Privacy Policy

Personal Data Protection Policy of GTX Service Sp. z o.o. Sp.k.

The following document presents the manner in which GTX Service Sp. z o.o. Sp.k. processes personal data.

The administrator of personal data is GTX Service Sp. z o.o. Sp.k. with its registered office in Warsaw at ul. Pograniczna 2/4, 02-285 Warsaw.

Our company has implemented appropriate procedures and technical solutions in accordance with the regulations on personal data protection in force in the European Union and the Republic of Poland. The security procedures and technical and physical restrictions applied are designed to protect the personal data we process against unauthorized access, loss, modification, and unauthorized disclosure.

Legal basis for the processing of personal data

We process personal data because:

  • It is necessary for us to fulfill a legal obligation,
  • It is necessary for us for purposes arising from legitimate interests,
  • We have obtained consent from the data subjects.


Customers' personal data.

Depending on the method of communication with us, the type of contract concluded, and the entity establishing cooperation, we may process our customers' personal data in the following scope:

  • data obtained from customers: first and last name, telephone number, e-mail address, home address, tax identification number, company details, bank account number.
  • data obtained automatically: Internet Protocol (IP) address used to connect your computer to the Internet, information about your computer and connection, such as browser type and version, browser plug-in types and versions, operating system, cookies, Flash cookies (also known as Flash Local Shared Objects), session information, including page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), data about devices connecting to our wireless network, and methods used to browse the site


Our customers' data is processed for the following purposes:

  • to carry out the sales process for the products we offer,
  • to enable contact with us and familiarization with our offer,
  • to perform a contract previously concluded with the customer,
  • to enable the customer to use our website,
  • to monitor activity on our website using cookies and other analytical tools,
  • providing product information in line with the interests and needs of visitors to our website using profiling based on customer data, including cookies, and using analytical tools,
  • conducting research and statistical analysis in terms of the functionality of the website and improving its functioning,
  • debt collection, conducting court, arbitration, and mediation proceedings,
  • complying with legal and regulatory requirements,
  • conducting market research, customer satisfaction surveys, and quality control, direct marketing, and promotion (only on the basis of consent obtained).


The duration of the processing of Customers' personal data depends on the purpose of the processing and may be:

  • In the case of data processing on the basis of a contract, for the duration of the contract and the limitation period for any claims.
  • In the case of consent by the data subject, until such consent is revoked.
  • Data processed as part of the legitimate interest of GTX Service Sp. z o.o. Sp.k. for the duration of that interest.
  • In the case of data processing for direct marketing purposes, for the duration of the objection of the data subject.
  • Data processed as a result of the legal obligations of GTX Service Sp. z o.o. Sp.k. for the duration specified in the relevant regulations.

Suppliers' personal data.

For the proper functioning of our company, in our daily operations, we rely on the services and products of our Suppliers. This requires us to process the personal data of business owners and their employees.

The scope of Suppliers' data processed includes: name and surname, email address, telephone number, business address, tax identification number, bank account number, registration data.

We process our Suppliers' data for the following purposes:

  • To familiarize ourselves with the supplier's offer.
  • To conclude a cooperation agreement.
  • Communicating within the framework of mutual cooperation.
  • Providing accounting services for our company.
  • Compliance with legal and regulatory requirements.


The processing time for our suppliers' personal data, depending on the type of document, is as follows:

  • Data contained in the offer for a period of 60 days.
  • Contracts for the duration of the contract, and after the end of cooperation for the duration of any claims.
  • Financial documents for a period of 5 calendar years, except where the data is necessary for control activities, is related to another accounting period, or is required to document any claims.


Personal data of GTX Service Sp. z o.o. Sp.k. employees

We process the personal data of our employees to the extent permitted by law: first name(s) and surname, parents' names, date of birth, place of residence (correspondence address), PESEL (Personal Identification Number), NIP (Tax Identification Number), education, employment history, first and last names and dates of birth of the Employee's children, if the provision of such data is necessary due to the Employee's use of special rights provided for in labor law, image, bank account number.

We process our Employees' data for the following purposes:

  • To comply with legal and regulatory obligations.
  • To ensure safety on our company's premises.
  • To provide access to the company's IT systems.
  • To keep records of working time, allowing for the correct calculation of the Employee's remuneration and other work-related benefits.

The period of personal data processing is regulated by law and the term of the contract with the Employee and is as follows:

  • Personal files for 50 years from the date of termination of employment.
  • Payroll documentation for 50 years from the date of its creation.
  • Documents of employees hired on the basis of civil law contracts for the period of required access to this information, resulting from legal regulations (e.g., pension, disability, tax), not less than 5 years.
  • In the case of consent given by the Employee, until such consent is revoked.
  • Securing mobile devices against unauthorized access to the data stored on them in the event of their loss.


Data of candidates for employment at GTX Service Sp. z o.o. Sp.k.

When recruiting new employees or accepting applications for employment in our company, we process the personal data of candidates.

The scope of personal data presented is lawful or has been voluntarily provided to us by the Candidate: first name(s) and surname, date of birth; place of residence (correspondence address); education, employment history, e-mail address, telephone number, image.

We process this data for the purpose of recruiting new employees to our company.

We process the data, depending on the consent given by the candidate:

For the duration of the recruitment process for the position specified in the advertisement.
For the purposes of future recruitment for other positions until the consent is withdrawn by the person to whom the personal data relates.
Personal data of former employees of GTX Service Sp. z o.o. Sp.k.

Due to legal requirements, we also process the personal data of our former employees in an archival form.

The scope of data and the time of its processing is consistent with that which was processed during employment.

We store this data to document the employment history of former employees and as evidence in the event of inspections by state authorities (e.g., Social Insurance Institution, Tax Office).

Rights of data subjects.

Data subjects have the right to personal data protection, which allows them to:

  • Obtain information about the personal data being processed.
  • Access the personal data being processed.
  • Rectify, i.e., correct any incomplete or inaccurate information that is being processed.
  • Delete personal data in justified cases, i.e., the right to be forgotten, to delete data when there is no longer a legitimate reason to continue processing it or when consent has been withdrawn.
  • Transfer data, i.e., obtain data and reuse it for another purpose and with another controller.
  • Objection to the processing of personal data if there is no legitimate reason.
  • Protection against automated decision-making and profiling.
  • In the event of unlawful processing of personal data, the right to lodge a complaint with the supervisory authority – the President of the Personal Data Protection Office.


Contact regarding personal data processing

Questions related to our processing of personal data and the rights of data subjects in this regard can be obtained by contacting us at the following e-mail address: [email protected]

Entrusting personal data

As part of its activities, GTX Service Sp. z o.o. Sp.k. cooperates with external suppliers who support us in performing tasks necessary for the functioning of the company. For this purpose, we may entrust personal data to external entities, for example: software maintenance, e-mail, courier services, database management, payment processing, communication tool providers, IT system providers (accounting, CRM, ERP), document destruction. When using the services of external providers, only personal data that is necessary for the performance of the service is disclosed. GTX Service Sp. z o.o. Sp.k. providers are required to ensure an adequate level of data security and to comply with the requirements of applicable law relating to the protection of personal data. External service providers are bound by a confidentiality clause and may not use the personal data entrusted to them for purposes other than those specified in the contract with our company.

We assure you that we do not disclose personal data to third parties, except when we are required to do so by law, for example by court order, to prevent fraud or other crimes, and on the basis of the voluntary consent of the data subject.

We declare that we do not transfer the personal data we process outside the European Economic Area.

We declare that the automatic data processing we use in connection with the services and tools we provide and use to serve our customers (including profiling) does not have any legal effects on the data subjects and does not significantly affect their situation.

Cookie management

If you do not want to receive cookies, you can change your browser settings. Please note that disabling cookies necessary for authentication, security, and maintaining user preferences may hinder, and in extreme cases may prevent, the use of websites.

In order to manage cookie settings, you must configure the cookie options in your browser accordingly. Cookies can also be deleted manually by clearing your browsing history in your browser menu.

Warsaw, October 13, 2025

Copyright © GTX Service