Privacy policy


Pursuant to Art. 13 sec. 1 and sec. 2 of the general Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC, I inform you that:

The administrator of your personal data is:


MARAT Sp. z o.o., ELROW Sp. z o.o., WANAR Sp. z o.o.

44-203 Rybnik, ul. Brzezińska 8a

Contact to the Personal Data Protection Inspector:

Inspektor Ochrony Danych Osobowych

44-203 Rybnik,

ul. Brzezińska 8a


Your personal data is processed for the purpose of:

Implementation of contracts, as well as control and marketing orders.

Financial supervision over the implementation of the contract, settling liabilities, debt collection.

Handling and considering complaints.

Handling of court proceedings.

Conducting correspondence - responding to inquiries of authorized services and entities.

Preparation of contracts, concluding contracts, performance of the concluded contract or order.

Preparing, issuing and recording powers of attorney.

Service reporting.

Implementation of audit and control activities.

Representing the Company in out-of-court proceedings, consulting and issuing legal opinions.

Establishing rights to a given object.

Verifying and ensuring the necessary permissions and qualifications required by law.

Verification of the contractor's status as part of financial control.

Verification of the identity of the recipient of the order.

Verification of purchase and tender applications.

Bringing a bid bond for the tender.

Management of permissions, access to ICT systems and rooms.

Concluding sales contracts via the online store.


based on Article. 6 GDPR (EU):

Processing is necessary for the performance of a contract to which the data subject is party or to take steps at the request of the data subject prior to entering into a contract.

Processing is necessary to fulfill the legal obligation incumbent on the controller.

Processing is necessary for the purposes of the legitimate interests pursued by the administrator.


The recipient of your personal data may be:

Companies providing ICT services.

Companies providing banking services.

Companies providing insurance services.

Companies providing consultancy services.

Companies providing audit services.

Public administration offices.

Law enforcement authorities.

State authorities.

Military administration authorities.

Supervisory institutions.

Enforcement authorities.


Your personal data will be processed in accordance with applicable law, for which the planned retention time is from 1 to 10 years, respectively. The planned date of completing the processing of personal data may be extended by the time of handling claims between the parties to the contract.

You have the right to access your data and the right to rectify, delete, limit processing, the right to transfer data, the right to object, the right to withdraw consent at any time without affecting the lawfulness of processing (if the processing takes place on the basis of consent), which were performed on the basis of consent before its withdrawal.

You have the right to lodge a complaint with the competent supervisory authority for the protection of personal data when you feel that the processing of your personal data violates the provisions of the General Data Protection Regulation of 27 April 2016.

Providing your personal data by you is a condition for concluding a contract. You are obliged to provide them, and the consequence of not providing personal data will be the inability to fulfill the legal obligation incumbent on the Data Administrator and the inability to take actions necessary to conclude a contract.