Noise Pr
Our History

Experience that builds trust.

Leadership

Meet our teams

Careers

Join us and kick-start your career

Corporate Communications
Strategic Advisory
Crisis Communications and Issues Management
Public Affairs
Change Management
Investor Relations (IR)
Media Relations
Digital and Social Media
Employee Communications
Stakeholder Dialogue
Training

Privacy Policy

This Privacy Policy sets out the principles for the processing of personal data and the protection of the privacy of individuals using the website available at noisepr.pl (hereinafter: the “Service”), operated by Noise PR sp. z o.o., with its registered office in Warsaw at ul. Miła 6/24, 00-180 Warsaw, entered in the Register of Entrepreneurs of the National Court Register maintained by the District Court for the Capital City of Warsaw, 12th Commercial Division of the National Court Register, under KRS number 0000617084, share capital PLN 96,000, NIP 5213734438, REGON 364410227, represented by Filip Sobota – Member of the Management Board and Krzysztof Rut – Member of the Management Board (hereinafter: the “Controller” or “Noise PR”).

 

The Controller can be contacted by phone at +48 601 286 651 or via email at office@noisepr.pl.

  1. Personal Data Controller
    • The controller of personal data of Service Users is Noise PR sp. z o.o. with its registered office in Warsaw. The Controller attaches particular importance to protecting the privacy and security of personal data of individuals using the website, persons contacting the company by email, and potential clients, partners and job candidates.
  2. Methods of Collecting Information About Users The Service collects information about Users and their behaviour in the following ways:
    1. Through information voluntarily provided in contact forms.
    2. Through storing cookies on Users’ end devices.
    3. Through collecting server logs by the hosting provider – home.pl, which operates the Service.
  3. Information on the Processing of Personal Data (purposes, scope, legal basis and retention periods)

Purpose of Processing

Handling inquiries and preparing offers (contact form, email to office@noisepr.pl)

Scope of Data

first and last name, email, phone number (optional), message content, company details (if provided)

Legal Basis

Art. 6(1)(b) GDPR (pre-contractual steps) and (f) (contact, correspondence handling)

Is the Provision of Data Necessary?

Voluntary; necessary to respond

Retention Period

Up to 6 months after correspondence ends; in case of cooperation – in accordance with contractual purpose and limitation periods

 

Purpose of Processing

Performance of contracts and settlements

Scope of Data

contact and identification data of parties/representatives, billing data (NIP/tax ID, address)

Legal Basis

Art. 6(1)(b) (contract), (c) (tax/accounting obligations)

Is the Provision of Data Necessary?

Necessary for contract performance

Retention Period

For the duration of the contract, then as required by law (e.g., tax regulations) and limitation periods

Purpose of Processing

Recruitment (applications sent to kariera@noisepr.pl)

Scope of Data

data included in CV/portfolio, email, phone and other provided information

Legal Basis

Art. 6(1)(c) (Labour Code – statutory data), (a) (consent – additional data), (f) (recruitment communication)

 

Is the Provision of Data Necessary?

Voluntary; lack of data prevents participation

Retention Period

Until recruitment process ends; if consent for future recruitment is given – until withdrawn

Purpose of Processing

Operating social media profile (LinkedIn)

Scope of Data

profile name, public profile data, interaction content

 

Legal Basis

Art. 6(1)(f) (profile management, communication)

Is the Provision of Data Necessary?

Voluntary

Retention Period

Until objection to processing is submitted or profile is closed

Purpose of Processing

Website activity analysis (Google Analytics)

 

Scope of Data

visit date/time, IP address (masked if enabled), browser/OS type, approximate location, subpages, visit duration, events

Legal Basis

Art. 6(1)(f) (statistics and Service improvement)

 

Is the Provision of Data Necessary?

Voluntary (may be limited via cookie settings)

Retention Period

Until objection or according to tool settings and Cookie Policy

Purpose of Processing

Service administration and security (home.pl server logs)

Scope of Data

IP address, timestamp, browser/OS headers, URL address

Legal Basis

Art. 6(1)(f) (security and diagnostics)

Is the Provision of Data Necessary?

Necessary for Service operation

Retention Period

Up to 30 days, unless longer retention is required for security or claims

Purpose of Processing

Compliance with legal obligations

Scope of Data

data required by law

Legal Basis

Art. 6(1)(c)

Is the Provision of Data Necessary?

Yes, if required by law

Retention Period

As required by applicable law

Purpose of Processing

Establishment, pursuit or defence of claims

Scope of Data

identification and contact data, cooperation/correspondence data

Legal Basis

Art. 6(1)(f)

Is the Provision of Data Necessary?

Necessary to protect rights

Retention Period

Until expiry of limitation periods

Purpose of Processing

Marketing of own services (e.g., information about offers, case studies)

Scope of Data

first and last name, email, phone

Legal Basis

Art. 6(1)(f) legitimate interest (direct marketing)

Is the Provision of Data Necessary?

Voluntary; objection possible at any time

Retention Period

Until objection is submitted

Personal data may also be processed by LinkedIn Ireland Unlimited Company as a separate controller – in accordance with its own privacy policy.

  1. Data Recipients
    • Personal data may be transferred to:
    • employees and associates of the Controller,
    • IT and hosting service providers (home.pl),
    • analytics and marketing service providers (Google – Google Analytics, LinkedIn),
    • accounting, legal or maintenance service providers,
    • public authorities authorised under applicable law.
    • All providers process data under data processing agreements and ensure an appropriate level of security.
  2. Transfer of Data Outside the EEA
    • As a rule, the Controller does not transfer personal data outside the European Economic Area (EEA). If such transfer is necessary (e.g., in connection with Google tools), the Controller ensures an adequate level of data protection in accordance with Article 46 GDPR, including the use of Standard Contractual Clauses or adequacy decisions.
    • Users may obtain a copy of applied safeguards by contacting the Controller.
  3. Rights of Data Subjects
    • Users have the right to:
    • access their data and obtain a copy,
    • rectify (correct) their data,
    • erase data (“right to be forgotten”),
    • restrict processing,
    • data portability,
    • object to data processing (including direct marketing),
    • withdraw consent (if processing is based on consent),
    • lodge a complaint with the President of the Personal Data Protection Office (PUODO) if processing violates GDPR.
  4. Automated Decision-Making
    • Users’ personal data is not used for automated decision-making, including profiling.
  5. Changes to the Privacy Policy
    • The Controller reserves the right to update this Privacy Policy in order to adapt it to changes in legal regulations, applied technologies or the manner in which the Service operates. The current version of the Privacy Policy is always available at noisepr.pl.