Who we are
Our Webpage adress is: https://myd-logistics.com.
CONSENT TO THE COLLECTING AND PROCESSING
OF PERSONAL DATA
Within the meaning of Regulation 2016/679 of the European Parliament and the Council (EU)
By sending this form and clicking the option “I AGREE”, I, as the Data Subject, hereby consent to the processing
of my below given personal data which personal data I hereby voluntarily provide to the Controller by the method
specified below in this consent. I acknowledge that the Personal Data which relate to my person represent the so called personal data within the meaning of the Regulation 2016/679 of the European Parliament and the Council
(EU) of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on
the free movement on such data and repealing Directive 95/46/EC (“GDPR”). At the same time I declare that I am
at least 16 years old and if not than I confirm that such consent has been expressed or given by the person who
has the parental responsibility for me.
The Controller is the company MYD Sp z o. o. , Company Id. No.: 0000727159 , with registered office at 05-500 Piaseczno 7/4 Gen. Grochowskiego street (the “Data Controller“).
2. Personal Data Processing
2.1. My personal data, which I voluntarily provide to the Controller, are the following: Name, Surname, Date of
Birth, Address, Email Address, Telephone No., Identification No., Tax Identification No., Login Name.
2.2. I give my consent to the processing of the above personal data for the following purposes:
a) The Controller’s marketing purposes relating to offers of products and services; sending
information about organized events, products, services and other activities (e.g. in the form of sent
newsletters, telemarketing); contacts for the purpose of market researches; contacts for the
purpose of Christmas or Easter greetings or other holidays greetings and sending discount
vouchers, gifts, etc.
when the processing of personal data is necessary in order to fulfill these purposes.
2.3. The legal base for the processing is Article 6, Paragraph 1, Letter a) of the GDPR.
2.4. The Controller shall process personal data which shall be adequate, relevant and limited to the extent
necessary for the purpose of processing.
2.5. Besides the Controller, the above personal data shall be collected and processed also by the following
● Recipients of personal data: The Controller shall be entitled to transfer my personal data in particular
to the following recipients and categories of recipients: the Controller’s suppliers, the Controller’s
employees, transport services providers, providers of marketing and advertising services, financial
institutions, state authorities within the scope of fulfilling the statutory obligations prescribed by relevant
legal regulations; and other parties in other contractual relationships with the Controller.
● The Controller shall be entitled to provide my personal data also to relevant recipients/categories of
recipients with domiciles outside the EU and the EEA. I acknowledge that in the case of transmission of
personal data to third countries the Data Controller shall have sufficient control mechanisms for their
protection, including the analysis relevant to the protection of such third country and/or, as the case may
be, the conclusion of a standard contractual clause on protection of personal data approved by the
European Commission and/or the verification of the Privacy Shield Certification, if the target recipient is
domiciled in the USA (more information about this certification is available at:
I acknowledge that in case of transfer of my personal data to a third party domiciled outside the EU and
the EEA, the Data Controller shall proceed in the following steps:
● The internal review of the existence of the Decision of the European Commission on relevant
legal protection pursuant to Article 45 of the GDPR: The Controller shall transfer my personal data to
the recipients of personal data in third countries in relation to which the European Commission has
performed the test whether they have in place the relevant level of protection of personal data (the
decision on adequate protection). As at the date of publishing of these rules of protection and processing
of personal data, such third countries include: Andorra, Argentina, Canada, Faroe Islands, Guernsey,
Israel, Switzerland, Jersey, New Zealand, Uruguay and the Isle of Man. More detailed information on the
Decision of the European Commission is available at: https://ec.europa.eu/info/law/law-topic/dataprotection_cs.
● The review of the certification of the type of measure which the European Commission has
approved for the support of the existing protection of providing Personal Data: The Data
Controller shall transfer my personal data to data recipients in third countries in which the European
Commission has not performed the test whether they have in place the relevant level of protection of
Personal Data (the decision on adequate protection). In order to comply with the personal data
protection regulations, the Controller shall use the data transmission mechanisms approved by the
European Commission (the standard contractual clause on the protection of personal data approved by
the European Commission in the wording available at: https://eurolex.europa.eu/LexUriServ/LexUriServ.do?uri=OJ:L:2010:039:0005:0018:CS:PDF and https://eurolex.europa.eu/legal-content/CS/TXT/PDF/?uri=CELEX:32004D0915&from=CS). If it is desirable, the
Controller shall verify that the specific recipient has in place the binding internal rules on personal data
protection (pursuant to Article 47 of the GDPR, binding internal rules for personal data protection are a
protective mechanism approved by the European Commission to ensure the adequacy of personal data
2.6. The Controller shall be entitled to process the above personal data for a period of 5 years starting from the
date of giving my consent. I acknowledge that prior to the expiration of this period the Controller may contact
me with the purpose to renew my consent and that without such renewal my Personal Data shall be, after
the expiration of the above period, deleted forever.
3. Data Subject’s Rights
3.1. I acknowledge that as the Data Subject I have the right to demand from the Controller the access to (Article
15 of the GDPR), the correction and/or deletion of (Article 16 or 17 of the GDPR) and as the case may any
limitation of processing of (Article 18 of the GDPR) as well as the right to object against the carried out
processing of (Article 21 of the GDPR) my Personal Data. According to the provisions of Article 20 of the
GDPR, as the Data Subject, I have the right to the portability of data relating to my person which I have
provided to the Controller.
3.2. As the Data Subject, I can contact the Controller in relation to the processing of my personal data at the
email address: [email protected]
3.3. If I, as the Data Subject, am of the opinion that my Personal Data are processed in contradiction with legal
regulations, I have the right to request remedial action from the Controller. If my request is found
reasonable, the Controller shall immediately remedy the defective status. This shall not prejudice my right,
as the Data Subject, to file a complaint directly with the Office for Personal Data Protection.
3.4. I hereby give my consent to the processing of my personal data by the Controller for the purposes and for
the period of time specified above. I acknowledge that the Controller shall archive this consent for the
purpose of fulfilling the Controller’s statutory obligation to be able to demonstrate that my consent to the
processing has been given.