. Should this Privacy Policy change, a relevant notice will be posted on this subpage.

The document was published on: 12 May 2022