Privacy Policy

Ikona BIP Ikona Portal Pracownika Ikona poczty Facebook Twitter Instagram Youtube Linkedin RSS Ikona szukania PLEN

General information

1.1 This Privacy Policy is applicable to the personal data of the users of an Internet website (hereinafter “Users”) operating under the address www.jsw.pl (hereinafter: “Website”) and other categories of persons named in this Privacy Policy.

1.2 The controller of the Website Users’ personal data is the Website Owner, i.e. Jastrzębska Spółka Węglowa S.A. with its registered office in Jastrzębie-Zdrój (44-330) at Al. Jana Pawła II 4, entered in the register of commercial undertakings kept by the District Court in Gliwice, 10th Commercial Division of the National Court Register, under file no. KRS 0000072093 (hereinafter: “Company”).

1.3 In matters related to the processing of personal data, please contact the Data Protection Officer (hereinafter "DPO") at: Jastrzębska Spółka Węglowa S.A., Al. Jana Pawła II 4, 44-330 Jastrzębie-Zdrój, by writing to the e-mail address: [email protected] or by calling 32 756 4361.

1.4 This person should be contacted in any matter relating to the protection of personal data processed by the Website Owner.

1.5 Personal data of Website Users are processed by the Website Owner for the purpose of running the Website, in particular: 

  • (A)  ensuring the operation of the Website with regard to enabling authentication and authorization to certain functionalities;

  • (B)  enabling contact with the Website User through contact forms;

  • (C)  clarifying the circumstances of unauthorized use of the Website; 

  • (D)  generating internal reports and analyses (including Website sub-page viewing statistics); 

  • (E)  improving the quality of the Website; and

  • (F)   the Website Owner sending an electronic newsletter ordered by the User to the indicated e-mail address.

 

1.6 The recipient of the personal data of the Website Users is the entity cooperating with the Website Owner with regard to the IT services provided. The recipients may also include entities cooperating with the Company by providing services to the Company (e.g. sub-contractors) and supporting the Company’s current business processes.

1.7 The personal data of Website Users will be stored for the period necessary to achieve the goals specified in item 1.5 above.

1.8 The User also has the right to lodge a complaint to the supervisory authority, which is the President of the Office for Personal Data Protection, in the situations specified in Article 77(1) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (the General Data Protection Regulation), hereinafter referred to as “GDPR”.

1.9 Data on Website Users is provided voluntarily. Their provision is necessary to accomplish the objectives set forth in item 1.5.

1.10 As part of the operation of the Website, the Website Owner informs that it does not make decisions by automated means, including profiling of personal data of Service Users.
 All decisions related to personal data are made with the participation of responsible persons and in accordance with applicable laws.

 

Exercise of rights of data subjects

1.11 Any natural person (hereinafter “Applicant”) may submit a request to the Website Owner to: 

  • (A) confirm that the Website Owner processes his or her personal data and to make good on the right to provide access to his or her personal data;

  • (B) rectify his or her personal data; 

  • (C) erase his or her personal data; 

  • (D) restrict processing of his or her personal data, 

  • (E) transfer his or her personal data, which includes the right to receive data and send it to another controller or to demand, if technically possible, that the data be sent to another controller directly (to the extent to which the data is processed automatically or in order to perform the agreement or based on a consent);

  • (F) object to personal data processing (to the extent the data is processed in the Company’s legitimate interest).

 

1.12 The above-mentioned requests will be implemented by the Website Owner taking into account the provisions of the GDPR. This means that, in certain cases listed in GDPR, these rights will not be vested in the data subject.

1.13 The request should be submitted in writing to the following address: Jastrzębska Spółka Węglowa S.A., Al. Jana Pawła II 4, 44-330 Jastrzębie-Zdrój or by email to [email protected]. If the Website Owner does not process the Applicant’s personal data (other than the processing of data for the purposes of the request itself), the request will not be granted and the Applicant’s data will be erased immediately.

1.14 Immediately after receipt of the request, the Website Owner will notify the Applicant about that fact and places information about the request in the records it keeps.

1.15 The Website Owner reserves the right to verify the Applicant’s identity. If the Applicant’s identity cannot be effectively verified due to reasons for which the Applicant is responsible, the Website Owner will not grant the request, of which the Applicant will be notified immediately.

1.16 The request is examined in the Website Owner’s designated substantive unit without undue delay, but no later than within 7 days of the date of receipt of the request by the Website Owner. The Data Protection Officer appointed by the Website Owner will be consulted on how the submitted request should be handled.

1.17 The Website Owner will respond to the Applicant’s request within three (3) weeks of the date of its receipt. In cases that are objectively complicated (i.e. require much work on the Website Owner’s part), the above deadline will be extended to two (2) months, of which the Applicant will be notified immediately. At the same time, the Website Owner will make every effort to ensure that the deadline is not extended.

1.18 The right of access to data will be exercised by providing the Applicant with his or her data in the scope stated in the request. The scope of information includes:

  • the purpose of the processing,

  • the categories of personal data to be processed,

  • the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations,

  • the planned period of storing the personal data and, where impossible, the manner of calculating this period,

  • where the personal data are not collected from the data subject – any available information as to their source,

  • automated decision-making, including profiling and meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject,

  • the right to request from the Company rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing (if the data subject has such a right),

  • the right to lodge a complaint with the supervisory authority.

 

1.19 A reply to the Applicant should come with an attached copy of the personal data relating to the Applicant, in generally known and accessible machine-readable formats.

1.20 Any complaints related to the implementation of the procedure for the exercise of the rights of personal data subjects should be submitted to the Website Owner's IOD address 
i.e. [email protected]. The complaint will be examined immediately, but no later than within 7 days of the date of its delivery and the Applicant will be notified immediately about this fact.
 The Applicant will also be notified of receipt of the complaint. Details of the complaint are registered in the records kept by the DPO.

 

Miscellaneous

1.21 If the Website Owner requests consent for sending commercial information electronically, a person who has given such consent has the right to withdraw the consent by sending an e-mail to the address specified in item 1.3. above, entering the word “rezygnacja” [resignation] in the title. The above also applies to any other consent obtained by the Website Owner through the Website.

1.22 The Website Owner declares that it will do its utmost to ensure high level of security of the Users who are using the Website. All events affecting the security of transmission of information should be reported to the address specified in item 1.3 above.

1.23 In order to ensure the security of the personal data of the Service Users 
- The Website Owner uses appropriate technical and organizational measures to prevent unauthorized access, loss, alteration or disclosure of the personal data. Some of the most important measures used include:

  • securing data transmission with SSL/TLS protocol, which guarantees encryption of information sent between the User's device and the Website,

  • controlling access to information systems through the use of passwords, authorization and permissions,

  • regular software updates and use of security solutions, 

  • monitoring and security audits,

  • employee training on data protection,

  • procedures to ensure the confidentiality and integrity of data.

     

1.24 The Website Owner reserves the right to disclose selected information about the User to relevant authorities or third parties who request such information on an appropriate legal basis and in accordance with the applicable law.

1.25 Except as provided in item 1.24 above, information about the User will not be disclosed to any third party or authority without consent of the information subject.

 

Cookie files and system logs

1.26 The Website Owner informs that from the moment the User connects to the Website, the following data concerning the User are processed in the Website system logs: the IP number of the User's device, the type of terminal device from which the User connects to the Website, the type and version of the Internet browser, the operating system of the device, the time and date of the connection to the Website, the duration of the session in the Website, the Website pages and sub-pages visited by the User, data on activity in the Website (e.g. clicks), information on cookies. This data is used for technical purposes (e.g., to ensure proper operation of the Website) and analytical purposes (e.g., to create visitor statistics and optimize the Website).

 

1.27 With regard to the creation of statistics, Google Analytics analytical tools are used, which collect information about the Website User's visit, such as: sub-pages visited, time spent on the website and paths of movement between different sub-pages. Google LLC's Google Analytics cookies are used for this purpose. Google Analytics is provided by Google Ireland Limited, based in Ireland. Detailed information on Google's privacy policy and how Google processes data is available at: policies.google.com/privacy. Google Analytics may also collect demographic data and information about users' interests, which are used to create analysis and reports on the use of the Website. As part of the cookie settings, the Service User has the option to decide whether or not to consent to the collection of data. For more information on the use of Google Analytics, including the data processor, please visit: support.google.com/analytics.

1.28 The Service uses different types of cookies, which can be divided into:

  • strictly necessary cookies - necessary for the proper functioning of the Website, enabling the use of basic functions, such as maintaining a user session or navigating the site.
    Disabling them may cause restrictions on the use of the Website,

  • analytical cookies - are used to collect information about the use of the Website, such as sub-pages visited or time spent on the site, which allows for traffic analysis and optimization of the Website. These cookies also use tools such as Google Analytics.

In order to provide transparency and control over the cookies used, it is recommended to implement a Cookie Script tool that allows users to see in detail the cookies used and the possibility to disable them. Descriptions of individual cookies and their functions will then be clearly available to users.

1.29 The User may change cookie settings at any time. To do this, the web browser’s cookie settings must be modified. In particular, the settings may be changed to block the automatic handling of cookies by the web browser or to inform the User each time they are saved in the User’s device. Detailed information about the options for and methods of handling cookies is available in the settings of the software (web browser).

 

Hosting

1.30 The Website Owner, based on a written contract, entrusts the processing of all the personal data provided by the User and other data mentioned in this Policy to JSW IT Systems Sp. z o.o., for the purposes of correct performance by that company of the Website hosting, administration, maintenance and management activities.

1.31 Date of last revision of the Privacy Policy: 29 August 2025.

Privacy Policy
Information duty
Contractor
Contact the Data Protection Officer